| |
| |||||||
Log-Analyse und Auswertung: Verbale Drohung mit SperrungWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
23.08.2022, 14:35
| #1 |
 |  Verbale Drohung mit Sperrung Hi, heute morgen folgende "Fehlermeldung": "Der Zugriff auf diesen Computer wurde aus Sicherheitsgründen gesperrt. Rufen sie sofort 06106 7059 727 an sonst wird ihr computer gesperrt ?!" Ich habe einfach rebootet. Ich wundere mich aber, wieso das den defender ueberwinden kann. Ich habe noch Malwarebytes installiert, aber der findet nichts. Oder schlicht ignorieren oder ernst nehmen? Anbei Logfiles Frst64. Ich habe angerufen um mal zu hören, was sie wollen: 139 E um einen schädlichen Virus zu entfernen wohl ihren eigenen die Idioten. Nach reboot ist das nicht mehr aufgetreten. Ist da ein Sicherheitsloch? JB Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 14.03.2018
durchgeführt von 49157 (Administrator) auf DESKTOP-1V0T2E4 (23-08-2022 15:14:28)
Gestartet von C:\Users\49157\OneDrive\Desktop
Geladene Profile: 49157 (Verfügbare Profile: 49157)
Platform: Windows 10 Pro Version 2009 19044.1889 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
konnte nicht auf den Prozess zugreifen -> Registry
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\SgrmBroker.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
() C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.536.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthSystray.exe
(Space Sciences Laboratory) C:\Program Files\BOINC\boinctray.exe
(Space Sciences Laboratory) C:\Program Files\BOINC\boincmgr.exe
(Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
(Space Sciences Laboratory) C:\Program Files\BOINC\boinc.exe
(Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
(Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\89.0.4447.64\opera_crashreporter.exe
(Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Opera Software) C:\Users\49157\AppData\Local\Programs\Opera GX\opera.exe
(Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
(Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
(Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
(Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
(Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe
(Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe
(Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe
(Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
(Obyte) C:\Users\49157\AppData\Local\Programs\obyte\Obyte.exe
(Obyte) C:\Users\49157\AppData\Local\Programs\obyte\Obyte.exe
(Obyte) C:\Users\49157\AppData\Local\Programs\obyte\Obyte.exe
(Obyte) C:\Users\49157\AppData\Local\Programs\obyte\Obyte.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
(Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\ProgramData\BOINC\projects\www.worldcommunitygrid.org\wcgrid_mcm1_map_7.61_windows_x86_64
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Don HO don.h@free.fr) C:\Program Files (x86)\Notepad++\notepad++.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Users\49157\AppData\Local\Microsoft\OneDrive\22.156.0724.0002\FileCoAuth.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD.EXE
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SecurityHealth] => C:\Windows\system32\SecurityHealthSystray.exe [86016 2019-12-07] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1794888 2015-06-29] (NVIDIA Corporation)
HKLM\...\Run: [boinctray] => C:\Program Files\BOINC\boinctray.exe [70472 2020-09-02] (Space Sciences Laboratory)
HKLM\...\Run: [boincmgr] => C:\Program Files\BOINC\boincmgr.exe [8281416 2020-09-02] (Space Sciences Laboratory)
HKLM-x32\...\Run: [ss_global] => C:\Program Files (x86)\FunPlus\State of Survival\Launcher.exe [6423240 2022-07-07] (FunPlus, Inc.)
HKU\S-1-5-21-816154916-3218668794-2224896612-1001\...\Run: [Opera GX Stable] => C:\Users\49157\AppData\Local\Programs\Opera GX\launcher.exe [2462712 2022-07-25] (Opera Software)
HKU\S-1-5-21-816154916-3218668794-2224896612-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\49157\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software)
HKU\S-1-5-21-816154916-3218668794-2224896612-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2158928 2022-08-18] (Wargaming.net)
HKU\S-1-5-21-816154916-3218668794-2224896612-1001\...\Run: [RetroShare] => C:\Program Files\RetroShare\retroshare.exe [22001664 2021-03-14] ()
HKU\S-1-5-21-816154916-3218668794-2224896612-1001\...\Run: [MicrosoftEdgeAutoLaunch_8C3649A853E4FE9BF1FEE7E8B08B8FCB] => C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [3827128 2022-08-18] (Microsoft Corporation)
HKU\S-1-5-21-816154916-3218668794-2224896612-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Technologies S.A.)
HKU\S-1-5-21-816154916-3218668794-2224896612-1001\...\MountPoints2: {795aadb7-dc0d-11ec-89c0-6c626dc6b811} - "I:\DTLplus_Launcher.exe"
HKU\S-1-5-21-816154916-3218668794-2224896612-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\boinc.scr [957256 2020-09-02] (Space Sciences Laboratory)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Als een item is opgenomen in de fixlist, zal een registeritem worden verwijderd of hersteld naar de standaard waarde.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{ce035653-d185-4365-97b6-fc6cfc7e6fa2}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\104.0.1293.63\BHO\ie_to_edge_bho_64.dll [2022-08-18] (Microsoft Corporation)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\104.0.1293.63\BHO\ie_to_edge_bho.dll [2022-08-18] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: q34omxor.default
FF ProfilePath: Profiles/q34omxor.default [nicht gefunden] <==== ACHTUNG
FF ProfilePath: C:\Users\49157\AppData\Roaming\Mozilla\Firefox\Profiles\q34omxor.default [2022-07-06]
FF ProfilePath: C:\Users\49157\AppData\Roaming\Mozilla\Firefox\Profiles\tun22ddy.default-release [2022-08-23]
FF Homepage: Mozilla\Firefox\Profiles\tun22ddy.default-release -> hxxps://www.amazon.de/gp/video/detail/B01BEKR93A/ref=atv_dp_season_select_s5
FF NewTabOverride: Mozilla\Firefox\Profiles\tun22ddy.default-release -> Enabled: {5b1a796b-231a-4ad1-84ff-918db0818207}
FF Extension: (Malwarebytes Browser Guard) - C:\Users\49157\AppData\Roaming\Mozilla\Firefox\Profiles\tun22ddy.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-08-18]
FF Extension: (Startpage Privatsphäre-Schutz) - C:\Users\49157\AppData\Roaming\Mozilla\Firefox\Profiles\tun22ddy.default-release\Extensions\{5b1a796b-231a-4ad1-84ff-918db0818207}.xpi [2022-07-08]
FF Extension: (Tab Slideshow WE) - C:\Users\49157\AppData\Roaming\Mozilla\Firefox\Profiles\tun22ddy.default-release\Extensions\{ff4c3ef4-7337-4e7f-aa99-77ed911ef8b1}.xpi [2022-03-23]
FF Extension: (DoH Roll-Out) - C:\Program Files\Mozilla Firefox\browser\features\doh-rollout@mozilla.org.xpi [2022-04-05] [ist nicht signiert]
FF Extension: (Picture-In-Picture) - C:\Program Files\Mozilla Firefox\browser\features\pictureinpicture@mozilla.org.xpi [2022-07-27] [ist nicht signiert]
FF Extension: (WebCompat Reporter) - C:\Program Files\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2022-07-27] [ist nicht signiert]
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-29] (NVIDIA Corporation)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AarSvc; C:\Windows\System32\AarSvc.dll [461824 2022-08-10] (Microsoft Corporation)
S3 AarSvc; C:\Windows\SysWOW64\AarSvc.dll [352256 2022-08-10] (Microsoft Corporation)
R3 AarSvc_1288193; C:\Windows\system32\svchost.exe [55320 2022-07-13] (Microsoft Corporation)
R3 AarSvc_1288193; C:\Windows\SysWOW64\svchost.exe [46504 2022-07-13] (Microsoft Corporation)
S2 Apache2.4; C:\xampp\apache\bin\httpd.exe [29696 2021-12-17] (Apache Software Foundation) [Datei ist nicht signiert]
S3 autotimesvc; C:\Windows\System32\autotimesvc.dll [114176 2021-10-06] (Microsoft Corporation)
S3 BcastDVRUserService; C:\Windows\System32\BcastDVRUserService.dll [1384960 2022-07-13] (Microsoft Corporation)
S3 BcastDVRUserService_1288193; C:\Windows\system32\svchost.exe [55320 2022-07-13] (Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S3 BcastDVRUserService_1288193; C:\Windows\SysWOW64\svchost.exe [46504 2022-07-13] (Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S3 BluetoothUserService; C:\Windows\System32\Microsoft.Bluetooth.UserService.dll [500736 2021-10-06] (Microsoft Corporation)
S3 BluetoothUserService_1288193; C:\Windows\system32\svchost.exe [55320 2022-07-13] (Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S3 BluetoothUserService_1288193; C:\Windows\SysWOW64\svchost.exe [46504 2022-07-13] (Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
R2 BrokerInfrastructure; C:\Windows\System32\psmsrv.dll [247296 2021-10-06] (Microsoft Corporation)
S3 BTAGService; C:\Windows\System32\BTAGService.dll [1023488 2021-10-06] (Microsoft Corporation)
S3 BTAGService; C:\Windows\SysWOW64\BTAGService.dll [733696 2021-10-06] (Microsoft Corporation)
R3 BthAvctpSvc; C:\Windows\System32\BthAvctpSvc.dll [391168 2022-04-13] (Microsoft Corporation)
S3 CaptureService; C:\Windows\System32\CaptureService.dll [130560 2021-10-06] (Microsoft Corporation)
S3 CaptureService_1288193; C:\Windows\system32\svchost.exe [55320 2022-07-13] (Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S3 CaptureService_1288193; C:\Windows\SysWOW64\svchost.exe [46504 2022-07-13] (Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S3 cbdhsvc; C:\Windows\System32\cbdhsvc.dll [1025024 2022-02-11] (Microsoft Corporation)
R3 cbdhsvc_1288193; C:\Windows\system32\svchost.exe [55320 2022-07-13] (Microsoft Corporation)
R3 cbdhsvc_1288193; C:\Windows\SysWOW64\svchost.exe [46504 2022-07-13] (Microsoft Corporation)
S3 cloudidsvc; C:\Windows\system32\cloudidsvc.dll [107520 2022-08-10] (Microsoft Corporation)
S3 ConsentUxUserSvc; C:\Windows\System32\ConsentUxClient.dll [170496 2021-10-06] (Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc; C:\Windows\system32\CredentialEnrollmentManager.exe [382696 2021-10-06] (Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc_1288193; C:\Windows\system32\CredentialEnrollmentManager.exe [382696 2021-10-06] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\Windows\System32\deviceaccess.dll [250000 2022-08-10] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\Windows\SysWOW64\deviceaccess.dll [195240 2022-08-10] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc_1288193; C:\Windows\system32\svchost.exe [55320 2022-07-13] (Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S3 DeviceAssociationBrokerSvc_1288193; C:\Windows\SysWOW64\svchost.exe [46504 2022-07-13] (Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S3 DevicePickerUserSvc; C:\Windows\System32\Windows.Devices.Picker.dll [484352 2022-07-13] (Microsoft Corporation)
S3 DevicePickerUserSvc; C:\Windows\SysWOW64\Windows.Devices.Picker.dll [342016 2022-07-13] (Microsoft Corporation)
S4 DialogBlockingService; C:\Windows\System32\DialogBlockingService.dll [76288 2022-06-03] (Microsoft Corporation)
R2 DispBrokerDesktopSvc; C:\Windows\System32\DispBroker.Desktop.dll [379392 2022-03-09] (Microsoft Corporation)
S3 DisplayEnhancementService; C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [1192448 2021-10-06] (Microsoft Corporation)
S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [214952 2021-08-06] (Microsoft Corporation)
S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [214952 2021-08-06] (Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [260256 2022-01-28] (HP Inc.)
S3 LxpSvc; C:\Windows\System32\LanguageOverlayServer.dll [302080 2021-10-06] (Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8726344 2022-08-17] (Malwarebytes)
S3 McpManagementService; C:\Windows\System32\McpManagementService.dll [258048 2022-07-13] (Microsoft Corporation)
S3 MicrosoftEdgeElevationService; C:\Program Files (x86)\Microsoft\Edge\Application\104.0.1293.63\elevation_service.exe [1705912 2022-08-18] (Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\Windows\System32\MixedRealityRuntime.dll [134768 2021-10-06] (Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\Windows\SysWOW64\MixedRealityRuntime.dll [104824 2021-10-06] (Microsoft Corporation)
S3 perceptionsimulation; C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe [106496 2021-10-06] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-10] (Microsoft Corporation)
R2 SgrmBroker; C:\Windows\system32\SgrmBroker.exe [329504 2021-10-06] (Microsoft Corporation)
S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [382976 2021-10-06] ()
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16187368 2022-05-11] (TeamViewer Germany GmbH)
S3 TroubleshootingSvc; C:\Windows\system32\MitigationClient.dll [487936 2022-06-03] (Microsoft Corporation)
S4 tzautoupdate; C:\Windows\SysWOW64\tzautoupdate.dll [73728 2021-10-06] (Microsoft Corporation)
S3 UdkUserSvc; C:\Windows\System32\windowsudk.shellcommon.dll [2240000 2022-06-03] (Microsoft Corporation)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [346448 2022-03-23] (Microsoft Corporation)
R2 UsoSvc; C:\Windows\system32\usosvc.dll [570368 2022-08-10] (Microsoft Corporation)
S3 VacSvc; C:\Windows\System32\vac.dll [382720 2021-10-06] (Microsoft Corporation)
R3 WaaSMedicSvc; C:\Windows\System32\WaaSMedicSvc.dll [433152 2022-08-10] (Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Corporation)
S3 wisvc; C:\Windows\SysWOW64\flightsettings.dll [753568 2022-08-10] (Microsoft Corporation)
S3 WManSvc; C:\Windows\system32\Windows.Management.Service.dll [824320 2022-08-10] (Microsoft Corporation)
S3 WpcMonSvc; C:\Windows\System32\WpcDesktopMonSvc.dll [1870848 2022-05-11] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 Acx01000; C:\Windows\System32\drivers\Acx01000.sys [694272 2022-02-11] (Microsoft Corporation)
R1 afunix; C:\Windows\system32\drivers\afunix.sys [44032 2022-08-10] (Microsoft Corporation)
R1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [30720 2022-08-10] (Microsoft Corporation)
S3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [18432 2019-12-07] (Advanced Micro Devices, Inc)
S3 amdi2c; C:\Windows\System32\drivers\amdi2c.sys [45568 2019-12-07] (Advanced Micro Devices, Inc)
R1 BasicDisplay; C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_65ab9a260dbf7467\BasicDisplay.sys [68608 2021-10-06] (Microsoft Corporation)
R1 BasicRender; C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_df49c4daa6251397\BasicRender.sys [38912 2021-10-06] (Microsoft Corporation)
R2 bindflt; C:\Windows\system32\drivers\bindflt.sys [145768 2022-06-15] (Microsoft Corporation)
S3 BthMini; C:\Windows\System32\drivers\BTHMINI.sys [45568 2022-08-10] (Microsoft Corporation)
R1 CimFS; C:\Windows\System32\Drivers\CimFS.sys [93696 2022-05-11] ()
R3 e1i65x64; C:\Windows\System32\drivers\e1i65x64.sys [553984 2019-12-07] (Intel Corporation)
S3 genericusbfn; C:\Windows\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [23040 2019-12-07] (Microsoft Corporation)
S3 hidspi; C:\Windows\System32\drivers\hidspi.sys [66560 2019-12-07] (Microsoft Corporation)
S4 hvcrash; C:\Windows\System32\drivers\hvcrash.sys [35128 2019-12-07] (Microsoft Corporation)
S3 iaLPSS2i_GPIO2_CNL; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2019-12-07] (Intel Corporation)
S3 iaLPSS2i_GPIO2_GLK; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2019-12-07] (Intel Corporation)
S3 iaLPSS2i_I2C_CNL; C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys [177152 2019-12-07] (Intel Corporation)
S3 iaLPSS2i_I2C_GLK; C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2019-12-07] (Intel Corporation)
S0 iaStorAVC; C:\Windows\System32\drivers\iaStorAVC.sys [884752 2019-12-07] (Intel Corporation)
S3 intelpmax; C:\Windows\System32\drivers\intelpmax.sys [30720 2019-12-07] (Microsoft Corporation)
S0 ItSas35i; C:\Windows\System32\drivers\ItSas35i.sys [172344 2019-12-07] (Avago Technologies)
R2 LdVBoxDrv; C:\Program Files\ldplayerbox\LdVBoxDrv.sys [315232 2022-07-11] (Oracle Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2022-08-17] (Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-07-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-07-05] (Malwarebytes)
S3 MbbCx; C:\Windows\System32\drivers\MbbCx.sys [386048 2022-04-13] (Microsoft Corporation)
S0 megasas35i; C:\Windows\System32\drivers\megasas35i.sys [105480 2019-12-07] (Avago Technologies)
S3 Microsoft_Bluetooth_AvrcpTransport; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [65024 2019-12-07] (Microsoft Corporation)
R3 MsQuic; C:\Windows\System32\drivers\msquic.sys [322376 2021-10-06] (Microsoft Corporation)
S3 NDKPing; C:\Windows\System32\drivers\NDKPing.sys [72720 2019-12-07] (Microsoft Corporation)
S0 nvdimm; C:\Windows\System32\drivers\nvdimm.sys [168464 2019-12-07] (Microsoft Corporation)
S3 PktMon; C:\Windows\System32\drivers\PktMon.sys [131424 2022-05-11] (Microsoft Corporation)
S3 portcfg; C:\Windows\System32\drivers\portcfg.sys [27136 2019-12-07] (Microsoft Corporation)
R0 SgrmAgent; C:\Windows\System32\drivers\SgrmAgent.sys [88080 2019-12-07] (Microsoft Corporation)
S0 SmartSAMD; C:\Windows\System32\drivers\SmartSAMD.sys [209720 2019-12-07] (Microsemi Corportation)
S3 smbdirect; C:\Windows\System32\DRIVERS\smbdirect.sys [172544 2019-12-07] (Microsoft Corporation)
S3 spaceparser; C:\Windows\System32\drivers\spaceparser.sys [26624 2019-12-07] (Microsoft Corporation)
R0 Telemetry; C:\Windows\System32\drivers\IntelTA.sys [26608 2021-10-06] (Microsoft Corporation)
S3 UcmUcsiAcpiClient; C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys [36864 2019-12-07] (Microsoft Corporation)
S3 UcmUcsiCx0101; C:\Windows\System32\Drivers\UcmUcsiCx.sys [113152 2021-10-06] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\DriverStore\FileRepository\uefi.inf_amd64_c1628ffa62c8e54c\UEFI.sys [34104 2019-12-07] (Microsoft Corporation)
S3 UfxChipidea; C:\Windows\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_1c78775fffab6a0a\UfxChipidea.sys [110608 2019-12-07] (Microsoft Corporation)
R3 umbus; C:\Windows\System32\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys [58368 2019-12-07] (Microsoft Corporation)
S3 UrsChipidea; C:\Windows\System32\DriverStore\FileRepository\urschipidea.inf_amd64_78ad1c14e33df968\urschipidea.sys [32056 2019-12-07] (Microsoft Corporation)
S3 UrsSynopsys; C:\Windows\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_057fa37902020500\urssynopsys.sys [29496 2019-12-07] (Microsoft Corporation)
S3 usbaudio2; C:\Windows\System32\drivers\usbaudio2.sys [260608 2019-12-07] (Microsoft Corporation)
R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [817672 2022-03-14] (IDRIX)
S3 VirtualRender; C:\Windows\System32\DriverStore\FileRepository\vrd.inf_amd64_81fbd405ff2470fc\vrd.sys [11264 2019-12-07] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Corporation)
S3 WdmCompanionFilter; C:\Windows\System32\drivers\WdmCompanionFilter.sys [23560 2019-12-07] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
NETSVC: TroubleshootingSvc -> C:\Windows\system32\MitigationClient.dll (Microsoft Corporation)
NETSVC: LxpSvc -> C:\Windows\System32\LanguageOverlayServer.dll (Microsoft Corporation)
NETSVC: WManSvc -> C:\Windows\system32\Windows.Management.Service.dll (Microsoft Corporation)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-08-18 12:54 - 2022-08-18 12:54 - 000459899 _____ C:\Users\49157\Downloads\FLT_2_FVHGBM22673_0.pdf
2022-08-17 14:35 - 2022-08-17 14:35 - 000223176 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2022-08-16 16:12 - 2022-08-16 16:13 - 001293380 _____ C:\Windows\Minidump\081622-16187-01.dmp
2022-08-12 10:56 - 2022-08-12 10:56 - 000000000 ____D C:\Windows\System32\Tasks\Mozilla
2022-08-12 10:39 - 2022-08-12 11:40 - 000000000 ____D C:\Program Files (x86)\Silkroad
2022-08-12 10:38 - 2022-08-12 10:38 - 1665511584 _____ C:\Users\49157\Downloads\SilkroadOnlineGlobal_Official_v1_592 (1).exe
2022-08-12 10:38 - 2022-08-12 10:38 - 000000000 _____ C:\Users\49157\Downloads\Nicht bestätigt 221248.crdownload
2022-08-11 12:06 - 2022-08-16 16:12 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-08-10 20:18 - 2022-08-10 20:18 - 026268672 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 024272384 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 023448576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 019865600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 018767872 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 018082304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 010849104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 009486848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 008903416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 007716864 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 007647832 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 006920704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 006502400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 006424064 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 006374128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 005357144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 004999680 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 004799856 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 004749824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 004630384 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 004500768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 004408832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 004374224 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 004305920 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 004009472 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 003906560 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 003819520 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 003813376 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 003769344 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 003656704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 003560224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 003407360 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002991456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 002949192 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002846552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 002818560 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002812928 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2022-08-10 20:18 - 2022-08-10 20:18 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2022-08-10 20:18 - 2022-08-10 20:18 - 002752512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 002624848 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002606592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002522120 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002493440 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002433024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002404712 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.AppAgent.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002341816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002314752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002272664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002221568 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppAgent.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002202864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002146304 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002031976 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 002009952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 002007040 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSvc.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001965288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001957576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001953792 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 001948160 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001876952 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001839104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001793536 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001772544 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001762664 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001752480 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001688064 _____ (Microsoft Corporation) C:\Windows\system32\MoUsoCoreWorker.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 001681208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001679872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001658880 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001645920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.AppAgent.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001635248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001623304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001588576 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001577320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 001573224 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 001542480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001542304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001532456 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001439744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 001413120 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 001384192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001378816 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001375232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdprt.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001353304 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001345376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001331544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContentDeliveryManager.Utilities.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001315328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001302648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001290208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001270120 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 001245184 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001234944 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001223168 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001220096 _____ (Microsoft Corporation) C:\Windows\system32\AgentService.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 001217536 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CommonBridge.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001206528 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 001185112 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001136408 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001129592 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 001099776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001083392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001071616 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001054208 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2022-08-10 20:18 - 2022-08-10 20:18 - 001028608 _____ (Microsoft Corporation) C:\Windows\system32\refsutil.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 001015952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001015808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001014368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001011280 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001011040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 001010264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000966656 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000962048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000961704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000957952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000944640 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000944128 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2022-08-10 20:18 - 2022-08-10 20:18 - 000935424 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000925720 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000914168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000906240 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000897024 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000896096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000891904 _____ (Microsoft Corporation) C:\Windows\system32\CustomShellHost.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000887296 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000874336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000846848 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000839168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000821272 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000809320 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000805888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000787968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000784384 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000770560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000766000 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000763392 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000762880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000757088 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000756736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000753568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000752520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000745472 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000737280 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistCacheProvider.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000721576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000712192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000703488 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000700896 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000686592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000681984 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000678760 _____ (Microsoft Corporation) C:\Windows\system32\computecore.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000671744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\agentactivationruntime.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000671744 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000650240 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000649232 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\agentactivationruntimewindows.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000641896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000637712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000630696 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000619008 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000615424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000606720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_9.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000601168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000597504 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000593920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000591360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000586592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000583144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000582656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2022-08-10 20:18 - 2022-08-10 20:18 - 000570368 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000560880 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000551936 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000549376 _____ (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000547328 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000544256 _____ (Microsoft Corporation) C:\Windows\system32\IESettingSync.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000543576 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000533552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000532008 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000529920 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000526336 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000517120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000503632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2022-08-10 20:18 - 2022-08-10 20:18 - 000502272 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2022-08-10 20:18 - 2022-08-10 20:18 - 000499200 _____ (Microsoft Corporation) C:\Windows\system32\msdt.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\QuietHours.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000477808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\PrintWorkflowService.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000460200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000450904 _____ (Microsoft Corporation) C:\Windows\system32\fclip.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2022-08-10 20:18 - 2022-08-10 20:18 - 000448000 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000447832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000439808 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000434176 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMPOSE.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000432472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000432128 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000424960 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000424448 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSh.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000424272 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000420864 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000420400 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000409432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000409096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000402944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000402944 _____ (Microsoft Corporation) C:\Windows\system32\LicensingDiagSpp.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000402432 _____ (Microsoft Corporation) C:\Windows\system32\hnetcfg.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000399872 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000398336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000390144 _____ (Microsoft Corporation) C:\Windows\system32\AppLockerCSP.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdt.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000382800 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000381952 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000380928 _____ (Microsoft Corporation) C:\Windows\system32\Print.PrintSupport.Source.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\NotificationControllerPS.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000372224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintWorkflowService.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingDiagSpp.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000354816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000354816 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000352256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AarSvc.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000351232 _____ (Microsoft Corporation) C:\Windows\system32\fveui.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000349696 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HrtfApo.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000337920 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000333824 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000330752 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000324880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000318976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000318464 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000316584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000311984 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000308584 _____ (Microsoft Corporation) C:\Windows\system32\computestorage.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000295280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000292864 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000286720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Print.PrintSupport.Source.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcomapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasppp.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000276992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppLockerCSP.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000268640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000265728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000258560 _____ (Microsoft Corporation) C:\Windows\system32\FXST30.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000252928 _____ (Microsoft Corporation) C:\Windows\system32\feclient.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000242176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000241200 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000233984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\sdiageng.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000231440 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2022-08-10 20:18 - 2022-08-10 20:18 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000229888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\gpresult.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistCleaner.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000223552 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000221592 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.V2.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\fwbase.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000214344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeManagerObj.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000212312 _____ (Microsoft Corporation) C:\Windows\system32\ServicingUAPI.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000210776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000209920 _____ (Microsoft Corporation) C:\Windows\system32\cic.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000205824 _____ (Microsoft Corporation) C:\Windows\system32\DiagSvc.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000203568 _____ (Microsoft Corporation) C:\Windows\system32\KerbClientShared.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000201216 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000201216 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000196808 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000195240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdiageng.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000190592 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeHelper.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000186728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000186704 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\mmcbase.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\FXSUTILITY.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000184368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.V2.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000183296 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DeviceEncryptionHandlers.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000181760 _____ (Microsoft Corporation) C:\Windows\system32\profsvcext.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000181088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerDeviceEncryption.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000176608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeHelper.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\drvsetup.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cic.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000162304 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\StorageUsage.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000161720 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCompanionHost.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000150832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.HardwareId.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000150320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KerbClientShared.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netjoin.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\iassvcs.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcbase.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\pcwutl.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000136704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\mmcshext.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000136040 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000134776 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvsetup.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000133792 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\rekeywiz.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000120168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmcl.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\updatecsp.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcshext.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000107976 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSXP32.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000098144 _____ (Microsoft Corporation) C:\Windows\system32\taskhostw.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000094008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000093184 _____ (Microsoft Corporation) C:\Windows\system32\Print.Workflow.Source.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000093032 _____ (Microsoft Corporation) C:\Windows\system32\DeviceReactivation.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000085232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\FXSROUTE.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Print.Workflow.Source.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000070792 _____ (Microsoft Corporation) C:\Windows\system32\iumcrypt.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000070496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceReactivation.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000070296 _____ (Microsoft Corporation) C:\Windows\system32\NtlmShared.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\ndadmin.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\sdiagschd.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Background.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndadmin.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000062816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GameInput.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\BdeUISrv.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\diagnosticdataquery.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000054264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NtlmShared.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnosticsTool.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.SecurityMitigationsBroker.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dataclen.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afunix.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.SystemManufacturers.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.SecurityMitigationsBroker.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\sdiagnhost.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdiagnhost.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\WinFax.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Drivers\afunix.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinFax.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\appidtel.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidtel.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.Native.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\FXSUNATD.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\applockerfltr.sys
2022-08-10 20:18 - 2022-08-10 20:18 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\pcwrun.exe
2022-08-10 20:18 - 2022-08-10 20:18 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\appinfoext.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-08-10 20:18 - 2022-08-10 20:18 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\FXSEVENT.dll
2022-08-10 20:18 - 2022-08-10 20:18 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2022-08-10 20:17 - 2022-08-10 20:18 - 007983568 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 017561600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 010352944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 009037312 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 005751776 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 005126256 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 003868160 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 003814744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 003749888 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 003350528 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 003307008 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 003283456 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 003182080 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 002975232 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 002892800 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 002657792 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 002505032 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 002430464 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 002250240 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 002244608 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 002220376 _____ (Microsoft Corporation) C:\Windows\system32\clipwinrt.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 002108912 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 002100592 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 002008576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001836544 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001787232 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001764864 _____ (Microsoft Corporation) C:\Windows\system32\cdprt.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001712128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001580544 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001568192 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001560064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 001423872 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001328464 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001272320 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001187160 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001172480 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001119256 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 001104216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 001070936 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000995672 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000995328 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000988104 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000964096 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000940480 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000935424 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000908800 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntime.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000904024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000884224 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntimewindows.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000861496 _____ (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000824320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000822096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000809984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.Schema.Shell.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000797696 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000781824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000745984 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000736256 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000725344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000659968 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000644608 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_9.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000632808 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000600064 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2022-08-10 20:17 - 2022-08-10 20:17 - 000540312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000526336 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000491864 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000474112 _____ (Microsoft Corporation) C:\Windows\system32\HrtfApo.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000461824 _____ (Microsoft Corporation) C:\Windows\system32\AarSvc.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000456024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000421032 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000418816 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000417368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000402944 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000402776 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\licensingdiag.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000382464 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000381952 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000366592 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicCapsule.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000349136 _____ (Microsoft Corporation) C:\Windows\system32\AudioSrvPolicyManager.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\windows.internal.shellcommon.shareexperience.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000272384 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000267264 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000252416 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000250000 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000239960 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SIUF.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000234344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000225104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000220160 _____ (Microsoft Corporation) C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000218464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000214528 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000213856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000209760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000201216 _____ (Microsoft Corporation) C:\Windows\system32\ClipDLS.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000192000 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000189296 _____ (Microsoft Corporation) C:\Windows\system32\ClipRenew.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000187520 _____ (Microsoft Corporation) C:\Windows\system32\Clipc.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000187240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000160768 _____ (Microsoft Corporation) C:\Windows\system32\LicensingCSP.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000134496 _____ (Microsoft Corporation) C:\Windows\system32\oemlicense.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicAgent.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000111616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.ModernDeployment.ConfigProviders.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2022-08-10 20:17 - 2022-08-10 20:17 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\cloudidsvc.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000106336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\AppListBackupLauncher.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000091976 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2022-08-10 20:17 - 2022-08-10 20:17 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\PrinterCleanupTask.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000072016 _____ (Microsoft Corporation) C:\Windows\system32\GameInput.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000057680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\wifidatacapabilityhandler.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthMini.SYS
2022-08-10 20:17 - 2022-08-10 20:17 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\cellulardatacapabilityhandler.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\FaxPrinterInstaller.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000031064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000029184 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicPS.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000026624 _____ (Microsoft Corporation) C:\Windows\system32\autopilotdiag.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000020816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\localui.dll
2022-08-10 20:17 - 2022-08-10 20:17 - 000017752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys
2022-08-10 20:17 - 2022-08-10 20:17 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\PhoneServiceRes.dll
2022-08-10 20:03 - 2022-08-10 20:03 - 000000000 ___HD C:\$WinREAgent
2022-08-10 20:03 - 2022-06-16 05:33 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2022-08-10 20:03 - 2022-06-16 04:59 - 000392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2022-08-04 16:58 - 2022-08-09 17:06 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2022-08-04 15:09 - 2022-08-04 15:09 - 002556344 _____ (Malwarebytes) C:\Users\49157\Downloads\MBSetup(3).exe
2022-08-04 15:09 - 2022-08-04 15:09 - 002556344 _____ (Malwarebytes) C:\Users\49157\Downloads\MBSetup(2).exe
2022-08-04 13:07 - 2022-08-04 13:09 - 001210716 _____ C:\Windows\Minidump\080422-25218-01.dmp
2022-08-03 18:48 - 2022-08-03 18:48 - 000000000 ____D C:\Users\49157\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2022-08-03 18:48 - 2022-08-03 18:48 - 000000000 ____D C:\Users\49157\AppData\Local\Zoom
2022-08-03 18:47 - 2022-08-03 18:47 - 000137600 _____ (Zoom Video Communications, Inc.) C:\Users\49157\Downloads\Zoom_cm_fo42anktZ9vvrZo4_mbh8HG0w0woNcbjrm46Ef-KqLzomnzRaU0R32@M8gy3hj6rvEx7aCi_k27c14f2f94b82567_.exe
2022-08-03 14:28 - 2022-08-03 14:28 - 000000000 ____D C:\Users\49157\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electrum
2022-08-03 14:27 - 2022-08-03 14:28 - 000000000 ____D C:\Program Files (x86)\Electrum
2022-08-03 14:27 - 2022-08-03 14:27 - 032696312 _____ (Electrum) C:\Users\49157\Downloads\electrum-4.2.2-setup.exe
2022-07-31 11:32 - 2022-07-31 11:32 - 000022117 _____ C:\Users\49157\Downloads\Nomic-II-für-den-Matheplaneten.pdf
2022-07-31 11:29 - 2022-07-31 11:29 - 000043419 _____ C:\Users\49157\Downloads\Nomic_Regeln.pdf
2022-07-31 11:29 - 2022-07-31 11:29 - 000043419 _____ C:\Users\49157\Downloads\Nomic_Regeln(1).pdf
2022-07-31 11:11 - 2022-07-31 11:11 - 000021065 _____ C:\Users\49157\Downloads\nomic-2(3).pdf
2022-07-31 11:10 - 2022-07-31 11:10 - 000021065 _____ C:\Users\49157\Downloads\nomic-2(2).pdf
2022-07-31 11:10 - 2022-07-31 11:10 - 000021065 _____ C:\Users\49157\Downloads\nomic-2(1).pdf
2022-07-31 11:06 - 2022-07-31 11:06 - 000021065 _____ C:\Users\49157\Downloads\nomic-2.pdf
2022-07-30 12:03 - 2022-07-30 12:03 - 000059325 _____ C:\Users\49157\Downloads\PB_Kontoauszug_KtoNr_0839267309_26-07-2022_035934.pdf
2022-07-29 11:21 - 2022-08-03 11:52 - 000000026 _____ C:\Windows\system32\installer_prefs.json
2022-07-29 11:21 - 2022-08-03 11:51 - 000000026 _____ C:\Windows\system32\installer_prefs.json.backup
2022-07-28 12:32 - 2022-08-23 15:14 - 000000000 ____D C:\ProgramData\BOINC
2022-07-28 12:32 - 2022-07-28 12:33 - 000000000 ____D C:\Users\49157\AppData\Roaming\BOINC
2022-07-28 12:32 - 2022-07-28 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BOINC
2022-07-28 12:32 - 2022-07-28 12:32 - 000000000 ____D C:\Program Files\BOINC
2022-07-28 12:30 - 2022-07-28 12:30 - 000000000 ____D C:\Windows\Downloaded Installations
2022-07-28 12:29 - 2022-07-28 12:30 - 008983168 _____ (Space Sciences Laboratory, U.C. Berkeley) C:\Users\49157\Downloads\boinc_7.16.11_windows_x86_64__22_1155021_16749544.exe
2022-07-28 11:37 - 2022-08-23 12:03 - 000000000 ____D C:\Users\49157\AppData\Roaming\obyte
2022-07-28 11:37 - 2022-07-28 11:37 - 000002255 _____ C:\Users\49157\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Obyte.lnk
2022-07-28 11:37 - 2022-07-28 11:37 - 000000000 ____D C:\Users\49157\AppData\Local\obyte-updater
2022-07-28 11:27 - 2022-07-28 11:27 - 071439624 _____ (Obyte) C:\Users\49157\Downloads\Obyte.Setup.4.0.0.exe
2022-07-26 15:31 - 2022-07-26 15:31 - 000027217 _____ C:\Users\49157\Downloads\SHIPMENT_LABEL.pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-08-23 15:14 - 2022-07-05 16:23 - 000000000 ____D C:\FRST
2022-08-23 15:05 - 2022-01-04 16:03 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-08-23 14:23 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-08-23 12:07 - 2022-02-10 11:11 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-08-23 12:03 - 2022-01-04 16:39 - 000000000 ____D C:\ProgramData\Mozilla
2022-08-23 12:02 - 2022-01-04 16:39 - 000000000 ____D C:\Users\49157\AppData\LocalLow\Mozilla
2022-08-23 12:02 - 2022-01-04 16:20 - 000000000 ___RD C:\Users\49157\OneDrive
2022-08-22 16:42 - 2022-05-11 11:43 - 000706006 _____ C:\Windows\system32\perfh007.dat
2022-08-22 16:42 - 2022-05-11 11:43 - 000142248 _____ C:\Windows\system32\perfc007.dat
2022-08-22 16:42 - 2022-01-04 16:12 - 001632196 _____ C:\Windows\system32\PerfStringBackup.INI
2022-08-22 16:42 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-08-22 16:38 - 2022-06-25 16:33 - 000000000 ____D C:\Program Files\TeamViewer
2022-08-22 16:38 - 2022-01-04 16:10 - 000000000 ____D C:\ProgramData\NVIDIA
2022-08-22 16:38 - 2022-01-04 16:03 - 000008192 ___SH C:\DumpStack.log.tmp
2022-08-22 16:38 - 2022-01-04 16:03 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-08-22 16:37 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-08-22 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF
2022-08-22 14:37 - 2022-01-04 16:12 - 000000000 ____D C:\Users\49157
2022-08-22 11:38 - 2022-06-09 17:07 - 000000000 ____D C:\Users\49157\AppData\Local\Bisq
2022-08-22 09:37 - 2022-02-08 14:03 - 000000000 ____D C:\Users\49157\AppData\Roaming\Electrum
2022-08-21 14:17 - 2022-01-07 17:59 - 000000000 ____D C:\Users\49157\AppData\Roaming\vlc
2022-08-21 12:11 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-08-21 12:10 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-21 11:12 - 2022-05-24 17:04 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-08-21 11:12 - 2022-01-04 16:04 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-08-21 11:11 - 2022-01-04 16:20 - 000003588 _____ C:\Windows\System32\Tasks\OneDrive Reporting Task-S-1-5-21-816154916-3218668794-2224896612-1001
2022-08-21 11:11 - 2022-01-04 16:20 - 000003378 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-816154916-3218668794-2224896612-1001
2022-08-21 11:11 - 2022-01-04 16:12 - 000002395 _____ C:\Users\49157\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-17 12:23 - 2022-07-11 11:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-08-17 12:22 - 2022-07-11 12:30 - 000000000 ____D C:\Users\49157\.Ld2VirtualBox
2022-08-17 12:22 - 2022-07-11 12:29 - 000000024 _____ C:\Users\49157\AppData\Roaming\changzhi_leidianmac.data
2022-08-17 11:01 - 2022-01-04 16:03 - 000003756 _____ C:\Windows\System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-17 11:01 - 2022-01-04 16:03 - 000003632 _____ C:\Windows\System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-16 16:14 - 2022-01-06 16:36 - 000000000 ____D C:\Windows\Minidump
2022-08-16 16:12 - 2022-01-06 16:36 - 779971365 _____ C:\Windows\MEMORY.DMP
2022-08-16 16:12 - 2022-01-04 16:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-08-12 10:56 - 2022-01-04 16:48 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-08-12 10:41 - 2022-03-07 13:05 - 000000000 ____D C:\Users\49157\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Joymax
2022-08-10 22:12 - 2022-05-09 07:13 - 000267496 _____ C:\Windows\system32\FNTCACHE.DAT
2022-08-10 22:10 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-10 22:10 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-10 22:10 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-08-10 22:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2022-08-10 22:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-08-10 22:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-08-10 22:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2022-08-10 22:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2022-08-10 22:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-08-10 22:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\en-GB
2022-08-10 22:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-08-10 22:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2022-08-10 22:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-08-10 20:23 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-08-10 20:17 - 2022-01-04 16:05 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-08-10 19:57 - 2022-01-04 16:47 - 000000000 ____D C:\Windows\system32\MRT
2022-08-10 19:57 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2022-08-10 19:53 - 2022-01-04 16:47 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-08-04 15:12 - 2022-07-05 19:04 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-08-04 15:12 - 2022-07-05 19:04 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-08-04 15:10 - 2022-07-05 19:02 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-08-04 15:10 - 2022-07-05 19:02 - 000000000 ____D C:\Program Files\Malwarebytes
2022-08-03 21:59 - 2022-01-24 19:32 - 000000000 ____D C:\Users\49157\AppData\Roaming\Zoom
2022-07-28 15:51 - 2022-03-17 11:43 - 000004244 _____ C:\Windows\System32\Tasks\Opera GX scheduled Autoupdate 1647510214
2022-07-28 15:51 - 2022-03-17 11:43 - 000001434 _____ C:\Users\49157\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Opera GX.lnk
2022-07-28 12:32 - 2022-02-08 14:03 - 000000000 ____D C:\Users\49157\AppData\Roaming\NVIDIA
2022-07-28 09:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2022-07-11 12:29 - 2022-07-11 12:29 - 000000064 _____ () C:\Users\49157\AppData\Roaming\changzhi_leidian.data
2022-07-11 12:29 - 2022-08-17 12:22 - 000000024 _____ () C:\Users\49157\AppData\Roaming\changzhi_leidianmac.data
Einige Dateien in TEMP:
====================
2022-07-11 12:25 - 2022-07-11 12:27 - 090394256 ____H (FunPlus, Inc. ) C:\Users\49157\AppData\Local\Temp\sos_acc687bb50.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
C:\Windows\system32\codeintegrity\Bootcat.cache FEHLT <==== ACHTUNG
==================== Ende von FRST.txt ============================
|
| Themen zu Verbale Drohung mit Sperrung |
| .dll, administrator, computer, dateien, defender, entfernen, explorer, fehlermeldung, firefox, homepage, malwarebytes, microsoft, mozilla, nvidia, opera, ordner, prozesse, scan, services.exe, software, svchost.exe, system, virus, windows, wma |
Baum-Darstellung