| |
| |||||||
Log-Analyse und Auswertung: Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1)Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
17.10.2020, 12:34
| #1 |
 |  Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) Sehr geehrte Damen und Herren, ich scheine mir einen Proxy Trojaner eingefangen zu haben, der im Browser SRWIron immer wieder den folgenden Proxy einträgt: Adresse: hxxp://http=127.0.0.1 Port: 8082 Zusätzlich verhindert ein "Programm", dass ich in den Netzwerkeinstellungen des Iron Browser auf "Proxy verwenden "aus" " abspeichern kann ("speichern" ist ausgegraut). Malwarebytes AdwareCleaner, Spybot, HitmanPro haben nichts gefunden. Auffällig ist eine Datei namens "uninstall.exe", die im Download-Ordner vorhanden ist, die ich zumindest nicht bewusst herunter geladen habe. Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 14-10-2020
durchgeführt von Frank (Administrator) auf FRANK-CELSIUS (FUJITSU CELSIUS M740) (17-10-2020 13:16:39)
Gestartet von C:\Users\Frank\Downloads
Geladene Profile: Frank
Platform: Windows 10 Pro Version 2004 19041.572 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe <2>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\Frank\Desktop\adwcleaner_8.0.8.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12010.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <13>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(SurfRight B.V. -> SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe <2>
(Synology Inc. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16405744 2015-09-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2171960 2016-02-09] (NVIDIA Corporation -> )
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [FUJ02E3_BatteryChargingControlUpdate] => C:\Program Files\Fujitsu\FUJ02E3_BatteryChargingControlUpdate\CheckBatteryFW.exe [435752 2019-09-10] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU LIMITED)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [298776 2016-03-04] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [DeskUpdateNotifier] => C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe [101232 2020-06-24] (FUJITSU CLIENT COMPUTING LIMITED -> Fujitsu Technology Solutions)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [612304 2019-11-18] (NIKON CORPORATION -> Nikon Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113296 2010-03-30] (NEC Electronics Corporation -> NEC Electronics Corporation)
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2011-09-20] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Datei ist nicht signiert]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [TrayServer] => C:\Program Files (x86)\MAGIX\Video_deluxe_MX_Premium\TrayServer_de.exe [90112 2008-08-07] (MAGIX AG) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7929856 2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) [Datei ist nicht signiert]
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [VideoDownloaderUltimate] => C:\ProgramData\VideoDownloaderUltimateWinApp\VideoDownloaderUltimate.exe [5980360 2020-04-09] (Link64 GmbH -> Link64 GmbH)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Vivaldi Update Notifier] => C:\Users\Frank\AppData\Local\Vivaldi\Application\update_notifier.exe [1906760 2020-08-19] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [1687392 2019-10-22] (Sony Mobile Communications AB -> Sony)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91591032 2020-04-14] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Discord] => C:\Users\Frank\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Free Download Manager] => C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe [4145152 2020-05-15] (Softdeluxe) [Datei ist nicht signiert]
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Box Local Com Server] => C:\Users\Frank\AppData\Local\Box\Box Local Com Server\Box Local Com Service.exe [86096 2020-05-08] (Box, Inc. -> Box, Inc.)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Box Edit] => C:\Users\Frank\AppData\Local\Box\Box Edit\Box Edit.exe [210000 2020-05-08] (Box, Inc. -> Box, Inc.)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10262696 2020-09-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\RunOnce: [Application Restart #9] => C:\Users\Frank\AppData\Local\Vivaldi\Application\vivaldi.exe [1911880 2020-08-19] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_Plugin.exe [1458232 2020-04-09] (Adobe Inc. -> Adobe)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\MountPoints2: {f2936c37-afc5-11e6-bfc1-901b0e4ddb59} - "H:\pushinst.exe"
HKLM\...\Windows x64\Print Processors\Canon iP4500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD92.DLL [27648 2007-05-01] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MG7100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBR.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55872 2015-06-27] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP4500 series: C:\WINDOWS\system32\CNMLM92.DLL [258560 2007-05-01] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\WINDOWS\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG7100 series: C:\WINDOWS\system32\CNMLMBR.DLL [391168 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [359936 2013-01-24] (CANON INC.) [Datei ist nicht signiert]
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SpyderUtility.lnk [2015-04-10]
ShortcutTarget: SpyderUtility.lnk -> C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility.exe () [Datei ist nicht signiert]
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2015-04-07]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions GmbH -> Fujitsu Technology Solutions)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2015-04-07]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions GmbH -> Fujitsu Technology Solutions)
Startup: C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2020-05-25]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LaunchCenter.lnk [2020-10-17]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions GmbH -> Fujitsu Technology Solutions)
Startup: C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk [2015-04-09]
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe () [Datei ist nicht signiert]
Startup: C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sync-Plus.lnk [2020-10-03]
ShortcutTarget: Sync-Plus.lnk -> C:\Program Files\Telekom\Sync-Plus\SyncPlus.Launcher.exe (Deutsche Telekom AG -> Deutsche Telekom AG)
GroupPolicy: Beschränkung - Edge <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {04C3A598-86FC-428B-89F0-B518A46B7C24} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_pepper.exe [1453112 2019-12-12] (Adobe Inc. -> Adobe)
Task: {0946271F-F845-46D3-95C2-EB0CF9BB6F01} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {0A51ADDF-C392-472A-BF2F-CC6515CD310D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0AF0C0BE-9730-462D-9A8B-A3A85DB06C20} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0DDAF395-3FE1-4A69-A1CD-A587084F4ADC} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1B29E485-E907-4630-8821-0C8B7B08A361} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E56AA55-6F0E-4D2F-9019-4B26D6280510} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {1F2EB49D-D880-4213-BEB5-1E04B0C467A2} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2471D865-8D51-42E6-BFD5-C856419352F8} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {2AE2F0F7-1E93-4E4F-A58F-D30FBB63EB4C} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {32BC8BDF-251A-46CA-8D8C-19BB7495A847} - System32\Tasks\AdobeAAMUpdater-1.0-Frank-Celsius-Frank => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {373C610A-D9D5-4C6A-A3B6-2BC6451026FC} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2701594914-1762747753-790145204-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781}
Task: {412FE70B-8D46-459A-AE73-BAE0C6FA5ECA} - System32\Tasks\{9F9B81C9-4E19-4BB2-94EC-1164D6F45F1A} => C:\Windows\system32\pcalua.exe -a C:\Users\Frank\AppData\Local\Temp\jre-8u201-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ACHTUNG
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4B5B39B0-CB1D-42DD-BFE2-1B92A3E32DE6} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [6944304 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {4E856029-33E3-4C2D-90DE-C532C3EF6077} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {50B13F04-7120-4F15-9DB2-72D504370F97} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {51D272EA-4BCC-4332-97D7-CF1AC21CF403} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {546637B8-D90D-4DD5-B97A-C6909BC87247} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [660688 2020-10-14] (Mozilla Corporation -> Mozilla Foundation)
Task: {56CE130A-C7B6-406E-8B82-208D9B94FBE7} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {57D273DB-F6AC-4F3F-9722-848158BB2B78} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5F990801-0820-49B0-AB8F-2CE33E26598D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {607CB26C-A5E3-48F7-AD5C-3706DAEDB45D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {65B9DD48-0AE8-4F3F-8831-CAB11308FC82} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {67CBC7F9-CEEC-4FD0-A466-C7D85E483986} - System32\Tasks\2BrightSparks\SyncBackProx64\Frank-Celsius-Frank\SyncBackPro FotoSicherung Z Pictures 2017 auf Synology => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [57615280 2019-12-03] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {691FBE89-8F10-4A0E-836C-3AFF3D9871DC} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6BD17BAE-7834-4874-A187-3B080965B718} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_Plugin.exe [1458232 2020-04-09] (Adobe Inc. -> Adobe)
Task: {6D231004-95E2-4430-952E-76A585FD01DB} - System32\Tasks\2BrightSparks\SyncBackProx64\Frank-Celsius-Frank\SyncBackPro FotoFrank Z auf Synology2016 2 => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [57615280 2019-12-03] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {6DDAA4DE-2C19-49FA-B370-22F068B2B581} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1153928 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {706395C5-B8ED-46CC-8CAD-C405F3F7253A} - System32\Tasks\t-online.de\Browser 7 Default Browser Agent CEB3BE954DB2CB55 => C:\Program Files (x86)\t-online.de\Browser 7\default-browser-agent.exe [85136 2020-06-18] (Ströer Digital Publishing GmbH -> t-online.de -OFFICIAL)
Task: {71FEEE7D-C1DE-4B60-B9CE-FF54836F5955} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {73AC9AC3-C645-48C7-A0A5-ED870424272B} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {78D630FB-5C85-41E9-98F9-7E1CFAC92942} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7C664EE4-521A-4325-85E1-743D828865A9} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {7D9775D7-B285-421C-A91F-F9E747D94BBF} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {863750AC-92E7-4D11-9B3F-AB5D9DF6136E} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {8AA91BF1-0445-45BA-A522-487BE086F5C4} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8ACC53D2-52DB-4760-AD98-B5CF013A124F} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8D5CA5D9-F3C3-4438-BA97-4DDFC1EBF907} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {92226648-2D70-495C-9E24-6ACBE705A97F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {92FA3832-0BF7-4538-85B7-1B1B6E6465C1} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {9942DE5A-16C2-4D04-9AA5-ACD1B954DB80} - System32\Tasks\{FCE620E8-84C9-43AC-B845-25B6634EBF1E} => C:\Windows\system32\pcalua.exe -a "C:\Users\Frank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XC8E5F2S\JavaSetup8u73.exe" -d C:\Users\Frank\Desktop
Task: {9A519CE1-A610-4394-8B60-266111CA2D86} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {9F2AC25A-1569-4E37-B5BA-496483F7C61C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A0810060-E887-4030-90B1-5680670908BA} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A0E76AFD-344C-491F-80E2-BAE43F85F00A} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {A177368D-7B9A-4E29-878A-A30AC00A1BDD} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Frank\Desktop\adwcleaner_8.0.8.exe [8447152 2020-10-16] (Malwarebytes Inc -> Malwarebytes)
Task: {A6A9D8DC-F326-47CE-84D3-7495755B8E88} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA3E6864-66F7-46AA-BB91-023E93F8C376} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {AF20F8DD-83F9-47DD-B4A2-EF496143AA38} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo)
Task: {AF96AABA-6CBF-4F94-9B8B-B4798E412F24} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B25054A2-5A37-48B0-B8A4-602FC4BDF61C} - System32\Tasks\FreeDownloadManagerHelperService => C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe [144896 2020-05-15] (Softdeluxe) [Datei ist nicht signiert]
Task: {C82F94AA-F27D-4146-A2B5-4307AC646FBA} - \Microsoft\Windows\Setup\EOSNotify2 -> Keine Datei <==== ACHTUNG
Task: {CAFEB61F-F682-4B8D-86C3-9AFD6B3D1C38} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [7651984 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {CD48FA4E-F2F7-4CF0-96C6-FA9D4190D3F6} - System32\Tasks\Fujitsu\DeskUpdate => C:\Program Files (x86)\Fujitsu\DeskUpdate\ducmd.exe [119152 2020-06-24] (FUJITSU CLIENT COMPUTING LIMITED -> )
Task: {CD6641A8-D71B-4FF0-AB2A-1AFE9D420171} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D5D0F2CF-60F1-4A88-A45E-EFB74726F7BA} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DEC1C0A2-98C3-4AC7-A2E9-CA3913770442} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [7192192 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {E165EA79-BEA5-42CF-9BD9-BF4AEB9432D9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {E2BB2E40-957F-4033-8C7F-30E62C9F2AA3} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
Task: {E3DC38D7-CB9A-4DCA-8FD2-80224E4C0A9D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {E78802F4-CBE3-4D41-A3DF-7694B5F9107A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {E94ABBD6-BEED-4006-96F7-9CBB5D8C98F7} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {E982087D-DFB0-456E-8871-FDA537E69F8E} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {ECCAB6F0-9840-4A29-9B12-F0BE05CC54BC} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {F0B94E0A-3C45-4139-866A-AFDD0625D249} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {F39A9BB1-940C-41A9-948C-7CC60D24AD0C} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-04-05] () [Datei ist nicht signiert]
Task: {F49B8C24-4C72-4926-866A-8CEC3087AE23} - System32\Tasks\Connect => C:\Program Files (x86)\MAGIX\Connect\connect.exe [324680 2017-05-10] (MAGIX Software GmbH -> MAGIX Software GmbH)
Task: {FB431472-4224-4B31-A8DD-5B2AE168D0ED} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Connect.job => C:\Program Files (x86)\MAGIX\Connect\connect.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
ProxyServer: [S-1-5-21-2701594914-1762747753-790145204-1000] => http=127.0.0.1:8082
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{4fcc9f35-d3bd-48bd-aa35-0795d6b58b9c}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{B3DAD457-247F-4E43-9533-E083E5365075}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{CC59FA5E-A4D0-415C-8088-E10A367F2F8E}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{D66708FC-9F95-4E84-91DC-F40471C531E5}: [DhcpNameServer] 192.168.178.1
Edge:
======
DownloadDir: C:\Users\Frank\Downloads
Edge Notifications: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> hxxps://mail.notes.na.collabserv.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\Frank\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-16]
Edge DownloadDir: C:\Users\Frank\Downloads
Edge Notifications: Default -> hxxps://mail.notes.na.collabserv.com
FireFox:
========
FF DefaultProfile: 9n93wvqn.default
FF DefaultProfile: gkqdg3ff.default-1491461852932
FF ProfilePath: C:\Users\Frank\AppData\Roaming\t-online.de\Browser7\Profiles\9n93wvqn.default [2020-10-17]
FF NetworkProxy: t-online.de\Browser7\Profiles\9n93wvqn.default -> type", 0
FF Session Restore: t-online.de\Browser7\Profiles\9n93wvqn.default -> ist aktiviert.
FF ProfilePath: C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932 [2020-10-17]
FF DownloadDir: Y:\zDownloads
FF NetworkProxy: Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932 -> type", 0
FF Notifications: Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932 -> hxxps://www.joyclub.de; hxxp://192.168.178.20:5000; hxxps://apps.na.collabserv.com
FF Extension: (Facebook Container) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\@contain-facebook.xpi [2020-09-30]
FF Extension: (Your Secret Search) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\@mysecretsearch.xpi [2018-07-30] [UpdateUrl:hxxps://s3.eu-central-1.amazonaws.com/b8w7hm6gazt4cs9d/update.json]
FF Extension: (Firefox Multi-Account Containers) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\@testpilot-containers.xpi [2020-09-29]
FF Extension: (Cisco Webex Extension) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\ciscowebexstart1@cisco.com.xpi [2020-06-03]
FF Extension: (Kein Name) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\dcenpnkkppcblnimkecehfijnbcckdhi@chrome-store-foxified-unsigned.xpi [2019-05-09] [UpdateUrl:hxxps://kollchi.com/]
FF Extension: (German Dictionary, extended for Austria) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\de-AT@dictionaries.addons.mozilla.org.xpi [2019-07-26]
FF Extension: (German Dictionary (Switzerland)) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\de-CH@dictionaries.addons.mozilla.org.xpi [2019-07-26]
FF Extension: (German Dictionary) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\de-DE@dictionaries.addons.mozilla.org.xpi [2019-07-26]
FF Extension: (Easy Screenshot) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\easyscreenshot@mozillaonline.com.xpi [2019-04-25]
FF Extension: (Font Finder) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\fontfinder@bendodson.com.xpi [2017-04-07] []
FF Extension: (Form History Control (II)) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\formhistory@yahoo.com.xpi [2020-04-21]
FF Extension: (Turbo Download Manager (3rd edition)) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\jid0-dsq67mf5kjjhiiju2dfb6kk8dfw@jetpack.xpi [2020-08-24]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\langpack-de@firefox.mozilla.org.xpi [2020-09-24]
FF Extension: (Nimbus Screen Capture: Screenshots, Annotate) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\nimbusscreencaptureff@everhelper.me.xpi [2020-08-10]
FF Extension: (PageExpand) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\PageExpand@hakuhin.jp.xpi [2020-03-02]
FF Extension: (SimilarPages) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\similarpages@similarpages.com.xpi [2017-04-07] []
FF Extension: (Tab Session Manager) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\Tab-Session-Manager@sienori.xpi [2020-09-17]
FF Extension: (Easy Video Downloader) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\vdpure@link64.xpi [2017-08-07]
FF Extension: (Pinned WhatsApp Web) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\whatsapppanel@alejandrobrizuela.com.ar.xpi [2019-05-18]
FF Extension: (YouTube MP3) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\yt2mp3@waldemar.b.xpi [2018-03-24]
FF Extension: (Flagfox) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2020-10-01]
FF Extension: (FLV Video Downloader) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{10800464-82af-434d-a1bd-738d77a11e55}.xpi [2020-01-25]
FF Extension: (Session Manager) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-04-07] []
FF Extension: (FlashGot) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-04-08] []
FF Extension: (Reader) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{20068ab2-1901-4140-9f3c-81207d4dacc4}.xpi [2018-02-22]
FF Extension: (Download All Images) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{32af1358-428a-446d-873e-5f8eb5f2a72e}.xpi [2020-07-29]
FF Extension: (Image Search Options) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi [2019-06-29]
FF Extension: (Image Downloader) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{589e6459-3d56-49b4-9b3d-6e4b7ef16940}.xpi [2019-05-09]
FF Extension: (undo) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{5997e7bd-1940-4058-a5f4-1562afce6353}.xpi [2020-05-22]
FF Extension: (404 Bookmarks) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{5f8d31ba-47fb-4b70-bf8d-d2113f6da22f}.xpi [2020-04-28]
FF Extension: (Bulk Media Downloader) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{72b2e02b-3a71-4895-886c-fd12ebe36ba3}.xpi [2018-07-30]
FF Extension: (NoScript) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2020-10-12]
FF Extension: (ImTranslator: Translator, Dictionary, TTS) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2019-12-27]
FF Extension: (Video DownloadHelper) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-03-31]
FF Extension: (Javascript Switcher) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{d7e0a6e7-9a50-490a-be5c-3b448be39b42}.xpi [2019-06-09]
FF Extension: (DownThemAll!) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2019-11-28]
FF Extension: (Refresh Your Bookmarks) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{e53033bc-0678-463a-82ea-d9610dafdad0}.xpi [2020-04-28]
FF Extension: (Open With Photoshop) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{f3f219f9-cbce-467e-b8fe-6e076d29665c}.xpi [2017-12-22]
FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2020-08-21]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2016-05-08] [] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_344.dll [2020-04-09] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-10-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-10-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.9.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_344.dll [2020-04-09] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-2701594914-1762747753-790145204-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Frank\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-27] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF Plugin HKU\S-1-5-21-2701594914-1762747753-790145204-1000: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2016-10-24] (Sony Network Entertainment International LLC) [Datei ist nicht signiert]
FF Plugin ProgramFiles/Appdata: C:\Users\Frank\AppData\Roaming\mozilla\plugins\npatgpc.dll [2019-04-11]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx" <nicht gefunden>
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8943496 2020-09-24] (Microsoft Corporation -> Microsoft Corporation)
S2 Cloud Station Drive VSS Service x64; C:\Program Files (x86)\Synology\CloudStation\bin\vss-service-x64.exe [287240 2016-03-16] (Synology Inc. -> ) [Datei ist nicht signiert]
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2651840 2019-04-11] (Comodo Security Solutions, Inc. -> COMODO)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-06] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-06] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
S2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [Datei ist nicht signiert]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [Datei ist nicht signiert]
R2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [5135304 2020-10-16] (SurfRight B.V. -> SurfRight B.V.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-10-16] (Malwarebytes Inc -> Malwarebytes)
S3 Media Center 25 Service; C:\Program Files\J River\Media Center 25\JRService.exe [458128 2019-12-10] (JRiver, Inc. -> JRiver, Inc.)
S3 Media Center 26 Service; C:\Program Files\J River\Media Center 26\JRService.exe [435088 2020-09-04] (JRiver, Inc. -> JRiver, Inc.)
S3 MusicCenter Back-End Service; C:\Program Files (x86)\Sony\Music Center\avlib\SsBeServiceMc.exe [181928 2017-08-24] (Sony Video & Sound Products Inc. -> Sony Video & Sound Products Inc.)
S2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2011-09-22] (Nalpeiron LTD -> Nalpeiron Ltd.) [Datei ist nicht signiert]
S2 NMSAccess64; C:\WINDOWS\SysWOW64\NMSAccess64.exe [82872 2009-01-12] (Numedia Soft, Inc. -> )
S2 NVWMI; C:\WINDOWS\system32\nvwmi64.exe [3164728 2016-02-09] (NVIDIA Corporation -> )
S3 PACSPTISVR-Music_Center; C:\Program Files (x86)\Sony\Music Center\Sony.Earth\PACSPTISVR.exe [167824 2017-08-24] (Sony Video & Sound Products Inc. -> Sony Video & Sound Products Inc.)
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\RpcAgentSrv.exe [68760 2008-09-05] (SiSoftware Ltd -> SiSoftware) [Datei ist nicht signiert]
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5102504 2020-10-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Sony Mobile Communications AB -> Avanquest Software) [Datei ist nicht signiert]
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-06-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 tonlinedeBrowser7Maintenance; C:\Program Files (x86)\t-online.de Browser 7 Maintenance Service\maintenanceservice.exe [216720 2020-06-18] (Ströer Digital Publishing GmbH -> t-online.de -OFFICIAL)
S3 UPnPService; C:\Program Files (x86)\Common Files\MAGIX Shared\UPnPService\UPnPService.exe [544768 2006-12-14] (Magix AG) [Datei ist nicht signiert]
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248736 2013-11-14] (Synology Inc. -> ) [Datei ist nicht signiert]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2548224 2019-10-22] (Sony) [Datei ist nicht signiert]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [55776 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
R1 cbfs6; C:\Windows\system32\drivers\cbfs6.sys [460992 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17872 2019-03-18] (Microsoft Windows Early Launch Anti-Malware Publisher -> COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [43416 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [849048 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdHlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [51672 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
R3 FUJ02E3; C:\WINDOWS\system32\DRIVERS\FUJ02E3.sys [29808 2019-09-10] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU LIMITED)
R3 fwlanusb6_860; C:\WINDOWS\system32\DRIVERS\fwlanusb6_860.sys [2235160 2020-02-02] (WDKTestCert rstolz,131417395005862431 -> AVM GmbH)
R1 hmpalert; C:\WINDOWS\system32\drivers\hmpalert.sys [419936 2020-10-16] (SurfRight B.V. -> SurfRight B.V.)
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [134280 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO)
S3 jrvad_service; C:\WINDOWS\System32\drivers\JRiverWDMDriver.sys [36872 2015-04-10] (JRiver, Inc. -> JRiver, Inc.)
S3 LSI_SAS3; C:\WINDOWS\system32\drivers\lsi_sas3.sys [88776 2014-09-25] (LSI Corporation -> LSI Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [218112 2020-10-16] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-10-16] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197280 2020-10-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [74936 2020-10-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-10-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [134304 2020-10-16] (Malwarebytes Inc -> Malwarebytes)
S3 megasas2; C:\WINDOWS\system32\drivers\megasas2.sys [60104 2014-07-03] (LSI Corporation -> LSI Corporation)
S3 RSUSBSTOR; C:\WINDOWS\System32\Drivers\RtsUStor.sys [243712 2012-11-12] (Realtek Semiconductor Corp.) [Datei ist nicht signiert]
S3 SnapCameraVirtualDevice; C:\WINDOWS\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2020-03-21] (Snap Inc. -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166768 2020-06-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-06-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 VBoxNetAdp; C:\WINDOWS\System32\DRIVERS\VBoxNetAdp6.sys [196040 2017-07-27] (Oracle Corporation -> Oracle Corporation)
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-02-26] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
R1 asrdmon; \SystemRoot\system32\drivers\asrdmon.sys [X]
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-10-17 12:37 - 2020-10-17 12:37 - 002299904 _____ (Farbar) C:\Users\Frank\Downloads\FRST64(1).exe
2020-10-17 12:35 - 2020-10-17 12:35 - 000003182 _____ C:\WINDOWS\system32\Tasks\AdwCleaner_onReboot
2020-10-17 12:26 - 2020-10-17 12:26 - 000055468 __RSH C:\ProgramData\ntuser.pol
2020-10-17 12:24 - 2020-10-17 12:24 - 004432744 _____ (BrightFort LLC ) C:\Users\Frank\Downloads\spywareblastersetup60.exe
2020-10-17 11:08 - 2020-10-17 11:08 - 000000000 ___HD C:\$SysReset
2020-10-17 10:33 - 2020-10-17 12:51 - 000083890 _____ C:\Users\Frank\Downloads\Addition.txt
2020-10-17 10:29 - 2020-10-17 13:17 - 000052028 _____ C:\Users\Frank\Downloads\FRST.txt
2020-10-17 10:29 - 2020-10-17 13:17 - 000000000 ____D C:\FRST
2020-10-17 10:28 - 2020-10-17 10:28 - 002299904 _____ (Farbar) C:\Users\Frank\Downloads\FRST64.exe
2020-10-17 10:08 - 2020-10-17 10:08 - 000135486 _____ C:\Users\Frank\Desktop\hitmanProSurfRight _ Shopping Cart.pdf
2020-10-16 23:46 - 2020-10-16 23:46 - 001912820 _____ C:\WINDOWS\Minidump\101620-8078125-01.dmp
2020-10-16 20:06 - 2020-10-16 20:06 - 000193704 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2020-10-16 20:06 - 2020-10-16 20:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-10-16 20:06 - 2020-10-16 20:06 - 000000000 ____D C:\Program Files\Java
2020-10-16 20:05 - 2020-10-16 20:05 - 000012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2020-10-16 20:04 - 2020-10-16 20:10 - 000000000 ____D C:\Program Files (x86)\TV-Browser
2020-10-16 20:04 - 2020-10-16 20:04 - 083038856 _____ (Oracle Corporation) C:\Users\Frank\Downloads\jre-8u261-windows-x64.exe
2020-10-16 20:02 - 2020-10-16 20:03 - 007260471 _____ C:\Users\Frank\Downloads\tvbrowser_4.0.1_win32.exe
2020-10-16 19:35 - 2020-10-16 19:35 - 001078216 _____ (SurfRight B.V.) C:\WINDOWS\system32\hmpalert.dll
2020-10-16 19:35 - 2020-10-16 19:35 - 000997320 _____ (SurfRight B.V.) C:\WINDOWS\SysWOW64\hmpalert.dll
2020-10-16 19:35 - 2020-10-16 19:35 - 000190920 _____ (SurfRight B.V.) C:\WINDOWS\system32\hmpshell.dll
2020-10-16 19:20 - 2020-10-16 19:20 - 000197280 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-10-16 19:20 - 2020-10-16 19:20 - 000134304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-10-16 19:20 - 2020-10-16 19:20 - 000074936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-10-16 19:10 - 2020-10-16 19:20 - 000057728 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2020-10-16 19:08 - 2020-10-16 23:44 - 000000000 ____D C:\Program Files (x86)\HitmanPro.Alert
2020-10-16 19:08 - 2020-10-16 19:35 - 000419936 _____ (SurfRight B.V.) C:\WINDOWS\system32\Drivers\hmpalert.sys
2020-10-16 19:08 - 2020-10-16 19:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro.Alert
2020-10-16 19:07 - 2020-10-16 19:07 - 005121480 _____ (SurfRight B.V.) C:\Users\Frank\Downloads\hmpalert3.exe
2020-10-16 18:32 - 2020-10-17 12:37 - 000000000 ____D C:\Users\Frank\AppData\LocalLow\IGDump
2020-10-16 18:30 - 2020-10-16 18:30 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-10-16 18:30 - 2020-10-16 18:30 - 000218112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-10-16 18:30 - 2020-10-16 18:30 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-10-16 18:30 - 2020-10-16 18:30 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-10-16 18:30 - 2020-10-16 18:30 - 000002039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-16 18:30 - 2020-10-16 18:30 - 000002027 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-10-16 18:30 - 2020-10-16 18:30 - 000002027 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-10-16 17:28 - 2020-10-16 17:28 - 000002793 _____ C:\Users\Public\Desktop\Digeus Registry Cleaner.lnk
2020-10-16 17:28 - 2020-10-16 17:28 - 000002793 _____ C:\ProgramData\Desktop\Digeus Registry Cleaner.lnk
2020-10-16 17:28 - 2020-10-16 17:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digeus
2020-10-16 17:28 - 2020-10-16 17:28 - 000000000 ____D C:\Program Files (x86)\Digeus
2020-10-16 16:56 - 2020-10-16 16:56 - 008447152 _____ (Malwarebytes) C:\Users\Frank\Desktop\adwcleaner_8.0.8.exe
2020-10-16 16:49 - 2020-10-16 16:49 - 073245528 _____ (SRWare ) C:\Users\Frank\Downloads\srware_iron64(1).exe
2020-10-16 16:03 - 2020-10-16 16:03 - 071270400 _____ C:\Users\Frank\Downloads\Amy Reid in Fine A$$ Amy Reid Will Rock Your World - HdZog -.mp4.part
2020-10-16 14:35 - 2020-10-16 14:35 - 003079251 _____ C:\Users\Frank\Downloads\DMS_salessheet_1-1.pdf
2020-10-16 14:15 - 2020-10-16 14:15 - 001194689 _____ C:\Users\Frank\Downloads\WP_Aviation-GSE-Operations_INSG.pdf
2020-10-16 13:19 - 2020-10-16 13:19 - 000000000 ____D C:\Users\Frank\Downloads\sexxxgirls.com
2020-10-15 08:31 - 2020-10-15 08:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-10-15 08:26 - 2020-10-15 08:26 - 001804404 _____ C:\WINDOWS\Minidump\101520-150250-01.dmp
2020-10-15 03:03 - 2020-10-15 03:03 - 002041028 _____ C:\WINDOWS\Minidump\101520-8051000-01.dmp
2020-10-14 13:44 - 2020-10-14 13:44 - 000243752 _____ C:\Users\Frank\Downloads\uninstall.exe
2020-10-14 13:43 - 2020-10-14 13:43 - 000911295 _____ C:\Users\Frank\Downloads\antitwin_setup.exe
2020-10-14 11:06 - 2020-10-16 16:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-10-13 22:47 - 2020-10-13 22:47 - 032612336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 031598928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 019870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 018767360 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 018080768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 011498496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 009499136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 007534680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 007099904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 006421504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 005820416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 005337504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 004828672 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 004783832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 004314624 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 004281856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 004275712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 003664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 003376840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-10-13 22:47 - 2020-10-13 22:47 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 002520056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 002398720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 002022200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001970176 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001812872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001545848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001541224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001502536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001259848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001185864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000977920 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000961704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000837120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000800072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2020-10-13 22:47 - 2020-10-13 22:47 - 000773712 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000747312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000684832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000607336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2020-10-13 22:47 - 2020-10-13 22:47 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000578424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrptadm.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicRuntimes.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrptadm.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000428544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AdmTmpl.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000377344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCleaner.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.HardwareId.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000182592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDist.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgmts.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000147272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000145736 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logman.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000093112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2020-10-13 22:47 - 2020-10-13 22:47 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dggpext.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provmigrate.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pnrpnsp.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistHttpTrans.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\relog.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistAD.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\typeperf.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000041280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClientPS.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.SecurityMitigationsBroker.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000026944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVClientPS.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpupdate.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskperf.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drprov.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVTerminator.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000018232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVTerminator.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000015672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVSentinel.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000013624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVSentinel.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSErrRedir.dll
2020-10-13 22:46 - 2020-10-13 22:47 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 026273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 023448576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 014758400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 008897752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 008226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 007765504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 007616000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 006365280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 005998616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 005998616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 005431000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 005371544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 004752896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 004523008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 004433640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 004363840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 004012688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 003821072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 003706880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 003493888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Controls.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 003335680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002827776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002757120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-10-13 22:46 - 2020-10-13 22:46 - 002749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-10-13 22:46 - 2020-10-13 22:46 - 002634112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002621720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002607104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002541568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002425144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002318336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002267424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002104320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001963752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001963712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001883696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001836544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001721856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001695760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001695728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001681408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001663136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001641960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001618152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001598032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001590072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001557816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 001509728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001450304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001449472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001418752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001342976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001315640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001276928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001255744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 001253624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001240064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001238528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001234432 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001230336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 001181208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2020-10-13 22:46 - 2020-10-13 22:46 - 001160192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001140736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001062400 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001042432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001033496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001011768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001006592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001003336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001001984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001000408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000979272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000966864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000964264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000956216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000942408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000924528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000920888 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000907448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000873272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000859400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000805168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000788168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000783992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000779360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000775256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000760640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000759296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000756680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000756656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000751496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000721024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000698280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000688960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000688128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntimewindows.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000634696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000632544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntime.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000630096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000606880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000603448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000602192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000594464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000585704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000583616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000578376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000548544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000546976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000537696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000530912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000529208 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000523712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000521096 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UiaManager.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000508720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000504552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clbcatq.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000495840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmdial32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000487048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000482304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000482104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000475696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000474424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000469920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000459264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000455168 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000454016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-10-13 22:46 - 2020-10-13 22:46 - 000420936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000416864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000413232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000410064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000408000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp110_win.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000407872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000407504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wbemcomn.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000397728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000395592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrv.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000376032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000374496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2020-10-13 22:46 - 2020-10-13 22:46 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000337768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AarSvc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-10-13 22:46 - 2020-10-13 22:46 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000329528 _____ (Microsoft Corporation) C:\WINDOWS\system32\PktMon.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000329504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmBroker.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000311920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000303288 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000293864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000293184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000288672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000287680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000286016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.FileExplorer.Common.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000275288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000271664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000270640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000268080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powrprof.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000265440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000258880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdscore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000252616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\capauthz.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000236520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgmgr32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmd.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-10-13 22:46 - 2020-10-13 22:46 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000225088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000224576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.HardwareId.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000218936 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsldpc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000207168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdscore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000198792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB7.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mlang.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000196784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2020-10-13 22:46 - 2020-10-13 22:46 - 000195136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000190976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000190040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fidocredprov.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-10-13 22:46 - 2020-10-13 22:46 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000185912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000181048 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxlib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000176448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuceffects.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000171568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000171440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000166280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000164232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000163216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000161608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntasn1.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000152904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntmarta.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000151864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000149272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000145664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000145208 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000143056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000142008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000141008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000141008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000139960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000138936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devobj.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000138920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmidcom.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000136328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000135496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxlib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000134800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LanguageOverlayUtil.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000130128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvEmulation.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000128616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000126024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\logman.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000119608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cabinet.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000118584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000117216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000117056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DSCache.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000115192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000115008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2020-10-13 22:46 - 2020-10-13 22:46 - 000111024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\provmigrate.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000110008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000108352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000107376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PktMon.sys
2020-10-13 22:46 - 2020-10-13 22:46 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000101744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000101376 _____ (Microsoft Corporation)
|
|
17.10.2020, 12:36
| #2 |
| | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) post #2
__________________Code:
ATTFilter C:\WINDOWS\SysWOW64\mi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-10-13 22:46 - 2020-10-13 22:46 - 000099656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdsapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000097088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000096032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000095552 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000095024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-10-13 22:46 - 2020-10-13 22:46 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000093488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000092960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpnsp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbssysprep.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MuiUnattend.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spinf.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpolcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.ServiceHostBuilder.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000074832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000072824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000072288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsCtfMonitor.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MitigationConfiguration.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samcli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TempSignedLicenseExchangeTask.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000068680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000068192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptsp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\colbact.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000061752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptext.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\auditpolcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000058856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000058848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000058176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\virtdisk.dll2020-10-13 22:46 - 2020-10-13 22:46 - 000057144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmLpac.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devrtl.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000056312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\threadpoolwinrt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcacli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NapiNSP.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\amsi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000054720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\relog.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000052672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel.appcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000052664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wtsapi32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000052664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000050616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msasn1.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000050104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sfc_os.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mskeyprotect.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\typeperf.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.SecurityMitigationsBroker.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000047016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\svchost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000045904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coloradapterclient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\execmodelproxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapprovp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000042328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpol.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmiclnt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000039720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iri.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000037688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininitext.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000037176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Websocket.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dusmapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winrnr.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\auditpol.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000031528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptbase.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpupdate.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32topl.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000027848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fltLib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000027336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\avrt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000027320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\version.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\drprov.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\httpapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hid.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskperf.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.TimeBroker.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fltMC.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000024288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsrole.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\linkinfo.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secur32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsparse.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscdll.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davhlpr.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000021312 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ktmw32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000020640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerEnc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000019256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dllhost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mobilenetworking.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000017728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\backgroundTaskHost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000017016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EsdSip.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshqos.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wowreg32.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmsgapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasautou.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasadhlp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmiso8601utils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000011272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sfc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wship6.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSHTCPIP.DLL
2020-10-13 22:46 - 2020-10-13 22:46 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000009279 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-10-13 22:46 - 2020-10-13 22:46 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDUS.DLL
2020-10-13 22:46 - 2020-10-13 22:46 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shimeng.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\normaliz.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 017542144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 010841400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 010336904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 008009880 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 007986616 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 007632808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 007266128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 006204928 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 006195712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 006070904 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 005871560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 005783288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 005057024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 004732928 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 004645368 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 004629320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 004590560 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 004517376 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 004025344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Controls.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003917824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003893248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003858944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003852288 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003815936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 003811840 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003779392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 003750912 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003587072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003537520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003506480 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003436544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003386368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003305984 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003282944 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003232056 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 003134464 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003066880 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002983736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 002978816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002942976 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 002920304 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002809776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002592056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002568704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002503520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002485928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002451968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002428416 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002377728 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 002322304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002250240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002206208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002189824 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002178600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002107872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002024248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002007352 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001978664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001954816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001952256 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001932760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001871272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001837568 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001827840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001827128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001822256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-10-13 22:45 - 2020-10-13 22:45 - 001784480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001765184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001751952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001730048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001715200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001673728 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001650176 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001563520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001554624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001531904 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001526272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001515520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001478464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 001468928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001456640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001434624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001414656 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001411552 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001400208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001393472 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-10-13 22:45 - 2020-10-13 22:45 - 001389352 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001379064 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001361920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsf3gip.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001360936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001337696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001330688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001324032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001306624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001280312 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001277952 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001255424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001237536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001212696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001212232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001210120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001198296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001192096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001182520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001148416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001146368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001141984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001137472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001128536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001111040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001108288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001104896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001092392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001089856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 001070400 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001068640 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001068352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 001047432 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001044880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001025768 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001021096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000995128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Facilitator.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000994256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000988008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000979768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000978768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000939448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000937472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000934400 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000913776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000907776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000903984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000891472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 000885248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000882136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000872776 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000860672 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000852288 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000844984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000843896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000843264 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000831032 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000828432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000821056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000809272 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000782656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000764976 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000763904 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000763192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000748360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000725600 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000708088 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000707544 _____ C:\WINDOWS\system32\TextShaping.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000705560 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000705008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000688128 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000686408 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000676096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000672976 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatq.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000660592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000645120 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000644576 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\UiaManager.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000637360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000635832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000634760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000628120 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000624480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000603464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000602432 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000598336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000586792 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000586048 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000583608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmdial32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000577952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-10-13 22:45 - 2020-10-13 22:45 - 000560376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp110_win.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000539264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000528904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000521016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbemcomn.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000518552 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000507192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000502584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-10-13 22:45 - 2020-10-13 22:45 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000488104 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000488064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000478720 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000477512 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000454968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000429712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000427200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000425272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000420456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000419432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000418800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000418416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000414200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000411448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000403384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000401728 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000389432 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000385240 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000382728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000374080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000374072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000371376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000361040 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000354344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000352784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000351200 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000342424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000333144 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000332600 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000318736 _____ (Microsoft Corporation) C:\WINDOWS\system32\capauthz.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000305272 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgmgr32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000295464 _____ (Microsoft Corporation) C:\WINDOWS\system32\powrprof.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000287544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wosc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000260816 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000259264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsldpc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000253008 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000249664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000249656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinREAgent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mlang.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuceffects.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\fidocredprov.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000241144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntasn1.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000230904 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000230728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000230392 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 000229176 _____ (Microsoft Corporation) C:\WINDOWS\system32\convertvhd.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000228152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.System.UserProfile.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000219016 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000216376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msls31.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000215352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000213344 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000211736 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000207608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NetAdapterCx.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000207160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000203544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000195232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000191656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntmarta.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000185448 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000180032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000176656 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmidcom.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000175608 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000173016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayUtil.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000171992 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000171024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000167888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgcore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000166200 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\devobj.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000162704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000161672 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000161608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000160064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000160056 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000157024 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000155976 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000155960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdsapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000153376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000152376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DSCache.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000147264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000147232 _____ (Microsoft Corporation) C:\WINDOWS\system32\cabinet.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000147200 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000146216 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000143096 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000137896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000135480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000133744 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpnpmgr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000130144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000122392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000118584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000117800 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000116536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2020-10-13 22:45 - 2020-10-13 22:45 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkQoSPolicyCSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000109504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000107416 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MuiUnattend.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshext.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000103288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RuntimeBroker.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-10-13 22:45 - 2020-10-13 22:45 - 000102720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.ServiceHostBuilder.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000097672 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerApi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000097088 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsCtfMonitor.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\spinf.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000095496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000090432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000090408 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MitigationConfiguration.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000083744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\samcli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\colbact.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000082656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000082176 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\execmodelproxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\deploymentcsps.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000076976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\djoin.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\TempSignedLicenseExchangeTask.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptext.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000071784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcacli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000070968 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NapiNSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000069752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\threadpoolwinrt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000067728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000067192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wtsapi32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mskeyprotect.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000064824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000064072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msasn1.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\devrtl.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\PnPUnattend.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000061960 _____ (Microsoft Corporation) C:\WINDOWS\system32\coloradapterclient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000060464 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel.appcore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000059448 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sfc_os.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000057664 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000057360 _____ (Microsoft Corporation) C:\WINDOWS\system32\svchost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapprovp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000051120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iri.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmiclnt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\winrnr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Websocket.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IndirectKmd.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000046392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000041816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netutils.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hid.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32topl.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winnsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsisvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000034152 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptbase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnscacheugc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000033064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltLib.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\linkinfo.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000031552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000031496 _____ (Microsoft Corporation) C:\WINDOWS\system32\version.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltMC.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.TimeBroker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsparse.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscdll.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000030480 _____ (Microsoft Corporation) C:\WINDOWS\system32\avrt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000029456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000028944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsrole.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\secur32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000028360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winnsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\davhlpr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\netbtugc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000026608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IntelTA.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000025848 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ktmw32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000024296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerEnc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mobilenetworking.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000021312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000021280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshqos.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmsgapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000020160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\localui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000019776 _____ (Microsoft Corporation) C:\WINDOWS\system32\backgroundTaskHost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000019144 _____ (Microsoft Corporation) C:\WINDOWS\system32\psapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasautou.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wowreg32.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000017600 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrss.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasadhlp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmiso8601utils.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsiproxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSHTCPIP.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wship6.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfoext.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000011784 _____ (Microsoft Corporation) C:\WINDOWS\system32\sfc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDUS.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\normaliz.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
2020-10-13 20:31 - 2020-10-13 20:31 - 001978012 _____ C:\WINDOWS\Minidump\101320-7989078-01.dmp
2020-10-13 13:13 - 2020-10-13 13:13 - 000000000 ____D C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2
2020-10-13 13:12 - 2020-10-13 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Transfer 2
2020-10-13 13:11 - 2020-10-13 13:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon
2020-10-13 12:57 - 2020-10-13 12:57 - 482308096 _____ C:\Users\Frank\Downloads\S-VCNXSP-200300WF-ALLIN-ALL___.exe
2020-10-12 14:43 - 2020-10-12 14:43 - 001131588 _____ C:\WINDOWS\Minidump\101220-8362640-01.dmp
2020-10-12 09:16 - 2020-10-12 09:16 - 001634124 _____ C:\WINDOWS\Minidump\101220-7972375-01.dmp
2020-10-12 02:21 - 2020-10-12 02:21 - 001980268 _____ C:\WINDOWS\Minidump\101220-161921-01.dmp
2020-10-11 09:11 - 2020-10-11 09:11 - 001237064 _____ (Adobe Inc) C:\Users\Frank\Downloads\flashplayer32au_ha_install.exe
Geändert von FrommArt (17.10.2020 um 12:56 Uhr) |
|
17.10.2020, 12:37
| #3 |
| | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) post #3
__________________Code:
ATTFilter 2020-10-11 06:51 - 2020-10-11 06:51 - 002178396 _____ C:\WINDOWS\Minidump\101120-8028093-01.dmp
2020-10-10 03:58 - 2020-10-10 03:58 - 001988908 _____ C:\WINDOWS\Minidump\101020-7990765-01.dmp
2020-10-09 15:23 - 2020-10-09 15:46 - 288759680 _____ C:\Users\Frank\Downloads\YouTube~1.mp4
2020-10-09 15:23 - 2020-10-09 15:46 - 127289330 _____ C:\Users\Frank\Downloads\YouTube.mkv
2020-10-09 15:10 - 2020-10-09 15:31 - 570739206 _____ C:\Users\Frank\Downloads\YouTube.mp4
2020-10-09 15:08 - 2020-10-09 15:08 - 000502005 _____ C:\Users\Frank\Downloads\watch(3).html
2020-10-09 15:08 - 2020-10-09 15:08 - 000462311 _____ C:\Users\Frank\Downloads\watch(2).html
2020-10-09 11:46 - 2020-10-09 12:07 - 570739206 _____ C:\Users\Frank\Downloads\2020 10 Joycce viele Figuren.mp4
2020-10-09 02:34 - 2020-10-09 02:34 - 001974716 _____ C:\WINDOWS\Minidump\100920-8048328-01.dmp
2020-10-08 14:57 - 2020-10-08 14:57 - 000001181 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung DeX.lnk
2020-10-08 14:57 - 2020-10-08 14:57 - 000001169 _____ C:\Users\Public\Desktop\Samsung DeX.lnk
2020-10-08 14:57 - 2020-10-08 14:57 - 000001169 _____ C:\ProgramData\Desktop\Samsung DeX.lnk
2020-10-08 14:56 - 2020-06-26 04:15 - 000166768 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2020-10-08 14:56 - 2020-06-26 04:15 - 000136048 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus.sys
2020-10-08 14:56 - 2020-06-26 04:15 - 000043376 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ss_conn_usb_driver2.sys
2020-10-08 14:39 - 2020-10-08 14:39 - 099961624 _____ (Samsung Electronics Co., Ltd.) C:\Users\Frank\Downloads\SamsungDeXSetupWin.exe
2020-10-08 14:35 - 2020-10-08 14:35 - 000000000 ____D C:\WINDOWS\system32\Samsung
2020-10-08 13:10 - 2020-10-08 13:10 - 001627588 _____ C:\WINDOWS\Minidump\100820-8386031-01.dmp
2020-10-08 09:56 - 2020-10-08 09:56 - 000597901 _____ C:\Users\Frank\Downloads\63a59e2d-bcc8-4b15-993b-7c2136feff47.tmp
2020-10-08 08:52 - 2020-10-08 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-10-08 07:26 - 2020-10-08 07:26 - 001980148 _____ C:\WINDOWS\Minidump\100820-8503968-01.dmp
2020-10-07 06:33 - 2020-10-07 06:33 - 000242342 _____ C:\Users\Frank\Downloads\hold back the river chords (17).pdf
2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2020-10-06 20:43 - 2020-10-06 20:43 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2020-10-06 11:28 - 2020-10-06 11:28 - 000245167 _____ C:\Users\Frank\Downloads\hold back the river chords (16).pdf
2020-10-03 11:40 - 2020-10-03 11:40 - 000000000 ____D C:\Users\Frank\AppData\Roaming\Telekom
2020-10-03 10:01 - 2020-10-03 10:02 - 000000000 ____D C:\Users\Frank\Downloads\Deutsche Telekom Adressbuch(1)
2020-10-03 09:55 - 2020-10-03 09:58 - 000447779 _____ C:\Users\Frank\Downloads\Deutsche Telekom Adressbuch(1).zip
2020-10-03 09:50 - 2020-10-03 09:50 - 000002156 _____ C:\Users\Public\Desktop\Sync-Plus.lnk
2020-10-03 09:50 - 2020-10-03 09:50 - 000002156 _____ C:\ProgramData\Desktop\Sync-Plus.lnk
2020-10-03 09:50 - 2020-10-03 09:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Telekom
2020-10-03 09:50 - 2020-10-03 09:50 - 000000000 ____D C:\Program Files\Telekom
2020-10-03 09:40 - 2020-10-03 09:40 - 011445096 _____ (Deutsche Telekom AG) C:\Users\Frank\Downloads\sync-plus.exe
2020-10-02 11:51 - 2020-10-02 11:51 - 001388277 _____ C:\Users\Frank\Downloads\WhatsApp Unknown 2020-10-02 at 11.51.10.zip
2020-10-02 11:51 - 2020-10-02 11:51 - 000310887 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.02.jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000310258 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.02 (1).jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000309944 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.01.jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000234967 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.03 (1).jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000221383 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.03.jpeg
2020-09-28 15:19 - 2020-09-28 15:19 - 011746382 _____ C:\Users\Frank\Downloads\OneDrive-2020-09-28.zip
2020-09-28 10:35 - 2020-09-28 10:35 - 000000000 ____D C:\Users\Frank\Downloads\PageExpand
2020-09-28 08:57 - 2020-09-28 08:57 - 001054174 _____ C:\Users\Frank\Downloads\mpdf.pdf
2020-09-27 18:39 - 2020-09-27 18:40 - 034167462 _____ C:\Users\Frank\Downloads\Ganes - Ci morvöia - Listen on Online Radio Box~1.mp4
2020-09-27 18:39 - 2020-09-27 18:40 - 005274607 _____ C:\Users\Frank\Downloads\Ganes - Ci morvöia - Listen on Online Radio Box.webm
2020-09-27 18:38 - 2020-09-27 18:39 - 005265039 _____ C:\Users\Frank\Downloads\Ganes - Ci morvöia - Listen on Online Radio Box.mp4
2020-09-27 18:37 - 2020-09-27 18:37 - 001058995 _____ C:\Users\Frank\Downloads\Ganes-Ci Morvoia - Videos, Songs, Discography, Lyrics.mp4
2020-09-27 09:45 - 2020-09-27 09:45 - 001924365 _____ C:\Users\Frank\Downloads\WhatsApp Video 2020-09-18 at 16.49.35.mp4
2020-09-22 03:38 - 2020-09-22 03:38 - 000245167 _____ C:\Users\Frank\Downloads\hold back the river chords (15).pdf
2020-09-22 03:12 - 2020-09-22 03:12 - 001886548 _____ C:\WINDOWS\Minidump\092220-4227000-01.dmp
2020-09-22 03:11 - 2020-10-16 23:44 - 1582225526 ____N C:\WINDOWS\MEMORY.DMP
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-10-17 13:18 - 2015-04-08 05:26 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2020-10-17 13:16 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-17 13:04 - 2018-11-19 18:14 - 000000000 ____D C:\Users\Frank\AppData\Roaming\vlc
2020-10-17 12:50 - 2015-04-12 23:05 - 000000000 ____D C:\Users\Frank\AppData\Local\CrashDumps
2020-10-17 12:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-17 12:35 - 2017-04-06 08:47 - 000000000 ____D C:\Users\Frank\AppData\LocalLow\Mozilla
2020-10-17 12:35 - 2015-04-11 13:19 - 000000000 ____D C:\ProgramData\Temp
2020-10-17 12:35 - 2015-04-08 05:37 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-17 12:26 - 2015-09-13 09:10 - 000000000 ____D C:\Program Files (x86)\SpywareBlaster
2020-10-17 12:26 - 2009-07-14 05:20 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-10-17 12:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-10-17 12:25 - 2018-11-14 13:06 - 000001154 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk
2020-10-17 12:25 - 2018-11-14 13:06 - 000001154 _____ C:\ProgramData\Desktop\SpywareBlaster.lnk
2020-10-17 12:25 - 2015-09-13 09:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2020-10-17 12:02 - 2020-09-10 23:51 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-17 12:02 - 2020-09-10 23:51 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-17 11:54 - 2020-09-10 23:48 - 001886944 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-17 11:54 - 2019-12-07 16:51 - 000785726 _____ C:\WINDOWS\system32\perfh007.dat
2020-10-17 11:54 - 2019-12-07 16:51 - 000167840 _____ C:\WINDOWS\system32\perfc007.dat
2020-10-17 11:54 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-10-17 11:50 - 2015-09-08 17:30 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2020-10-17 11:49 - 2020-09-10 23:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-17 11:49 - 2020-09-10 23:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-17 11:49 - 2015-05-15 07:57 - 000000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2020-10-17 10:41 - 2020-02-02 17:34 - 000000000 ____D C:\Users\Frank\AppData\Local\Packages
2020-10-17 10:41 - 2015-04-07 20:27 - 000000000 ____D C:\ProgramData\Mozilla
2020-10-17 10:41 - 2015-04-07 20:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-10-17 09:58 - 2019-04-17 03:19 - 000000000 ____D C:\Users\Frank\AppData\LocalLow\t-online.de
2020-10-17 02:00 - 2015-04-09 14:33 - 000000000 ____D C:\Users\Frank\AppData\Local\Adobe
2020-10-16 23:46 - 2020-09-11 05:59 - 000000000 ____D C:\WINDOWS\Minidump
2020-10-16 23:44 - 2020-09-10 23:36 - 000000000 ____D C:\Users\Frank
2020-10-16 19:25 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-16 19:19 - 2015-09-08 08:13 - 000000000 ____D C:\ProgramData\HitmanPro.Alert
2020-10-16 19:16 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-10-16 19:16 - 2015-09-18 18:57 - 000000880 _____ C:\WINDOWS\system32\.crusader
2020-10-16 19:08 - 2015-04-16 20:21 - 000000000 ____D C:\ProgramData\HitmanPro
2020-10-16 18:30 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-16 18:30 - 2015-04-16 20:06 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-10-16 18:12 - 2020-02-02 18:31 - 000000000 ____D C:\Users\Frank\AppData\Local\PlaceholderTileLogoFolder
2020-10-16 17:27 - 2015-04-07 20:19 - 000000000 ____D C:\Users\Frank\AppData\Local\Downloaded Installations
2020-10-16 16:59 - 2016-06-05 09:25 - 000000000 ____D C:\Users\Frank\AppData\Local\Lenovo
2020-10-16 16:57 - 2015-04-16 19:49 - 000000000 ____D C:\AdwCleaner
2020-10-16 16:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-10-16 16:50 - 2017-02-18 23:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron (64-Bit)
2020-10-16 16:50 - 2017-02-18 23:17 - 000000000 ____D C:\Program Files\SRWare Iron (64-Bit)
2020-10-16 14:55 - 2020-07-15 13:37 - 000000374 _____ C:\Users\Frank\.vivaldi_reporting_data
2020-10-15 15:24 - 2015-04-20 19:32 - 000001456 _____ C:\Users\Frank\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2020-10-15 10:54 - 2017-03-09 08:37 - 000000000 ____D C:\Users\Frank\Desktop\Lebenslauf
2020-10-15 08:31 - 2017-04-06 11:48 - 000001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-10-14 23:23 - 2020-09-10 23:51 - 000003630 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-14 23:23 - 2020-09-10 23:51 - 000003506 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-14 09:53 - 2016-11-26 15:21 - 000000000 ____D C:\Users\Frank\Desktop\kontakte
2020-10-14 09:52 - 2020-05-25 12:36 - 000000000 ____D C:\Users\Frank\Desktop\ich
2020-10-14 02:37 - 2020-09-10 23:32 - 005461544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-10-14 00:22 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-10-14 00:22 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-10-13 22:49 - 2019-12-07 16:54 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-10-13 22:49 - 2019-12-07 16:54 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-10-13 22:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-13 22:39 - 2020-09-10 18:01 - 000000000 ___HD C:\$WinREAgent
2020-10-13 13:13 - 2018-08-19 17:34 - 000002222 _____ C:\Users\Frank\Desktop\Picture Control Utility 2.lnk
2020-10-13 13:13 - 2015-04-07 20:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2
2020-10-13 13:13 - 2015-04-07 20:19 - 000000000 ____D C:\Program Files\Nikon
2020-10-13 13:12 - 2018-08-19 17:36 - 000002162 _____ C:\Users\Public\Desktop\Capture NX-D.lnk
2020-10-13 13:12 - 2018-08-19 17:36 - 000002162 _____ C:\ProgramData\Desktop\Capture NX-D.lnk
2020-10-13 13:12 - 2018-08-19 17:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Capture NX-D
2020-10-13 13:12 - 2018-08-19 17:33 - 000002139 _____ C:\Users\Public\Desktop\ViewNX-i.lnk
2020-10-13 13:12 - 2018-08-19 17:33 - 000002139 _____ C:\ProgramData\Desktop\ViewNX-i.lnk
2020-10-13 13:12 - 2018-08-19 17:33 - 000002112 _____ C:\Users\Public\Desktop\Nikon Transfer 2.lnk
2020-10-13 13:12 - 2018-08-19 17:33 - 000002112 _____ C:\ProgramData\Desktop\Nikon Transfer 2.lnk
2020-10-13 13:12 - 2017-10-25 15:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX-i
2020-10-13 13:12 - 2015-04-07 20:19 - 000113784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ATL71.DLL
2020-10-13 13:12 - 2015-04-07 20:19 - 000000000 ____D C:\WINDOWS\Downloaded Installations
2020-10-13 13:12 - 2015-04-07 20:19 - 000000000 ____D C:\Program Files (x86)\Nikon
2020-10-13 12:14 - 2020-09-10 16:38 - 000000000 ____D C:\Users\Frank\AppData\Roaming\WhatsApp
2020-10-12 11:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-12 02:24 - 2017-12-20 16:46 - 000000000 ____D C:\Users\Frank\Desktop\Intel präsent
2020-10-10 21:39 - 2020-09-10 23:36 - 000002430 _____ C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-10-10 10:10 - 2020-04-03 12:50 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-10 10:10 - 2020-04-03 12:50 - 000002263 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-10 10:10 - 2020-04-03 12:50 - 000002263 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-10-09 08:41 - 2020-09-10 16:38 - 000000000 ____D C:\Users\Frank\AppData\Local\WhatsApp
2020-10-09 08:41 - 2020-04-17 19:23 - 000000000 ____D C:\Users\Frank\AppData\Local\SquirrelTemp
2020-10-08 19:07 - 2020-09-10 23:51 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-10-08 14:57 - 2020-02-02 17:34 - 000000000 ____D C:\Users\Frank\AppData\Local\Publishers
2020-10-08 14:57 - 2018-06-07 14:22 - 000000000 ____D C:\Users\Frank\AppData\Roaming\Samsung
2020-10-08 14:57 - 2018-06-07 14:19 - 000000000 ____D C:\ProgramData\Samsung
2020-10-08 14:57 - 2018-06-07 14:19 - 000000000 ____D C:\Program Files (x86)\Samsung
2020-10-08 14:56 - 2015-04-10 23:24 - 000000000 ____D C:\ProgramData\Package Cache
2020-10-08 08:53 - 2017-07-06 10:00 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-10-06 21:44 - 2020-05-14 16:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-10-06 21:44 - 2014-03-18 10:04 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-10-06 10:05 - 2020-09-16 05:42 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-03 02:33 - 2019-12-07 11:18 - 000835472 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-10-03 02:33 - 2019-12-07 11:18 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-27 08:14 - 2020-09-10 23:51 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-09-27 08:13 - 2018-11-16 13:22 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-09-20 09:01 - 2020-09-11 11:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-09-20 09:01 - 2016-04-24 09:47 - 000001215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2015-12-19 14:40 - 2016-06-23 11:04 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-BMP-Format - Voreinstellungen
2020-01-13 15:40 - 2020-01-13 15:42 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-GIF-Format - Voreinstellungen
2017-05-24 12:49 - 2017-05-24 12:49 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2020-05-31 13:38 - 2020-05-31 13:38 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-Targa-Format - Voreinstellungen
2019-05-07 18:58 - 2019-05-07 19:04 - 000038475 _____ () C:\Users\Frank\AppData\Roaming\Durch Trennzeichen getrennte Werte.ADR
2017-10-25 15:45 - 2017-10-25 15:45 - 000000268 ___RH () C:\Users\Frank\AppData\Roaming\Folder Actions Handlers
2017-10-25 15:45 - 2017-10-25 15:45 - 000000268 ___RH () C:\Users\Frank\AppData\Roaming\Fonts
2017-03-06 14:17 - 2017-03-06 14:22 - 000038432 _____ () C:\Users\Frank\AppData\Roaming\Kommagetrennte Werte (Windows).ADR
2016-07-05 09:16 - 2016-07-05 09:16 - 000038443 _____ () C:\Users\Frank\AppData\Roaming\Microsoft Excel 97-2003.ADR
2015-06-22 07:04 - 2015-06-22 07:04 - 000000268 ___RH () C:\Users\Frank\AppData\Roaming\NetServices
2017-01-22 14:55 - 2017-01-26 15:36 - 000003938 _____ () C:\Users\Frank\AppData\Roaming\PS13_panel.log
2015-04-17 17:29 - 2015-04-17 17:29 - 000000064 _____ () C:\Users\Frank\AppData\Roaming\Sandra.ldb
2015-04-11 00:06 - 2015-04-13 21:32 - 011624448 _____ () C:\Users\Frank\AppData\Roaming\Sandra.mdb
2016-11-26 15:12 - 2016-11-26 15:12 - 000038446 _____ () C:\Users\Frank\AppData\Roaming\Tabulatorgetrennte Werte (Windows).ADR
2017-08-05 05:14 - 2017-08-05 05:14 - 000000600 _____ () C:\Users\Frank\AppData\Roaming\winscp.rnd
2015-04-20 19:32 - 2020-10-15 15:24 - 000001456 _____ () C:\Users\Frank\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2015-06-01 18:43 - 2015-06-01 18:44 - 000001078 _____ () C:\Users\Frank\AppData\Local\b910beaedd16e666d75f0eba9db54ffc
2020-05-12 14:14 - 2020-05-12 14:14 - 000003584 _____ () C:\Users\Frank\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-09-28 12:38 - 2018-09-28 12:38 - 000000000 _____ () C:\Users\Frank\AppData\Local\oobelibMkey.log
2018-07-12 12:11 - 2018-07-12 12:11 - 050090848 _____ (Sony) C:\Users\Frank\AppData\Local\pcc.exe
2017-08-01 17:09 - 2018-01-27 00:21 - 000000600 _____ () C:\Users\Frank\AppData\Local\PUTTY.RND
2015-07-18 18:14 - 2019-05-04 18:18 - 000007597 _____ () C:\Users\Frank\AppData\Local\resmon.resmoncfg
2015-04-07 19:50 - 2015-04-07 19:50 - 000001524 _____ () C:\Users\Frank\AppData\Local\Temppihide_log1.log
2015-04-07 19:50 - 2015-04-07 19:50 - 000000000 _____ () C:\Users\Frank\AppData\Local\Temppihide_log2.log
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 14-10-2020
durchgeführt von Frank (17-10-2020 13:18:31)
Gestartet von C:\Users\Frank\Downloads
Windows 10 Pro Version 2004 19041.572 (X64) (2020-09-10 21:51:46)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2701594914-1762747753-790145204-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2701594914-1762747753-790145204-503 - Limited - Disabled)
Frank (S-1-5-21-2701594914-1762747753-790145204-1000 - Administrator - Enabled) => C:\Users\Frank
Gast (S-1-5-21-2701594914-1762747753-790145204-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2701594914-1762747753-790145204-1002 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-2701594914-1762747753-790145204-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: COMODO Antivirus (Enabled - Up to date) {9E3E06E3-F8E0-3C44-2336-BBD8AF8F84B8}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {0C515E80-E355-69BD-3445-A511E5C186FD}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: COMODO Antivirus (Enabled - Up to date) {08B84BA8-CC77-5A8B-A100-3F522B1B6106}
AS: Spybot - Search and Destroy (Disabled - Out of date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}
AS: COMODO Advanced Protection (Enabled - Up to date) {B730BF64-C56F-6633-0EF5-9E639E46CC40}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: COMODO Firewall (Enabled) {A60587C6-B28F-3D1C-0869-12ED515CC3C3}
FW: COMODO Firewall (Disabled) {3083CA8D-8618-5BD3-8A5F-9667D5C8267D}
FW: COMODO Firewall (Disabled) {346ADFA5-A93A-68E5-1F1A-0C241B12C186}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.16 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated)
Adobe CS6 Design and Web Premium (HKLM-x32\...\{402F6F2E-5683-491C-977D-0CA599A07CAF}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.344 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.303 - Adobe)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7.1 64-bit (HKLM\...\{BC86B82C-8C0E-4408-9AC1-6B0F2D636963}) (Version: 5.7.1 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe® Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 3.4.3 - Adobe Systems, Incorporated)
Agenda At Once 3.3.3 (HKLM-x32\...\Agenda At Once_is1) (Version: 3.3.3 - Dataland Software)
Android Data Recovery 1.0.7 (HKLM-x32\...\{BB02CCD7-1501-4901-B5EE-D1A1B3528B51}_is1) (Version: 1.0.7 - Aiseesoft Studio)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo Burning Studio Elements 10.0.9 (HKLM-x32\...\Ashampoo Burning Studio Elements_is1) (Version: 3.1.1 - Ashampoo GmbH & Co. KG)
Avidemux 2.7 - 64 bits (HKLM-x32\...\Avidemux 2.7 - 64 bits (64-bit)) (Version: 2.7.0.170814 - )
AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - )
Box Tools (HKLM-x32\...\{9880B9BC-A92A-4EBF-AEE8-E260C418C4A0}) (Version: 4.9.2.722 - Box)
BufferChm (HKLM-x32\...\{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}) (Version: 130.0.331.000 - Hewlett-Packard) Hidden
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.0 - Canon Inc.)
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version: - Canon Inc.)
Canon MG7100 series Benutzerregistrierung (HKLM-x32\...\Canon MG7100 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG7100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG7100_series) (Version: 1.01 - Canon Inc.)
Canon MG7100 series On-screen Manual (HKLM-x32\...\Canon MG7100 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Capture NX 2 (HKLM\...\Capture NX 2) (Version: 2.4.7 - NIKON CORPORATION)
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.6.3 - Nikon Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version: - )
CEWE FOTOWELT (HKLM-x32\...\CEWE FOTOWELT) (Version: 7.0.2 - CEWE Stiftung u Co. KGaA)
Cisco Webex Meetings (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\ActiveTouchMeetingClient) (Version: 40.2.4 - Cisco Webex LLC)
Collectorz.com MP3 Collector (HKLM-x32\...\Collectorz.com MP3 Collector) (Version: - )
Color Efex Pro 3.0 Complete (HKLM-x32\...\Color Efex Pro 3.0 Complete) (Version: 3.1.0.0 - Nik Software, Inc.)
COMODO Internet Security Premium (HKLM\...\{DAC390BA-1387-4DF8-A9BC-683E81E77E86}) (Version: 12.0.0.6818 - COMODO Security Solutions Inc.) Hidden
COMODO Internet Security Premium (HKLM\...\COMODO Internet Security) (Version: 12.0.0.6818 - COMODO Security Solutions Inc.)
Connect (HKLM-x32\...\MAGIX_connector_is1) (Version: 2.5.1.84 - MAGIX Software GmbH)
ConvertHelper 3.2 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version: - DownloadHelper)
CopyTrans Control Center nur deinstallieren (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\CopyTrans Suite) (Version: 4.100 - WindSolutions)
CrystalDiskInfo 8.4.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.4.0 - Crystal Dew World)
DeskUpdate (HKLM-x32\...\DeskUpdate_is1) (Version: 5.1.64.0 - Fujitsu Technology Solutions)
Digeus Registry Cleaner (HKLM-x32\...\{74BE9D31-AFEA-49D9-A78D-2379F1DB4785}) (Version: 5.5 - Digeus, Inc.)
Discord (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Discord) (Version: 0.0.306 - Discord Inc.)
Distortion Control Data (HKLM-x32\...\{B08B4896-886C-4644-8664-BBA4CE99D318}) (Version: 1.00.0000 - Nikon Corporation)
DocProc (HKLM-x32\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Driver Manager (HKLM-x32\...\{29E99E81-852C-4FA8-AC61-D57447ED2BCE}) (Version: 1.11.0075 - Fujitsu Technology Solutions)
Dropbox (HKLM-x32\...\Dropbox) (Version: 107.4.443 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.335.1 - Dropbox, Inc.) Hidden
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FileZilla Client 3.50.0 (HKLM-x32\...\FileZilla Client) (Version: 3.50.0 - Tim Kosse)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG)
FoneLab für Android 1.0.6 (HKLM-x32\...\{7A7ACBDD-FED6-4ec5-BD26-5549FEB5B968}_is1) (Version: 1.0.6 - Aiseesoft Studio)
FormatFactory 4.4.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.0.0 - Free Time)
Free Blu-ray Player 1.1.18 (HKLM-x32\...\{FFF6624F-BB23-479d-B99E-0394EAD7BC74}_is1) (Version: 1.1.18 - Blu-ray Master)
Free Download Manager (HKLM\...\{0C1D4CF2-5575-4786-834C-B0FC977E9714}}_is1) (Version: 6.9.0.2927 - Softdeluxe)
FVD Downloader Module (HKLM-x32\...\{A3F74A3C-6824-4878-AB46-21280389D09F}) (Version: 1.0.8 - Nimbus)
Gear IconX (HKLM-x32\...\Gear IconX) (Version: 2.0.170927.51 - Samsung Electronics Co, Ltd.)
GeekBuddy (HKLM-x32\...\{E21161DD-05A2-42ED-A0EC-9C1393F51A64}) (Version: 4.2.39 - Comodo Security Solutions Inc)
Gigaset QuickSync (HKLM\...\{192f673d-d310-4488-96da-4a4bfcd6ab2b}) (Version: 8.6.0875.1 - Gigaset Communications GmbH)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.3 - Google Inc.) Hidden
HitmanPro.Alert 3 (HKLM\...\HitmanPro.Alert) (Version: 3.8.6.875 - SurfRight B.V.)
HP Scanjet G3110 (HKLM\...\{9B4E2E01-D726-414F-947D-8CE4EC074EB6}) (Version: 13.0 - HP)
hpg3110 (HKLM-x32\...\{E5364E6E-3070-43F3-B9D6-9958A0A7F519}) (Version: 13.0.0.0 - Ihr Firmenname) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 20.4 - Intel)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.4.51 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{f2fa2583-cd6d-4da1-803c-2983cc6f7791}) (Version: 10.1.2.10 - Intel(R) Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
JRiver Media Center 25 (64-bit) (HKLM\...\Media Center 25 (64-bit)) (Version: 25 - JRiver, Inc.)
JRiver Media Center 26 (64-bit) (HKLM\...\Media Center 26 (64-bit)) (Version: 26 - JRiver, Inc.)
K-Lite Codec Pack 15.4.4 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.4.4 - KLCP)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
MAGIX 3D Maker (embeded) (HKLM-x32\...\MAGIX 3D Maker D) (Version: 6.0.0.8 - MAGIX AG)
MAGIX Cloud Import (HKLM\...\{F26F0643-45C1-4CCC-A98A-0F8B44A6E899}) (Version: 0.0.0.20 - MAGIX Software GmbH) Hidden
MAGIX Cloud Import (HKLM\...\MX.{F26F0643-45C1-4CCC-A98A-0F8B44A6E899}) (Version: 0.0.0.20 - MAGIX Software GmbH)
MAGIX Foto Manager 8 6.0.1.457 (D) (HKLM-x32\...\MAGIX Foto Manager 8 D) (Version: 6.0.1.457 - MAGIX AG)
MAGIX Fotobuch 3.6 (HKLM-x32\...\MAGIX Fotobuch) (Version: 3.6 - MAGIX AG)
MAGIX Network Sync (HKLM\...\{46659432-E58E-4BF9-829B-E10976DBC1B7}) (Version: 0.0.0.34 - MAGIX Software GmbH) Hidden
MAGIX Network Sync (HKLM\...\MX.{46659432-E58E-4BF9-829B-E10976DBC1B7}) (Version: 0.0.0.34 - MAGIX Software GmbH)
MAGIX Online Druck Service 3.4.3.0 (D) (HKLM-x32\...\MAGIX Online Druck Service D) (Version: 3.4.3.0 - MAGIX AG)
MAGIX Screenshare (HKLM-x32\...\{B8D0804A-F451-441F-BF3E-E46DF7FAFB87}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Screenshare 4.3.6.1987 (D) (HKLM-x32\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (HKLM\...\{D2A73D5E-6A37-4B08-B6CE-09E8E80A8A2B}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM-x32\...\MX.{D2A73D5E-6A37-4B08-B6CE-09E8E80A8A2B}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Video deluxe (HKLM\...\{BDFB8EA8-AAF0-4F1F-B103-B49DF20B64F3}) (Version: 16.0.3.66 - MAGIX Software GmbH) Hidden
MAGIX Video deluxe (HKLM\...\MX.{BDFB8EA8-AAF0-4F1F-B103-B49DF20B64F3}) (Version: 16.0.3.66 - MAGIX Software GmbH)
MAGIX Video deluxe 15 Premium Sonderedition 8.5.0.28 (D) (HKLM-x32\...\MAGIX Video deluxe 15 Premium Sonderedition D) (Version: 8.5.0.28 - MAGIX AG)
MAGIX Video deluxe 2015 Premium (HKLM\...\{D23C4A4D-F83B-4B7E-B72A-91C41A04833E}) (Version: 14.0.0.140 - MAGIX Software GmbH) Hidden
MAGIX Video deluxe 2015 Premium (HKLM\...\MX.{D23C4A4D-F83B-4B7E-B72A-91C41A04833E}) (Version: 14.0.0.140 - MAGIX Software GmbH)
MAGIX Video deluxe MX Premium (HKLM-x32\...\{D982FFA1-51C2-4187-8EED-563F718536A3}) (Version: 11.0.0.42 - MAGIX AG) Hidden
MAGIX Video deluxe MX Premium (HKLM-x32\...\MAGIX_MSI_Videodeluxe18_premium) (Version: 11.0.0.42 - MAGIX AG)
MAGIX Video deluxe Update (HKLM\...\{DF2CCFB6-908E-436A-866B-F1C32E98A0C4}) (Version: 16.0.4.119 - MAGIX Software GmbH) Hidden
MAGIX Xtreme Foto Designer 6 6.0.27.0 (D) (HKLM-x32\...\MAGIX Xtreme Foto Designer 6 D) (Version: 6.0.27.0 - MAGIX AG)
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Media Go (HKLM-x32\...\{60CDD65B-61AD-4BE4-BEA8-BB2D15534D4B}) (Version: 3.2.191 - Sony)
Media Go Video Playback Engine 2.20.104.05220 (HKLM-x32\...\{78D4C553-4B41-97A5-22B4-2F446987B724}) (Version: 2.20.104.05220 - Sony)
MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)
Mein CEWE FOTOBUCH (HKLM-x32\...\Mein CEWE FOTOBUCH) (Version: 6.3.4 - CEWE Stiftung u Co. KGaA)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.13231.20262 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.38 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.49 - )
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0407-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\OneDriveSetup.exe) (Version: 20.169.0823.0006 - Microsoft Corporation)
Microsoft Support- und Wiederherstellungs-Assistent für Office 365 (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\dacae1bed46e81d5) (Version: 16.0.2514.4 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Teams) (Version: 1.3.00.12058 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27033 (HKLM-x32\...\{cc3a7c63-31fb-4129-9024-63ebefd86a95}) (Version: 14.16.27033.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60825 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.60825 - Microsoft Corporation)
Mozilla Firefox 81.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 81.0.2 (x64 en-US)) (Version: 81.0.2 - Mozilla)
Mozilla Thunderbird 68.12.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 68.12.0 (x86 de)) (Version: 68.12.0 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Mufin MusicFinder Base 1.5.3.255 (D) (HKLM-x32\...\Mufin MusicFinder Base D) (Version: 1.5.3.255 - MAGIX AG)
Music Center (HKLM-x32\...\{75858C2F-423A-47B7-ADD5-81D86530F7AF}) (Version: 1.0.0.08241 - Sony Video & Sound Products Inc.)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.20.0 - NEC Electronics Corporation) Hidden
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.20.0 - NEC Electronics Corporation)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.31.0 - Nikon Corporation)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.4.1 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{757DBE04-3DC8-4741-B10B-4628745E96FE}) (Version: 2.13.6 - Nikon Corporation)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA nView 147.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 147.00 - NVIDIA Corporation)
NVIDIA WMI 2.25.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.25.0 - NVIDIA Corporation)
O&O DiskRecovery (HKLM\...\{D09A1F86-470B-48AE-AAD0-E229A25B3F11}) (Version: 10.0.117 - O&O Software GmbH)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Ontrack EasyRecovery Professional (HKLM-x32\...\{668CC71A-C2AD-4D56-866D-CF300BD1D5BE}_is1) (Version: 11.1.0.0 - Kroll Ontrack Inc.)
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Oracle VM VirtualBox 5.1.26 (HKLM\...\{11A88BD5-F059-4743-81D9-1432AC9C3D4E}) (Version: 5.1.26 - Oracle Corporation)
pCloud Drive (HKLM-x32\...\{C3C0052D-E704-4261-91D5-AEAE31F70EFF}) (Version: 3.8.0.0 - pCloud AG) Hidden
pCloud Drive (HKLM-x32\...\{e30b668e-667b-451c-8072-85674a7ddc54}) (Version: 3.8.0.0 - pCloud AG)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Picture Control Utility 2 (HKLM\...\{C03DA72C-DE1F-4628-9CA0-53AFAE96C05F}) (Version: 2.4.6 - Nikon Corporation)
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.5.1 - Nikon)
Pixum Fotowelt (HKLM-x32\...\Pixum Fotowelt) (Version: 6.4.7 - CEWE Stiftung u Co. KGaA)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7606 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.20.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.20.0 - Renesas Electronics Corporation)
Saal Design Software (HKLM-x32\...\{26B842A7-6A09-5DCF-0805-2B8984C1EA84}) (Version: 4.0 - Saal Digital Fotoservice GmbH) Hidden
Saal Design Software (HKLM-x32\...\SaalDesignSoftware) (Version: 4.0 - Saal Digital Fotoservice GmbH)
Samsung DeX (HKLM-x32\...\{5E2BEDEC-EEE1-49B7-A9D0-6971AFA9B5F2}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{bc458b5f-1945-4287-8fae-353650fd3109}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
Scan (HKLM-x32\...\{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Security Task Manager 2.3d (HKLM-x32\...\Security Task Manager) (Version: 2.3d - Neuber Software)
Shotcut (HKLM-x32\...\Shotcut) (Version: 19.12.31 - Meltytech, LLC)
Silver Efex Pro (HKLM-x32\...\Silver Efex Pro) (Version: 1.001 - Nik Software, Inc.)
SILVER projects professional (64-Bit) (HKLM\...\SILVER_PROJECTS_1_3_28B15F1D_is1) (Version: 1.14 - Franzis Verlag GmbH)
SiSoftware Sandra Lite 2012.SP5c (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 18.74.2012.10 - SiSoftware)
Skype Version 8.59 (HKLM-x32\...\Skype_is1) (Version: 8.59 - Skype Technologies S.A.)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.16.15.201610281456 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Spotify (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Spotify) (Version: 1.0.90.268.ga8a0ceb4 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
Spyder4Pro (HKLM-x32\...\Spyder4Pro) (Version: - )
SpyderPRINT (HKLM-x32\...\SpyderPRINT) (Version: - )
SpywareBlaster 6.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 6.0.0 - BrightFort LLC)
SRWare Iron (64-Bit) Version 85.0.4350.0 (HKLM\...\{BA85A29D-B48E-4826-BAEE-817024E52E29}_is1) (Version: 85.0.4350.0 - SRWare)
SyncBackPro x64 (HKLM-x32\...\SyncBackPro64_is1_is1) (Version: 8.9.15.0 - 2BrightSparks)
Sync-Plus (HKLM\...\Sync-Plus) (Version: 2.0.23.0 - Deutsche Telekom AG)
Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: - )
Synology Cloud Station Drive (HKLM-x32\...\{1654A7C6-25A5-4BED-AABE-8A03E6BD3986}) (Version: 4.0.4203 - Synology)
Synology Photo Station Uploader (remove only) (HKLM-x32\...\Photo Station Uploader) (Version: 1.4.0.080 - Synology)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
t-online.de Browser 7 77.0.210 (x86 de) (HKLM-x32\...\t-online.de Browser 7 77.0.210 (x86 de)) (Version: 77.0.210 - t-online.de)
t-online.de Browser 7 Maintenance Service (HKLM\...\tonlinedeBrowser7MaintenanceService) (Version: 77.0.1.7472 - t-online.de)
TreeSize Free V4.1.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.1.1 - JAM Software)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VideoDownloaderUltimate (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\VideoDownloaderUltimateWinApp) (Version: 1.0.1.151 - Link64)
ViewNX-i (HKLM\...\{C02E1F40-7EB2-4084-991B-EBFC7F586E26}) (Version: 1.4.3 - Nikon Corporation)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
Vivaldi (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Vivaldi) (Version: 3.2.1967.47 - Vivaldi Technologies AS.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WebReg (HKLM-x32\...\{43CDF946-F5D9-4292-B006-BA0D92013021}) (Version: 130.0.132.017 - Hewlett-Packard) Hidden
WhatsApp (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\WhatsApp) (Version: 2.2041.6 - WhatsApp)
Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)
WinSCP 5.9.6 (HKLM-x32\...\winscp3_is1) (Version: 5.9.6 - Martin Prikryl)
Wondershare Dr.Fone for Android(Build 5.2.0.24) (HKLM-x32\...\{1DB91A95-C548-4BA5-9D4C-18C7DEAAC39F}_is1) (Version: 5.2.0.24 - Wondershare Software Co.,Ltd.)
Wondershare Flash Gallery Factory Deluxe 5.2.0.14 (HKLM-x32\...\Wondershare Flash Gallery Factory Deluxe_is1) (Version: 5.2.0.14 - Wondershare Software Co.,Ltd.)
WorldsPlayer (HKLM-x32\...\{27BF5556-A718-42FF-BDF9-9EBF4EFCDF10}) (Version: 1.19.20.01 - Worlds.com)
Xperia Companion (HKLM-x32\...\{5b7c1b25-5fb6-442c-a1b5-cb8dfc2267bf}) (Version: 2.8.3.0 - Sony)
Xperia Companion (HKLM-x32\...\{66EABD35-6233-4926-9AB1-AB31CC6BC7D9}) (Version: 2.8.3.0 - Sony) Hidden
Xperia Companion Service (HKLM\...\{E41065E8-67E2-448F-940C-FF9D7C51E4E3}) (Version: 2.8.3.0 - Sony) Hidden
Zoom (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-03-06] (Canon Inc.)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-10-08] (Microsoft Corporation)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-18] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-02] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.9220.0_x64__8wekyb3d8bbwe [2020-10-06] (Microsoft Studios) [MS Ad]
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_3.1.9160.0_x86__8wekyb3d8bbwe [2020-10-06] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-21] (Microsoft Studios) [MS Ad]
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.8.904.0_x64__8wekyb3d8bbwe [2020-10-06] (Microsoft Studios) [MS Ad]
MPEG-2-Videoerweiterung -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-04-20] (Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{1019ADC7-17CB-4489-AFD5-6642C7400ACE}\localserver32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptOIEx64.exe (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Frank\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll () [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{AEECE333-8900-4915-9697-7A0B4034B3D8}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptWbxMS64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{BA58190A-A733-4982-8AE2-E2021F0DD503}\localserver32 -> C:\Users\Frank\AppData\Local\Box\Box Local Com Server\Box.Tools.ActiveX.exe (Box, Inc. -> Box, Inc.)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{BAEE998A-9C95-4966-8E52-DBCA67D8482A}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptoiEnt64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\Frank\AppData\Local\Vivaldi\Application\3.2.1967.47\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{C3741FD4-FABE-4C36-88E7-40C0C09FCE8D}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptWbxMS64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Frank\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{E8D0CE8D-BC70-4025-978F-E86068362730}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptusredt64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{EA47D2DE-76CC-4138-97FF-A62F9D28A341}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptolkadd64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{F6E0DEDD-F6D5-4195-BE2D-AB628A0BBDF4}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptWbxMS64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
SSODL: EldosMountNotificator-cbfs6 - {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} - C:\Windows\system32\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
SSODL-x32: EldosMountNotificator-cbfs6 - {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} - C:\Windows\SysWOW64\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects: Virtual Storage Mount Notification -> {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} => C:\Windows\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} => C:\Windows\SysWOW64\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers: [ pCloudINPROGRESS] -> {D8BFAFBD-B670-4252-9C17-9CF1C64C2BAF} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2017-10-23] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ pCloudINSYNC] -> {8D0C0582-552A-4A6B-9455-DA63E1F329C0} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2017-10-23] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ pCloudNOSYNC] -> {3858ED1B-8F1C-42ED-A8A9-FDBF591E3C6B} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2017-10-23] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs6] -> {B49B3EC8-1E58-44D2-980A-CAC87EE47F95} => C:\Windows\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers: [HitmanPro.Alert Shell Extension] -> {6FAC02B7-77D6-418B-AC11-962C65CDE8DD} => C:\WINDOWS\system32\hmpshell.dll [2020-10-16] (SurfRight B.V. -> SurfRight B.V.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs6] -> {B49B3EC8-1E58-44D2-980A-CAC87EE47F95} => C:\Windows\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers1: [ContextMenuExtension] -> {a0b73fac-351f-3948-9d8a-1dad9d870193} => C:\Program Files (x86)\pCloud Drive\ContextMenuHandler.DLL [2019-01-22] (pCloud AG) [Datei ist nicht signiert] [Datei wird verwendet]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [ContextMenuExtension] -> {a0b73fac-351f-3948-9d8a-1dad9d870193} => C:\Program Files (x86)\pCloud Drive\ContextMenuHandler.DLL [2019-01-22] (pCloud AG) [Datei ist nicht signiert] [Datei wird verwendet]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2016-02-09] (NVIDIA Corporation -> )
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Keine Datei
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1_S-1-5-21-2701594914-1762747753-790145204-1000: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll [2016-04-17] () [Datei ist nicht signiert]
ContextMenuHandlers6_S-1-5-21-2701594914-1762747753-790145204-1000: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll [2016-04-17] () [Datei ist nicht signiert]
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Frank\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b6007676f3e7a2a3\Chromium.lnk -> C:\Program Files\SRWare Iron (64-Bit)\chrome.exe (SRWare) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Frank\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\3373c9ebc3a5e445\Chromium.lnk -> C:\Program Files (x86)\SRWare Iron\chrome.exe (SRWare) -> --profile-directory=Default
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2016-07-07 10:57 - 2016-07-07 10:57 - 000035328 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Synology\Photo Station Uploader\ShellExtHandler.dll
2016-04-17 09:29 - 2016-04-17 09:29 - 001249280 _____ () [Datei ist nicht signiert] C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll
2015-09-24 17:41 - 2015-09-24 17:41 - 000336384 _____ (Adobe Systems Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Locale\de_DE\Acrobat Elements\ContextMenu64.deu
2017-08-23 15:00 - 2013-01-24 16:24 - 000359936 _____ (CANON INC.) [Datei ist nicht signiert] C:\WINDOWS\System32\CNMN6PPM.DLL
2016-08-12 10:31 - 2016-08-12 10:31 - 000794112 _____ (Gigaset Communications GmbH) [Datei ist nicht signiert] C:\WINDOWS\System32\GQSTSP.tsp
2017-10-23 17:28 - 2017-10-23 17:28 - 000342016 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll
2016-04-17 09:29 - 2016-04-17 09:29 - 002768384 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Windows:nlsPreferences [0]
AlternateDataStreams: C:\ProgramData\Temp:014E691E [132]
AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [136]
AlternateDataStreams: C:\Users\Frank\Desktop\FRommel_IPW 2015 vers 0 5.odt:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.de
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.spiegel.de
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> {352101B5-771D-43BF-A499-4B9FE74C37CE} URL =
SearchScopes: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = hxxp://de.search_path.yahoo.com/search_path?p={searchTerms}&fr=chr-comodo&type=33090001005_12.0.0.6818_i_ds
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_261\bin\ssv.dll [2020-10-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-10-16] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> Kein Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Keine Datei
IE Session Restore: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> ist aktiviert.
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\1-2005-search.com -> www.1-2005-search.com
Da befinden sich 12681 mehr Seiten.
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2020-05-08 17:00 - 000450761 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com
Da befinden sich 15465 zusätzliche Einträge.
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\QuickTime\QTSystem\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Frank\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\dsc_0098 (2).jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei)
ist deaktiviert.
Network Binding:
=============
WLAN: COMODO Internet Security Firewall Driver -> inspect (enabled)
LAN-Verbindung: COMODO Internet Security Firewall Driver -> inspect (enabled)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
MSCONFIG\startupfolder: C:^Users^Frank^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^startup^Synology Cloud Station.lnk => C:\Windows\pss\Synology Cloud Station.lnk.Startup
MSCONFIG\startupreg: AgendaAtOnce => "C:\Program Files (x86)\Agenda At Once\AgendaAtOnce.exe" /m
MSCONFIG\startupreg: pCloud => C:\Program Files (x86)\pCloud Drive\pCloud.exe
MSCONFIG\startupreg: RemoteControl11 => C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Box Edit"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Box Local Com Server"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "XperiaCompanionAgent"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Snap Camera"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Discord"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{9DBF3213-1B22-4581-907D-221768401E0A}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)
FirewallRules: [{31F2426C-08BF-4C12-BD6D-9F21043EA5C9}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)
FirewallRules: [{3D9B8C23-B28C-4275-B029-4A5A8D42B8C2}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)
FirewallRules: [{CC14F6DB-8425-4ADD-9181-1B241F9C3CAA}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{CE9F8902-2B51-42CA-95F3-A4B19D0E76B0}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{67F18940-94CF-4628-A3E4-6BBA56C1F532}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{0FA3DFEC-87AF-41FC-BE7B-413DDDF0BEFC}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{309321EF-913E-4F7A-9EC0-B3EDC6E652E9}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{05F262D5-E611-4501-AA35-93B7D5348BBE}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{C9DB6157-7610-4486-9BB3-124893CACDA6}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{97907340-EA68-437C-A225-90FFFEB124C7}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [{80370979-9C52-4EFA-B9AE-D8D79256196E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{85CDB2E8-AB25-48D9-9681-2F3D9EAB7B70}] => (Allow) C:\Program Files\MAGIX\Video deluxe 2015 Premium\Videodeluxe.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{0FD1BF49-83A6-4219-8E2A-7AD18580F5CE}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\RpcAgentSrv.exe (SiSoftware Ltd -> SiSoftware) [Datei ist nicht signiert]
FirewallRules: [{1A7C4581-D70F-4C39-AB17-EF118F04B3B0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett-Packard) [Datei ist nicht signiert]
FirewallRules: [{8FD237D3-C5D7-4D55-9CE3-C1CB5D56D163}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe () [Datei ist nicht signiert]
FirewallRules: [{E99CE37F-52FE-4DC0-9BC9-9EC8EFF0547E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett-Packard) [Datei ist nicht signiert]
FirewallRules: [{B9C56C69-B927-4510-AD15-6B86BAF433B3}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\WNt500x64\RpcSandraSrv.exe (SiSoftware Ltd -> SiSoftware) [Datei ist nicht signiert]
FirewallRules: [{40DD64AA-B574-40C5-B69E-E5E846ED8821}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe => Keine Datei
FirewallRules: [{BF73C3F8-5B22-46DF-91E0-BE404CFC630B}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{71F34C44-D8D0-4B84-BC51-0C3CC3B8164F}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{6C1F6D39-ECAB-4882-A9A2-A8AE652DA21F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8D9AB729-5FB1-4184-AC75-AEF1C8FC82E8}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{4437F1BD-D364-4D99-B9AF-719191954122}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{AE0A1187-FC68-4592-B9A9-A50CF53C68EB}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{1AD55AD4-62B4-402B-A160-47B965ACC3AF}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{7A93E2BD-9B48-4719-993F-5846381DA9D5}] => (Allow) C:\Program Files (x86)\t-online.de\Browser 7\Browser7.exe (Ströer Digital Publishing GmbH -> t-online.de -OFFICIAL)
FirewallRules: [{B077E472-B0D2-4844-80EA-1649BB698DC1}] => (Allow) C:\Program Files (x86)\t-online.de\Browser 7\Browser7.exe (Ströer Digital Publishing GmbH -> t-online.de -OFFICIAL)
FirewallRules: [{AA1C2C9F-C37C-4584-9BBD-6CA2BF44321A}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{5CF5BBE8-3CF0-4B1F-89AD-DC9380BE0FA0}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{ACD0A73E-2C59-4E92-AE36-631F3F75688B}] => (Allow) C:\Program Files\Common Files\MAGIX Services\MxCloudSync\MxCloudSync.exe (MAGIX Software GmbH -> Magix)
FirewallRules: [{59B1816B-6D39-4B4E-99E8-89C03799E03A}] => (Allow) C:\Program Files\Common Files\MAGIX Services\QMxNetworkSync\QMxNetworkSync.exe (MAGIX Software GmbH -> MAGIX)
FirewallRules: [{CEC347BE-7112-455A-A2BE-7D6100B1C5A8}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{16987639-2BE3-43D1-9FED-080524F11DD4}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{76AB137D-37D7-4E03-ADCA-80A5B5F613DE}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{3810BF41-C260-4279-B0B5-A8F06CC3298E}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{A3E82058-DC6D-49D7-BC90-BF5200F7E39E}] => (Allow) C:\Program Files\MAGIX\Video deluxe\2017\Videodeluxe.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{1A8C7473-70BB-4FC4-AEB4-95E5719F8F78}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{BF300CAF-85E8-48FB-B26D-052263C7E9AD}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{81A320C0-AA99-4335-9292-52856B9ECDBE}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{E8A08659-A013-4DBC-821E-D226BBC2E024}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{ADB2FA65-A538-412F-A704-9E39F34296E8}] => (Allow) C:\Program Files\Telekom\Sync-Plus\Sync-Plus.exe => Keine Datei
FirewallRules: [{4D3CABB9-7075-43E6-872C-239D1682E37C}] => (Allow) C:\Program Files (x86)\pCloud Drive\pCloud.exe (pCloud AG -> pCloud AG)
FirewallRules: [{72541125-26AA-4FB5-A5AA-A04969C3DDB8}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [{EA43B792-8BAB-4C1A-8596-3E2072EBB162}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99FBDE45-2570-4B9F-BB1F-76DA72A99390}] => (Allow) C:\Program Files\Telekom\Sync-Plus\Sync-Plus.exe => Keine Datei
FirewallRules: [{8D6C40D2-D70E-42B1-9B87-D899DB62C62D}] => (Allow) C:\Program Files\Telekom\Sync-Plus\Sync-Plus.exe => Keine Datei
FirewallRules: [{4C2FD22E-F996-4F8A-878A-D0E74D3477D6}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Wiederherstellungspunkte =========================
16-10-2020 16:58:47 AdwCleaner_BeforeCleaning_16/10/2020_16:58:43
16-10-2020 18:05:43 Wiederherstellungsvorgang
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Intel(R) Management Engine Interface
Description: Intel(R) Management Engine Interface
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: MEIx64
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Unbekanntes USB-Gerät (Link in Kompatibilitätsmodus)
Description: Unbekanntes USB-Gerät (Link in Kompatibilitätsmodus)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (10/17/2020 12:50:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 10.0.19041.546, Zeitstempel: 0x89ce2e55
Name des fehlerhaften Moduls: SHELL32.dll, Version: 10.0.19041.572, Zeitstempel: 0x783ea12c
Ausnahmecode: 0xc000041d
Fehleroffset: 0x000000000003ce8c
ID des fehlerhaften Prozesses: 0x1bec
Startzeit der fehlerhaften Anwendung: 0x01d6a46ae7da12d4
Pfad der fehlerhaften Anwendung: C:\WINDOWS\Explorer.EXE
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\SHELL32.dll
Berichtskennung: 77be3d1d-7922-4706-9365-00ef92acc729
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/17/2020 12:50:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 10.0.19041.546, Zeitstempel: 0x89ce2e55
Name des fehlerhaften Moduls: SHELL32.dll, Version: 10.0.19041.572, Zeitstempel: 0x783ea12c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003ce8c
ID des fehlerhaften Prozesses: 0x1bec
Startzeit der fehlerhaften Anwendung: 0x01d6a46ae7da12d4
Pfad der fehlerhaften Anwendung: C:\WINDOWS\Explorer.EXE
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\SHELL32.dll
Berichtskennung: d432e6d6-fab6-4299-9723-5a26aed5deef
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/17/2020 12:50:25 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Explorer.EXE
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: Ausnahmecode c0000005, Ausnahmeadresse 00007FFD684CCE8C
Stapel:
Error: (10/17/2020 12:46:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: cavwp.exe, Version: 12.0.0.6818, Zeitstempel: 0x5cb5ac74
Name des fehlerhaften Moduls: cavwp.exe, Version: 12.0.0.6818, Zeitstempel: 0x5cb5ac74
Ausnahmecode: 0xc0000409
Fehleroffset: 0x0000000000051e84
ID des fehlerhaften Prozesses: 0x8ec
Startzeit der fehlerhaften Anwendung: 0x01d6a46c32abe680
Pfad der fehlerhaften Anwendung: C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
Pfad des fehlerhaften Moduls: C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
Berichtskennung: 28a8b842-493c-40eb-b2f8-1008e3ce9294
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/17/2020 11:51:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SyncPlus.exe, Version: 2.0.23.0, Zeitstempel: 0x5e4a5d52
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.19041.572, Zeitstempel: 0x979ddb1d
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00129ab2
ID des fehlerhaften Prozesses: 0x2d04
Startzeit der fehlerhaften Anwendung: 0x01d6a46b083d48cd
Pfad der fehlerhaften Anwendung: C:\Program Files\Telekom\Sync-Plus\x86\SyncPlus.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll
Berichtskennung: 2be4b7eb-c201-4cef-b134-8d3154e6b4bd
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/17/2020 11:51:08 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: SyncPlus.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.Xml.XmlException
bei System.Xml.XmlTextReaderImpl.Throw(System.Exception)
bei System.Xml.XmlTextReaderImpl.Throw(System.String, System.String[])
bei System.Xml.XmlTextReaderImpl.ThrowInvalidChar(Char[], Int32, Int32)
bei System.Xml.XmlTextReaderImpl.ParseRootLevelWhitespace()
bei System.Xml.XmlTextReaderImpl.ParseDocumentContent()
bei System.Xml.XmlTextReaderImpl.Read()
bei System.Xml.XmlReader.MoveToContent()
bei System.Xml.Linq.XElement.Load(System.Xml.XmlReader, System.Xml.Linq.LoadOptions)
bei System.Xml.Linq.XElement.Load(System.String, System.Xml.Linq.LoadOptions)
bei SyncPlus.Configuration.ConfigurationStore.Load()
bei SyncPlus.Configuration.ConfigurationManager.GetConfiguration()
bei SyncPlus.Configuration.ConfigurationManager.get_CalendarSyncEnabled()
bei SyncPlus.Ui.SettingsWindow.AdjustApplyButton()
bei SyncPlus.Ui.TrayGui..ctor()
bei SyncPlus.Ui.TrayGui.Main()
Error: (10/17/2020 11:50:26 AM) (Source: CertEnroll) (EventID: 87) (User: NT-AUTORITÄT)
Description: Fehler bei der SCEP-Zertifikatregistrierung für WORKGROUP\FRANK-CELSIUS$ über https://IFX-KeyId-8ffd47880e239a3a3a20de13edf101e882a9d21d.microsoftaik.azure.net/templates/Aik/scep:
SubmitDone
Submit(Request): Bad Request
{"Message":"Attestation statement cannot be verified, rejecting request. TPM firmware needs update."}
HTTP/1.1 400 Bad Request
Date: Sat, 17 Oct 2020 09:50:26 GMT
Content-Length: 101
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: c0b32edd-aac0-47dd-b101-329a6ce771b6
Methode: POST(4562ms)
Phase: SubmitDone
Ungültige Anforderung (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST)
Error: (10/17/2020 09:19:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbamtray.exe, Version: 4.0.0.814, Zeitstempel: 0x5f7e3e2e
Name des fehlerhaften Moduls: Qt5Core.dll, Version: 5.14.1.0, Zeitstempel: 0x5e8272e4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000219d05
ID des fehlerhaften Prozesses: 0x20f8
Startzeit der fehlerhaften Anwendung: 0x01d6a4059746a85d
Pfad der fehlerhaften Anwendung: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Pfad des fehlerhaften Moduls: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
Berichtskennung: 7afbaaa0-548b-45fe-be86-9c1cfd53e0da
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Systemfehler:
=============
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "DbxSvc" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Message Queuing" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Adobe Genuine Software Integrity Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Spybot-S&D 2 Security Center Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Windows Defender:
===================================
Date: 2020-10-08 07:26:09.1190000Z
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.321.1860.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.17300.4
Fehlercode: 0x80240017
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
CodeIntegrity:
===================================
Date: 2020-10-17 13:16:00.2450000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 13:15:58.5790000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 13:00:59.9510000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 12:53:30.0470000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 12:53:29.9320000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 12:48:40.4990000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 12:47:08.9940000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 12:35:44.9070000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Speicherinformationen ===========================
BIOS: FUJITSU // American Megatrends Inc. V5.0.0.9 R1.15.0 for D3348-A1x 07/29/2019
Hauptplatine: FUJITSU D3348-A1
Prozessor: Intel(R) Xeon(R) CPU E5-1620 v3 @ 3.50GHz
Prozentuale Nutzung des RAM: 45%
Installierter physikalischer RAM: 16300.09 MB
Verfügbarer physikalischer RAM: 8846.26 MB
Summe virtueller Speicher: 65452.09 MB
Verfügbarer virtueller Speicher: 55706.74 MB
==================== Laufwerke ================================
Drive c: (System) (Fixed) (Total:463.37 GB) (Free:180.02 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive e: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: () (Fixed) (Total:1862.92 GB) (Free:1052.69 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive y: (MultiMedia) (Fixed) (Total:5588.9 GB) (Free:1684.73 GB) NTFS
Drive z: (Fotos) (Fixed) (Total:5588.9 GB) (Free:1278.47 GB) NTFS
\\?\Volume{2c4804a4-d7d0-11e4-aab2-806e6f6e6963}\ (WINRE) (Fixed) (Total:2 GB) (Free:0.76 GB) NTFS
\\?\Volume{2c4804a6-d7d0-11e4-aab2-806e6f6e6963}\ (HDBR_OS) (Fixed) (Total:7.47 GB) (Free:0.31 GB) NTFS
\\?\Volume{2c4804a7-d7d0-11e4-aab2-806e6f6e6963}\ (HDBR_DRIVER) (Fixed) (Total:4.09 GB) (Free:0.17 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 5589 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 5589 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: ED4C5177)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 212CA17E)
Partition 1: (Active) - (Size=2 GB) - (Type=27)
Partition 2: (Not Active) - (Size=474.9 GB) - (Type=0F Extended)
==================== Ende von Addition.txt =======================
Geändert von cosinus (17.10.2020 um 13:20 Uhr) Grund: code tags korrigiert |
|
17.10.2020, 13:26
| #4 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1)Zitat:
 Lesestoff:Gewerblich genutzte Systeme Grundsätzlich bereinigen wir keine gewerblich genutzten Rechner. Dafür ist die IT-Abteilung eurer Firma zuständig. Bei Kleinunternehmen, welche keinen eigenen IT Support haben, machen wir da eine Ausnahme und helfen gerne (kleine Spende hilft auch uns). Voraussetzung: Ihr teilt uns dies in eurer ersten Antwort mit. Bedenkt jedoch, dass Logfiles viele heikle Informationen enthalten können (Kundendaten, Bankdaten, etc.) sowie das Malware genauso wie unsere Scanner die Möglichkeit besitzt, diese auszuspähen und zu missbrauchen. Hier legen wir euch ein Formatieren und Neuaufsetzen nahe. Hier gilt insbesondere, dass wir im Nachhinein keine Logfiles löschen werden, egal wie sehr "euer Chef das auch will".
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
17.10.2020, 14:34
| #5 |
| | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) Das ist eine rein privat genutzte Workstation, die ich mir für mein Hobby Fotografie gegönnt habe. Und die Adobe Suite habe ich tatsächlich bei einem Wettbewerb gewonnen (ich denke als Gewerbetreibender hätte ich mir inzwischen längst die Cloudvariante zugelegt und dann ausschliesslich Photoshop). |
|
17.10.2020, 14:53
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) Störende, veraltete oder unnötige Programme deinstallieren Bitte über Programme und Features (appwiz.cpl) deinstallieren: Adobe Acrobat Reader DC Adobe Flash Player 32 NPAPI Adobe Flash Player 32 PPAPI Ashampoo Burning Studio Elements 10.0.9 CCleaner COMODO Internet Security Premium OpenOffice.org 3.4.1 QuickTime 7 Security Task Manager 2.3d Spybot - Search & Destroy SpywareBlaster 6.0 t-online.de Browser Windows XP Mode
__________________ --> Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) |
|
17.10.2020, 15:41
| #7 |
| | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) sind deinstalliert |
|
17.10.2020, 15:44
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) adwCleaner Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei in CODE-Tags.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
17.10.2020, 15:57
| #9 |
| | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) Asware Log File (muss jetzt leider los, aber schon mal vielen Dank und morgen früh mach ich gleich weiter) Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-09-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-16-2020
# Duration: 00:00:01
# OS: Windows 10 Pro
# Cleaned: 19
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Startfenster-Replace
Deleted C:\Program Files\Gramblr
Deleted C:\ProgramData\54F3DE4E-B7BA-4EBD-8B3B-385D272CC583
Deleted C:\ProgramData\Gramblr
Deleted C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startfenster-Replace
***** [ Files ] *****
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gramblr.lnk
Deleted C:\Windows\System32\drivers\asrdmon.sys
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\SOFTWARE\AM|Startfenster-Replace
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Startfenster-Replace.exe
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Gramblr
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run|Updater
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Updater
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\App Paths\Startfenster-Replace.exe
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Eusing Free Registry Cleaner
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Startfenster-Replace.de
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.LenovoREACHit Folder C:\Users\Frank\AppData\Local\LENOVO\REACHIT
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [3196 octets] - [16/10/2020 16:57:56]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
|
|
17.10.2020, 15:59
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) adwcleaner bitte zwecks Kontrolle wiederholen
__________________ Logfiles bitte immer in CODE-Tags posten |
|
17.10.2020, 22:32
| #11 |
| | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) wiederholte Adware Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-05-19.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-17-2020
# Duration: 00:00:41
# OS: Windows 10 Pro
# Scanned: 31863
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [3196 octets] - [16/10/2020 16:57:56]
AdwCleaner[C00].txt - [3056 octets] - [16/10/2020 16:59:19]
AdwCleaner[S01].txt - [1527 octets] - [16/10/2020 17:08:35]
AdwCleaner[C01].txt - [1717 octets] - [16/10/2020 17:13:04]
AdwCleaner[S02].txt - [1801 octets] - [16/10/2020 18:28:50]
AdwCleaner[S03].txt - [1913 octets] - [17/10/2020 12:35:08]
AdwCleaner[C03].txt - [1926 octets] - [17/10/2020 12:35:35]
AdwCleaner[S04].txt - [1984 octets] - [17/10/2020 16:50:21]
AdwCleaner[C04].txt - [2107 octets] - [17/10/2020 16:50:30]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S05].txt ##########
|
|
17.10.2020, 23:28
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) Ich brauche neue FRST-Logs . Haken setzen bei addition.txt dann auf Untersuchen klicken.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.10.2020, 11:02
| #13 |
| | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) FRST Teil1 Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 14-10-2020
durchgeführt von Frank (Administrator) auf FRANK-CELSIUS (FUJITSU CELSIUS M740) (18-10-2020 11:55:36)
Gestartet von C:\Users\Frank\Downloads
Geladene Profile: Frank
Platform: Windows 10 Pro Version 2004 19041.572 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Elaborate Bytes AG -> Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(FUJITSU CLIENT COMPUTING LIMITED -> Fujitsu Technology Solutions) C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Link64 GmbH -> Link64 GmbH) C:\ProgramData\VideoDownloaderUltimateWinApp\VideoDownloaderUltimate.exe <2>
(Logitech, Inc. -> ) C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(MAGIX AG) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Frank\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12010.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.8043.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <14>
(Nalpeiron LTD -> Nalpeiron Ltd.) [Datei ist nicht signiert] C:\Windows\SysWOW64\nlssrv32.exe
(NEC Electronics Corporation -> NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Numedia Soft, Inc. -> ) C:\Windows\SysWOW64\NMSAccess64.exe
(NVIDIA Corporation -> ) C:\Windows\System32\nvwmi64.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe
(Softdeluxe) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe
(Softdeluxe) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe
(Sony) [Datei ist nicht signiert] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
(SurfRight B.V. -> SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe <2>
(Synology Inc. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(Synology Inc. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Synology\CloudStation\bin\vss-service-x64.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\Frank\AppData\Local\Vivaldi\Application\update_notifier.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16405744 2015-09-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2171960 2016-02-09] (NVIDIA Corporation -> )
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [FUJ02E3_BatteryChargingControlUpdate] => C:\Program Files\Fujitsu\FUJ02E3_BatteryChargingControlUpdate\CheckBatteryFW.exe [435752 2019-09-10] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU LIMITED)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [298776 2016-03-04] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [DeskUpdateNotifier] => C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe [101232 2020-06-24] (FUJITSU CLIENT COMPUTING LIMITED -> Fujitsu Technology Solutions)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [612304 2019-11-18] (NIKON CORPORATION -> Nikon Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113296 2010-03-30] (NEC Electronics Corporation -> NEC Electronics Corporation)
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2011-09-20] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Datei ist nicht signiert]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [TrayServer] => C:\Program Files (x86)\MAGIX\Video_deluxe_MX_Premium\TrayServer_de.exe [90112 2008-08-07] (MAGIX AG) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7929856 2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) [Datei ist nicht signiert]
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [VideoDownloaderUltimate] => C:\ProgramData\VideoDownloaderUltimateWinApp\VideoDownloaderUltimate.exe [5980360 2020-04-09] (Link64 GmbH -> Link64 GmbH)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Vivaldi Update Notifier] => C:\Users\Frank\AppData\Local\Vivaldi\Application\update_notifier.exe [1906760 2020-08-19] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [1687392 2019-10-22] (Sony Mobile Communications AB -> Sony)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91591032 2020-04-14] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Discord] => C:\Users\Frank\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Free Download Manager] => C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe [4145152 2020-05-15] (Softdeluxe) [Datei ist nicht signiert]
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Box Local Com Server] => C:\Users\Frank\AppData\Local\Box\Box Local Com Server\Box Local Com Service.exe [86096 2020-05-08] (Box, Inc. -> Box, Inc.)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Box Edit] => C:\Users\Frank\AppData\Local\Box\Box Edit\Box Edit.exe [210000 2020-05-08] (Box, Inc. -> Box, Inc.)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10262696 2020-09-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\RunOnce: [Application Restart #9] => C:\Users\Frank\AppData\Local\Vivaldi\Application\vivaldi.exe [1911880 2020-08-19] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\MountPoints2: {f2936c37-afc5-11e6-bfc1-901b0e4ddb59} - "H:\pushinst.exe"
HKLM\...\Windows x64\Print Processors\Canon iP4500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD92.DLL [27648 2007-05-01] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MG7100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBR.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55872 2015-06-27] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP4500 series: C:\WINDOWS\system32\CNMLM92.DLL [258560 2007-05-01] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\WINDOWS\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG7100 series: C:\WINDOWS\system32\CNMLMBR.DLL [391168 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [359936 2013-01-24] (CANON INC.) [Datei ist nicht signiert]
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SpyderUtility.lnk [2015-04-10]
ShortcutTarget: SpyderUtility.lnk -> C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility.exe () [Datei ist nicht signiert]
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2015-04-07]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions GmbH -> Fujitsu Technology Solutions)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2015-04-07]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions GmbH -> Fujitsu Technology Solutions)
Startup: C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2020-05-25]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LaunchCenter.lnk [2020-10-18]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions GmbH -> Fujitsu Technology Solutions)
Startup: C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sync-Plus.lnk [2020-10-03]
ShortcutTarget: Sync-Plus.lnk -> C:\Program Files\Telekom\Sync-Plus\SyncPlus.Launcher.exe (Deutsche Telekom AG -> Deutsche Telekom AG)
GroupPolicy: Beschränkung - Edge <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0946271F-F845-46D3-95C2-EB0CF9BB6F01} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {0AF0C0BE-9730-462D-9A8B-A3A85DB06C20} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0DDAF395-3FE1-4A69-A1CD-A587084F4ADC} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1B29E485-E907-4630-8821-0C8B7B08A361} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E56AA55-6F0E-4D2F-9019-4B26D6280510} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {1F2EB49D-D880-4213-BEB5-1E04B0C467A2} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2AE2F0F7-1E93-4E4F-A58F-D30FBB63EB4C} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe
Task: {32BC8BDF-251A-46CA-8D8C-19BB7495A847} - System32\Tasks\AdobeAAMUpdater-1.0-Frank-Celsius-Frank => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {373C610A-D9D5-4C6A-A3B6-2BC6451026FC} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2701594914-1762747753-790145204-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781}
Task: {412FE70B-8D46-459A-AE73-BAE0C6FA5ECA} - System32\Tasks\{9F9B81C9-4E19-4BB2-94EC-1164D6F45F1A} => C:\Windows\system32\pcalua.exe -a C:\Users\Frank\AppData\Local\Temp\jre-8u201-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ACHTUNG
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {50B13F04-7120-4F15-9DB2-72D504370F97} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {546637B8-D90D-4DD5-B97A-C6909BC87247} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [660688 2020-10-14] (Mozilla Corporation -> Mozilla Foundation)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5F990801-0820-49B0-AB8F-2CE33E26598D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {607CB26C-A5E3-48F7-AD5C-3706DAEDB45D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {65B9DD48-0AE8-4F3F-8831-CAB11308FC82} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {67CBC7F9-CEEC-4FD0-A466-C7D85E483986} - System32\Tasks\2BrightSparks\SyncBackProx64\Frank-Celsius-Frank\SyncBackPro FotoSicherung Z Pictures 2017 auf Synology => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [57615280 2019-12-03] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {691FBE89-8F10-4A0E-836C-3AFF3D9871DC} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6D231004-95E2-4430-952E-76A585FD01DB} - System32\Tasks\2BrightSparks\SyncBackProx64\Frank-Celsius-Frank\SyncBackPro FotoFrank Z auf Synology2016 2 => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [57615280 2019-12-03] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {6DDAA4DE-2C19-49FA-B370-22F068B2B581} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1153928 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {71FEEE7D-C1DE-4B60-B9CE-FF54836F5955} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {73AC9AC3-C645-48C7-A0A5-ED870424272B} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {78D630FB-5C85-41E9-98F9-7E1CFAC92942} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7C664EE4-521A-4325-85E1-743D828865A9} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {7D9775D7-B285-421C-A91F-F9E747D94BBF} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {863750AC-92E7-4D11-9B3F-AB5D9DF6136E} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {8AA91BF1-0445-45BA-A522-487BE086F5C4} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8ACC53D2-52DB-4760-AD98-B5CF013A124F} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8D5CA5D9-F3C3-4438-BA97-4DDFC1EBF907} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {92226648-2D70-495C-9E24-6ACBE705A97F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {92FA3832-0BF7-4538-85B7-1B1B6E6465C1} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {9942DE5A-16C2-4D04-9AA5-ACD1B954DB80} - System32\Tasks\{FCE620E8-84C9-43AC-B845-25B6634EBF1E} => C:\Windows\system32\pcalua.exe -a "C:\Users\Frank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XC8E5F2S\JavaSetup8u73.exe" -d C:\Users\Frank\Desktop
Task: {9A519CE1-A610-4394-8B60-266111CA2D86} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {9F2AC25A-1569-4E37-B5BA-496483F7C61C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A0810060-E887-4030-90B1-5680670908BA} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A0E76AFD-344C-491F-80E2-BAE43F85F00A} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {A6A9D8DC-F326-47CE-84D3-7495755B8E88} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA3E6864-66F7-46AA-BB91-023E93F8C376} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {AF20F8DD-83F9-47DD-B4A2-EF496143AA38} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo)
Task: {AF96AABA-6CBF-4F94-9B8B-B4798E412F24} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B25054A2-5A37-48B0-B8A4-602FC4BDF61C} - System32\Tasks\FreeDownloadManagerHelperService => C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe [144896 2020-05-15] (Softdeluxe) [Datei ist nicht signiert]
Task: {C82F94AA-F27D-4146-A2B5-4307AC646FBA} - \Microsoft\Windows\Setup\EOSNotify2 -> Keine Datei <==== ACHTUNG
Task: {CD48FA4E-F2F7-4CF0-96C6-FA9D4190D3F6} - System32\Tasks\Fujitsu\DeskUpdate => C:\Program Files (x86)\Fujitsu\DeskUpdate\ducmd.exe [119152 2020-06-24] (FUJITSU CLIENT COMPUTING LIMITED -> )
Task: {D5D0F2CF-60F1-4A88-A45E-EFB74726F7BA} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E165EA79-BEA5-42CF-9BD9-BF4AEB9432D9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {E2BB2E40-957F-4033-8C7F-30E62C9F2AA3} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
Task: {E3DC38D7-CB9A-4DCA-8FD2-80224E4C0A9D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {E78802F4-CBE3-4D41-A3DF-7694B5F9107A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {E982087D-DFB0-456E-8871-FDA537E69F8E} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {ECCAB6F0-9840-4A29-9B12-F0BE05CC54BC} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {F0B94E0A-3C45-4139-866A-AFDD0625D249} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {F39A9BB1-940C-41A9-948C-7CC60D24AD0C} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-04-05] () [Datei ist nicht signiert]
Task: {F49B8C24-4C72-4926-866A-8CEC3087AE23} - System32\Tasks\Connect => C:\Program Files (x86)\MAGIX\Connect\connect.exe [324680 2017-05-10] (MAGIX Software GmbH -> MAGIX Software GmbH)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Connect.job => C:\Program Files (x86)\MAGIX\Connect\connect.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
ProxyEnable: [S-1-5-21-2701594914-1762747753-790145204-1000] => Proxy ist aktiviert.
ProxyServer: [S-1-5-21-2701594914-1762747753-790145204-1000] => http=127.0.0.1:8082
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{4fcc9f35-d3bd-48bd-aa35-0795d6b58b9c}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{B3DAD457-247F-4E43-9533-E083E5365075}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{CC59FA5E-A4D0-415C-8088-E10A367F2F8E}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{D66708FC-9F95-4E84-91DC-F40471C531E5}: [DhcpNameServer] 192.168.178.1
ManualProxies: 1http=127.0.0.1:8082
Edge:
======
DownloadDir: C:\Users\Frank\Downloads
Edge Notifications: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> hxxps://mail.notes.na.collabserv.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\Frank\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-17]
Edge DownloadDir: C:\Users\Frank\Downloads
Edge Notifications: Default -> hxxps://mail.notes.na.collabserv.com
Edge Extension: (Outlook) - C:\Users\Frank\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-17]
FireFox:
========
FF DefaultProfile: 9n93wvqn.default
FF DefaultProfile: gkqdg3ff.default-1491461852932
FF ProfilePath: C:\Users\Frank\AppData\Roaming\t-online.de\Browser7\Profiles\9n93wvqn.default [2020-10-17]
FF NetworkProxy: t-online.de\Browser7\Profiles\9n93wvqn.default -> type", 0
FF Session Restore: t-online.de\Browser7\Profiles\9n93wvqn.default -> ist aktiviert.
FF ProfilePath: C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932 [2020-10-18]
FF DownloadDir: Y:\zDownloads
FF NetworkProxy: Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932 -> type", 0
FF Notifications: Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932 -> hxxps://www.joyclub.de; hxxp://192.168.178.20:5000; hxxps://apps.na.collabserv.com
FF Extension: (Facebook Container) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\@contain-facebook.xpi [2020-09-30]
FF Extension: (Your Secret Search) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\@mysecretsearch.xpi [2018-07-30] [UpdateUrl:hxxps://s3.eu-central-1.amazonaws.com/b8w7hm6gazt4cs9d/update.json]
FF Extension: (Firefox Multi-Account Containers) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\@testpilot-containers.xpi [2020-09-29]
FF Extension: (Cisco Webex Extension) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\ciscowebexstart1@cisco.com.xpi [2020-06-03]
FF Extension: (Kein Name) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\dcenpnkkppcblnimkecehfijnbcckdhi@chrome-store-foxified-unsigned.xpi [2019-05-09] [UpdateUrl:hxxps://kollchi.com/]
FF Extension: (German Dictionary, extended for Austria) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\de-AT@dictionaries.addons.mozilla.org.xpi [2019-07-26]
FF Extension: (German Dictionary (Switzerland)) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\de-CH@dictionaries.addons.mozilla.org.xpi [2019-07-26]
FF Extension: (German Dictionary) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\de-DE@dictionaries.addons.mozilla.org.xpi [2019-07-26]
FF Extension: (Easy Screenshot) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\easyscreenshot@mozillaonline.com.xpi [2019-04-25]
FF Extension: (Font Finder) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\fontfinder@bendodson.com.xpi [2017-04-07] []
FF Extension: (Form History Control (II)) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\formhistory@yahoo.com.xpi [2020-04-21]
FF Extension: (Turbo Download Manager (3rd edition)) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\jid0-dsq67mf5kjjhiiju2dfb6kk8dfw@jetpack.xpi [2020-08-24]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\langpack-de@firefox.mozilla.org.xpi [2020-09-24]
FF Extension: (Nimbus Screen Capture: Screenshots, Annotate) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\nimbusscreencaptureff@everhelper.me.xpi [2020-08-10]
FF Extension: (PageExpand) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\PageExpand@hakuhin.jp.xpi [2020-03-02]
FF Extension: (SimilarPages) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\similarpages@similarpages.com.xpi [2017-04-07] []
FF Extension: (Tab Session Manager) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\Tab-Session-Manager@sienori.xpi [2020-09-17]
FF Extension: (Easy Video Downloader) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\vdpure@link64.xpi [2017-08-07]
FF Extension: (Pinned WhatsApp Web) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\whatsapppanel@alejandrobrizuela.com.ar.xpi [2019-05-18]
FF Extension: (YouTube MP3) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\yt2mp3@waldemar.b.xpi [2018-03-24]
FF Extension: (Flagfox) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2020-10-01]
FF Extension: (FLV Video Downloader) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{10800464-82af-434d-a1bd-738d77a11e55}.xpi [2020-01-25]
FF Extension: (Session Manager) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-04-07] []
FF Extension: (FlashGot) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-04-08] []
FF Extension: (Reader) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{20068ab2-1901-4140-9f3c-81207d4dacc4}.xpi [2018-02-22]
FF Extension: (Download All Images) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{32af1358-428a-446d-873e-5f8eb5f2a72e}.xpi [2020-07-29]
FF Extension: (Image Search Options) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi [2019-06-29]
FF Extension: (Image Downloader) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{589e6459-3d56-49b4-9b3d-6e4b7ef16940}.xpi [2019-05-09]
FF Extension: (undo) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{5997e7bd-1940-4058-a5f4-1562afce6353}.xpi [2020-05-22]
FF Extension: (404 Bookmarks) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{5f8d31ba-47fb-4b70-bf8d-d2113f6da22f}.xpi [2020-04-28]
FF Extension: (Bulk Media Downloader) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{72b2e02b-3a71-4895-886c-fd12ebe36ba3}.xpi [2018-07-30]
FF Extension: (NoScript) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2020-10-12]
FF Extension: (ImTranslator: Translator, Dictionary, TTS) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2019-12-27]
FF Extension: (Video DownloadHelper) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-03-31]
FF Extension: (Javascript Switcher) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{d7e0a6e7-9a50-490a-be5c-3b448be39b42}.xpi [2019-06-09]
FF Extension: (DownThemAll!) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2019-11-28]
FF Extension: (Refresh Your Bookmarks) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{e53033bc-0678-463a-82ea-d9610dafdad0}.xpi [2020-04-28]
FF Extension: (Open With Photoshop) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{f3f219f9-cbce-467e-b8fe-6e076d29665c}.xpi [2017-12-22]
FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\gkqdg3ff.default-1491461852932\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2020-08-21]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2016-05-08] [] [ist nicht signiert]
FF Plugin: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-10-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-10-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.9.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-2701594914-1762747753-790145204-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Frank\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-27] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF Plugin HKU\S-1-5-21-2701594914-1762747753-790145204-1000: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2016-10-24] (Sony Network Entertainment International LLC) [Datei ist nicht signiert]
FF Plugin ProgramFiles/Appdata: C:\Users\Frank\AppData\Roaming\mozilla\plugins\npatgpc.dll [2019-04-11]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx" <nicht gefunden>
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8943496 2020-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 Cloud Station Drive VSS Service x64; C:\Program Files (x86)\Synology\CloudStation\bin\vss-service-x64.exe [287240 2016-03-16] (Synology Inc. -> ) [Datei ist nicht signiert]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-06] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-06] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [Datei ist nicht signiert]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [Datei ist nicht signiert]
R2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [5135304 2020-10-16] (SurfRight B.V. -> SurfRight B.V.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-10-16] (Malwarebytes Inc -> Malwarebytes)
S3 Media Center 25 Service; C:\Program Files\J River\Media Center 25\JRService.exe [458128 2019-12-10] (JRiver, Inc. -> JRiver, Inc.)
S3 Media Center 26 Service; C:\Program Files\J River\Media Center 26\JRService.exe [435088 2020-09-04] (JRiver, Inc. -> JRiver, Inc.)
S3 MusicCenter Back-End Service; C:\Program Files (x86)\Sony\Music Center\avlib\SsBeServiceMc.exe [181928 2017-08-24] (Sony Video & Sound Products Inc. -> Sony Video & Sound Products Inc.)
R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2011-09-22] (Nalpeiron LTD -> Nalpeiron Ltd.) [Datei ist nicht signiert]
R2 NMSAccess64; C:\WINDOWS\SysWOW64\NMSAccess64.exe [82872 2009-01-12] (Numedia Soft, Inc. -> )
R2 NVWMI; C:\WINDOWS\system32\nvwmi64.exe [3164728 2016-02-09] (NVIDIA Corporation -> )
S3 PACSPTISVR-Music_Center; C:\Program Files (x86)\Sony\Music Center\Sony.Earth\PACSPTISVR.exe [167824 2017-08-24] (Sony Video & Sound Products Inc. -> Sony Video & Sound Products Inc.)
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\RpcAgentSrv.exe [68760 2008-09-05] (SiSoftware Ltd -> SiSoftware) [Datei ist nicht signiert]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5102504 2020-10-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Sony Mobile Communications AB -> Avanquest Software) [Datei ist nicht signiert]
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-06-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 UPnPService; C:\Program Files (x86)\Common Files\MAGIX Shared\UPnPService\UPnPService.exe [544768 2006-12-14] (Magix AG) [Datei ist nicht signiert]
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248736 2013-11-14] (Synology Inc. -> ) [Datei ist nicht signiert]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2548224 2019-10-22] (Sony) [Datei ist nicht signiert]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [55776 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
R1 cbfs6; C:\Windows\system32\drivers\cbfs6.sys [460992 2016-09-09] (EldoS Corporation -> /n software, Inc.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
R3 FUJ02E3; C:\WINDOWS\system32\DRIVERS\FUJ02E3.sys [29808 2019-09-10] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU LIMITED)
R3 fwlanusb6_860; C:\WINDOWS\system32\DRIVERS\fwlanusb6_860.sys [2235160 2020-02-02] (WDKTestCert rstolz,131417395005862431 -> AVM GmbH)
R1 hmpalert; C:\WINDOWS\system32\drivers\hmpalert.sys [419936 2020-10-16] (SurfRight B.V. -> SurfRight B.V.)
S3 jrvad_service; C:\WINDOWS\System32\drivers\JRiverWDMDriver.sys [36872 2015-04-10] (JRiver, Inc. -> JRiver, Inc.)
S3 LSI_SAS3; C:\WINDOWS\system32\drivers\lsi_sas3.sys [88776 2014-09-25] (LSI Corporation -> LSI Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [218112 2020-10-16] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-10-16] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197280 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [74936 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-10-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [134304 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
S3 megasas2; C:\WINDOWS\system32\drivers\megasas2.sys [60104 2014-07-03] (LSI Corporation -> LSI Corporation)
S3 RSUSBSTOR; C:\WINDOWS\System32\Drivers\RtsUStor.sys [243712 2012-11-12] (Realtek Semiconductor Corp.) [Datei ist nicht signiert]
S3 SnapCameraVirtualDevice; C:\WINDOWS\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2020-03-21] (Snap Inc. -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166768 2020-06-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-06-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 VBoxNetAdp; C:\WINDOWS\System32\DRIVERS\VBoxNetAdp6.sys [196040 2017-07-27] (Oracle Corporation -> Oracle Corporation)
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-02-26] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-26] (Microsoft Windows -> Microsoft Corporation)
S1 asrdmon; \SystemRoot\system32\drivers\asrdmon.sys [X]
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-10-18 02:32 - 2020-10-18 02:32 - 001893524 _____ C:\WINDOWS\Minidump\101820-8080921-01.dmp
2020-10-17 23:33 - 2020-10-17 23:33 - 000002953 _____ C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-10-17 16:54 - 2020-10-17 16:54 - 000197280 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-10-17 16:54 - 2020-10-17 16:54 - 000134304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-10-17 16:54 - 2020-10-17 16:54 - 000074936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-10-17 16:49 - 2020-10-17 16:49 - 008402608 _____ (Malwarebytes) C:\Users\Frank\Downloads\adwcleaner_8.0.5.exe
2020-10-17 16:36 - 2020-10-17 16:36 - 000000334 _____ C:\Users\Frank\Desktop\2020 Okt 17 entfernte Programme .txt
2020-10-17 16:35 - 2020-10-17 16:35 - 000000000 _____ C:\WINDOWS\system32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
2020-10-17 12:37 - 2020-10-17 12:37 - 002299904 _____ (Farbar) C:\Users\Frank\Downloads\FRST64(1).exe
2020-10-17 12:26 - 2020-10-17 12:26 - 000055468 __RSH C:\ProgramData\ntuser.pol
2020-10-17 12:24 - 2020-10-17 12:24 - 004432744 _____ (BrightFort LLC ) C:\Users\Frank\Downloads\spywareblastersetup60.exe
2020-10-17 11:08 - 2020-10-17 11:08 - 000000000 ___HD C:\$SysReset
2020-10-17 10:33 - 2020-10-17 13:20 - 000084477 _____ C:\Users\Frank\Downloads\Addition.txt
2020-10-17 10:29 - 2020-10-18 11:56 - 000048153 _____ C:\Users\Frank\Downloads\FRST.txt
2020-10-17 10:29 - 2020-10-18 11:56 - 000000000 ____D C:\FRST
2020-10-17 10:28 - 2020-10-17 10:28 - 002299904 _____ (Farbar) C:\Users\Frank\Downloads\FRST64.exe
2020-10-17 10:08 - 2020-10-17 10:08 - 000135486 _____ C:\Users\Frank\Desktop\hitmanProSurfRight _ Shopping Cart.pdf
2020-10-16 23:46 - 2020-10-16 23:46 - 001912820 _____ C:\WINDOWS\Minidump\101620-8078125-01.dmp
2020-10-16 20:06 - 2020-10-16 20:06 - 000193704 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2020-10-16 20:06 - 2020-10-16 20:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-10-16 20:06 - 2020-10-16 20:06 - 000000000 ____D C:\Program Files\Java
2020-10-16 20:05 - 2020-10-16 20:05 - 000012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2020-10-16 20:04 - 2020-10-16 20:10 - 000000000 ____D C:\Program Files (x86)\TV-Browser
2020-10-16 20:04 - 2020-10-16 20:04 - 083038856 _____ (Oracle Corporation) C:\Users\Frank\Downloads\jre-8u261-windows-x64.exe
2020-10-16 20:02 - 2020-10-16 20:03 - 007260471 _____ C:\Users\Frank\Downloads\tvbrowser_4.0.1_win32.exe
2020-10-16 19:35 - 2020-10-16 19:35 - 001078216 _____ (SurfRight B.V.) C:\WINDOWS\system32\hmpalert.dll
2020-10-16 19:35 - 2020-10-16 19:35 - 000997320 _____ (SurfRight B.V.) C:\WINDOWS\SysWOW64\hmpalert.dll
2020-10-16 19:35 - 2020-10-16 19:35 - 000190920 _____ (SurfRight B.V.) C:\WINDOWS\system32\hmpshell.dll
2020-10-16 19:10 - 2020-10-16 19:20 - 000057728 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2020-10-16 19:08 - 2020-10-16 23:44 - 000000000 ____D C:\Program Files (x86)\HitmanPro.Alert
2020-10-16 19:08 - 2020-10-16 19:35 - 000419936 _____ (SurfRight B.V.) C:\WINDOWS\system32\Drivers\hmpalert.sys
2020-10-16 19:08 - 2020-10-16 19:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro.Alert
2020-10-16 19:07 - 2020-10-16 19:07 - 005121480 _____ (SurfRight B.V.) C:\Users\Frank\Downloads\hmpalert3.exe
2020-10-16 18:32 - 2020-10-18 11:37 - 000000000 ____D C:\Users\Frank\AppData\LocalLow\IGDump
2020-10-16 18:30 - 2020-10-16 18:30 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-10-16 18:30 - 2020-10-16 18:30 - 000218112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-10-16 18:30 - 2020-10-16 18:30 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-10-16 18:30 - 2020-10-16 18:30 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-10-16 18:30 - 2020-10-16 18:30 - 000002039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-16 18:30 - 2020-10-16 18:30 - 000002027 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-10-16 18:30 - 2020-10-16 18:30 - 000002027 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-10-16 17:28 - 2020-10-16 17:28 - 000002793 _____ C:\Users\Public\Desktop\Digeus Registry Cleaner.lnk
2020-10-16 17:28 - 2020-10-16 17:28 - 000002793 _____ C:\ProgramData\Desktop\Digeus Registry Cleaner.lnk
2020-10-16 16:56 - 2020-10-16 16:56 - 008447152 _____ (Malwarebytes) C:\Users\Frank\Desktop\adwcleaner_8.0.8.exe
2020-10-16 16:49 - 2020-10-16 16:49 - 073245528 _____ (SRWare ) C:\Users\Frank\Downloads\srware_iron64(1).exe
2020-10-16 16:03 - 2020-10-16 16:03 - 071270400 _____ C:\Users\Frank\Downloads\Amy Reid in Fine A$$ Amy Reid Will Rock Your World - HdZog -.mp4.part
2020-10-16 14:35 - 2020-10-16 14:35 - 003079251 _____ C:\Users\Frank\Downloads\DMS_salessheet_1-1.pdf
2020-10-16 14:15 - 2020-10-16 14:15 - 001194689 _____ C:\Users\Frank\Downloads\WP_Aviation-GSE-Operations_INSG.pdf
2020-10-16 13:19 - 2020-10-16 13:19 - 000000000 ____D C:\Users\Frank\Downloads\sexxxgirls.com
2020-10-15 08:31 - 2020-10-15 08:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-10-15 08:26 - 2020-10-15 08:26 - 001804404 _____ C:\WINDOWS\Minidump\101520-150250-01.dmp
2020-10-15 03:03 - 2020-10-15 03:03 - 002041028 _____ C:\WINDOWS\Minidump\101520-8051000-01.dmp
2020-10-14 13:44 - 2020-10-14 13:44 - 000243752 _____ C:\Users\Frank\Downloads\uninstall.exe
2020-10-14 13:43 - 2020-10-14 13:43 - 000911295 _____ C:\Users\Frank\Downloads\antitwin_setup.exe
2020-10-14 11:06 - 2020-10-16 16:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-10-13 22:47 - 2020-10-13 22:47 - 032612336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 031598928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 019870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 018767360 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 018080768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 011498496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 009499136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 007534680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 007099904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 006421504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 005820416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 005337504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 004828672 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 004783832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 004314624 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 004281856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 004275712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 003664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 003376840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-10-13 22:47 - 2020-10-13 22:47 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 002520056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 002398720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 002022200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001970176 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001812872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001545848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001541224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001502536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001259848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 001185864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000977920 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000961704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000837120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000800072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2020-10-13 22:47 - 2020-10-13 22:47 - 000773712 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000747312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000684832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000607336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2020-10-13 22:47 - 2020-10-13 22:47 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000578424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrptadm.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicRuntimes.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrptadm.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000428544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AdmTmpl.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000377344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCleaner.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.HardwareId.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000182592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDist.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgmts.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000147272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000145736 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logman.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000093112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2020-10-13 22:47 - 2020-10-13 22:47 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dggpext.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provmigrate.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pnrpnsp.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistHttpTrans.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\relog.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistAD.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\typeperf.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000041280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClientPS.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.SecurityMitigationsBroker.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000026944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVClientPS.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpupdate.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskperf.exe
2020-10-13 22:47 - 2020-10-13 22:47 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drprov.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVTerminator.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000018232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVTerminator.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000015672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVSentinel.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000013624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVSentinel.dll
2020-10-13 22:47 - 2020-10-13 22:47 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSErrRedir.dll
2020-10-13 22:46 - 2020-10-13 22:47 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 026273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 023448576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 014758400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 008897752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 008226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 007765504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 007616000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 006365280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 005998616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 005998616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 005431000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 005371544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 004752896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 004523008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 004433640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 004363840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 004012688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 003821072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 003706880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 003493888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Controls.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 003335680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002827776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002757120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-10-13 22:46 - 2020-10-13 22:46 - 002749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-10-13 22:46 - 2020-10-13 22:46 - 002634112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002621720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002607104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002541568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002425144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002318336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002267424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 002104320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001963752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001963712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001883696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001836544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001721856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001695760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001695728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001681408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001663136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001641960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001618152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001598032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001590072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001557816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 001509728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001450304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001449472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001418752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001342976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001315640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001276928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001255744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 001253624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001240064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001238528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001234432 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001230336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 001181208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2020-10-13 22:46 - 2020-10-13 22:46 - 001160192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001140736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001062400 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001042432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001033496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001011768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001006592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001003336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001001984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 001000408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000979272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000966864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000964264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000956216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000942408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000924528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000920888 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000907448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000873272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000859400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000805168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000788168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000783992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000779360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000775256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000760640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000759296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000756680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000756656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000751496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000721024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000698280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000688960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000688128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntimewindows.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000634696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000632544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntime.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000630096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000606880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000603448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000602192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000594464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000585704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000583616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000578376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000548544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000546976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000537696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000530912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000529208 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000523712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000521096 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UiaManager.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000508720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000504552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clbcatq.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000495840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmdial32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000487048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000482304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000482104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000475696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000474424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000469920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000459264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000455168 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000454016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-10-13 22:46 - 2020-10-13 22:46 - 000420936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000416864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000413232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000410064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000408000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp110_win.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000407872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000407504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wbemcomn.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000397728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000395592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrv.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000376032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000374496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2020-10-13 22:46 - 2020-10-13 22:46 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000337768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AarSvc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-10-13 22:46 - 2020-10-13 22:46 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000329528 _____ (Microsoft Corporation) C:\WINDOWS\system32\PktMon.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000329504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmBroker.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000311920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000303288 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000293864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000293184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000288672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000287680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000286016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.FileExplorer.Common.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000275288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000271664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000270640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000268080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powrprof.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000265440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000258880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdscore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000252616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\capauthz.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000236520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgmgr32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmd.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-10-13 22:46 - 2020-10-13 22:46 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000225088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000224576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.HardwareId.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000218936 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsldpc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000207168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdscore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000198792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB7.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mlang.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000196784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2020-10-13 22:46 - 2020-10-13 22:46 - 000195136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000190976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000190040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fidocredprov.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-10-13 22:46 - 2020-10-13 22:46 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000185912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000181048 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxlib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000176448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuceffects.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000171568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000171440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000166280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000164232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000163216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000161608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntasn1.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000152904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntmarta.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000151864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000149272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000145664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000145208 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000143056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000142008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000141008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000141008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000139960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000138936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devobj.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000138920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmidcom.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000136328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000135496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxlib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000134800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LanguageOverlayUtil.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000130128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvEmulation.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000128616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000126024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\logman.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000119608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cabinet.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000118584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000117216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000117056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DSCache.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000115192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000115008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
|
|
18.10.2020, 11:05
| #14 |
| | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) FRST Teil2 Code:
ATTFilter 2020-10-13 22:46 - 2020-10-13 22:46 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2020-10-13 22:46 - 2020-10-13 22:46 - 000111024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\provmigrate.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000110008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000108352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000107376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PktMon.sys
2020-10-13 22:46 - 2020-10-13 22:46 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000101744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-10-13 22:46 - 2020-10-13 22:46 - 000099656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdsapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000097088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000096032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000095552 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000095024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-10-13 22:46 - 2020-10-13 22:46 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000093488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000092960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpnsp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbssysprep.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MuiUnattend.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spinf.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpolcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.ServiceHostBuilder.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000074832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000072824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000072288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsCtfMonitor.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MitigationConfiguration.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samcli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TempSignedLicenseExchangeTask.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000068680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000068192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptsp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\colbact.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000061752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptext.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\auditpolcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000058856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000058848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000058176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\virtdisk.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000057144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmLpac.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devrtl.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000056312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\threadpoolwinrt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcacli.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NapiNSP.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\amsi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000054720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\relog.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000052672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel.appcore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000052664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wtsapi32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000052664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000050616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msasn1.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000050104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sfc_os.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mskeyprotect.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\typeperf.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.SecurityMitigationsBroker.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000047016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\svchost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000045904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coloradapterclient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\execmodelproxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapprovp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000042328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpol.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmiclnt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000039720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iri.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000037688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininitext.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000037176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netutils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Websocket.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dusmapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winrnr.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\auditpol.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000031528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptbase.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpupdate.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32topl.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000027848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fltLib.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000027336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\avrt.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000027320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\version.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\drprov.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\httpapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hid.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskperf.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.TimeBroker.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fltMC.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000024288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsrole.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\linkinfo.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secur32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsparse.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscdll.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davhlpr.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000021312 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ktmw32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000020640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerEnc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000019256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dllhost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mobilenetworking.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000017728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\backgroundTaskHost.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000017016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EsdSip.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshqos.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wowreg32.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmsgapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasautou.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpapi.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasadhlp.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmiso8601utils.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000011272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sfc.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wship6.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSHTCPIP.DLL
2020-10-13 22:46 - 2020-10-13 22:46 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe
2020-10-13 22:46 - 2020-10-13 22:46 - 000009279 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-10-13 22:46 - 2020-10-13 22:46 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDUS.DLL
2020-10-13 22:46 - 2020-10-13 22:46 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shimeng.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\normaliz.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll
2020-10-13 22:46 - 2020-10-13 22:46 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 017542144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 010841400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 010336904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 008009880 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 007986616 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 007632808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 007266128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 006204928 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 006195712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 006070904 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 005871560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 005783288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 005057024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 004732928 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 004645368 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 004629320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 004590560 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 004517376 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 004025344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Controls.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003917824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003893248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003858944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003852288 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003815936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 003811840 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003779392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 003750912 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003587072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003537520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003506480 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003436544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003386368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003305984 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003282944 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003232056 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 003134464 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 003066880 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002983736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 002978816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002942976 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 002920304 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002809776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002592056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002568704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002503520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002485928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002451968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002428416 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002377728 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 002322304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002250240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002206208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002189824 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002178600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002107872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002024248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 002007352 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001978664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001954816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001952256 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001932760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001871272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001837568 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001827840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001827128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001822256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-10-13 22:45 - 2020-10-13 22:45 - 001784480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001765184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001751952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001730048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001715200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001673728 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001650176 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001563520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001554624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001531904 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001526272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001515520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001478464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 001468928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001456640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001434624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001414656 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001411552 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001400208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001393472 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-10-13 22:45 - 2020-10-13 22:45 - 001389352 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001379064 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001361920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsf3gip.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001360936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001337696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001330688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001324032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001306624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001280312 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001277952 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001255424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001237536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001212696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001212232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001210120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001198296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 001192096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001182520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001148416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001146368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001141984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001137472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001128536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001111040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001108288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001104896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001092392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001089856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 001070400 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001068640 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001068352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 001047432 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001044880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001025768 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001021096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 001009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000995128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Facilitator.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000994256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000988008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000979768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000978768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000939448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000937472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000934400 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000913776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000907776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000903984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000891472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 000885248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000882136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000872776 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000860672 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000852288 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000844984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000843896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000843264 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000831032 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000828432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000821056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000809272 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000782656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000764976 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000763904 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000763192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000748360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000725600 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000708088 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000707544 _____ C:\WINDOWS\system32\TextShaping.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000705560 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000705008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000688128 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000686408 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000676096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000672976 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatq.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000660592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000645120 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000644576 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\UiaManager.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000637360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000635832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000634760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000628120 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000624480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000603464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000602432 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000598336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000586792 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000586048 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000583608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmdial32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000577952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-10-13 22:45 - 2020-10-13 22:45 - 000560376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp110_win.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000539264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000528904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000521016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbemcomn.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000518552 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000507192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000502584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-10-13 22:45 - 2020-10-13 22:45 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000488104 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000488064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000478720 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000477512 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000454968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000429712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000427200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000425272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000420456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000419432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000418800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000418416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000414200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000411448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000403384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000401728 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000389432 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000385240 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000382728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000374080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000374072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000371376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000361040 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000354344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000352784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000351200 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000342424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000333144 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000332600 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000318736 _____ (Microsoft Corporation) C:\WINDOWS\system32\capauthz.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000305272 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgmgr32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000295464 _____ (Microsoft Corporation) C:\WINDOWS\system32\powrprof.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000287544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wosc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000260816 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000259264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsldpc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000253008 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000249664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000249656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinREAgent.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mlang.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuceffects.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\fidocredprov.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000241144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntasn1.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000230904 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000230728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000230392 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 000229176 _____ (Microsoft Corporation) C:\WINDOWS\system32\convertvhd.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000228152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.System.UserProfile.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000219016 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000216376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msls31.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000215352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000213344 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000211736 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000207608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NetAdapterCx.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000207160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000203544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000195232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000191656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntmarta.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000185448 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000180032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000176656 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmidcom.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000175608 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000173016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayUtil.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000171992 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000171024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000167888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgcore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000166200 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\devobj.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000162704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000161672 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000161608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000160064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000160056 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000157024 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000155976 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000155960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdsapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000153376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000152376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DSCache.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000147264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000147232 _____ (Microsoft Corporation) C:\WINDOWS\system32\cabinet.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000147200 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000146216 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000143096 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000137896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000135480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000133744 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpnpmgr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000130144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000122392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000118584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000117800 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000116536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2020-10-13 22:45 - 2020-10-13 22:45 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkQoSPolicyCSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000109504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000107416 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MuiUnattend.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshext.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000103288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RuntimeBroker.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-10-13 22:45 - 2020-10-13 22:45 - 000102720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.ServiceHostBuilder.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000097672 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerApi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000097088 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsCtfMonitor.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\spinf.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000095496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000090432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000090408 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MitigationConfiguration.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000083744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\samcli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\colbact.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000082656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000082176 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\execmodelproxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\deploymentcsps.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000076976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\djoin.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\TempSignedLicenseExchangeTask.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptext.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000071784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcacli.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000070968 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NapiNSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000069752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\threadpoolwinrt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000067728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000067192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wtsapi32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mskeyprotect.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000064824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000064072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msasn1.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\devrtl.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\PnPUnattend.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000061960 _____ (Microsoft Corporation) C:\WINDOWS\system32\coloradapterclient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000060464 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel.appcore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000059448 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sfc_os.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000057664 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000057360 _____ (Microsoft Corporation) C:\WINDOWS\system32\svchost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapprovp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000051120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iri.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmiclnt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\winrnr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Websocket.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IndirectKmd.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000046392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000041816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netutils.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hid.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32topl.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winnsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsisvc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000034152 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptbase.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnscacheugc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000033064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltLib.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\linkinfo.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000031552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000031496 _____ (Microsoft Corporation) C:\WINDOWS\system32\version.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltMC.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.TimeBroker.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsparse.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscdll.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000030480 _____ (Microsoft Corporation) C:\WINDOWS\system32\avrt.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000029456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000028944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsrole.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\secur32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000028360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winnsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\davhlpr.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\netbtugc.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000026608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IntelTA.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000025848 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ktmw32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000024296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerEnc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mobilenetworking.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000021312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000021280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshqos.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmsgapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000020160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\localui.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000019776 _____ (Microsoft Corporation) C:\WINDOWS\system32\backgroundTaskHost.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000019144 _____ (Microsoft Corporation) C:\WINDOWS\system32\psapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasautou.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-10-13 22:45 - 2020-10-13 22:45 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wowreg32.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000017600 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrss.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasadhlp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapi.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmiso8601utils.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsiproxy.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSHTCPIP.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wship6.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfoext.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000011784 _____ (Microsoft Corporation) C:\WINDOWS\system32\sfc.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe
2020-10-13 22:45 - 2020-10-13 22:45 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDUS.DLL
2020-10-13 22:45 - 2020-10-13 22:45 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\normaliz.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-10-13 22:45 - 2020-10-13 22:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
2020-10-13 20:31 - 2020-10-13 20:31 - 001978012 _____ C:\WINDOWS\Minidump\101320-7989078-01.dmp
2020-10-13 13:13 - 2020-10-13 13:13 - 000000000 ____D C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2
2020-10-13 13:12 - 2020-10-13 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Transfer 2
2020-10-13 13:11 - 2020-10-13 13:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon
2020-10-13 12:57 - 2020-10-13 12:57 - 482308096 _____ C:\Users\Frank\Downloads\S-VCNXSP-200300WF-ALLIN-ALL___.exe
2020-10-12 14:43 - 2020-10-12 14:43 - 001131588 _____ C:\WINDOWS\Minidump\101220-8362640-01.dmp
2020-10-12 09:16 - 2020-10-12 09:16 - 001634124 _____ C:\WINDOWS\Minidump\101220-7972375-01.dmp
2020-10-12 02:21 - 2020-10-12 02:21 - 001980268 _____ C:\WINDOWS\Minidump\101220-161921-01.dmp
2020-10-11 09:11 - 2020-10-11 09:11 - 001237064 _____ (Adobe Inc) C:\Users\Frank\Downloads\flashplayer32au_ha_install.exe
2020-10-11 06:51 - 2020-10-11 06:51 - 002178396 _____ C:\WINDOWS\Minidump\101120-8028093-01.dmp
2020-10-10 03:58 - 2020-10-10 03:58 - 001988908 _____ C:\WINDOWS\Minidump\101020-7990765-01.dmp
2020-10-09 15:23 - 2020-10-09 15:46 - 288759680 _____ C:\Users\Frank\Downloads\YouTube~1.mp4
2020-10-09 15:23 - 2020-10-09 15:46 - 127289330 _____ C:\Users\Frank\Downloads\YouTube.mkv
2020-10-09 15:10 - 2020-10-09 15:31 - 570739206 _____ C:\Users\Frank\Downloads\YouTube.mp4
2020-10-09 15:08 - 2020-10-09 15:08 - 000502005 _____ C:\Users\Frank\Downloads\watch(3).html
2020-10-09 15:08 - 2020-10-09 15:08 - 000462311 _____ C:\Users\Frank\Downloads\watch(2).html
2020-10-09 11:46 - 2020-10-09 12:07 - 570739206 _____ C:\Users\Frank\Downloads\2020 10 Joycce viele Figuren.mp4
2020-10-09 02:34 - 2020-10-09 02:34 - 001974716 _____ C:\WINDOWS\Minidump\100920-8048328-01.dmp
2020-10-08 14:57 - 2020-10-08 14:57 - 000001181 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung DeX.lnk
2020-10-08 14:57 - 2020-10-08 14:57 - 000001169 _____ C:\Users\Public\Desktop\Samsung DeX.lnk
2020-10-08 14:57 - 2020-10-08 14:57 - 000001169 _____ C:\ProgramData\Desktop\Samsung DeX.lnk
2020-10-08 14:56 - 2020-06-26 04:15 - 000166768 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2020-10-08 14:56 - 2020-06-26 04:15 - 000136048 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus.sys
2020-10-08 14:56 - 2020-06-26 04:15 - 000043376 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ss_conn_usb_driver2.sys
2020-10-08 14:39 - 2020-10-08 14:39 - 099961624 _____ (Samsung Electronics Co., Ltd.) C:\Users\Frank\Downloads\SamsungDeXSetupWin.exe
2020-10-08 14:35 - 2020-10-08 14:35 - 000000000 ____D C:\WINDOWS\system32\Samsung
2020-10-08 13:10 - 2020-10-08 13:10 - 001627588 _____ C:\WINDOWS\Minidump\100820-8386031-01.dmp
2020-10-08 09:56 - 2020-10-08 09:56 - 000597901 _____ C:\Users\Frank\Downloads\63a59e2d-bcc8-4b15-993b-7c2136feff47.tmp
2020-10-08 08:52 - 2020-10-08 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-10-08 07:26 - 2020-10-08 07:26 - 001980148 _____ C:\WINDOWS\Minidump\100820-8503968-01.dmp
2020-10-07 06:33 - 2020-10-07 06:33 - 000242342 _____ C:\Users\Frank\Downloads\hold back the river chords (17).pdf
2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2020-10-06 20:43 - 2020-10-06 20:43 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2020-10-06 11:28 - 2020-10-06 11:28 - 000245167 _____ C:\Users\Frank\Downloads\hold back the river chords (16).pdf
2020-10-03 11:40 - 2020-10-03 11:40 - 000000000 ____D C:\Users\Frank\AppData\Roaming\Telekom
2020-10-03 10:01 - 2020-10-03 10:02 - 000000000 ____D C:\Users\Frank\Downloads\Deutsche Telekom Adressbuch(1)
2020-10-03 09:55 - 2020-10-03 09:58 - 000447779 _____ C:\Users\Frank\Downloads\Deutsche Telekom Adressbuch(1).zip
2020-10-03 09:50 - 2020-10-03 09:50 - 000002156 _____ C:\Users\Public\Desktop\Sync-Plus.lnk
2020-10-03 09:50 - 2020-10-03 09:50 - 000002156 _____ C:\ProgramData\Desktop\Sync-Plus.lnk
2020-10-03 09:50 - 2020-10-03 09:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Telekom
2020-10-03 09:50 - 2020-10-03 09:50 - 000000000 ____D C:\Program Files\Telekom
2020-10-03 09:40 - 2020-10-03 09:40 - 011445096 _____ (Deutsche Telekom AG) C:\Users\Frank\Downloads\sync-plus.exe
2020-10-02 11:51 - 2020-10-02 11:51 - 001388277 _____ C:\Users\Frank\Downloads\WhatsApp Unknown 2020-10-02 at 11.51.10.zip
2020-10-02 11:51 - 2020-10-02 11:51 - 000310887 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.02.jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000310258 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.02 (1).jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000309944 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.01.jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000234967 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.03 (1).jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000221383 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.03.jpeg
2020-09-28 15:19 - 2020-09-28 15:19 - 011746382 _____ C:\Users\Frank\Downloads\OneDrive-2020-09-28.zip
2020-09-28 10:35 - 2020-09-28 10:35 - 000000000 ____D C:\Users\Frank\Downloads\PageExpand
2020-09-28 08:57 - 2020-09-28 08:57 - 001054174 _____ C:\Users\Frank\Downloads\mpdf.pdf
2020-09-27 18:39 - 2020-09-27 18:40 - 034167462 _____ C:\Users\Frank\Downloads\Ganes - Ci morvöia - Listen on Online Radio Box~1.mp4
2020-09-27 18:39 - 2020-09-27 18:40 - 005274607 _____ C:\Users\Frank\Downloads\Ganes - Ci morvöia - Listen on Online Radio Box.webm
2020-09-27 18:38 - 2020-09-27 18:39 - 005265039 _____ C:\Users\Frank\Downloads\Ganes - Ci morvöia - Listen on Online Radio Box.mp4
2020-09-27 18:37 - 2020-09-27 18:37 - 001058995 _____ C:\Users\Frank\Downloads\Ganes-Ci Morvoia - Videos, Songs, Discography, Lyrics.mp4
2020-09-27 09:45 - 2020-09-27 09:45 - 001924365 _____ C:\Users\Frank\Downloads\WhatsApp Video 2020-09-18 at 16.49.35.mp4
2020-09-22 03:38 - 2020-09-22 03:38 - 000245167 _____ C:\Users\Frank\Downloads\hold back the river chords (15).pdf
2020-09-22 03:12 - 2020-09-22 03:12 - 001886548 _____ C:\WINDOWS\Minidump\092220-4227000-01.dmp
2020-09-22 03:11 - 2020-10-18 02:31 - 1908850830 ____N C:\WINDOWS\MEMORY.DMP
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-10-18 11:53 - 2020-09-10 23:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-18 11:53 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-18 11:53 - 2017-04-06 08:47 - 000000000 ____D C:\Users\Frank\AppData\LocalLow\Mozilla
2020-10-18 11:53 - 2015-04-12 23:05 - 000000000 ____D C:\Users\Frank\AppData\Local\CrashDumps
2020-10-18 06:48 - 2020-09-10 23:51 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-18 06:48 - 2020-09-10 23:51 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-18 02:38 - 2015-04-09 14:33 - 000000000 ____D C:\Users\Frank\AppData\Local\Adobe
2020-10-18 02:35 - 2020-09-10 23:48 - 001886944 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-18 02:35 - 2019-12-07 16:51 - 000785726 _____ C:\WINDOWS\system32\perfh007.dat
2020-10-18 02:35 - 2019-12-07 16:51 - 000167840 _____ C:\WINDOWS\system32\perfc007.dat
2020-10-18 02:35 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-10-18 02:32 - 2020-09-11 05:59 - 000000000 ____D C:\WINDOWS\Minidump
2020-10-18 02:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-18 02:31 - 2020-09-10 23:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-18 02:31 - 2020-09-10 23:36 - 000000000 ____D C:\Users\Frank
2020-10-18 02:31 - 2015-04-08 05:37 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-18 00:19 - 2015-05-15 07:57 - 000000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2020-10-17 20:51 - 2020-04-03 12:50 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-17 20:51 - 2020-04-03 12:50 - 000002263 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-17 20:51 - 2020-04-03 12:50 - 000002263 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-10-17 20:51 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-17 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-17 16:54 - 2020-09-10 23:32 - 005430552 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-10-17 16:54 - 2017-04-07 18:33 - 000000000 ___HD C:\VTRoot
2020-10-17 16:54 - 2015-09-08 17:30 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2020-10-17 16:54 - 2015-09-08 08:13 - 000000000 ____D C:\ProgramData\HitmanPro.Alert
2020-10-17 16:54 - 2015-04-08 05:24 - 000000000 ____D C:\ProgramData\COMODO
2020-10-17 16:51 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-10-17 16:50 - 2015-04-16 20:21 - 000000000 ____D C:\ProgramData\HitmanPro
2020-10-17 16:40 - 2019-04-17 03:19 - 000000000 ____D C:\Users\Frank\AppData\LocalLow\t-online.de
2020-10-17 16:40 - 2017-07-14 04:55 - 000000000 ____D C:\Program Files (x86)\t-online.de
2020-10-17 16:39 - 2019-05-04 14:22 - 000000147 _____ C:\WINDOWS\wininit.ini
2020-10-17 16:39 - 2015-09-13 09:10 - 000000000 ____D C:\Program Files (x86)\SpywareBlaster
2020-10-17 16:38 - 2015-09-08 17:30 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2020-10-17 16:35 - 2020-09-10 16:38 - 000002409 _____ C:\Users\Frank\Desktop\WhatsApp.lnk
2020-10-17 16:35 - 2020-05-27 19:59 - 000002169 _____ C:\Users\Frank\Desktop\Zoom.lnk
2020-10-17 16:35 - 2020-04-23 15:38 - 000002443 _____ C:\Users\Frank\Desktop\Discord.lnk
2020-10-17 16:35 - 2020-04-17 19:32 - 000002566 _____ C:\Users\Frank\Desktop\Microsoft Teams.lnk
2020-10-17 16:35 - 2020-02-02 21:41 - 000002360 _____ C:\Users\Frank\Desktop\BMWDownloadManager.lnk
2020-10-17 16:35 - 2019-06-05 12:15 - 000002534 _____ C:\Users\Frank\Desktop\Vivaldi.lnk
2020-10-17 16:35 - 2019-05-20 19:56 - 000001642 _____ C:\Users\Frank\Desktop\CopyTrans Control Center.lnk
2020-10-17 16:35 - 2018-10-15 11:15 - 000002059 _____ C:\Users\Frank\Desktop\Spotify.lnk
2020-10-17 16:35 - 2015-04-08 05:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2020-10-17 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-10-17 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-10-17 16:30 - 2015-04-07 19:47 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-10-17 13:04 - 2018-11-19 18:14 - 000000000 ____D C:\Users\Frank\AppData\Roaming\vlc
2020-10-17 12:35 - 2015-04-11 13:19 - 000000000 ____D C:\ProgramData\Temp
2020-10-17 12:26 - 2009-07-14 05:20 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-10-17 12:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
|
|
18.10.2020, 11:06
| #15 |
| | Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) FRST Teil3 Code:
ATTFilter 2020-10-17 10:41 - 2020-02-02 17:34 - 000000000 ____D C:\Users\Frank\AppData\Local\Packages
2020-10-17 10:41 - 2015-04-07 20:27 - 000000000 ____D C:\ProgramData\Mozilla
2020-10-17 10:41 - 2015-04-07 20:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-10-16 19:16 - 2015-09-18 18:57 - 000000880 _____ C:\WINDOWS\system32\.crusader
2020-10-16 18:30 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-16 18:30 - 2015-04-16 20:06 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-10-16 18:12 - 2020-02-02 18:31 - 000000000 ____D C:\Users\Frank\AppData\Local\PlaceholderTileLogoFolder
2020-10-16 17:27 - 2015-04-07 20:19 - 000000000 ____D C:\Users\Frank\AppData\Local\Downloaded Installations
2020-10-16 16:59 - 2016-06-05 09:25 - 000000000 ____D C:\Users\Frank\AppData\Local\Lenovo
2020-10-16 16:57 - 2015-04-16 19:49 - 000000000 ____D C:\AdwCleaner
2020-10-16 16:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-10-16 16:50 - 2017-02-18 23:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron (64-Bit)
2020-10-16 16:50 - 2017-02-18 23:17 - 000000000 ____D C:\Program Files\SRWare Iron (64-Bit)
2020-10-16 14:55 - 2020-07-15 13:37 - 000000374 _____ C:\Users\Frank\.vivaldi_reporting_data
2020-10-15 15:24 - 2015-04-20 19:32 - 000001456 _____ C:\Users\Frank\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2020-10-15 10:54 - 2017-03-09 08:37 - 000000000 ____D C:\Users\Frank\Desktop\Lebenslauf
2020-10-15 08:31 - 2017-04-06 11:48 - 000001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-10-14 23:23 - 2020-09-10 23:51 - 000003630 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-14 23:23 - 2020-09-10 23:51 - 000003506 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-14 09:53 - 2016-11-26 15:21 - 000000000 ____D C:\Users\Frank\Desktop\kontakte
2020-10-14 09:52 - 2020-05-25 12:36 - 000000000 ____D C:\Users\Frank\Desktop\ich
2020-10-14 00:22 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-10-14 00:22 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-10-13 22:49 - 2019-12-07 16:54 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-10-13 22:49 - 2019-12-07 16:54 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-10-13 22:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-13 22:39 - 2020-09-10 18:01 - 000000000 ___HD C:\$WinREAgent
2020-10-13 13:13 - 2018-08-19 17:34 - 000002222 _____ C:\Users\Frank\Desktop\Picture Control Utility 2.lnk
2020-10-13 13:13 - 2015-04-07 20:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2
2020-10-13 13:13 - 2015-04-07 20:19 - 000000000 ____D C:\Program Files\Nikon
2020-10-13 13:12 - 2018-08-19 17:36 - 000002162 _____ C:\Users\Public\Desktop\Capture NX-D.lnk
2020-10-13 13:12 - 2018-08-19 17:36 - 000002162 _____ C:\ProgramData\Desktop\Capture NX-D.lnk
2020-10-13 13:12 - 2018-08-19 17:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Capture NX-D
2020-10-13 13:12 - 2018-08-19 17:33 - 000002139 _____ C:\Users\Public\Desktop\ViewNX-i.lnk
2020-10-13 13:12 - 2018-08-19 17:33 - 000002139 _____ C:\ProgramData\Desktop\ViewNX-i.lnk
2020-10-13 13:12 - 2018-08-19 17:33 - 000002112 _____ C:\Users\Public\Desktop\Nikon Transfer 2.lnk
2020-10-13 13:12 - 2018-08-19 17:33 - 000002112 _____ C:\ProgramData\Desktop\Nikon Transfer 2.lnk
2020-10-13 13:12 - 2017-10-25 15:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX-i
2020-10-13 13:12 - 2015-04-07 20:19 - 000113784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ATL71.DLL
2020-10-13 13:12 - 2015-04-07 20:19 - 000000000 ____D C:\WINDOWS\Downloaded Installations
2020-10-13 13:12 - 2015-04-07 20:19 - 000000000 ____D C:\Program Files (x86)\Nikon
2020-10-13 12:14 - 2020-09-10 16:38 - 000000000 ____D C:\Users\Frank\AppData\Roaming\WhatsApp
2020-10-12 02:24 - 2017-12-20 16:46 - 000000000 ____D C:\Users\Frank\Desktop\Intel präsent
2020-10-10 21:39 - 2020-09-10 23:36 - 000002430 _____ C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-10-09 08:41 - 2020-09-10 16:38 - 000000000 ____D C:\Users\Frank\AppData\Local\WhatsApp
2020-10-09 08:41 - 2020-04-17 19:23 - 000000000 ____D C:\Users\Frank\AppData\Local\SquirrelTemp
2020-10-08 19:07 - 2020-09-10 23:51 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-10-08 14:57 - 2020-02-02 17:34 - 000000000 ____D C:\Users\Frank\AppData\Local\Publishers
2020-10-08 14:57 - 2018-06-07 14:22 - 000000000 ____D C:\Users\Frank\AppData\Roaming\Samsung
2020-10-08 14:57 - 2018-06-07 14:19 - 000000000 ____D C:\ProgramData\Samsung
2020-10-08 14:57 - 2018-06-07 14:19 - 000000000 ____D C:\Program Files (x86)\Samsung
2020-10-08 14:56 - 2015-04-10 23:24 - 000000000 ____D C:\ProgramData\Package Cache
2020-10-08 08:53 - 2017-07-06 10:00 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-10-06 21:44 - 2020-05-14 16:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-10-06 21:44 - 2014-03-18 10:04 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-10-06 10:05 - 2020-09-16 05:42 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-03 02:33 - 2019-12-07 11:18 - 000835472 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-10-03 02:33 - 2019-12-07 11:18 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-27 08:14 - 2020-09-10 23:51 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-09-20 09:01 - 2020-09-11 11:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-09-20 09:01 - 2016-04-24 09:47 - 000001215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2015-12-19 14:40 - 2016-06-23 11:04 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-BMP-Format - Voreinstellungen
2020-01-13 15:40 - 2020-01-13 15:42 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-GIF-Format - Voreinstellungen
2017-05-24 12:49 - 2017-05-24 12:49 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2020-05-31 13:38 - 2020-05-31 13:38 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-Targa-Format - Voreinstellungen
2019-05-07 18:58 - 2019-05-07 19:04 - 000038475 _____ () C:\Users\Frank\AppData\Roaming\Durch Trennzeichen getrennte Werte.ADR
2017-10-25 15:45 - 2017-10-25 15:45 - 000000268 ___RH () C:\Users\Frank\AppData\Roaming\Folder Actions Handlers
2017-10-25 15:45 - 2017-10-25 15:45 - 000000268 ___RH () C:\Users\Frank\AppData\Roaming\Fonts
2017-03-06 14:17 - 2017-03-06 14:22 - 000038432 _____ () C:\Users\Frank\AppData\Roaming\Kommagetrennte Werte (Windows).ADR
2016-07-05 09:16 - 2016-07-05 09:16 - 000038443 _____ () C:\Users\Frank\AppData\Roaming\Microsoft Excel 97-2003.ADR
2015-06-22 07:04 - 2015-06-22 07:04 - 000000268 ___RH () C:\Users\Frank\AppData\Roaming\NetServices
2017-01-22 14:55 - 2017-01-26 15:36 - 000003938 _____ () C:\Users\Frank\AppData\Roaming\PS13_panel.log
2015-04-17 17:29 - 2015-04-17 17:29 - 000000064 _____ () C:\Users\Frank\AppData\Roaming\Sandra.ldb
2015-04-11 00:06 - 2015-04-13 21:32 - 011624448 _____ () C:\Users\Frank\AppData\Roaming\Sandra.mdb
2016-11-26 15:12 - 2016-11-26 15:12 - 000038446 _____ () C:\Users\Frank\AppData\Roaming\Tabulatorgetrennte Werte (Windows).ADR
2017-08-05 05:14 - 2017-08-05 05:14 - 000000600 _____ () C:\Users\Frank\AppData\Roaming\winscp.rnd
2015-04-20 19:32 - 2020-10-15 15:24 - 000001456 _____ () C:\Users\Frank\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2015-06-01 18:43 - 2015-06-01 18:44 - 000001078 _____ () C:\Users\Frank\AppData\Local\b910beaedd16e666d75f0eba9db54ffc
2020-05-12 14:14 - 2020-05-12 14:14 - 000003584 _____ () C:\Users\Frank\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-09-28 12:38 - 2018-09-28 12:38 - 000000000 _____ () C:\Users\Frank\AppData\Local\oobelibMkey.log
2018-07-12 12:11 - 2018-07-12 12:11 - 050090848 _____ (Sony) C:\Users\Frank\AppData\Local\pcc.exe
2017-08-01 17:09 - 2018-01-27 00:21 - 000000600 _____ () C:\Users\Frank\AppData\Local\PUTTY.RND
2015-07-18 18:14 - 2019-05-04 18:18 - 000007597 _____ () C:\Users\Frank\AppData\Local\resmon.resmoncfg
2015-04-07 19:50 - 2015-04-07 19:50 - 000001524 _____ () C:\Users\Frank\AppData\Local\Temppihide_log1.log
2015-04-07 19:50 - 2015-04-07 19:50 - 000000000 _____ () C:\Users\Frank\AppData\Local\Temppihide_log2.log
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 14-10-2020
durchgeführt von Frank (18-10-2020 11:57:12)
Gestartet von C:\Users\Frank\Downloads
Windows 10 Pro Version 2004 19041.572 (X64) (2020-09-10 21:51:46)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2701594914-1762747753-790145204-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2701594914-1762747753-790145204-503 - Limited - Disabled)
Frank (S-1-5-21-2701594914-1762747753-790145204-1000 - Administrator - Enabled) => C:\Users\Frank
Gast (S-1-5-21-2701594914-1762747753-790145204-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2701594914-1762747753-790145204-1002 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-2701594914-1762747753-790145204-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: COMODO Antivirus (Disabled - Up to date) {9E3E06E3-F8E0-3C44-2336-BBD8AF8F84B8}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {0C515E80-E355-69BD-3445-A511E5C186FD}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: COMODO Antivirus (Enabled - Up to date) {08B84BA8-CC77-5A8B-A100-3F522B1B6106}
AS: Spybot - Search and Destroy (Disabled - Out of date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}
AS: COMODO Advanced Protection (Enabled - Up to date) {B730BF64-C56F-6633-0EF5-9E639E46CC40}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: COMODO Firewall (Disabled) {A60587C6-B28F-3D1C-0869-12ED515CC3C3}
FW: COMODO Firewall (Disabled) {3083CA8D-8618-5BD3-8A5F-9667D5C8267D}
FW: COMODO Firewall (Disabled) {346ADFA5-A93A-68E5-1F1A-0C241B12C186}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.16 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated)
Adobe CS6 Design and Web Premium (HKLM-x32\...\{402F6F2E-5683-491C-977D-0CA599A07CAF}) (Version: 6 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7.1 64-bit (HKLM\...\{BC86B82C-8C0E-4408-9AC1-6B0F2D636963}) (Version: 5.7.1 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe® Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 3.4.3 - Adobe Systems, Incorporated)
Agenda At Once 3.3.3 (HKLM-x32\...\Agenda At Once_is1) (Version: 3.3.3 - Dataland Software)
Android Data Recovery 1.0.7 (HKLM-x32\...\{BB02CCD7-1501-4901-B5EE-D1A1B3528B51}_is1) (Version: 1.0.7 - Aiseesoft Studio)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avidemux 2.7 - 64 bits (HKLM-x32\...\Avidemux 2.7 - 64 bits (64-bit)) (Version: 2.7.0.170814 - )
AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - )
Box Tools (HKLM-x32\...\{9880B9BC-A92A-4EBF-AEE8-E260C418C4A0}) (Version: 4.9.2.722 - Box)
BufferChm (HKLM-x32\...\{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}) (Version: 130.0.331.000 - Hewlett-Packard) Hidden
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.0 - Canon Inc.)
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version: - Canon Inc.)
Canon MG7100 series Benutzerregistrierung (HKLM-x32\...\Canon MG7100 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG7100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG7100_series) (Version: 1.01 - Canon Inc.)
Canon MG7100 series On-screen Manual (HKLM-x32\...\Canon MG7100 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Capture NX 2 (HKLM\...\Capture NX 2) (Version: 2.4.7 - NIKON CORPORATION)
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.6.3 - Nikon Corporation)
CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version: - )
CEWE FOTOWELT (HKLM-x32\...\CEWE FOTOWELT) (Version: 7.0.2 - CEWE Stiftung u Co. KGaA)
Cisco Webex Meetings (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\ActiveTouchMeetingClient) (Version: 40.2.4 - Cisco Webex LLC)
Collectorz.com MP3 Collector (HKLM-x32\...\Collectorz.com MP3 Collector) (Version: - )
Color Efex Pro 3.0 Complete (HKLM-x32\...\Color Efex Pro 3.0 Complete) (Version: 3.1.0.0 - Nik Software, Inc.)
Connect (HKLM-x32\...\MAGIX_connector_is1) (Version: 2.5.1.84 - MAGIX Software GmbH)
ConvertHelper 3.2 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version: - DownloadHelper)
CopyTrans Control Center nur deinstallieren (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\CopyTrans Suite) (Version: 4.100 - WindSolutions)
CrystalDiskInfo 8.4.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.4.0 - Crystal Dew World)
DeskUpdate (HKLM-x32\...\DeskUpdate_is1) (Version: 5.1.64.0 - Fujitsu Technology Solutions)
Digeus Registry Cleaner (HKLM-x32\...\{74BE9D31-AFEA-49D9-A78D-2379F1DB4785}) (Version: 5.5 - Digeus, Inc.)
Discord (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Discord) (Version: 0.0.306 - Discord Inc.)
Distortion Control Data (HKLM-x32\...\{B08B4896-886C-4644-8664-BBA4CE99D318}) (Version: 1.00.0000 - Nikon Corporation)
DocProc (HKLM-x32\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Driver Manager (HKLM-x32\...\{29E99E81-852C-4FA8-AC61-D57447ED2BCE}) (Version: 1.11.0075 - Fujitsu Technology Solutions)
Dropbox (HKLM-x32\...\Dropbox) (Version: 107.4.443 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.335.1 - Dropbox, Inc.) Hidden
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FileZilla Client 3.50.0 (HKLM-x32\...\FileZilla Client) (Version: 3.50.0 - Tim Kosse)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG)
FoneLab für Android 1.0.6 (HKLM-x32\...\{7A7ACBDD-FED6-4ec5-BD26-5549FEB5B968}_is1) (Version: 1.0.6 - Aiseesoft Studio)
FormatFactory 4.4.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.0.0 - Free Time)
Free Blu-ray Player 1.1.18 (HKLM-x32\...\{FFF6624F-BB23-479d-B99E-0394EAD7BC74}_is1) (Version: 1.1.18 - Blu-ray Master)
Free Download Manager (HKLM\...\{0C1D4CF2-5575-4786-834C-B0FC977E9714}}_is1) (Version: 6.9.0.2927 - Softdeluxe)
FVD Downloader Module (HKLM-x32\...\{A3F74A3C-6824-4878-AB46-21280389D09F}) (Version: 1.0.8 - Nimbus)
Gear IconX (HKLM-x32\...\Gear IconX) (Version: 2.0.170927.51 - Samsung Electronics Co, Ltd.)
GeekBuddy (HKLM-x32\...\{E21161DD-05A2-42ED-A0EC-9C1393F51A64}) (Version: 4.2.39 - Comodo Security Solutions Inc)
Gigaset QuickSync (HKLM\...\{192f673d-d310-4488-96da-4a4bfcd6ab2b}) (Version: 8.6.0875.1 - Gigaset Communications GmbH)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.3 - Google Inc.) Hidden
HitmanPro.Alert 3 (HKLM\...\HitmanPro.Alert) (Version: 3.8.6.875 - SurfRight B.V.)
HP Scanjet G3110 (HKLM\...\{9B4E2E01-D726-414F-947D-8CE4EC074EB6}) (Version: 13.0 - HP)
hpg3110 (HKLM-x32\...\{E5364E6E-3070-43F3-B9D6-9958A0A7F519}) (Version: 13.0.0.0 - Ihr Firmenname) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 20.4 - Intel)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.4.51 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{f2fa2583-cd6d-4da1-803c-2983cc6f7791}) (Version: 10.1.2.10 - Intel(R) Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
JRiver Media Center 25 (64-bit) (HKLM\...\Media Center 25 (64-bit)) (Version: 25 - JRiver, Inc.)
JRiver Media Center 26 (64-bit) (HKLM\...\Media Center 26 (64-bit)) (Version: 26 - JRiver, Inc.)
K-Lite Codec Pack 15.4.4 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.4.4 - KLCP)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
MAGIX 3D Maker (embeded) (HKLM-x32\...\MAGIX 3D Maker D) (Version: 6.0.0.8 - MAGIX AG)
MAGIX Cloud Import (HKLM\...\{F26F0643-45C1-4CCC-A98A-0F8B44A6E899}) (Version: 0.0.0.20 - MAGIX Software GmbH) Hidden
MAGIX Cloud Import (HKLM\...\MX.{F26F0643-45C1-4CCC-A98A-0F8B44A6E899}) (Version: 0.0.0.20 - MAGIX Software GmbH)
MAGIX Foto Manager 8 6.0.1.457 (D) (HKLM-x32\...\MAGIX Foto Manager 8 D) (Version: 6.0.1.457 - MAGIX AG)
MAGIX Fotobuch 3.6 (HKLM-x32\...\MAGIX Fotobuch) (Version: 3.6 - MAGIX AG)
MAGIX Network Sync (HKLM\...\{46659432-E58E-4BF9-829B-E10976DBC1B7}) (Version: 0.0.0.34 - MAGIX Software GmbH) Hidden
MAGIX Network Sync (HKLM\...\MX.{46659432-E58E-4BF9-829B-E10976DBC1B7}) (Version: 0.0.0.34 - MAGIX Software GmbH)
MAGIX Online Druck Service 3.4.3.0 (D) (HKLM-x32\...\MAGIX Online Druck Service D) (Version: 3.4.3.0 - MAGIX AG)
MAGIX Screenshare (HKLM-x32\...\{B8D0804A-F451-441F-BF3E-E46DF7FAFB87}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Screenshare 4.3.6.1987 (D) (HKLM-x32\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (HKLM\...\{D2A73D5E-6A37-4B08-B6CE-09E8E80A8A2B}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM-x32\...\MX.{D2A73D5E-6A37-4B08-B6CE-09E8E80A8A2B}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Video deluxe (HKLM\...\{BDFB8EA8-AAF0-4F1F-B103-B49DF20B64F3}) (Version: 16.0.3.66 - MAGIX Software GmbH) Hidden
MAGIX Video deluxe (HKLM\...\MX.{BDFB8EA8-AAF0-4F1F-B103-B49DF20B64F3}) (Version: 16.0.3.66 - MAGIX Software GmbH)
MAGIX Video deluxe 15 Premium Sonderedition 8.5.0.28 (D) (HKLM-x32\...\MAGIX Video deluxe 15 Premium Sonderedition D) (Version: 8.5.0.28 - MAGIX AG)
MAGIX Video deluxe 2015 Premium (HKLM\...\{D23C4A4D-F83B-4B7E-B72A-91C41A04833E}) (Version: 14.0.0.140 - MAGIX Software GmbH) Hidden
MAGIX Video deluxe 2015 Premium (HKLM\...\MX.{D23C4A4D-F83B-4B7E-B72A-91C41A04833E}) (Version: 14.0.0.140 - MAGIX Software GmbH)
MAGIX Video deluxe MX Premium (HKLM-x32\...\{D982FFA1-51C2-4187-8EED-563F718536A3}) (Version: 11.0.0.42 - MAGIX AG) Hidden
MAGIX Video deluxe MX Premium (HKLM-x32\...\MAGIX_MSI_Videodeluxe18_premium) (Version: 11.0.0.42 - MAGIX AG)
MAGIX Video deluxe Update (HKLM\...\{DF2CCFB6-908E-436A-866B-F1C32E98A0C4}) (Version: 16.0.4.119 - MAGIX Software GmbH) Hidden
MAGIX Xtreme Foto Designer 6 6.0.27.0 (D) (HKLM-x32\...\MAGIX Xtreme Foto Designer 6 D) (Version: 6.0.27.0 - MAGIX AG)
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Media Go (HKLM-x32\...\{60CDD65B-61AD-4BE4-BEA8-BB2D15534D4B}) (Version: 3.2.191 - Sony)
Media Go Video Playback Engine 2.20.104.05220 (HKLM-x32\...\{78D4C553-4B41-97A5-22B4-2F446987B724}) (Version: 2.20.104.05220 - Sony)
MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)
Mein CEWE FOTOBUCH (HKLM-x32\...\Mein CEWE FOTOBUCH) (Version: 6.3.4 - CEWE Stiftung u Co. KGaA)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.13231.20262 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.43 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.49 - )
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0407-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\OneDriveSetup.exe) (Version: 20.169.0823.0006 - Microsoft Corporation)
Microsoft Support- und Wiederherstellungs-Assistent für Office 365 (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\dacae1bed46e81d5) (Version: 16.0.2514.4 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Teams) (Version: 1.3.00.12058 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27033 (HKLM-x32\...\{cc3a7c63-31fb-4129-9024-63ebefd86a95}) (Version: 14.16.27033.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60825 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.60825 - Microsoft Corporation)
Mozilla Firefox 81.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 81.0.2 (x64 en-US)) (Version: 81.0.2 - Mozilla)
Mozilla Thunderbird 68.12.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 68.12.0 (x86 de)) (Version: 68.12.0 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Mufin MusicFinder Base 1.5.3.255 (D) (HKLM-x32\...\Mufin MusicFinder Base D) (Version: 1.5.3.255 - MAGIX AG)
Music Center (HKLM-x32\...\{75858C2F-423A-47B7-ADD5-81D86530F7AF}) (Version: 1.0.0.08241 - Sony Video & Sound Products Inc.)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.20.0 - NEC Electronics Corporation) Hidden
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.20.0 - NEC Electronics Corporation)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.31.0 - Nikon Corporation)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.4.1 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{757DBE04-3DC8-4741-B10B-4628745E96FE}) (Version: 2.13.6 - Nikon Corporation)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA nView 147.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 147.00 - NVIDIA Corporation)
NVIDIA WMI 2.25.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.25.0 - NVIDIA Corporation)
O&O DiskRecovery (HKLM\...\{D09A1F86-470B-48AE-AAD0-E229A25B3F11}) (Version: 10.0.117 - O&O Software GmbH)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Ontrack EasyRecovery Professional (HKLM-x32\...\{668CC71A-C2AD-4D56-866D-CF300BD1D5BE}_is1) (Version: 11.1.0.0 - Kroll Ontrack Inc.)
Oracle VM VirtualBox 5.1.26 (HKLM\...\{11A88BD5-F059-4743-81D9-1432AC9C3D4E}) (Version: 5.1.26 - Oracle Corporation)
Outlook (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
pCloud Drive (HKLM-x32\...\{C3C0052D-E704-4261-91D5-AEAE31F70EFF}) (Version: 3.8.0.0 - pCloud AG) Hidden
pCloud Drive (HKLM-x32\...\{e30b668e-667b-451c-8072-85674a7ddc54}) (Version: 3.8.0.0 - pCloud AG)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Picture Control Utility 2 (HKLM\...\{C03DA72C-DE1F-4628-9CA0-53AFAE96C05F}) (Version: 2.4.6 - Nikon Corporation)
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.5.1 - Nikon)
Pixum Fotowelt (HKLM-x32\...\Pixum Fotowelt) (Version: 6.4.7 - CEWE Stiftung u Co. KGaA)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7606 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.20.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.20.0 - Renesas Electronics Corporation)
Saal Design Software (HKLM-x32\...\{26B842A7-6A09-5DCF-0805-2B8984C1EA84}) (Version: 4.0 - Saal Digital Fotoservice GmbH) Hidden
Saal Design Software (HKLM-x32\...\SaalDesignSoftware) (Version: 4.0 - Saal Digital Fotoservice GmbH)
Samsung DeX (HKLM-x32\...\{5E2BEDEC-EEE1-49B7-A9D0-6971AFA9B5F2}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{bc458b5f-1945-4287-8fae-353650fd3109}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
Scan (HKLM-x32\...\{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Shotcut (HKLM-x32\...\Shotcut) (Version: 19.12.31 - Meltytech, LLC)
Silver Efex Pro (HKLM-x32\...\Silver Efex Pro) (Version: 1.001 - Nik Software, Inc.)
SILVER projects professional (64-Bit) (HKLM\...\SILVER_PROJECTS_1_3_28B15F1D_is1) (Version: 1.14 - Franzis Verlag GmbH)
SiSoftware Sandra Lite 2012.SP5c (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 18.74.2012.10 - SiSoftware)
Skype Version 8.59 (HKLM-x32\...\Skype_is1) (Version: 8.59 - Skype Technologies S.A.)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.16.15.201610281456 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Spotify (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Spotify) (Version: 1.0.90.268.ga8a0ceb4 - Spotify AB)
Spyder4Pro (HKLM-x32\...\Spyder4Pro) (Version: - )
SpyderPRINT (HKLM-x32\...\SpyderPRINT) (Version: - )
SRWare Iron (64-Bit) Version 85.0.4350.0 (HKLM\...\{BA85A29D-B48E-4826-BAEE-817024E52E29}_is1) (Version: 85.0.4350.0 - SRWare)
SyncBackPro x64 (HKLM-x32\...\SyncBackPro64_is1_is1) (Version: 8.9.15.0 - 2BrightSparks)
Sync-Plus (HKLM\...\Sync-Plus) (Version: 2.0.23.0 - Deutsche Telekom AG)
Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: - )
Synology Cloud Station Drive (HKLM-x32\...\{1654A7C6-25A5-4BED-AABE-8A03E6BD3986}) (Version: 4.0.4203 - Synology)
Synology Photo Station Uploader (remove only) (HKLM-x32\...\Photo Station Uploader) (Version: 1.4.0.080 - Synology)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
TreeSize Free V4.1.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.1.1 - JAM Software)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VideoDownloaderUltimate (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\VideoDownloaderUltimateWinApp) (Version: 1.0.1.151 - Link64)
ViewNX-i (HKLM\...\{C02E1F40-7EB2-4084-991B-EBFC7F586E26}) (Version: 1.4.3 - Nikon Corporation)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
Vivaldi (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Vivaldi) (Version: 3.2.1967.47 - Vivaldi Technologies AS.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WebReg (HKLM-x32\...\{43CDF946-F5D9-4292-B006-BA0D92013021}) (Version: 130.0.132.017 - Hewlett-Packard) Hidden
WhatsApp (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\WhatsApp) (Version: 2.2041.6 - WhatsApp)
WinSCP 5.9.6 (HKLM-x32\...\winscp3_is1) (Version: 5.9.6 - Martin Prikryl)
Wondershare Dr.Fone for Android(Build 5.2.0.24) (HKLM-x32\...\{1DB91A95-C548-4BA5-9D4C-18C7DEAAC39F}_is1) (Version: 5.2.0.24 - Wondershare Software Co.,Ltd.)
Wondershare Flash Gallery Factory Deluxe 5.2.0.14 (HKLM-x32\...\Wondershare Flash Gallery Factory Deluxe_is1) (Version: 5.2.0.14 - Wondershare Software Co.,Ltd.)
WorldsPlayer (HKLM-x32\...\{27BF5556-A718-42FF-BDF9-9EBF4EFCDF10}) (Version: 1.19.20.01 - Worlds.com)
Xperia Companion (HKLM-x32\...\{5b7c1b25-5fb6-442c-a1b5-cb8dfc2267bf}) (Version: 2.8.3.0 - Sony)
Xperia Companion (HKLM-x32\...\{66EABD35-6233-4926-9AB1-AB31CC6BC7D9}) (Version: 2.8.3.0 - Sony) Hidden
Xperia Companion Service (HKLM\...\{E41065E8-67E2-448F-940C-FF9D7C51E4E3}) (Version: 2.8.3.0 - Sony) Hidden
Zoom (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-03-06] (Canon Inc.)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-10-08] (Microsoft Corporation)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-18] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-02] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.9220.0_x64__8wekyb3d8bbwe [2020-10-06] (Microsoft Studios) [MS Ad]
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_3.1.9160.0_x86__8wekyb3d8bbwe [2020-10-06] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-21] (Microsoft Studios) [MS Ad]
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.8.904.0_x64__8wekyb3d8bbwe [2020-10-06] (Microsoft Studios) [MS Ad]
MPEG-2-Videoerweiterung -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-04-20] (Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{1019ADC7-17CB-4489-AFD5-6642C7400ACE}\localserver32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptOIEx64.exe (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Frank\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll () [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{AEECE333-8900-4915-9697-7A0B4034B3D8}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptWbxMS64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{BA58190A-A733-4982-8AE2-E2021F0DD503}\localserver32 -> C:\Users\Frank\AppData\Local\Box\Box Local Com Server\Box.Tools.ActiveX.exe (Box, Inc. -> Box, Inc.)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{BAEE998A-9C95-4966-8E52-DBCA67D8482A}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptoiEnt64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\Frank\AppData\Local\Vivaldi\Application\3.2.1967.47\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{C3741FD4-FABE-4C36-88E7-40C0C09FCE8D}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptWbxMS64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Frank\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{E8D0CE8D-BC70-4025-978F-E86068362730}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptusredt64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{EA47D2DE-76CC-4138-97FF-A62F9D28A341}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptolkadd64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{F6E0DEDD-F6D5-4195-BE2D-AB628A0BBDF4}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptWbxMS64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
SSODL: EldosMountNotificator-cbfs6 - {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} - C:\Windows\system32\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
SSODL-x32: EldosMountNotificator-cbfs6 - {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} - C:\Windows\SysWOW64\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects: Virtual Storage Mount Notification -> {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} => C:\Windows\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} => C:\Windows\SysWOW64\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers: [ pCloudINPROGRESS] -> {D8BFAFBD-B670-4252-9C17-9CF1C64C2BAF} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2017-10-23] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ pCloudINSYNC] -> {8D0C0582-552A-4A6B-9455-DA63E1F329C0} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2017-10-23] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ pCloudNOSYNC] -> {3858ED1B-8F1C-42ED-A8A9-FDBF591E3C6B} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2017-10-23] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs6] -> {B49B3EC8-1E58-44D2-980A-CAC87EE47F95} => C:\Windows\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers: [HitmanPro.Alert Shell Extension] -> {6FAC02B7-77D6-418B-AC11-962C65CDE8DD} => C:\WINDOWS\system32\hmpshell.dll [2020-10-16] (SurfRight B.V. -> SurfRight B.V.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs6] -> {B49B3EC8-1E58-44D2-980A-CAC87EE47F95} => C:\Windows\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ContextMenuExtension] -> {a0b73fac-351f-3948-9d8a-1dad9d870193} => C:\Program Files (x86)\pCloud Drive\ContextMenuHandler.DLL [2019-01-22] (pCloud AG) [Datei ist nicht signiert]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [ContextMenuExtension] -> {a0b73fac-351f-3948-9d8a-1dad9d870193} => C:\Program Files (x86)\pCloud Drive\ContextMenuHandler.DLL [2019-01-22] (pCloud AG) [Datei ist nicht signiert]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2016-02-09] (NVIDIA Corporation -> )
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Keine Datei
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers1_S-1-5-21-2701594914-1762747753-790145204-1000: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll [2016-04-17] () [Datei ist nicht signiert]
ContextMenuHandlers6_S-1-5-21-2701594914-1762747753-790145204-1000: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll [2016-04-17] () [Datei ist nicht signiert]
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/
ShortcutWithArgument: C:\Users\Frank\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b6007676f3e7a2a3\Chromium.lnk -> C:\Program Files\SRWare Iron (64-Bit)\chrome.exe (SRWare) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Frank\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\3373c9ebc3a5e445\Chromium.lnk -> C:\Program Files (x86)\SRWare Iron\chrome.exe (SRWare) -> --profile-directory=Default
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2011-08-09 16:06 - 2012-02-07 14:59 - 000139264 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility Libs\Appearance Pak.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 000274432 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility Libs\CGamma.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 000086016 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility Libs\CSensor.dll
2011-09-22 15:22 - 2012-02-07 14:59 - 000025600 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility Libs\MBSPluginVersionPlugin16724.dll
2011-09-22 15:22 - 2012-02-07 14:59 - 000039936 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility Libs\MBSRegistrationPlugin16724.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 012977947 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility Libs\RBScript.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 000151552 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility Libs\RegEx.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 000098304 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility Libs\Shell.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 000761856 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility Libs\XML.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000056320 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\bz2.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 001130496 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\cairo.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000117760 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\expat.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000222208 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\fontconfig.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000009728 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\libcharset.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000918016 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\libiconv.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000164864 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\libpng16.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000074752 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\zlib1.dll
2017-08-23 15:00 - 2013-01-24 16:24 - 000359936 _____ (CANON INC.) [Datei ist nicht signiert] C:\WINDOWS\System32\CNMN6PPM.DLL
2011-07-12 15:01 - 2012-02-02 14:51 - 000106496 _____ (Datacolor) [Datei ist nicht signiert] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\dccmtr.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 012968974 _____ (FFmpeg Project) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\avcodec-58.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 002427918 _____ (FFmpeg Project) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\avfilter-7.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 002538510 _____ (FFmpeg Project) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\avformat-58.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000557582 _____ (FFmpeg Project) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\avutil-56.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000126478 _____ (FFmpeg Project) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\swresample-3.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000557582 _____ (FFmpeg Project) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\swscale-5.dll
2016-08-12 10:31 - 2016-08-12 10:31 - 000794112 _____ (Gigaset Communications GmbH) [Datei ist nicht signiert] C:\WINDOWS\System32\GQSTSP.tsp
2020-04-18 18:18 - 2020-04-18 18:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2020-04-18 18:18 - 2020-04-18 18:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000055808 _____ (Open Source Software community LGPL) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\pthreadVC2.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 001420800 _____ (Pizzolato Davide - www.xdp.it) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\cximageu.dll
2020-09-17 21:13 - 2020-09-17 21:13 - 004452352 _____ (Samsung Electronics Co., Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\NativeSamsungDexFramework.dll
2020-09-17 21:12 - 2020-09-17 21:12 - 002636800 _____ (Samsung Electronics Co., Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\SCommon.dll
2020-09-17 21:12 - 2020-09-17 21:12 - 006369792 _____ (Samsung Electronics Co., Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\SLocales.dll
2020-05-15 17:21 - 2020-05-15 12:01 - 000072704 _____ (Softdeluxe) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\downloadsbatch.dll
2020-05-15 17:21 - 2020-05-15 12:01 - 003223040 _____ (Softdeluxe) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\downloadsbt.dll
2020-05-15 17:21 - 2020-05-15 12:01 - 000428032 _____ (Softdeluxe) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\downloadsms.dll
2020-05-15 17:21 - 2020-05-15 12:01 - 000282112 _____ (Softdeluxe) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\downloadswww.dll
2020-05-15 17:21 - 2020-05-15 11:57 - 000033792 _____ (Softdeluxe) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\logger.dll
2020-05-15 17:21 - 2020-05-15 12:01 - 000231936 _____ (Softdeluxe) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\vmsclshared.dll
2020-05-15 17:21 - 2020-05-15 11:57 - 000039424 _____ (Softdeluxe) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\winunivappfeatures.dll
2020-10-14 02:49 - 2020-10-14 02:49 - 000793088 _____ (The Apache Software Foundation) [Datei ist nicht signiert] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\c6330c5f9c820bcd873d65c02a332345\log4net.ni.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000527872 _____ (The FreeType Project) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\freetype.dll
2020-05-15 17:21 - 2019-09-27 20:36 - 002826752 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\libcrypto-1_1-x64.dll
2020-05-15 17:21 - 2019-09-27 20:36 - 000680448 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\libssl-1_1-x64.dll
2020-05-15 17:21 - 2020-05-15 12:02 - 006164600 _____ (The Qt Company Oy -> The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Softdeluxe\Free Download Manager\Qt5Core.dll
2017-10-23 17:28 - 2017-10-23 17:28 - 000342016 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll
2016-04-17 09:29 - 2016-04-17 09:29 - 002768384 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000110207 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\BASS.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000019008 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\BASSCD.dll
2020-07-06 16:33 - 2020-07-06 16:33 - 000017472 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Samsung DeX\BASSWMA.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Windows:nlsPreferences [0]
AlternateDataStreams: C:\ProgramData\Temp:014E691E [132]
AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [136]
AlternateDataStreams: C:\Users\Frank\Desktop\FRommel_IPW 2015 vers 0 5.odt:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.de
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.spiegel.de
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> {352101B5-771D-43BF-A499-4B9FE74C37CE} URL =
SearchScopes: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = hxxp://de.search_path.yahoo.com/search_path?p={searchTerms}&fr=chr-comodo&type=33090001005_12.0.0.6818_i_ds
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_261\bin\ssv.dll [2020-10-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-10-16] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> Kein Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Keine Datei
IE Session Restore: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> ist aktiviert.
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\1-2005-search.com -> www.1-2005-search.com
Da befinden sich 12681 mehr Seiten.
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2020-05-08 17:00 - 000450761 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com
Da befinden sich 15465 zusätzliche Einträge.
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Frank\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\dsc_0098 (2).jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei)
ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
MSCONFIG\startupfolder: C:^Users^Frank^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^startup^Synology Cloud Station.lnk => C:\Windows\pss\Synology Cloud Station.lnk.Startup
MSCONFIG\startupreg: AgendaAtOnce => "C:\Program Files (x86)\Agenda At Once\AgendaAtOnce.exe" /m
MSCONFIG\startupreg: pCloud => C:\Program Files (x86)\pCloud Drive\pCloud.exe
MSCONFIG\startupreg: RemoteControl11 => C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Box Edit"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Box Local Com Server"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "XperiaCompanionAgent"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Snap Camera"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Discord"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{9DBF3213-1B22-4581-907D-221768401E0A}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)
FirewallRules: [{31F2426C-08BF-4C12-BD6D-9F21043EA5C9}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)
FirewallRules: [{3D9B8C23-B28C-4275-B029-4A5A8D42B8C2}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)
FirewallRules: [{CC14F6DB-8425-4ADD-9181-1B241F9C3CAA}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{CE9F8902-2B51-42CA-95F3-A4B19D0E76B0}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{67F18940-94CF-4628-A3E4-6BBA56C1F532}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{0FA3DFEC-87AF-41FC-BE7B-413DDDF0BEFC}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{309321EF-913E-4F7A-9EC0-B3EDC6E652E9}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{05F262D5-E611-4501-AA35-93B7D5348BBE}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{C9DB6157-7610-4486-9BB3-124893CACDA6}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{97907340-EA68-437C-A225-90FFFEB124C7}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [{80370979-9C52-4EFA-B9AE-D8D79256196E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{85CDB2E8-AB25-48D9-9681-2F3D9EAB7B70}] => (Allow) C:\Program Files\MAGIX\Video deluxe 2015 Premium\Videodeluxe.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{0FD1BF49-83A6-4219-8E2A-7AD18580F5CE}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\RpcAgentSrv.exe (SiSoftware Ltd -> SiSoftware) [Datei ist nicht signiert]
FirewallRules: [{1A7C4581-D70F-4C39-AB17-EF118F04B3B0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett-Packard) [Datei ist nicht signiert]
FirewallRules: [{8FD237D3-C5D7-4D55-9CE3-C1CB5D56D163}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe () [Datei ist nicht signiert]
FirewallRules: [{E99CE37F-52FE-4DC0-9BC9-9EC8EFF0547E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett-Packard) [Datei ist nicht signiert]
FirewallRules: [{B9C56C69-B927-4510-AD15-6B86BAF433B3}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\WNt500x64\RpcSandraSrv.exe (SiSoftware Ltd -> SiSoftware) [Datei ist nicht signiert]
FirewallRules: [{40DD64AA-B574-40C5-B69E-E5E846ED8821}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe => Keine Datei
FirewallRules: [{BF73C3F8-5B22-46DF-91E0-BE404CFC630B}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{71F34C44-D8D0-4B84-BC51-0C3CC3B8164F}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{6C1F6D39-ECAB-4882-A9A2-A8AE652DA21F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8D9AB729-5FB1-4184-AC75-AEF1C8FC82E8}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{4437F1BD-D364-4D99-B9AF-719191954122}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{AE0A1187-FC68-4592-B9A9-A50CF53C68EB}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{1AD55AD4-62B4-402B-A160-47B965ACC3AF}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{7A93E2BD-9B48-4719-993F-5846381DA9D5}] => (Allow) C:\Program Files (x86)\t-online.de\Browser 7\Browser7.exe => Keine Datei
FirewallRules: [{AA1C2C9F-C37C-4584-9BBD-6CA2BF44321A}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{5CF5BBE8-3CF0-4B1F-89AD-DC9380BE0FA0}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{ACD0A73E-2C59-4E92-AE36-631F3F75688B}] => (Allow) C:\Program Files\Common Files\MAGIX Services\MxCloudSync\MxCloudSync.exe (MAGIX Software GmbH -> Magix)
FirewallRules: [{59B1816B-6D39-4B4E-99E8-89C03799E03A}] => (Allow) C:\Program Files\Common Files\MAGIX Services\QMxNetworkSync\QMxNetworkSync.exe (MAGIX Software GmbH -> MAGIX)
FirewallRules: [{CEC347BE-7112-455A-A2BE-7D6100B1C5A8}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{16987639-2BE3-43D1-9FED-080524F11DD4}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{76AB137D-37D7-4E03-ADCA-80A5B5F613DE}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{3810BF41-C260-4279-B0B5-A8F06CC3298E}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{A3E82058-DC6D-49D7-BC90-BF5200F7E39E}] => (Allow) C:\Program Files\MAGIX\Video deluxe\2017\Videodeluxe.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{1A8C7473-70BB-4FC4-AEB4-95E5719F8F78}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{BF300CAF-85E8-48FB-B26D-052263C7E9AD}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{ADB2FA65-A538-412F-A704-9E39F34296E8}] => (Allow) C:\Program Files\Telekom\Sync-Plus\Sync-Plus.exe => Keine Datei
FirewallRules: [{4D3CABB9-7075-43E6-872C-239D1682E37C}] => (Allow) C:\Program Files (x86)\pCloud Drive\pCloud.exe (pCloud AG -> pCloud AG)
FirewallRules: [{72541125-26AA-4FB5-A5AA-A04969C3DDB8}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [{EA43B792-8BAB-4C1A-8596-3E2072EBB162}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99FBDE45-2570-4B9F-BB1F-76DA72A99390}] => (Allow) C:\Program Files\Telekom\Sync-Plus\Sync-Plus.exe => Keine Datei
FirewallRules: [{8D6C40D2-D70E-42B1-9B87-D899DB62C62D}] => (Allow) C:\Program Files\Telekom\Sync-Plus\Sync-Plus.exe => Keine Datei
FirewallRules: [{4C2FD22E-F996-4F8A-878A-D0E74D3477D6}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
==================== Wiederherstellungspunkte =========================
16-10-2020 18:05:43 Wiederherstellungsvorgang
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Intel(R) Management Engine Interface
Description: Intel(R) Management Engine Interface
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: MEIx64
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Unbekanntes USB-Gerät (Link in Kompatibilitätsmodus)
Description: Unbekanntes USB-Gerät (Link in Kompatibilitätsmodus)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (10/18/2020 06:45:43 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (10/18/2020 03:14:15 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: taskhostw.exe, Version: 10.0.19041.546, Zeitstempel: 0xc1447320
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.19041.546, Zeitstempel: 0x5b56177b
Ausnahmecode: 0xc000000e
Fehleroffset: 0x0000000000101ed6
ID des fehlerhaften Prozesses: 0x274c
Startzeit der fehlerhaften Anwendung: 0x01d6a4e77cd20be2
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\taskhostw.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: c708031d-541b-473a-8a6e-b3fb6b537b38
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/18/2020 02:32:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SyncPlus.exe, Version: 2.0.23.0, Zeitstempel: 0x5e4a5d52
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.19041.572, Zeitstempel: 0x979ddb1d
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00129ab2
ID des fehlerhaften Prozesses: 0x29d8
Startzeit der fehlerhaften Anwendung: 0x01d6a4e6206e59bf
Pfad der fehlerhaften Anwendung: C:\Program Files\Telekom\Sync-Plus\x86\SyncPlus.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll
Berichtskennung: 26411730-901a-4f13-a292-7c63c25d2563
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/18/2020 02:32:16 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: SyncPlus.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.Xml.XmlException
bei System.Xml.XmlTextReaderImpl.Throw(System.Exception)
bei System.Xml.XmlTextReaderImpl.Throw(System.String, System.String[])
bei System.Xml.XmlTextReaderImpl.ThrowInvalidChar(Char[], Int32, Int32)
bei System.Xml.XmlTextReaderImpl.ParseRootLevelWhitespace()
bei System.Xml.XmlTextReaderImpl.ParseDocumentContent()
bei System.Xml.XmlTextReaderImpl.Read()
bei System.Xml.XmlReader.MoveToContent()
bei System.Xml.Linq.XElement.Load(System.Xml.XmlReader, System.Xml.Linq.LoadOptions)
bei System.Xml.Linq.XElement.Load(System.String, System.Xml.Linq.LoadOptions)
bei SyncPlus.Configuration.ConfigurationStore.Load()
bei SyncPlus.Configuration.ConfigurationManager.GetConfiguration()
bei SyncPlus.Configuration.ConfigurationManager.get_CalendarSyncEnabled()
bei SyncPlus.Ui.SettingsWindow.AdjustApplyButton()
bei SyncPlus.Ui.TrayGui..ctor()
bei SyncPlus.Ui.TrayGui.Main()
Error: (10/17/2020 11:43:57 PM) (Source: COM) (EventID: 10035) (User: )
Description: Der COM-Standardmarshaler war nicht in der Lage, einen Konflikt zwischen der vom Server bereitgestellten IID {618736E0-3C3D-11CF-810C-00AA00389B71} und der vom Client angeforderten IID {00020400-0000-0000-C000-000000000046} mit der Handler-CLSID {03C81F98-E4A0-059C-000C-4C75E8FAB303} zu beheben. Der Fehlercode war 0x800401fd.
Error: (10/17/2020 04:55:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SyncPlus.exe, Version: 2.0.23.0, Zeitstempel: 0x5e4a5d52
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.19041.572, Zeitstempel: 0x979ddb1d
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00129ab2
ID des fehlerhaften Prozesses: 0x29e0
Startzeit der fehlerhaften Anwendung: 0x01d6a4958593a66d
Pfad der fehlerhaften Anwendung: C:\Program Files\Telekom\Sync-Plus\x86\SyncPlus.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll
Berichtskennung: 27a11e1b-31bd-4730-a432-0d5e0c6035e0
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/17/2020 04:55:17 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: SyncPlus.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.Xml.XmlException
bei System.Xml.XmlTextReaderImpl.Throw(System.Exception)
bei System.Xml.XmlTextReaderImpl.Throw(System.String, System.String[])
bei System.Xml.XmlTextReaderImpl.ThrowInvalidChar(Char[], Int32, Int32)
bei System.Xml.XmlTextReaderImpl.ParseRootLevelWhitespace()
bei System.Xml.XmlTextReaderImpl.ParseDocumentContent()
bei System.Xml.XmlTextReaderImpl.Read()
bei System.Xml.XmlReader.MoveToContent()
bei System.Xml.Linq.XElement.Load(System.Xml.XmlReader, System.Xml.Linq.LoadOptions)
bei System.Xml.Linq.XElement.Load(System.String, System.Xml.Linq.LoadOptions)
bei SyncPlus.Configuration.ConfigurationStore.Load()
bei SyncPlus.Configuration.ConfigurationManager.GetConfiguration()
bei SyncPlus.Configuration.ConfigurationManager.get_CalendarSyncEnabled()
bei SyncPlus.Ui.SettingsWindow.AdjustApplyButton()
bei SyncPlus.Ui.TrayGui..ctor()
bei SyncPlus.Ui.TrayGui.Main()
Error: (10/17/2020 04:54:54 PM) (Source: CertEnroll) (EventID: 87) (User: NT-AUTORITÄT)
Description: Fehler bei der SCEP-Zertifikatregistrierung für WORKGROUP\FRANK-CELSIUS$ über https://IFX-KeyId-8ffd47880e239a3a3a20de13edf101e882a9d21d.microsoftaik.azure.net/templates/Aik/scep:
SubmitDone
Submit(Request): Bad Request
{"Message":"Attestation statement cannot be verified, rejecting request. TPM firmware needs update."}
HTTP/1.1 400 Bad Request
Date: Sat, 17 Oct 2020 14:54:52 GMT
Content-Length: 101
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 7457631a-83d6-4bf2-85f0-ea1ea5f4f0b2
Methode: POST(2453ms)
Phase: SubmitDone
Ungültige Anforderung (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST)
Systemfehler:
=============
Error: (10/18/2020 02:57:08 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR1.
Error: (10/18/2020 02:32:50 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Der Computer wurde nach einem schwerwiegenden Fehler neu gestartet. Der Fehlercode war: 0x0000007a (0x0000000000000020, 0xffffffffc000000e, 0xffff998c1a7e60e0, 0x0000000000000000). Ein volles Abbild wurde gespeichert in: C:\WINDOWS\MEMORY.DMP. Berichts-ID: 127fc4d7-1f60-4102-8985-96ed73f31dc8.
Error: (10/18/2020 12:35:00 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR1.
Error: (10/18/2020 12:19:53 AM) (Source: MEIx64) (EventID: 3) (User: )
Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x00004181, FWSTS1: 0x16462100).
Error: (10/18/2020 12:19:37 AM) (Source: MEIx64) (EventID: 3) (User: )
Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x00004181, FWSTS1: 0x16462100).
Error: (10/18/2020 12:19:10 AM) (Source: MEIx64) (EventID: 3) (User: )
Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x00004181, FWSTS1: 0x16462100).
Error: (10/18/2020 12:18:53 AM) (Source: MEIx64) (EventID: 3) (User: )
Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x00004181, FWSTS1: 0x16462100).
Error: (10/18/2020 12:18:36 AM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT-AUTORITÄT)
Description: F:\Device\HarddiskVolume83
Windows Defender:
===================================
Date: 2020-10-08 07:26:09.1190000Z
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.321.1860.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.17300.4
Fehlercode: 0x80240017
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
CodeIntegrity:
===================================
Date: 2020-10-17 16:30:08.8870000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 16:29:39.5610000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 16:29:34.6800000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 16:16:00.4680000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 16:15:59.1750000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 16:01:00.5290000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 16:00:59.1310000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 15:46:48.3390000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Speicherinformationen ===========================
BIOS: FUJITSU // American Megatrends Inc. V5.0.0.9 R1.15.0 for D3348-A1x 07/29/2019
Hauptplatine: FUJITSU D3348-A1
Prozessor: Intel(R) Xeon(R) CPU E5-1620 v3 @ 3.50GHz
Prozentuale Nutzung des RAM: 54%
Installierter physikalischer RAM: 16268.09 MB
Verfügbarer physikalischer RAM: 7418.16 MB
Summe virtueller Speicher: 65420.09 MB
Verfügbarer virtueller Speicher: 53287.22 MB
==================== Laufwerke ================================
Drive c: (System) (Fixed) (Total:463.37 GB) (Free:187.67 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive e: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: () (Fixed) (Total:1862.92 GB) (Free:1052.69 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive y: (MultiMedia) (Fixed) (Total:5588.9 GB) (Free:1684.57 GB) NTFS
Drive z: (Fotos) (Fixed) (Total:5588.9 GB) (Free:1278.47 GB) NTFS
\\?\Volume{2c4804a4-d7d0-11e4-aab2-806e6f6e6963}\ (WINRE) (Fixed) (Total:2 GB) (Free:0.76 GB) NTFS
\\?\Volume{2c4804a6-d7d0-11e4-aab2-806e6f6e6963}\ (HDBR_OS) (Fixed) (Total:7.47 GB) (Free:0.31 GB) NTFS
\\?\Volume{2c4804a7-d7d0-11e4-aab2-806e6f6e6963}\ (HDBR_DRIVER) (Fixed) (Total:4.09 GB) (Free:0.17 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 5589 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: ED4C5177)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (Protective MBR) (Size: 5589 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 212CA17E)
Partition 1: (Active) - (Size=2 GB) - (Type=27)
Partition 2: (Not Active) - (Size=474.9 GB) - (Type=0F Extended)
==================== Ende von Addition.txt =======================
Geändert von cosinus (18.10.2020 um 13:14 Uhr) Grund: code tags korrigiert |
|
| Themen zu Proxy Trojaner vermutet (betrifft aber nur den SWRiron Browser) http://http=127.0.0.1 Port: 8082 (post #1) |
| .dll, browser, canon, defender, desktop, firefox, flash player, internet, mozilla, mp3, photoshop, port, programm, proxy, proxy virus, prozesse, realtek, registry, scan, security, software, system, temp, trojaner, updates, usb, vivaldi, windows |
Linear-Darstellung
