Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   UCGuard eingefangen, lässt sich nicht entfernen (https://www.trojaner-board.de/183063-ucguard-eingefangen-laesst-entfernen.html)

gate0keeper 20.11.2016 16:43
UCGuard eingefangen, lässt sich nicht entfernen
 
Hallo,


mein neuer Rechner hat sich UCGuard eingefangen und ich werde es nicht mehr los. Ich bin nach Euer Erstanleitung vorgegangen, folgend die Logfiles in je einem Beitrag, da sie zu groß sind.

h bedanke mich schon einmal vorab für Eure Hilfe.


LG, Daniel

gate0keeper 20.11.2016 16:46
FRST im ANhang, ist zu groß

Addition:

Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-11-2016
durchgeführt von Daniel (20-11-2016 16:31:53)
Gestartet von C:\Users\Daniel\Desktop\Malware
Windows 10 Home Version 1607 (X64) (2016-11-13 18:29:26)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3857371912-3165755019-847613773-500 - Administrator - Disabled)
Daniel (S-1-5-21-3857371912-3165755019-847613773-1001 - Administrator - Enabled) => C:\Users\Daniel
DefaultAccount (S-1-5-21-3857371912-3165755019-847613773-503 - Limited - Disabled)
Gast (S-1-5-21-3857371912-3165755019-847613773-501 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
Alt.Binz 0.39.4 (HKLM-x32\...\Alt.Binz) (Version: 0.39.4 - Rdl)
Ansel (Version: 375.70 - NVIDIA Corporation) Hidden
ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.1.13 - ASUSTek Computer Inc)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.15.0003 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.112 - ICEpower a/s)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brackets (HKLM-x32\...\{0ED76FF2-9370-4437-8C51-39F27DD0361B}) (Version: 1.8 - brackets.io)
CloudConvert (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\CloudConvert) (Version:  - Lunaweb Ltd.)
Combined Community Codec Pack 64bit 2015-10-18 (HKLM\...\Combined Community Codec Pack 64bit_is1) (Version: 2015.10.19.0 - CCCP Project)
Dashlane (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Dashlane) (Version: 4.6.3.20593 - Dashlane SAS)
david® Client  (HKLM-x32\...\david® Client) (Version: 12.00a - Tobit.Software)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.3 - ASUSTek Computer Inc.)
Dropbox 25 GB (HKLM-x32\...\{736A97C6-8766-3699-84A9-71736C5E0CE3}) (Version: 3.1.11.0 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.57.1 - Dropbox, Inc.) Hidden
eBay (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\eBay) (Version:  - eBay Inc.)
EVE Online (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\{975d25d5-e53d-4afa-9ec8-db6e8b9cfe94}) (Version: 1.0.0 - CCP)
FileZilla Client 3.22.2.2 (HKLM-x32\...\FileZilla Client) (Version: 3.22.2.2 - Tim Kosse)
Foxit PhantomPDF (HKLM-x32\...\{39263796-F296-43AF-909C-FCF99592BAC4}) (Version: 7.2.52.1209 - Foxit Software Inc.)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.14) (Version: 9.14 - Artifex Software Inc.)
IMDb (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\IMDb) (Version:  - IMDb.com, Inc.)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.11 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10604.207 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1169 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4364 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{C7CD6D54-26AF-4D93-B06F-D81ACE8624CB}) (Version: 6.0.40.0 - Intel Corporation)
Intel(R) WiDi Software Asset Manager (x32 Version: 1.1.347 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{64FD4757-7186-4F12-9AA8-5EE809CAB282}) (Version: 17.1.1532.1814 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{4c8b7360-62a2-4339-b745-41323055d0bb}) (Version: 18.20.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.7466.2038 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 7 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.7.5.0 - Duodian Technology Co. Ltd.)
NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.70 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 4.3.12_ZZZZ (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10143.21278 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7647 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
Solid State Doctor - Asus Edition 3.1.3.9 (HKLM-x32\...\{63327DD6-398B-480F-838D-B7C55E82B1D4}_is1) (Version: 3.1.3.9 - LC Technology International, Inc.)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.70155 Beta - TeamViewer)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.11.570 - ASUS Cloud Corporation)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Windows Driver Package - ASUS (AsusSGDrv) Mouse  (11/11/2015 8.0.0.23) (HKLM\...\FF0137EA2940E916D51DA702B6425126CC7C89BF) (Version: 11/11/2015 8.0.0.23 - ASUS)
Windows Driver Package - BigNox Corporation VBoxUSBMon System  (09/16/2015 4.3.12) (HKLM\...\39F54A37125643D2E1E90FA7D81F36ACC9441510) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
Windows Driver Package - BigNox Corporation XQHDrv System  (09/16/2015 4.3.12) (HKLM\...\0147813640F7AF69F569581EE672B6BE1E71798E) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.1.0 - ASUS)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0100E7FD-5EB7-492E-B167-91E916F30B1F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {0E1523E6-CAB2-485B-8AC9-AEFC1EB450E4} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {157421A9-FB3C-4AFA-9FFF-512C01F8711F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {17781704-2916-4310-864A-245F0C8CEAB8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-11] (Google Inc.)
Task: {37D5E902-2B4C-4199-9978-152D48BB5FB3} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {3984F180-3CD4-4C54-B4D0-E2BB4D30188E} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {39CD21EB-35CB-4512-AA79-269F27FC6E2F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-11] (Dropbox, Inc.)
Task: {40C16C89-5B22-4B8C-9C81-473B802B8152} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-11] (Dropbox, Inc.)
Task: {4946EDF4-0687-4D4B-B641-4317E441D4EC} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {4B461FB9-85A6-46DA-84CC-4629C116A3F6} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-18] (AsusTek)
Task: {4D0CA996-758A-498D-A879-F2E2DD79379F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {55B98368-E604-4474-AEB8-DBBC8D7AF48F} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2015-06-05] (Intel Corporation)
Task: {5EFE99ED-0609-4B85-8F0C-B0FB931A558A} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {60BE0F07-FFC3-41B5-882F-2E324A7B65D6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {61EC3082-1113-4C52-84F7-06C10BD03CDE} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {6430CC72-EBF8-4F8C-AF87-2CCE1878ED23} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2016-01-19] (ASUSTek Computer Inc.)
Task: {719AF2B3-0F3C-442A-AD40-47FF278E6E21} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-02] (Realtek Semiconductor)
Task: {76889A72-0460-4039-BE04-868F62E0B8AD} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {89E300DF-43FF-4939-91CB-45285F8EE911} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {9631D532-5E87-47F4-82F5-55C22C4F6F19} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-02] (Realtek Semiconductor)
Task: {9AEAF006-2239-41F4-B7D2-B90EF1E161F2} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {A2AB61D5-D872-47C1-967A-EAD1E3C91A7B} - System32\Tasks\ASUS\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [2016-09-14] (ASUSTek Computer Inc)
Task: {AA1FEAD2-6BB6-4C28-9138-869379C33D41} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {B424492A-A56B-4EFB-857A-175905372003} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {B76BD0CD-871B-4C3B-B89C-51B60F6C0651} - System32\Tasks\AdobeAAMUpdater-1.0-DANIEL-LAPPI-Daniel => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {C1914B36-E14E-4413-889B-0CF9D246EC90} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-10-25] (NVIDIA Corporation)
Task: {D6B9EC85-29B4-43F8-9C7E-02C645225585} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2016-04-04] ()
Task: {D9180713-B6C3-4854-9560-B3F647A70393} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-11] (Google Inc.)
Task: {DEAB7728-9873-4322-B061-7A6EB4875CC6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-10-25] (NVIDIA Corporation)
Task: {E8F5CCD2-280E-42AB-A0FA-514491C2BB9E} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2016-02-23] (ASUS)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-12 12:06 - 2006-07-19 11:01 - 00099840 _____ () C:\WINDOWS\IMGMSGMO.dll
2015-05-19 09:11 - 2015-05-19 09:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2016-11-12 13:47 - 2016-10-25 21:22 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-11-13 19:38 - 2016-11-13 19:38 - 01864384 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2015-11-19 15:46 - 2015-11-19 15:46 - 01201344 _____ () C:\Program Files (x86)\Foxit PhantomPDF\plugins\FXCrypto64.dll
2016-09-21 21:16 - 2016-09-21 21:16 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-20 14:42 - 2016-11-20 14:42 - 00146944 _____ () C:\Users\Daniel\AppData\Roaming\Chihupyberjesp\Suzaph.dll
2016-11-11 14:09 - 2016-11-10 14:52 - 00536960 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
2016-11-17 13:45 - 2016-11-17 13:45 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-17 13:45 - 2016-11-17 13:45 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-17 13:45 - 2016-11-17 13:45 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-11-20 14:42 - 2016-11-20 14:42 - 00276992 _____ () c:\program files (x86)\drabapythebution\whtcore.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00029184 _____ () C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll
2016-11-12 13:47 - 2016-10-25 20:57 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-12 13:47 - 2016-10-25 20:57 - 02808256 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-12 13:47 - 2016-10-25 21:21 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-12 13:47 - 2016-10-25 20:57 - 00246840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-09-14 16:06 - 2016-09-14 16:06 - 01481728 _____ () C:\Program Files (x86)\ASUS\Giftbox\libglesv2.dll
2016-09-14 16:06 - 2016-09-14 16:06 - 00073728 _____ () C:\Program Files (x86)\ASUS\Giftbox\libegl.dll
2016-09-14 16:06 - 2016-09-14 16:06 - 00239616 _____ () C:\Program Files (x86)\ASUS\Giftbox\node_modules\appcloud-native-utils\anu.node
2016-11-13 19:38 - 2016-11-13 19:38 - 01383616 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2016-11-13 19:38 - 2016-11-13 19:38 - 00118976 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00346496 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00441216 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00471424 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 63181696 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00292736 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 06322048 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 07602560 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 13827456 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 02285440 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00334208 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.6.3.20593.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 60817344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2015-09-18 23:34 - 2015-09-18 23:34 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\localhost -> localhost

==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-10-30 08:24 - 2016-11-20 16:31 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\asus\wallpapers\asus.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{503EB958-CC8A-41C0-8A3E-CD9F338E4E67}D:\spiele\doom 2016\doomx64vk.exe] => (Allow) D:\spiele\doom 2016\doomx64vk.exe
FirewallRules: [TCP Query User{D809933E-A172-49FB-995F-F883B52972CF}D:\spiele\doom 2016\doomx64vk.exe] => (Allow) D:\spiele\doom 2016\doomx64vk.exe
FirewallRules: [UDP Query User{2A25E36B-69B2-4D01-AB8B-C830637529EC}D:\spiele\quantum break\dx11\quantumbreak.exe] => (Allow) D:\spiele\quantum break\dx11\quantumbreak.exe
FirewallRules: [TCP Query User{25F46325-0B53-4F7F-80F7-4BD4D062C4B3}D:\spiele\quantum break\dx11\quantumbreak.exe] => (Allow) D:\spiele\quantum break\dx11\quantumbreak.exe
FirewallRules: [{F5133C28-3CB8-4EE4-A07E-C34DD8E95323}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{453BA9F9-C703-4CF5-8737-5A793CFED059}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{25F5B39B-92A2-4375-BFC0-89C1EA40780D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{743CD073-70F0-4A5D-913A-F0CA3164A708}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{AD2CBCD9-C4DD-4A90-AC0E-6F4DBDC646E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [UDP Query User{BCB25C4D-2B2A-41F9-9979-EE76CF72078F}D:\spiele\quantum break\game\dx11\quantumbreak.exe] => (Block) D:\spiele\quantum break\game\dx11\quantumbreak.exe
FirewallRules: [TCP Query User{A57BA6F8-8831-4A8E-867A-BC74B259C417}D:\spiele\quantum break\game\dx11\quantumbreak.exe] => (Block) D:\spiele\quantum break\game\dx11\quantumbreak.exe
FirewallRules: [UDP Query User{A31DFB79-2FE4-4E3E-9650-F1A34C62505E}D:\spiele\call of duty infinite warfare\iw7_ship.exe] => (Allow) D:\spiele\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [TCP Query User{F63227DB-3CB4-46DD-A82B-3F40B2D7800F}D:\spiele\call of duty infinite warfare\iw7_ship.exe] => (Allow) D:\spiele\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [{DDA3959D-70CC-4EAC-A008-C55E954F3137}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{97471493-F33B-4D83-9779-7816B3A596CB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A6D932F2-78BF-45F3-A0C2-1DD9C5341971}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B51601E2-B10D-4327-AE6C-4F475F92CAD4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{758D054B-9FA2-42FE-B36D-18B365AD32D0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6EE4C259-DFB6-426B-AFC2-9FF91C894185}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{F26F6E94-0E76-4927-8B21-82EBF142722D}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{B8E0DF08-7602-4E3C-9AE1-71CA7284E838}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiAppOld.exe
FirewallRules: [{A3D1C3B4-C2E7-42E5-8AC6-BE34B232690C}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\Next\WirelessDisplay.exe
FirewallRules: [{1795864C-4439-43F8-B2C4-C9E0A204FAF9}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\SmartAgentTest.exe
FirewallRules: [{A32D5548-A2CB-434C-8105-0A59A2F9F3A9}] => (Allow) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
FirewallRules: [TCP Query User{FBBAF9E3-A66A-4E20-9949-DAF8D946BCB7}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{DA40D239-21AF-4415-A204-2A7AB1901575}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [{1DB6D851-B186-4757-8300-7EBB30165DEC}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3396AE47-66E6-4A83-9F42-FD66694449D9}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3C29DC8E-3A5F-4A55-A25E-4A4A9D3ED040}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{3A6534AB-FB52-46CF-A381-AE00ECFE9E37}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{98F68D9E-F81A-4A6C-BB89-92AE473DA9C1}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0270A14B-40C4-4A03-AF3C-7E25241FCBA2}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{E218D7BE-DAB5-4910-80AA-C9BD5CCE3CB4}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{813BB494-B83B-4E3C-80BC-01822CB188A5}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{676D32BF-7EAD-4A31-AAAF-50015C05FD8C}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{3EC93D62-3AB7-4113-BFFF-2FCDBA9809CA}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{0080A997-9B04-4755-958B-D6E113E452DB}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{B91952FD-910F-4325-81F2-2128A33C3C08}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{291BE070-7EBE-4402-BC36-488ADF0A4C89}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{30BDA45C-947B-4821-9AE9-51E3CDD35FFD}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{E46AEE8E-83C2-4434-94C2-EDE4ECF6D688}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{900B3700-3C7B-46FC-B8D7-A421D0BFF6FB}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [TCP Query User{82418E8B-5667-415F-9271-82B0DF667A58}C:\users\daniel\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\daniel\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe
FirewallRules: [{864147E3-FE8A-4C75-81A2-AA00EE21E4D9}] => (Allow) D:\Programme\Doid4X\Droid4X\Droid4X.exe
FirewallRules: [{9D103E7C-9743-47A2-BE44-D86F335AEE40}] => (Allow) D:\Programme\Doid4X\Droid4X\download\MiniThunderPlatform.exe
FirewallRules: [{875F23DD-6C4F-4191-901B-0ED554957E6A}] => (Allow) D:\Programme\Doid4X\Droid4X\download\MiniThunderPlatform.exe
FirewallRules: [{D3424DE1-2F8B-4E59-8B8F-B67F7D73BF5A}] => (Allow) C:\Program Files\Oracle\VirtualBox\vboxheadless.exe
FirewallRules: [{435EE6E6-A54F-40A8-B040-EAF8179D637B}] => (Allow) D:\Programme\NoxAppPlayer\Nox\bin\Nox.exe
FirewallRules: [{5B52BD14-569E-4A90-A29A-014CCB2518E7}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{99E1310E-7B55-427D-8794-2C56B6A9EBEE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{E0B1D176-4A9F-46E2-AED4-B7C4AC3F14FC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{24C9F2A4-581E-4CE5-834B-A4B33105C0DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A0771446-3AC9-4A1C-AF81-E3513657FA9D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5694C93F-D6E2-4851-BFE4-AE28FDCD58C2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{A11C1B93-6702-47EA-A65F-2E0218427CCA}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{D82E0C3E-D29A-4EAE-B18A-8653D6499E56}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [TCP Query User{B5A66176-D38C-4320-ABB3-81FD30997C37}D:\spiele\eve\sharedcache\tq\bin\exefile.exe] => (Allow) D:\spiele\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [UDP Query User{4103919F-0A86-4708-99B5-5985A41CF5E2}D:\spiele\eve\sharedcache\tq\bin\exefile.exe] => (Allow) D:\spiele\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [{8B281CD7-4698-407C-991D-7EBBF07F04C4}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\is-I4F9A.tmp\download\MiniThunderPlatform.exe
FirewallRules: [{D7393346-0F2D-481C-AAF9-B550BDBBE685}] => (Allow) C:\Program Files (x86)\GreatMaker\MaohaWiFi\MaohaWifiSvr.exe
FirewallRules: [{40FA591D-8DB7-4D1B-9A39-F75E1A0746A2}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
FirewallRules: [{BE526E6B-A01A-4671-8A3D-F44277DEE4F8}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/20/2016 04:26:20 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\daniel\appdata\local\temp\creative cloud uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.

Error: (11/20/2016 04:23:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Adobe CEF Helper.exe, Version: 3.9.1.335, Zeitstempel: 0x580f9487
Name des fehlerhaften Moduls: libcef.dll, Version: 3.2171.2069.0, Zeitstempel: 0x551bdc44
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00444106
ID des fehlerhaften Prozesses: 0x1ed0
Startzeit der fehlerhaften Anwendung: 0x01d2434115fe8ae9
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
Berichtskennung: 38bdbf64-d8e8-421b-a56f-948ffc989879
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (11/20/2016 04:16:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\daniel\appdata\local\temp\creative cloud uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.

Error: (11/20/2016 04:16:16 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\Creative Cloud Uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.

Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding  22 2.8.D.D.9.5.6.0.A.2.1.6.4.F.9.A.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Daniel-Lappi-2.local.

Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.2.105:5353  20 2.8.D.D.9.5.6.0.A.2.1.6.4.F.9.A.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Daniel-Lappi.local.

Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding  22 105.2.168.192.in-addr.arpa. PTR Daniel-Lappi-2.local.

Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.2.105:5353  20 105.2.168.192.in-addr.arpa. PTR Daniel-Lappi.local.

Error: (11/20/2016 03:46:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Daniel-Lappi.local already in use; will try Daniel-Lappi-2.local instead

Error: (11/20/2016 03:46:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister    4 Daniel-Lappi.local. Addr 192.168.2.105


Systemfehler:
=============
Error: (11/20/2016 04:24:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/20/2016 04:24:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/20/2016 04:24:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/20/2016 04:24:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/20/2016 04:24:05 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/20/2016 04:23:36 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll

Error: (11/20/2016 04:23:36 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll

Error: (11/20/2016 04:23:33 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll

Error: (11/20/2016 04:23:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Security Assist" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/20/2016 04:23:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2016-11-20 14:40:39.731
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-20 14:40:39.729
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-17 14:05:01.079
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-17 14:05:01.078
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:43:40.743
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:43:40.742
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:42:28.866
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:42:28.865
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-15 19:30:19.816
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-14 20:04:00.813
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Prozentuale Nutzung des RAM: 31%
Installierter physikalischer RAM: 7991.77 MB
Verfügbarer physikalischer RAM: 5495.9 MB
Summe virtueller Speicher: 16695.77 MB
Verfügbarer virtueller Speicher: 14157.13 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:118.48 GB) (Free:51.15 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:654.1 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 05CE14A8)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: B9613EEF)

Partition: GPT.

==================== Ende von Addition.txt ============================

gate0keeper 20.11.2016 16:47
TDSKiller:

Code:
16:32:59.0826 0x1ed8  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
16:32:59.0826 0x1ed8  UEFI system
16:33:02.0498 0x1ed8  ============================================================
16:33:02.0498 0x1ed8  Current date / time: 2016/11/20 16:33:02.0498
16:33:02.0514 0x1ed8  SystemInfo:
16:33:02.0514 0x1ed8 
16:33:02.0514 0x1ed8  OS Version: 10.0.14393 ServicePack: 0.0
16:33:02.0514 0x1ed8  Product type: Workstation
16:33:02.0514 0x1ed8  ComputerName: DANIEL-LAPPI
16:33:02.0514 0x1ed8  UserName: Daniel
16:33:02.0514 0x1ed8  Windows directory: C:\WINDOWS
16:33:02.0514 0x1ed8  System windows directory: C:\WINDOWS
16:33:02.0514 0x1ed8  Running under WOW64
16:33:02.0514 0x1ed8  Processor architecture: Intel x64
16:33:02.0514 0x1ed8  Number of processors: 8
16:33:02.0514 0x1ed8  Page size: 0x1000
16:33:02.0514 0x1ed8  Boot type: Normal boot
16:33:02.0514 0x1ed8  CodeIntegrityOptions = 0x00000001
16:33:02.0514 0x1ed8  ============================================================
16:33:02.0592 0x1ed8  KLMD registered as C:\WINDOWS\system32\drivers\75996787.sys
16:33:02.0592 0x1ed8  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.447, osProperties = 0x19
16:33:02.0702 0x1ed8  System UUID: {9372FE06-1C65-9260-EEE6-3C057C2C8770}
16:33:03.0045 0x1ed8  Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:33:05.0249 0x1ed8  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:33:05.0264 0x1ed8  ============================================================
16:33:05.0264 0x1ed8  \Device\Harddisk0\DR0:
16:33:05.0264 0x1ed8  GPT partitions:
16:33:05.0264 0x1ed8  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {CD41598A-2540-4229-AF17-868A5CDA974B}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x82000
16:33:05.0264 0x1ed8  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {1162E662-13C6-491E-91A9-0605FD58CDDE}, Name: Microsoft reserved partition, StartLBA 0x82800, BlocksNum 0x8000
16:33:05.0264 0x1ed8  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {5D37B476-4001-49A8-9533-85561738E562}, Name: Basic data partition, StartLBA 0x8A800, BlocksNum 0xECF8000
16:33:05.0264 0x1ed8  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {0D7583BA-D8C8-4EBD-B0BB-A52390F626AA}, Name: Basic data partition, StartLBA 0xED82800, BlocksNum 0xF9800
16:33:05.0264 0x1ed8  MBR partitions:
16:33:05.0264 0x1ed8  \Device\Harddisk1\DR1:
16:33:05.0264 0x1ed8  GPT partitions:
16:33:05.0264 0x1ed8  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F4FD9FD5-F141-4620-A302-CA878BB39276}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x74706000
16:33:05.0264 0x1ed8  MBR partitions:
16:33:05.0264 0x1ed8  ============================================================
16:33:05.0264 0x1ed8  C: <-> \Device\Harddisk0\DR0\Partition3
16:33:05.0280 0x1ed8  D: <-> \Device\Harddisk1\DR1\Partition1
16:33:05.0280 0x1ed8  ============================================================
16:33:05.0280 0x1ed8  Initialize success
16:33:05.0280 0x1ed8  ============================================================
16:33:07.0358 0x0354  ============================================================
16:33:07.0358 0x0354  Scan started
16:33:07.0358 0x0354  Mode: Manual;
16:33:07.0358 0x0354  ============================================================
16:33:07.0358 0x0354  KSN ping started
16:33:07.0405 0x0354  KSN ping finished: true
16:33:08.0374 0x0354  ================ Scan system memory ========================
16:33:08.0374 0x0354  System memory - ok
16:33:08.0374 0x0354  ================ Scan services =============================
16:33:08.0436 0x0354  1394ohci - ok
16:33:08.0436 0x0354  3ware - ok
16:33:08.0452 0x0354  ACPI - ok
16:33:08.0452 0x0354  AcpiDev - ok
16:33:08.0452 0x0354  acpiex - ok
16:33:08.0452 0x0354  acpipagr - ok
16:33:08.0452 0x0354  AcpiPmi - ok
16:33:08.0468 0x0354  acpitime - ok
16:33:08.0468 0x0354  ADP80XX - ok
16:33:08.0468 0x0354  AFD - ok
16:33:08.0515 0x0354  [ 021D06851E7AFF5C314039DF813608F3, 081B14840F4AD428B4407AA2E639369A45D174D9507BD107F33FE3A94FB8F8EC ] AGSService      C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
16:33:08.0546 0x0354  AGSService - ok
16:33:08.0561 0x0354  ahcache - ok
16:33:08.0561 0x0354  [ 50910888109FA9C041D9256541BE70EC, 3E907506E386423DBD8DDCB36FDCE4F2FC2F90A522B24BEF60B8ED05F5A3BD0F ] AiCharger      C:\WINDOWS\system32\DRIVERS\AiCharger.sys
16:33:08.0561 0x0354  AiCharger - ok
16:33:08.0577 0x0354  AJRouter - ok
16:33:08.0577 0x0354  ALG - ok
16:33:08.0577 0x0354  AmdK8 - ok
16:33:08.0577 0x0354  AmdPPM - ok
16:33:08.0593 0x0354  amdsata - ok
16:33:08.0593 0x0354  amdsbs - ok
16:33:08.0593 0x0354  amdxata - ok
16:33:08.0593 0x0354  AppID - ok
16:33:08.0593 0x0354  AppIDSvc - ok
16:33:08.0608 0x0354  Appinfo - ok
16:33:08.0608 0x0354  applockerfltr - ok
16:33:08.0608 0x0354  AppReadiness - ok
16:33:08.0608 0x0354  AppXSvc - ok
16:33:08.0608 0x0354  arcsas - ok
16:33:08.0624 0x0354  [ 16829ED03B336F1B09DE2D6939B39778, D3FBE494537B2CB6D66E6A15B0F73C22CEFD3D8702256B5B5FA5F99E3EF821B6 ] ASLDRService    C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
16:33:08.0624 0x0354  ASLDRService - ok
16:33:08.0624 0x0354  [ 116DD55EEF8843D7C526EB17A932822F, 003326A58256A5BF9912A0B4F6F39295C2909596B33C3837A0C85C7BA7523E14 ] ASMMAP64        C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
16:33:08.0624 0x0354  ASMMAP64 - ok
16:33:08.0640 0x0354  [ AF0561974536C33073E0DF48C2F47C19, 792E2717B5A9AADB92E22C1778F39C3FE86045C34E09F2CEB4E3B1ED11ADC556 ] Asus WebStorage Windows Service C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe
16:33:08.0640 0x0354  Asus WebStorage Windows Service - ok
16:33:08.0640 0x0354  [ 308437492F76E3498F5D9B8DB5E5B2C8, 2300B9EFC27B053CAB0E933F0193E11BA27B738A087DDA7E0BF0AD746CBFDBC3 ] AsusSGDrv      C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys
16:33:08.0640 0x0354  AsusSGDrv - ok
16:33:08.0655 0x0354  AsyncMac - ok
16:33:08.0655 0x0354  atapi - ok
16:33:08.0655 0x0354  [ 89810E9E27C8BB0AFB01814523A76347, A85B817A16096730D8559FD5D5597CA1A9FA3F192FF83885840089AE8F7C9EF5 ] ATKGFNEXSrv    C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
16:33:08.0655 0x0354  ATKGFNEXSrv - ok
16:33:08.0655 0x0354  [ 0E717D7FED23731863EC44B4031DC268, A6F98FE201320FE3FF041768E426008C86B15BA7593EA04B1AC71B6FAE837A1E ] ATKWMIACPIIO    C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
16:33:08.0655 0x0354  ATKWMIACPIIO - ok
16:33:08.0671 0x0354  AudioEndpointBuilder - ok
16:33:08.0671 0x0354  Audiosrv - ok
16:33:08.0671 0x0354  AxInstSV - ok
16:33:08.0671 0x0354  b06bdrv - ok
16:33:08.0671 0x0354  BasicDisplay - ok
16:33:08.0671 0x0354  BasicRender - ok
16:33:08.0687 0x0354  bcmfn - ok
16:33:08.0687 0x0354  bcmfn2 - ok
16:33:08.0687 0x0354  BDESVC - ok
16:33:08.0687 0x0354  Beep - ok
16:33:08.0702 0x0354  BFE - ok
16:33:08.0702 0x0354  BITS - ok
16:33:08.0718 0x0354  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:33:08.0718 0x0354  Bonjour Service - ok
16:33:08.0718 0x0354  bowser - ok
16:33:08.0718 0x0354  BrokerInfrastructure - ok
16:33:08.0733 0x0354  Browser - ok
16:33:08.0733 0x0354  BthAvrcpTg - ok
16:33:08.0733 0x0354  BthEnum - ok
16:33:08.0733 0x0354  BthHFEnum - ok
16:33:08.0733 0x0354  bthhfhid - ok
16:33:08.0749 0x0354  BthHFSrv - ok
16:33:08.0749 0x0354  BthLEEnum - ok
16:33:08.0749 0x0354  BTHMODEM - ok
16:33:08.0749 0x0354  BthPan - ok
16:33:08.0749 0x0354  BTHPORT - ok
16:33:08.0765 0x0354  bthserv - ok
16:33:08.0765 0x0354  BTHUSB - ok
16:33:08.0765 0x0354  buttonconverter - ok
16:33:08.0765 0x0354  CapImg - ok
16:33:08.0765 0x0354  cdfs - ok
16:33:08.0780 0x0354  CDPSvc - ok
16:33:08.0780 0x0354  CDPUserSvc - ok
16:33:08.0780 0x0354  cdrom - ok
16:33:08.0780 0x0354  CertPropSvc - ok
16:33:08.0780 0x0354  cht4iscsi - ok
16:33:08.0796 0x0354  cht4vbd - ok
16:33:08.0796 0x0354  circlass - ok
16:33:08.0796 0x0354  CLFS - ok
16:33:08.0858 0x0354  [ 4B6F8B7BFDB04916CC11F07114ABC4B0, E2D9FB4D23231943FF8B3AC8EA87B194F965197EA1C25186733AAF034F4EE33A ] ClickToRunSvc  C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
16:33:08.0905 0x0354  ClickToRunSvc - ok
16:33:08.0905 0x0354  ClipSVC - ok
16:33:08.0905 0x0354  clreg - ok
16:33:08.0921 0x0354  CmBatt - ok
16:33:08.0921 0x0354  CNG - ok
16:33:08.0921 0x0354  cnghwassist - ok
16:33:08.0937 0x0354  CompositeBus - ok
16:33:08.0952 0x0354  COMSysApp - ok
16:33:08.0952 0x0354  condrv - ok
16:33:08.0952 0x0354  CoreMessagingRegistrar - ok
16:33:08.0968 0x0354  [ 0F0BB33129C878432400F003599F466E, 91821B07F2902435DA0A763E00C8C63380C79B1A48A9713B28ACA75EC888A7BF ] cphs            C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe
16:33:08.0968 0x0354  cphs - ok
16:33:08.0984 0x0354  [ 53C56B7FA0426DF2DEF08B7CBFFC3ABF, 19E5A5AD69D79993F1A5BE960569AD3DA35E5FFFF6674C73BCB96CE0CCE34D47 ] cplspcon        C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe
16:33:08.0984 0x0354  cplspcon - ok
16:33:08.0999 0x0354  CryptSvc - ok
16:33:08.0999 0x0354  dam - ok
16:33:08.0999 0x0354  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:33:08.0999 0x0354  dbupdate - ok
16:33:09.0015 0x0354  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem      C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:33:09.0015 0x0354  dbupdatem - ok
16:33:09.0015 0x0354  [ A4700D1F78539C0ED32FA50E64F9C692, 5CB03B5F36307BA152245BAD29CB2AC703BBE8197ABC0338A7092ADEA1C3221A ] dc3d            C:\WINDOWS\System32\drivers\dc3d.sys
16:33:09.0015 0x0354  dc3d - ok
16:33:09.0030 0x0354  DcomLaunch - ok
16:33:09.0030 0x0354  DcpSvc - ok
16:33:09.0030 0x0354  defragsvc - ok
16:33:09.0030 0x0354  DeviceAssociationService - ok
16:33:09.0030 0x0354  DeviceInstall - ok
16:33:09.0030 0x0354  DevQueryBroker - ok
16:33:09.0046 0x0354  Dfsc - ok
16:33:09.0046 0x0354  [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
16:33:09.0046 0x0354  dg_ssudbus - ok
16:33:09.0062 0x0354  Dhcp - ok
16:33:09.0062 0x0354  diagnosticshub.standardcollector.service - ok
16:33:09.0062 0x0354  DiagTrack - ok
16:33:09.0062 0x0354  disk - ok
16:33:09.0077 0x0354  DmEnrollmentSvc - ok
16:33:09.0077 0x0354  dmvsc - ok
16:33:09.0077 0x0354  dmwappushservice - ok
16:33:09.0077 0x0354  Dnscache - ok
16:33:09.0077 0x0354  dot3svc - ok
16:33:09.0093 0x0354  DPS - ok
16:33:09.0093 0x0354  [ 85680CFC129C7BD79B09404DB833DB78, 62A5AF0ACF16ACAC84F95AB9E82E43A9F1A6D4EBED3319E1C83112FB41678EAA ] dptf_acpi      C:\WINDOWS\System32\drivers\dptf_acpi.sys
16:33:09.0093 0x0354  dptf_acpi - ok
16:33:09.0093 0x0354  [ 4FC126DB5602E8661E9D78818C3FCED7, DC5CE610B408C02B1B2567BF5B8BB2B52E0C6699A5987FE3FF34AECC78071E98 ] dptf_cpu        C:\WINDOWS\System32\drivers\dptf_cpu.sys
16:33:09.0093 0x0354  dptf_cpu - ok
16:33:09.0108 0x0354  drmkaud - ok
16:33:09.0108 0x0354  DsmSvc - ok
16:33:09.0108 0x0354  DsSvc - ok
16:33:09.0108 0x0354  DXGKrnl - ok
16:33:09.0108 0x0354  EapHost - ok
16:33:09.0108 0x0354  ebdrv - ok
16:33:09.0124 0x0354  EFS - ok
16:33:09.0124 0x0354  EhStorClass - ok
16:33:09.0124 0x0354  EhStorTcgDrv - ok
16:33:09.0124 0x0354  embeddedmode - ok
16:33:09.0140 0x0354  EntAppSvc - ok
16:33:09.0140 0x0354  ErrDev - ok
16:33:09.0202 0x0354  [ BB6815A7650EB9CA27D6AE53D636C028, FC78D6B8F2F27E6500AF2823C6CA7072503A344201C26D34319383B32E2CA92C ] esifsvc        C:\WINDOWS\SysWoW64\esif_uf.exe
16:33:09.0218 0x0354  esifsvc - ok
16:33:09.0234 0x0354  [ 438D377AF3651B762568AB6CFAE3C831, F1D28D7F4AC83076D2D7B271FE015410953B7A2F1CFFAEC456F6CF3A2909A47E ] esif_lf        C:\WINDOWS\system32\DRIVERS\esif_lf.sys
16:33:09.0234 0x0354  esif_lf - ok
16:33:09.0234 0x0354  EventSystem - ok
16:33:09.0249 0x0354  [ 6DCB7233AAD29E43331B3ECFCC8FB8D1, A8E203BB774A4E055C871E9A28F958287A75E8BEA42496E6BA9983063CF6C539 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:33:09.0265 0x0354  EvtEng - ok
16:33:09.0265 0x0354  exfat - ok
16:33:09.0265 0x0354  fastfat - ok
16:33:09.0265 0x0354  Fax - ok
16:33:09.0280 0x0354  fdc - ok
16:33:09.0280 0x0354  fdPHost - ok
16:33:09.0280 0x0354  FDResPub - ok
16:33:09.0280 0x0354  fhsvc - ok
16:33:09.0280 0x0354  FileCrypt - ok
16:33:09.0296 0x0354  FileInfo - ok
16:33:09.0296 0x0354  Filetrace - ok
16:33:09.0296 0x0354  flpydisk - ok
16:33:09.0296 0x0354  FltMgr - ok
16:33:09.0296 0x0354  FontCache - ok
16:33:09.0312 0x0354  FontCache3.0.0.0 - ok
16:33:09.0312 0x0354  FrameServer - ok
16:33:09.0312 0x0354  FsDepends - ok
16:33:09.0312 0x0354  Fs_Rec - ok
16:33:09.0312 0x0354  fvevol - ok
16:33:09.0327 0x0354  gencounter - ok
16:33:09.0327 0x0354  genericusbfn - ok
16:33:09.0327 0x0354  GPIOClx0101 - ok
16:33:09.0327 0x0354  gpsvc - ok
16:33:09.0327 0x0354  GpuEnergyDrv - ok
16:33:09.0343 0x0354  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdate        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:33:09.0343 0x0354  gupdate - ok
16:33:09.0343 0x0354  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:33:09.0343 0x0354  gupdatem - ok
16:33:09.0359 0x0354  HDAudBus - ok
16:33:09.0359 0x0354  HidBatt - ok
16:33:09.0359 0x0354  HidBth - ok
16:33:09.0359 0x0354  hidi2c - ok
16:33:09.0359 0x0354  hidinterrupt - ok
16:33:09.0374 0x0354  HidIr - ok
16:33:09.0374 0x0354  hidserv - ok
16:33:09.0374 0x0354  [ 38DA94B6DD8022DA43810E4328608E54, ACE0A36143FF37BC42F136DB7317028540D1C0F21A5FD13F67E1A3DB2426A5EA ] HIDSwitch      C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys
16:33:09.0374 0x0354  HIDSwitch - ok
16:33:09.0374 0x0354  HidUsb - ok
16:33:09.0390 0x0354  HomeGroupListener - ok
16:33:09.0390 0x0354  HomeGroupProvider - ok
16:33:09.0390 0x0354  HpSAMD - ok
16:33:09.0390 0x0354  HTTP - ok
16:33:09.0390 0x0354  HvHost - ok
16:33:09.0405 0x0354  hvservice - ok
16:33:09.0405 0x0354  hwpolicy - ok
16:33:09.0405 0x0354  hyperkbd - ok
16:33:09.0405 0x0354  i8042prt - ok
16:33:09.0405 0x0354  iagpio - ok
16:33:09.0405 0x0354  iai2c - ok
16:33:09.0421 0x0354  iaLPSS2i_GPIO2 - ok
16:33:09.0421 0x0354  iaLPSS2i_I2C - ok
16:33:09.0421 0x0354  [ 54829E0B5F2FF133E6AEF13104689FA1, 322B3DA3E3BACE1A8584DA5AADA527983FB40B49AFFE23AA002295146435BB12 ] iaLPSS2_I2C    C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys
16:33:09.0421 0x0354  iaLPSS2_I2C - ok
16:33:09.0437 0x0354  iaLPSSi_GPIO - ok
16:33:09.0437 0x0354  iaLPSSi_I2C - ok
16:33:09.0468 0x0354  [ 5F6CA62BE8ECC4D0E1F5D4D4A02B456B, F720A1F14C9053D24C5B42827E5F9578A27F3E62A6C65A3CFA068E580F02F072 ] iaStorA        C:\WINDOWS\system32\drivers\iaStorA.sys
16:33:09.0484 0x0354  iaStorA - ok
16:33:09.0484 0x0354  iaStorAV - ok
16:33:09.0484 0x0354  iaStorV - ok
16:33:09.0484 0x0354  ibbus - ok
16:33:09.0499 0x0354  ibtsiva - ok
16:33:09.0499 0x0354  [ 606148419C4F99C3102E1EF5E3AFC72A, 63DB5D2ABFB3A0F048B87FCF4B32C4B862F396DDBD3AC5E52951648C99BEC3DD ] ibtusb          C:\WINDOWS\system32\DRIVERS\ibtusb.sys
16:33:09.0499 0x0354  ibtusb - ok
16:33:09.0515 0x0354  icssvc - ok
16:33:09.0704 0x0354  [ 42A8E802D412117D6707FB5CB819CF33, 585C81320D58F731472827D9E67F5752ACB554BB5333221A3D91E6F60454E26D ] igfx            C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igdkmd64.sys
16:33:09.0829 0x0354  igfx - ok
16:33:09.0845 0x0354  [ 5495E7F548D0DD4BD5A3D2C071DB1FB3, 320344AEF67751BA80E5737F90D736DEF6555D1610F27D4BE86747C1D8200E31 ] igfxCUIService2.0.0.0 C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe
16:33:09.0845 0x0354  igfxCUIService2.0.0.0 - ok
16:33:09.0845 0x0354  IKEEXT - ok
16:33:09.0860 0x0354  IndirectKmd - ok
16:33:09.0860 0x0354  [ AFA7F1696B431C07729E9BF2565D6045, 77966485A23581C079A480BEC13982AB926F5C62686F48A44F8C562B3C67745B ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
16:33:09.0860 0x0354  intaud_WaveExtensible - ok
16:33:09.0938 0x0354  [ A1F8EEE8C5DF4BC77376485F133750C7, 4AA5BBBA31302640A825DB26507B6FE494CE25966940FA770EFED8D78EAFA491 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
16:33:09.0985 0x0354  IntcAzAudAddService - ok
16:33:10.0016 0x0354  [ 739A977693ACC5D64967F3809BAB1854, 1FAE0ABB0412053D9ACE960C1233E2F556BD8F524A29AB7242847C8D6B4B87AD ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
16:33:10.0032 0x0354  IntcDAud - ok
16:33:10.0048 0x0354  [ B63CF22D1AD2ABDC39D85851B2BEAA6D, 37E9043BABB5895BFD2B59AFB60C438B992C6EAA1B5FDE5B3445314343F4C406 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
16:33:10.0063 0x0354  Intel(R) Capability Licensing Service TCP IP Interface - ok
16:33:10.0063 0x0354  [ 8213094EA736A9C575AB0E22AD09B0BA, 12670A466B5AA37283BD4CB481D000DE3AE2A8D1BD159F67A41703A6FE5675EC ] Intel(R) Security Assist C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
16:33:10.0079 0x0354  Intel(R) Security Assist - ok
16:33:10.0079 0x0354  [ 97AC7006869B90F9B09445B7122BA90E, B1C8FCD6DEFA468BAE0A905999C8AA828656D6E7A6EF60F99A4FBC1A0597346E ] Intel(R) WiDi SAM C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe
16:33:10.0079 0x0354  Intel(R) WiDi SAM - ok
16:33:10.0079 0x0354  intelide - ok
16:33:10.0079 0x0354  intelpep - ok
16:33:10.0079 0x0354  intelppm - ok
16:33:10.0095 0x0354  [ ED8B27761A86EA41BDCCE7EDC44155DB, 9D8E06836C6D19079179CD4022754F533D6C5556A153E3A8A2A3AA9EF3390931 ] IntelUSBoverIP  C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
16:33:10.0110 0x0354  IntelUSBoverIP - ok
16:33:10.0110 0x0354  iorate - ok
16:33:10.0110 0x0354  IpFilterDriver - ok
16:33:10.0110 0x0354  iphlpsvc - ok
16:33:10.0110 0x0354  IPMIDRV - ok
16:33:10.0110 0x0354  IPNAT - ok
16:33:10.0126 0x0354  irda - ok
16:33:10.0126 0x0354  IRENUM - ok
16:33:10.0126 0x0354  irmon - ok
16:33:10.0126 0x0354  [ 1DFC3CCA51785254C5604238BB1A5467, 31451A90A91AEE14C6B24F84CB9816E5C77179D411B8B3E8547F538235BEEFB0 ] isaHelperSvc    C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
16:33:10.0126 0x0354  isaHelperSvc - ok
16:33:10.0141 0x0354  isapnp - ok
16:33:10.0141 0x0354  iScsiPrt - ok
16:33:10.0141 0x0354  [ DA0A946E6C4228B659FA798EF0B075C1, BC2F5710D6165615CD578A970BC154C8DB1ECCA5725D09A29954E9BE8FAC0ED7 ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
16:33:10.0141 0x0354  iwdbus - ok
16:33:10.0141 0x0354  [ 1D6E77475AF059458AB7E15034EE1F9D, DEB72B8DCD2341373CBB5BD2915EE991E539864C15E30198B8B3638D42228324 ] jhi_service    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
16:33:10.0157 0x0354  jhi_service - ok
16:33:10.0157 0x0354  kbdclass - ok
16:33:10.0157 0x0354  kbdhid - ok
16:33:10.0157 0x0354  kdnic - ok
16:33:10.0157 0x0354  KeyIso - ok
16:33:10.0173 0x0354  KSecDD - ok
16:33:10.0173 0x0354  KSecPkg - ok
16:33:10.0173 0x0354  ksthunk - ok
16:33:10.0173 0x0354  KtmRm - ok
16:33:10.0173 0x0354  LanmanServer - ok
16:33:10.0188 0x0354  LanmanWorkstation - ok
16:33:10.0235 0x0354  [ 303C2F9010876D1A43616EB94E37EEF6, 224F6E085C6EB81394C05AFB5B12674A3F3790B1EBE3214748569EF288353A9C ] LCTechSSDToolAsus C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe
16:33:10.0266 0x0354  LCTechSSDToolAsus - ok
16:33:10.0266 0x0354  lfsvc - ok
16:33:10.0266 0x0354  LicenseManager - ok
16:33:10.0282 0x0354  lltdio - ok
16:33:10.0282 0x0354  lltdsvc - ok
16:33:10.0282 0x0354  lmhosts - ok
16:33:10.0298 0x0354  [ 258B7A8D42365472A184C064154F265F, 70FDBE83157C6EABF0223C54A6C57137D52E389D0118BFAD4E2BF11D15507354 ] LMS            C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:33:10.0298 0x0354  LMS - ok
16:33:10.0298 0x0354  LSI_SAS - ok
16:33:10.0298 0x0354  LSI_SAS2i - ok
16:33:10.0313 0x0354  LSI_SAS3i - ok
16:33:10.0313 0x0354  LSI_SSS - ok
16:33:10.0313 0x0354  LSM - ok
16:33:10.0313 0x0354  luafv - ok
16:33:10.0313 0x0354  MapsBroker - ok
16:33:10.0329 0x0354  [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector  C:\WINDOWS\system32\drivers\mbam.sys
16:33:10.0329 0x0354  MBAMProtector - ok
16:33:10.0360 0x0354  [ 9611577752E293259C7DCE19E9026362, 8CB5DFD63FA15603BB6FA6B501E09ED7F4DE0E8F68CB28B78CECAC3711BEFD24 ] MBAMScheduler  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
16:33:10.0376 0x0354  MBAMScheduler - ok
16:33:10.0392 0x0354  [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService    C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:33:10.0407 0x0354  MBAMService - ok
16:33:10.0423 0x0354  [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy  C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
16:33:10.0423 0x0354  MBAMSwissArmy - ok
16:33:10.0423 0x0354  [ 898415AC0B5F1D2A9A48ABCB68A6DC4B, E1FD9AE5E22E3E5A18288E66A6184E92A4B63A1274DCE147A7728BB09C6A225E ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
16:33:10.0423 0x0354  MBAMWebAccessControl - ok
16:33:10.0438 0x0354  megasas - ok
16:33:10.0438 0x0354  megasas2i - ok
16:33:10.0438 0x0354  megasr - ok
16:33:10.0438 0x0354  [ 6ECDA51525C123C55ABC470F2144F925, 7B2E8976F126219AF0953FD641E613A9336CCC80843AF4A37AA71067D55CCBBB ] MEIx64          C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
16:33:10.0454 0x0354  MEIx64 - ok
16:33:10.0454 0x0354  MessagingService - ok
16:33:10.0454 0x0354  mlx4_bus - ok
16:33:10.0454 0x0354  MMCSS - ok
16:33:10.0470 0x0354  Modem - ok
16:33:10.0470 0x0354  monitor - ok
16:33:10.0470 0x0354  mouclass - ok
16:33:10.0470 0x0354  mouhid - ok
16:33:10.0470 0x0354  mountmgr - ok
16:33:10.0470 0x0354  mpsdrv - ok
16:33:10.0485 0x0354  MpsSvc - ok
16:33:10.0485 0x0354  MRxDAV - ok
16:33:10.0485 0x0354  mrxsmb - ok
16:33:10.0485 0x0354  mrxsmb10 - ok
16:33:10.0485 0x0354  mrxsmb20 - ok
16:33:10.0501 0x0354  MsBridge - ok
16:33:10.0501 0x0354  MSDTC - ok
16:33:10.0501 0x0354  Msfs - ok
16:33:10.0501 0x0354  msgpiowin32 - ok
16:33:10.0501 0x0354  mshidkmdf - ok
16:33:10.0516 0x0354  mshidumdf - ok
16:33:10.0516 0x0354  msisadrv - ok
16:33:10.0516 0x0354  MSiSCSI - ok
16:33:10.0516 0x0354  msiserver - ok
16:33:10.0516 0x0354  MSKSSRV - ok
16:33:10.0532 0x0354  MsLldp - ok
16:33:10.0532 0x0354  MSPCLOCK - ok
16:33:10.0532 0x0354  MSPQM - ok
16:33:10.0532 0x0354  MsRPC - ok
16:33:10.0532 0x0354  mssmbios - ok
16:33:10.0548 0x0354  MSTEE - ok
16:33:10.0548 0x0354  MTConfig - ok
16:33:10.0548 0x0354  Mup - ok
16:33:10.0548 0x0354  mvumis - ok
16:33:10.0564 0x0354  [ F1F6EE6C068CBDB80BAC43A79591F1F2, 39387A25ECFBFDD5B6A43A9A2CA2EC5703D0CCCFFE36C989B0E461B72C242D1C ] MyWiFiDHCPDNS  C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:33:10.0564 0x0354  MyWiFiDHCPDNS - ok
16:33:10.0564 0x0354  NativeWifiP - ok
16:33:10.0564 0x0354  NcaSvc - ok
16:33:10.0579 0x0354  NcbService - ok
16:33:10.0579 0x0354  NcdAutoSetup - ok
16:33:10.0579 0x0354  ndfltr - ok
16:33:10.0579 0x0354  NDIS - ok
16:33:10.0579 0x0354  NdisCap - ok
16:33:10.0595 0x0354  NdisImPlatform - ok
16:33:10.0595 0x0354  NdisTapi - ok
16:33:10.0595 0x0354  Ndisuio - ok
16:33:10.0595 0x0354  NdisVirtualBus - ok
16:33:10.0595 0x0354  NdisWan - ok
16:33:10.0610 0x0354  ndiswanlegacy - ok
16:33:10.0610 0x0354  ndproxy - ok
16:33:10.0610 0x0354  Ndu - ok
16:33:10.0610 0x0354  NetAdapterCx - ok
16:33:10.0610 0x0354  NetBIOS - ok
16:33:10.0610 0x0354  NetBT - ok
16:33:10.0626 0x0354  Netlogon - ok
16:33:10.0626 0x0354  Netman - ok
16:33:10.0626 0x0354  netprofm - ok
16:33:10.0626 0x0354  NetSetupSvc - ok
16:33:10.0641 0x0354  NetTcpPortSharing - ok
16:33:10.0657 0x0354  Netwtw04 - ok
16:33:10.0657 0x0354  NgcCtnrSvc - ok
16:33:10.0657 0x0354  NgcSvc - ok
16:33:10.0657 0x0354  NlaSvc - ok
16:33:10.0657 0x0354  Npfs - ok
16:33:10.0673 0x0354  npsvctrig - ok
16:33:10.0673 0x0354  nsi - ok
16:33:10.0673 0x0354  nsiproxy - ok
16:33:10.0673 0x0354  NTFS - ok
16:33:10.0673 0x0354  Null - ok
16:33:10.0688 0x0354  [ E5FB1DED60CD5461625955E00838541A, 5F8EF2B1169E0C8F1CF3638A1C670ADAE9DC7D5EAF114D3F91C0556967311EB9 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
16:33:10.0704 0x0354  NvContainerLocalSystem - ok
16:33:10.0704 0x0354  [ E5FB1DED60CD5461625955E00838541A, 5F8EF2B1169E0C8F1CF3638A1C670ADAE9DC7D5EAF114D3F91C0556967311EB9 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
16:33:10.0720 0x0354  NvContainerNetworkService - ok
16:33:10.0735 0x0354  [ EDF2A6D3EC66A6175BF9C48356130F81, 3AFEFE39D911D0298F382AA98B3C7C2EE147211A09D438C25657512D5840E53E ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
16:33:10.0751 0x0354  NVIDIA Wireless Controller Service - ok
16:33:11.0001 0x0354  [ 76ECA562B95DB26C64BEC14BB188A3F6, B4DB40D391B227393EEC13659C64B03499632FD11A75E5183BE8A0C8F3C9688B ] nvlddmkm        C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvlddmkm.sys
16:33:11.0157 0x0354  nvlddmkm - ok
16:33:11.0173 0x0354  nvraid - ok
16:33:11.0188 0x0354  nvstor - ok
16:33:11.0188 0x0354  [ E5340E353E5DB0350DE759C77CD4C3F5, 4D7FE3EE2101FD6208BA56D876A6622175D8B817DCCCE5D3CE8D0026AAE93174 ] NvStreamKms    C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:33:11.0188 0x0354  NvStreamKms - ok
16:33:11.0188 0x0354  [ 1A059C00CD7D0CC0CC9FD03E77FDC646, C9E41B0C8DF5C70C410F229F95CC1EAD24BC249D1F0939AA06D9A86C60B6EF41 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
16:33:11.0188 0x0354  nvvad_WaveExtensible - ok
16:33:11.0204 0x0354  OneSyncSvc - ok
16:33:11.0204 0x0354  [ D1AF4C86F851F9A345A400FD3B9D673A, BCC7B3AF92A2AB09CC52FB10107E209C02AC078E5F0197AEC40D7AE56F3A7CA0 ] ose64          C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:33:11.0204 0x0354  ose64 - ok
16:33:11.0220 0x0354  p2pimsvc - ok
16:33:11.0220 0x0354  p2psvc - ok
16:33:11.0220 0x0354  Parport - ok
16:33:11.0220 0x0354  partmgr - ok
16:33:11.0235 0x0354  PcaSvc - ok
16:33:11.0235 0x0354  pci - ok
16:33:11.0235 0x0354  pciide - ok
16:33:11.0235 0x0354  pcmcia - ok
16:33:11.0235 0x0354  pcw - ok
16:33:11.0251 0x0354  pdc - ok
16:33:11.0251 0x0354  PEAUTH - ok
16:33:11.0251 0x0354  percsas2i - ok
16:33:11.0251 0x0354  percsas3i - ok
16:33:11.0298 0x0354  PerfHost - ok
16:33:11.0298 0x0354  PhoneSvc - ok
16:33:11.0298 0x0354  PimIndexMaintenanceSvc - ok
16:33:11.0313 0x0354  pla - ok
16:33:11.0313 0x0354  PlugPlay - ok
16:33:11.0313 0x0354  PNRPAutoReg - ok
16:33:11.0313 0x0354  PNRPsvc - ok
16:33:11.0329 0x0354  PolicyAgent - ok
16:33:11.0329 0x0354  Power - ok
16:33:11.0329 0x0354  PptpMiniport - ok
16:33:11.0423 0x0354  [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify    C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
16:33:11.0454 0x0354  PrintNotify - ok
16:33:11.0470 0x0354  Processor - ok
16:33:11.0470 0x0354  ProfSvc - ok
16:33:11.0470 0x0354  Psched - ok
16:33:11.0470 0x0354  QWAVE - ok
16:33:11.0470 0x0354  QWAVEdrv - ok
16:33:11.0485 0x0354  RasAcd - ok
16:33:11.0485 0x0354  RasAgileVpn - ok
16:33:11.0485 0x0354  RasAuto - ok
16:33:11.0485 0x0354  Rasl2tp - ok
16:33:11.0485 0x0354  RasMan - ok
16:33:11.0501 0x0354  RasPppoe - ok
16:33:11.0501 0x0354  RasSstp - ok
16:33:11.0501 0x0354  rdbss - ok
16:33:11.0501 0x0354  rdpbus - ok
16:33:11.0501 0x0354  RDPDR - ok
16:33:11.0517 0x0354  RdpVideoMiniport - ok
16:33:11.0517 0x0354  rdyboost - ok
16:33:11.0517 0x0354  ReFSv1 - ok
16:33:11.0532 0x0354  [ B91EE7363FDC2B0CB1C5E6190B46F7DC, 650EE0262F2EE242D99A5BE013A64F76CA3537274C0B9313F9BD7741ACF38017 ] RegSrvc        C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
16:33:11.0532 0x0354  RegSrvc - ok
16:33:11.0532 0x0354  RemoteAccess - ok
16:33:11.0532 0x0354  RemoteRegistry - ok
16:33:11.0532 0x0354  RetailDemo - ok
16:33:11.0548 0x0354  RFCOMM - ok
16:33:11.0548 0x0354  RmSvc - ok
16:33:11.0548 0x0354  RpcEptMapper - ok
16:33:11.0548 0x0354  RpcLocator - ok
16:33:11.0548 0x0354  RpcSs - ok
16:33:11.0563 0x0354  rspndr - ok
16:33:11.0579 0x0354  [ E11A3F79475F9D019CD51ADCCC377909, CF14C494C4A969233C1D2B32A56C86C8636AC70004725B53447C42EB63C31BA9 ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
16:33:11.0595 0x0354  rt640x64 - ok
16:33:11.0610 0x0354  [ F75C6FFD09A6C51E4B5166E05D97FD96, 12174DA89456347704455B1544C6E0FB54E55504E6C88F5E9962018D53D6F84D ] RTSPER          C:\WINDOWS\system32\DRIVERS\RtsPer.sys
16:33:11.0626 0x0354  RTSPER - ok
16:33:11.0626 0x0354  s3cap - ok
16:33:11.0626 0x0354  SamSs - ok
16:33:11.0626 0x0354  sbp2port - ok
16:33:11.0642 0x0354  SCardSvr - ok
16:33:11.0642 0x0354  ScDeviceEnum - ok
16:33:11.0642 0x0354  scfilter - ok
16:33:11.0642 0x0354  Schedule - ok
16:33:11.0642 0x0354  scmbus - ok
16:33:11.0657 0x0354  scmdisk0101 - ok
16:33:11.0657 0x0354  SCPolicySvc - ok
16:33:11.0657 0x0354  sdbus - ok
16:33:11.0657 0x0354  SDRSVC - ok
16:33:11.0657 0x0354  sdstor - ok
16:33:11.0673 0x0354  seclogon - ok
16:33:11.0673 0x0354  SENS - ok
16:33:11.0673 0x0354  SensorDataService - ok
16:33:11.0673 0x0354  SensorService - ok
16:33:11.0688 0x0354  SensrSvc - ok
16:33:11.0688 0x0354  SerCx - ok
16:33:11.0688 0x0354  SerCx2 - ok
16:33:11.0688 0x0354  Serenum - ok
16:33:11.0688 0x0354  Serial - ok
16:33:11.0688 0x0354  sermouse - ok
16:33:11.0704 0x0354  SessionEnv - ok
16:33:11.0704 0x0354  sfloppy - ok
16:33:11.0704 0x0354  SharedAccess - ok
16:33:11.0704 0x0354  ShellHWDetection - ok
16:33:11.0720 0x0354  shpamsvc - ok
16:33:11.0720 0x0354  SiSRaid2 - ok
16:33:11.0720 0x0354  SiSRaid4 - ok
16:33:11.0720 0x0354  smphost - ok
16:33:11.0720 0x0354  SmsRouter - ok
16:33:11.0735 0x0354  SNMPTRAP - ok
16:33:11.0735 0x0354  spaceport - ok
16:33:11.0735 0x0354  SpbCx - ok
16:33:11.0735 0x0354  Spooler - ok
16:33:11.0751 0x0354  sppsvc - ok
16:33:11.0751 0x0354  srv - ok
16:33:11.0751 0x0354  srv2 - ok
16:33:11.0751 0x0354  srvnet - ok
16:33:11.0751 0x0354  SSDPSRV - ok
16:33:11.0767 0x0354  [ 3725AD72054E339CAE17A252AE0EE0FD, 7205D5558C37E6B29056B477945546887368843E195C956CB67E39F14ACD18D5 ] sshid          C:\WINDOWS\System32\drivers\sshid.sys
16:33:11.0767 0x0354  sshid - ok
16:33:11.0767 0x0354  SstpSvc - ok
16:33:11.0767 0x0354  [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm        C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
16:33:11.0782 0x0354  ssudmdm - ok
16:33:11.0782 0x0354  StateRepository - ok
16:33:11.0782 0x0354  stexstor - ok
16:33:11.0782 0x0354  stisvc - ok
16:33:11.0782 0x0354  storahci - ok
16:33:11.0798 0x0354  storflt - ok
16:33:11.0798 0x0354  stornvme - ok
16:33:11.0798 0x0354  storqosflt - ok
16:33:11.0798 0x0354  StorSvc - ok
16:33:11.0798 0x0354  storufs - ok
16:33:11.0813 0x0354  storvsc - ok
16:33:11.0813 0x0354  svsvc - ok
16:33:11.0813 0x0354  swenum - ok
16:33:11.0813 0x0354  swprv - ok
16:33:11.0813 0x0354  Synth3dVsc - ok
16:33:11.0829 0x0354  SysMain - ok
16:33:11.0829 0x0354  SystemEventsBroker - ok
16:33:11.0829 0x0354  TabletInputService - ok
16:33:11.0829 0x0354  TapiSrv - ok
16:33:11.0829 0x0354  Tcpip - ok
16:33:11.0845 0x0354  Tcpip6 - ok
16:33:11.0845 0x0354  tcpipreg - ok
16:33:11.0845 0x0354  tdx - ok
16:33:12.0048 0x0354  [ AD521C349AA567683E1DA4361ECF7DFB, 5BA9DD327565EAF11481553BCBD01C1BFAA6651ABED4D3587D6F742B06294A09 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
16:33:12.0157 0x0354  TeamViewer - ok
16:33:12.0173 0x0354  terminpt - ok
16:33:12.0189 0x0354  TermService - ok
16:33:12.0189 0x0354  Themes - ok
16:33:12.0189 0x0354  TieringEngineService - ok
16:33:12.0189 0x0354  tiledatamodelsvc - ok
16:33:12.0189 0x0354  TimeBrokerSvc - ok
16:33:12.0204 0x0354  [ 3B2A2F3EE3D783A667F75B2814D223B1, C6B474C24161A00B331AD26DD4B218284CDCE1D60B594F81B3F7BACBCED50D89 ] Tipuly          C:\Program Files (x86)\Drabapythebution\whtcore.dll
16:33:12.0204 0x0354  Tipuly - ok
16:33:12.0220 0x0354  TPM - ok
16:33:12.0220 0x0354  TrkWks - ok
16:33:12.0220 0x0354  TrustedInstaller - ok
16:33:12.0282 0x0354  [ C3CC02C678D760B12F2F75BB5FD4075A, 4491EC28E5238DE9052CDB5DA31CAA87D6C287DCBAEB2F545D495F6B8D9BDB1A ] TSMaintenanceService C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe
16:33:12.0329 0x0354  TSMaintenanceService - ok
16:33:12.0329 0x0354  tsusbflt - ok
16:33:12.0345 0x0354  TsUsbGD - ok
16:33:12.0345 0x0354  tunnel - ok
16:33:12.0345 0x0354  tzautoupdate - ok
16:33:12.0345 0x0354  UASPStor - ok
16:33:12.0361 0x0354  [ EB482DBC9786F1A9E3ED5AB6864794FA, 4154B259587D743612830F67800450DD04031C215A8459CC26E11D3498640BA0 ] UCGuard        C:\WINDOWS\system32\DRIVERS\ucguard.sys
16:33:12.0361 0x0354  UCGuard - ok
16:33:12.0361 0x0354  UcmCx0101 - ok
16:33:12.0361 0x0354  UcmTcpciCx0101 - ok
16:33:12.0361 0x0354  UcmUcsi - ok
16:33:12.0376 0x0354  Ucx01000 - ok
16:33:12.0376 0x0354  UdeCx - ok
16:33:12.0376 0x0354  udfs - ok
16:33:12.0376 0x0354  UEFI - ok
16:33:12.0376 0x0354  Ufx01000 - ok
16:33:12.0392 0x0354  UfxChipidea - ok
16:33:12.0392 0x0354  ufxsynopsys - ok
16:33:12.0392 0x0354  UI0Detect - ok
16:33:12.0392 0x0354  umbus - ok
16:33:12.0407 0x0354  UmPass - ok
16:33:12.0407 0x0354  UmRdpService - ok
16:33:12.0407 0x0354  UnistoreSvc - ok
16:33:12.0407 0x0354  upnphost - ok
16:33:12.0423 0x0354  UrsChipidea - ok
16:33:12.0423 0x0354  UrsCx01000 - ok
16:33:12.0423 0x0354  UrsSynopsys - ok
16:33:12.0439 0x0354  [ DB2D395585587BC4D63AB7DCC7826EF2, 1B7D39CB6E15A875061BDD1433FF6F344A4F1710BF7B9471CBFFCD722EB66B68 ] usb3Hub        C:\WINDOWS\System32\drivers\usb3Hub.sys
16:33:12.0439 0x0354  usb3Hub - ok
16:33:12.0439 0x0354  usbccgp - ok
16:33:12.0439 0x0354  usbcir - ok
16:33:12.0439 0x0354  usbehci - ok
16:33:12.0454 0x0354  usbhub - ok
16:33:12.0454 0x0354  USBHUB3 - ok
16:33:12.0454 0x0354  usbohci - ok
16:33:12.0454 0x0354  usbprint - ok
16:33:12.0470 0x0354  usbser - ok
16:33:12.0470 0x0354  USBSTOR - ok
16:33:12.0470 0x0354  usbuhci - ok
16:33:12.0470 0x0354  usbvideo - ok
16:33:12.0485 0x0354  USBXHCI - ok
16:33:12.0485 0x0354  UserDataSvc - ok
16:33:12.0485 0x0354  UserManager - ok
16:33:12.0485 0x0354  UsoSvc - ok
16:33:12.0485 0x0354  VaultSvc - ok
16:33:12.0501 0x0354  [ CDA796F41C2B64CEEC143B3A86904CFB, 8D9CACB74608C145A75424F4169E447A9EFA0EC3DD1412F097B56F86C0FC8E6E ] VBoxDrv        C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys
16:33:12.0501 0x0354  VBoxDrv - ok
16:33:12.0517 0x0354  [ 0E3C4F20B2CE21168F3242D9CAC6CBF2, 1BD5E1A2000EBC1C335A8960ACDCD08BDC8230F533A80D086D2EE6FE4990EA02 ] VBoxUSBMon      C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
16:33:12.0517 0x0354  VBoxUSBMon - ok
16:33:12.0517 0x0354  vdrvroot - ok
16:33:12.0517 0x0354  vds - ok
16:33:12.0517 0x0354  VerifierExt - ok
16:33:12.0532 0x0354  vhdmp - ok
16:33:12.0532 0x0354  vhf - ok
16:33:12.0532 0x0354  vmbus - ok
16:33:12.0532 0x0354  VMBusHID - ok
16:33:12.0548 0x0354  vmgid - ok
16:33:12.0548 0x0354  vmicguestinterface - ok
16:33:12.0548 0x0354  vmicheartbeat - ok
16:33:12.0548 0x0354  vmickvpexchange - ok
16:33:12.0548 0x0354  vmicrdv - ok
16:33:12.0564 0x0354  vmicshutdown - ok
16:33:12.0564 0x0354  vmictimesync - ok
16:33:12.0564 0x0354  vmicvmsession - ok
16:33:12.0564 0x0354  vmicvss - ok
16:33:12.0579 0x0354  VMnetAdapter - ok
16:33:12.0579 0x0354  volmgr - ok
16:33:12.0579 0x0354  volmgrx - ok
16:33:12.0579 0x0354  volsnap - ok
16:33:12.0579 0x0354  volume - ok
16:33:12.0595 0x0354  vpci - ok
16:33:12.0595 0x0354  vsmraid - ok
16:33:12.0595 0x0354  VSS - ok
16:33:12.0595 0x0354  VSTXRAID - ok
16:33:12.0610 0x0354  vwifibus - ok
16:33:12.0610 0x0354  vwififlt - ok
16:33:12.0610 0x0354  vwifimp - ok
16:33:12.0610 0x0354  W32Time - ok
16:33:12.0610 0x0354  WacomPen - ok
16:33:12.0626 0x0354  WalletService - ok
16:33:12.0626 0x0354  wanarp - ok
16:33:12.0626 0x0354  wanarpv6 - ok
16:33:12.0626 0x0354  wbengine - ok
16:33:12.0642 0x0354  WbioSrvc - ok
16:33:12.0642 0x0354  wcifs - ok
16:33:12.0642 0x0354  Wcmsvc - ok
16:33:12.0642 0x0354  wcncsvc - ok
16:33:12.0657 0x0354  wcnfs - ok
16:33:12.0657 0x0354  WdBoot - ok
16:33:12.0657 0x0354  Wdf01000 - ok
16:33:12.0657 0x0354  WdFilter - ok
16:33:12.0657 0x0354  WdiServiceHost - ok
16:33:12.0673 0x0354  WdiSystemHost - ok
16:33:12.0673 0x0354  wdiwifi - ok
16:33:12.0673 0x0354  WdNisDrv - ok
16:33:12.0673 0x0354  WdNisSvc - ok
16:33:12.0689 0x0354  WebClient - ok
16:33:12.0689 0x0354  Wecsvc - ok
16:33:12.0689 0x0354  WEPHOSTSVC - ok
16:33:12.0689 0x0354  wercplsupport - ok
16:33:12.0689 0x0354  WerSvc - ok
16:33:12.0704 0x0354  WFPLWFS - ok
16:33:12.0704 0x0354  WiaRpc - ok
16:33:12.0704 0x0354  WIMMount - ok
16:33:12.0704 0x0354  WinDefend - ok
16:33:12.0720 0x0354  WindowsTrustedRT - ok
16:33:12.0720 0x0354  WindowsTrustedRTProxy - ok
16:33:12.0720 0x0354  WinHttpAutoProxySvc - ok
16:33:12.0735 0x0354  WinMad - ok
16:33:12.0735 0x0354  Winmgmt - ok
16:33:12.0751 0x0354  WinRM - ok
16:33:12.0751 0x0354  WINUSB - ok
16:33:12.0751 0x0354  WinVerbs - ok
16:33:12.0767 0x0354  wisvc - ok
16:33:12.0767 0x0354  WlanSvc - ok
16:33:12.0767 0x0354  wlidsvc - ok
16:33:12.0767 0x0354  WmiAcpi - ok
16:33:12.0782 0x0354  wmiApSrv - ok
16:33:12.0782 0x0354  WMPNetworkSvc - ok
16:33:12.0782 0x0354  Wof - ok
16:33:12.0782 0x0354  workfolderssvc - ok
16:33:12.0798 0x0354  WPDBusEnum - ok
16:33:12.0798 0x0354  WpdUpFltr - ok
16:33:12.0798 0x0354  WpnService - ok
16:33:12.0798 0x0354  WpnUserService - ok
16:33:12.0814 0x0354  ws2ifsl - ok
16:33:12.0814 0x0354  wscsvc - ok
16:33:12.0814 0x0354  WSDPrintDevice - ok
16:33:12.0829 0x0354  WSDScan - ok
16:33:12.0829 0x0354  WSearch - ok
16:33:12.0829 0x0354  wuauserv - ok
16:33:12.0829 0x0354  WudfPf - ok
16:33:12.0845 0x0354  WUDFRd - ok
16:33:12.0845 0x0354  wudfsvc - ok
16:33:12.0845 0x0354  WUDFWpdFs - ok
16:33:12.0845 0x0354  WUDFWpdMtp - ok
16:33:12.0845 0x0354  WwanSvc - ok
16:33:12.0860 0x0354  XblAuthManager - ok
16:33:12.0860 0x0354  XblGameSave - ok
16:33:12.0860 0x0354  xboxgip - ok
16:33:12.0860 0x0354  XboxNetApiSvc - ok
16:33:12.0876 0x0354  xinputhid - ok
16:33:12.0876 0x0354  [ D3D9CB4BA15C1854294517AA8954E201, DFBB6E1A5FF01123FEAD6EFFA67F4A0203792AFDF82EAFFC2DA981A584896542 ] XQHDrv          C:\WINDOWS\system32\DRIVERS\XQHDrv.sys
16:33:12.0892 0x0354  XQHDrv - ok
16:33:12.0954 0x0354  [ 65308E8DDBCA0A3D7A72E3404E194319, 93D51235D4CB50F3C73DE006843CB98B8940F92BBB84365443C9A31DEB2426A6 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
16:33:13.0001 0x0354  ZeroConfigService - ok
16:33:13.0001 0x0354  ================ Scan global ===============================
16:33:13.0017 0x0354  [ Global ] - ok
16:33:13.0017 0x0354  ================ Scan MBR ==================================
16:33:13.0032 0x0354  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
16:33:13.0032 0x0354  \Device\Harddisk0\DR0 - ok
16:33:13.0314 0x0354  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
16:33:13.0329 0x0354  \Device\Harddisk1\DR1 - ok
16:33:13.0329 0x0354  ================ Scan VBR ==================================
16:33:13.0329 0x0354  [ E8BC60D6177C7E783C6D98CCE8B10C63 ] \Device\Harddisk0\DR0\Partition1
16:33:13.0329 0x0354  \Device\Harddisk0\DR0\Partition1 - ok
16:33:13.0329 0x0354  [ 99D9B226D8C32332D88CDBFE6DBE64BB ] \Device\Harddisk0\DR0\Partition2
16:33:13.0329 0x0354  \Device\Harddisk0\DR0\Partition2 - ok
16:33:13.0329 0x0354  [ A91CC8CE6FE74A032D6BD2321C959E54 ] \Device\Harddisk0\DR0\Partition3
16:33:13.0329 0x0354  \Device\Harddisk0\DR0\Partition3 - ok
16:33:13.0329 0x0354  [ BA9706B85B49A72CBD6A2F932C2120F5 ] \Device\Harddisk0\DR0\Partition4
16:33:13.0329 0x0354  \Device\Harddisk0\DR0\Partition4 - ok
16:33:13.0345 0x0354  [ DC14DD589E75DF8F3D7C982CA83AE39C ] \Device\Harddisk1\DR1\Partition1
16:33:13.0345 0x0354  \Device\Harddisk1\DR1\Partition1 - ok
16:33:13.0345 0x0354  ================ Scan generic autorun ======================
16:33:13.0345 0x0354  Logitech Download Assistant - ok
16:33:13.0345 0x0354  ShadowPlay - ok
16:33:13.0345 0x0354  WindowsDefender - ok
16:33:13.0345 0x0354  [ 793749330DCDE2C9850823C632AF5A89, 2EFC8DB3A0B350AAAA13FF96DAB75B2E2BBCC3FC807D9219B80CBFFFFF88544F ] C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\ASUSWSLoader.exe
16:33:13.0361 0x0354  WebStorage - ok
16:33:13.0361 0x0354  DV4TS.EXE - ok
16:33:13.0392 0x0354  OneDriveSetup - ok
16:33:13.0392 0x0354  OneDriveSetup - ok
16:33:13.0423 0x0354  [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
16:33:13.0423 0x0354  OneDrive - ok
16:33:13.0439 0x0354  [ F4DA83165AF5A49A967E7D37187BBD11, 4A85DE224C4AD6E1F8EE0AB472B8B0F9E8FED5E1255DF3EB1B174319E5785906 ] C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe
16:33:13.0439 0x0354  Dashlane - ok
16:33:13.0454 0x0354  [ 2E920FADD711940901519898F2D8A62E, A2781523781CD21A3FA8B08C87DCDBA9D9095A0333B8C07B5978931BD415204F ] C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
16:33:13.0470 0x0354  DashlanePlugin - ok
16:33:13.0470 0x0354  ARLworks - ok
16:33:13.0470 0x0354  Waiting for KSN requests completion. In queue: 45
16:33:13.0595 0x15b8  Object required for P2P: [ AD521C349AA567683E1DA4361ECF7DFB ] TeamViewer
16:33:14.0486 0x0354  Waiting for KSN requests completion. In queue: 13
16:33:15.0491 0x0354  Waiting for KSN requests completion. In queue: 13
16:33:16.0507 0x0354  Waiting for KSN requests completion. In queue: 13
16:33:16.0601 0x15b8  Object send P2P result: true
16:33:17.0539 0x0354  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
16:33:17.0554 0x0354  Win FW state via NFP2: enabled ( trusted )
16:33:17.0632 0x0354  ============================================================
16:33:17.0632 0x0354  Scan finished
16:33:17.0632 0x0354  ============================================================
16:33:17.0648 0x2fa0  Detected object count: 0
16:33:17.0648 0x2fa0  Actual detected object count: 0
16:33:24.0828 0x2570  ============================================================
16:33:24.0828 0x2570  Scan started
16:33:24.0828 0x2570  Mode: Manual; SigCheck; TDLFS;
16:33:24.0828 0x2570  ============================================================
16:33:24.0828 0x2570  KSN ping started
16:33:24.0906 0x2570  KSN ping finished: true
16:33:25.0453 0x2570  ================ Scan system memory ========================
16:33:25.0453 0x2570  System memory - ok
16:33:25.0453 0x2570  ================ Scan services =============================
16:33:25.0531 0x2570  1394ohci - ok
16:33:25.0531 0x2570  3ware - ok
16:33:25.0547 0x2570  ACPI - ok
16:33:25.0547 0x2570  AcpiDev - ok
16:33:25.0547 0x2570  acpiex - ok
16:33:25.0547 0x2570  acpipagr - ok
16:33:25.0547 0x2570  AcpiPmi - ok
16:33:25.0547 0x2570  acpitime - ok
16:33:25.0562 0x2570  ADP80XX - ok
16:33:25.0562 0x2570  AFD - ok
16:33:25.0609 0x2570  [ 021D06851E7AFF5C314039DF813608F3, 081B14840F4AD428B4407AA2E639369A45D174D9507BD107F33FE3A94FB8F8EC ] AGSService      C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
16:33:25.0672 0x2570  AGSService - ok
16:33:25.0672 0x2570  ahcache - ok
16:33:25.0687 0x2570  [ 50910888109FA9C041D9256541BE70EC, 3E907506E386423DBD8DDCB36FDCE4F2FC2F90A522B24BEF60B8ED05F5A3BD0F ] AiCharger      C:\WINDOWS\system32\DRIVERS\AiCharger.sys
16:33:25.0687 0x2570  AiCharger - ok
16:33:25.0703 0x2570  AJRouter - ok
16:33:25.0703 0x2570  ALG - ok
16:33:25.0703 0x2570  AmdK8 - ok
16:33:25.0703 0x2570  AmdPPM - ok
16:33:25.0703 0x2570  amdsata - ok
16:33:25.0703 0x2570  amdsbs - ok
16:33:25.0719 0x2570  amdxata - ok
16:33:25.0719 0x2570  AppID - ok
16:33:25.0719 0x2570  AppIDSvc - ok
16:33:25.0719 0x2570  Appinfo - ok
16:33:25.0719 0x2570  applockerfltr - ok
16:33:25.0734 0x2570  AppReadiness - ok
16:33:25.0734 0x2570  AppXSvc - ok
16:33:25.0734 0x2570  arcsas - ok
16:33:25.0734 0x2570  [ 16829ED03B336F1B09DE2D6939B39778, D3FBE494537B2CB6D66E6A15B0F73C22CEFD3D8702256B5B5FA5F99E3EF821B6 ] ASLDRService    C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
16:33:25.0750 0x2570  ASLDRService - ok
16:33:25.0750 0x2570  [ 116DD55EEF8843D7C526EB17A932822F, 003326A58256A5BF9912A0B4F6F39295C2909596B33C3837A0C85C7BA7523E14 ] ASMMAP64        C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
16:33:25.0765 0x2570  ASMMAP64 - ok
16:33:25.0765 0x2570  [ AF0561974536C33073E0DF48C2F47C19, 792E2717B5A9AADB92E22C1778F39C3FE86045C34E09F2CEB4E3B1ED11ADC556 ] Asus WebStorage Windows Service C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe
16:33:25.0781 0x2570  Asus WebStorage Windows Service - detected UnsignedFile.Multi.Generic ( 1 )
16:33:25.0781 0x2570  Detect skipped due to KSN trusted
16:33:25.0781 0x2570  Asus WebStorage Windows Service - ok
16:33:25.0781 0x2570  [ 308437492F76E3498F5D9B8DB5E5B2C8, 2300B9EFC27B053CAB0E933F0193E11BA27B738A087DDA7E0BF0AD746CBFDBC3 ] AsusSGDrv      C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys
16:33:25.0797 0x2570  AsusSGDrv - ok
16:33:25.0797 0x2570  AsyncMac - ok
16:33:25.0797 0x2570  atapi - ok
16:33:25.0797 0x2570  [ 89810E9E27C8BB0AFB01814523A76347, A85B817A16096730D8559FD5D5597CA1A9FA3F192FF83885840089AE8F7C9EF5 ] ATKGFNEXSrv    C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
16:33:25.0812 0x2570  ATKGFNEXSrv - ok
16:33:25.0812 0x2570  [ 0E717D7FED23731863EC44B4031DC268, A6F98FE201320FE3FF041768E426008C86B15BA7593EA04B1AC71B6FAE837A1E ] ATKWMIACPIIO    C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
16:33:25.0812 0x2570  ATKWMIACPIIO - ok
16:33:25.0828 0x2570  AudioEndpointBuilder - ok
16:33:25.0828 0x2570  Audiosrv - ok
16:33:25.0828 0x2570  AxInstSV - ok
16:33:25.0828 0x2570  b06bdrv - ok
16:33:25.0828 0x2570  BasicDisplay - ok
16:33:25.0844 0x2570  BasicRender - ok
16:33:25.0844 0x2570  bcmfn - ok
16:33:25.0844 0x2570  bcmfn2 - ok
16:33:25.0844 0x2570  BDESVC - ok
16:33:25.0844 0x2570  Beep - ok
16:33:25.0859 0x2570  BFE - ok
16:33:25.0859 0x2570  BITS - ok
16:33:25.0875 0x2570  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:33:25.0875 0x2570  Bonjour Service - ok
16:33:25.0890 0x2570  bowser - ok
16:33:25.0890 0x2570  BrokerInfrastructure - ok
16:33:25.0890 0x2570  Browser - ok
16:33:25.0890 0x2570  BthAvrcpTg - ok
16:33:25.0890 0x2570  BthEnum - ok
16:33:25.0906 0x2570  BthHFEnum - ok
16:33:25.0906 0x2570  bthhfhid - ok
16:33:25.0906 0x2570  BthHFSrv - ok
16:33:25.0906 0x2570  BthLEEnum - ok
16:33:25.0906 0x2570  BTHMODEM - ok
16:33:25.0922 0x2570  BthPan - ok
16:33:25.0922 0x2570  BTHPORT - ok
16:33:25.0922 0x2570  bthserv - ok
16:33:25.0922 0x2570  BTHUSB - ok
16:33:25.0922 0x2570  buttonconverter - ok
16:33:25.0922 0x2570  CapImg - ok
16:33:25.0937 0x2570  cdfs - ok
16:33:25.0937 0x2570  CDPSvc - ok
16:33:25.0937 0x2570  CDPUserSvc - ok
16:33:25.0937 0x2570  cdrom - ok
16:33:25.0953 0x2570  CertPropSvc - ok
16:33:25.0953 0x2570  cht4iscsi - ok
16:33:25.0953 0x2570  cht4vbd - ok
16:33:25.0953 0x2570  circlass - ok
16:33:25.0953 0x2570  CLFS - ok
16:33:26.0031 0x2570  [ 4B6F8B7BFDB04916CC11F07114ABC4B0, E2D9FB4D23231943FF8B3AC8EA87B194F965197EA1C25186733AAF034F4EE33A ] ClickToRunSvc  C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
16:33:26.0078 0x2570  ClickToRunSvc - ok
16:33:26.0094 0x2570  ClipSVC - ok
16:33:26.0094 0x2570  clreg - ok
16:33:26.0094 0x2570  CmBatt - ok
16:33:26.0094 0x2570  CNG - ok
16:33:26.0109 0x2570  cnghwassist - ok
16:33:26.0125 0x2570  CompositeBus - ok
16:33:26.0125 0x2570  COMSysApp - ok
16:33:26.0140 0x2570  condrv - ok
16:33:26.0140 0x2570  CoreMessagingRegistrar - ok
16:33:26.0156 0x2570  [ 0F0BB33129C878432400F003599F466E, 91821B07F2902435DA0A763E00C8C63380C79B1A48A9713B28ACA75EC888A7BF ] cphs            C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe
16:33:26.0172 0x2570  cphs - ok
16:33:26.0172 0x2570  [ 53C56B7FA0426DF2DEF08B7CBFFC3ABF, 19E5A5AD69D79993F1A5BE960569AD3DA35E5FFFF6674C73BCB96CE0CCE34D47 ] cplspcon        C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe
16:33:26.0187 0x2570  cplspcon - ok
16:33:26.0203 0x2570  CryptSvc - ok
16:33:26.0203 0x2570  dam - ok
16:33:26.0203 0x2570  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:33:26.0219 0x2570  dbupdate - ok
16:33:26.0219 0x2570  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem      C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:33:26.0219 0x2570  dbupdatem - ok
16:33:26.0234 0x2570  [ A4700D1F78539C0ED32FA50E64F9C692, 5CB03B5F36307BA152245BAD29CB2AC703BBE8197ABC0338A7092ADEA1C3221A ] dc3d            C:\WINDOWS\System32\drivers\dc3d.sys
16:33:26.0234 0x2570  dc3d - ok
16:33:26.0250 0x2570  DcomLaunch - ok
16:33:26.0250 0x2570  DcpSvc - ok
16:33:26.0250 0x2570  defragsvc - ok
16:33:26.0250 0x2570  DeviceAssociationService - ok
16:33:26.0250 0x2570  DeviceInstall - ok
16:33:26.0266 0x2570  DevQueryBroker - ok
16:33:26.0266 0x2570  Dfsc - ok
16:33:26.0266 0x2570  [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
16:33:26.0281 0x2570  dg_ssudbus - ok
16:33:26.0281 0x2570  Dhcp - ok
16:33:26.0281 0x2570  diagnosticshub.standardcollector.service - ok
16:33:26.0281 0x2570  DiagTrack - ok
16:33:26.0281 0x2570  disk - ok
16:33:26.0297 0x2570  DmEnrollmentSvc - ok
16:33:26.0297 0x2570  dmvsc - ok
16:33:26.0297 0x2570  dmwappushservice - ok
16:33:26.0297 0x2570  Dnscache - ok
16:33:26.0297 0x2570  dot3svc - ok
16:33:26.0312 0x2570  DPS - ok
16:33:26.0312 0x2570  [ 85680CFC129C7BD79B09404DB833DB78, 62A5AF0ACF16ACAC84F95AB9E82E43A9F1A6D4EBED3319E1C83112FB41678EAA ] dptf_acpi      C:\WINDOWS\System32\drivers\dptf_acpi.sys
16:33:26.0312 0x2570  dptf_acpi - ok
16:33:26.0328 0x2570  [ 4FC126DB5602E8661E9D78818C3FCED7, DC5CE610B408C02B1B2567BF5B8BB2B52E0C6699A5987FE3FF34AECC78071E98 ] dptf_cpu        C:\WINDOWS\System32\drivers\dptf_cpu.sys
16:33:26.0328 0x2570  dptf_cpu - ok
16:33:26.0328 0x2570  drmkaud - ok
16:33:26.0328 0x2570  DsmSvc - ok
16:33:26.0344 0x2570  DsSvc - ok
16:33:26.0344 0x2570  DXGKrnl - ok
16:33:26.0344 0x2570  EapHost - ok
16:33:26.0344 0x2570  ebdrv - ok
16:33:26.0344 0x2570  EFS - ok
16:33:26.0359 0x2570  EhStorClass - ok
16:33:26.0359 0x2570  EhStorTcgDrv - ok
16:33:26.0359 0x2570  embeddedmode - ok
16:33:26.0359 0x2570  EntAppSvc - ok
16:33:26.0359 0x2570  ErrDev - ok
16:33:26.0437 0x2570  [ BB6815A7650EB9CA27D6AE53D636C028, FC78D6B8F2F27E6500AF2823C6CA7072503A344201C26D34319383B32E2CA92C ] esifsvc        C:\WINDOWS\SysWoW64\esif_uf.exe
16:33:26.0469 0x2570  esifsvc - ok
16:33:26.0469 0x2570  [ 438D377AF3651B762568AB6CFAE3C831, F1D28D7F4AC83076D2D7B271FE015410953B7A2F1CFFAEC456F6CF3A2909A47E ] esif_lf        C:\WINDOWS\system32\DRIVERS\esif_lf.sys
16:33:26.0484 0x2570  esif_lf - ok
16:33:26.0484 0x2570  EventSystem - ok
16:33:26.0500 0x2570  [ 6DCB7233AAD29E43331B3ECFCC8FB8D1, A8E203BB774A4E055C871E9A28F958287A75E8BEA42496E6BA9983063CF6C539 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:33:26.0516 0x2570  EvtEng - ok
16:33:26.0516 0x2570  exfat - ok
16:33:26.0516 0x2570  fastfat - ok
16:33:26.0531 0x2570  Fax - ok
16:33:26.0531 0x2570  fdc - ok
16:33:26.0531 0x2570  fdPHost - ok
16:33:26.0531 0x2570  FDResPub - ok
16:33:26.0531 0x2570  fhsvc - ok
16:33:26.0547 0x2570  FileCrypt - ok
16:33:26.0547 0x2570  FileInfo - ok
16:33:26.0547 0x2570  Filetrace - ok
16:33:26.0547 0x2570  flpydisk - ok
16:33:26.0547 0x2570  FltMgr - ok
16:33:26.0547 0x2570  FontCache - ok
16:33:26.0562 0x2570  FontCache3.0.0.0 - ok
16:33:26.0562 0x2570  FrameServer - ok
16:33:26.0562 0x2570  FsDepends - ok
16:33:26.0562 0x2570  Fs_Rec - ok
16:33:26.0578 0x2570  fvevol - ok
16:33:26.0578 0x2570  gencounter - ok
16:33:26.0578 0x2570  genericusbfn - ok
16:33:26.0578 0x2570  GPIOClx0101 - ok
16:33:26.0578 0x2570  gpsvc - ok
16:33:26.0578 0x2570  GpuEnergyDrv - ok
16:33:26.0594 0x2570  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdate        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:33:26.0594 0x2570  gupdate - ok
16:33:26.0609 0x2570  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:33:26.0609 0x2570  gupdatem - ok
16:33:26.0609 0x2570  HDAudBus - ok
16:33:26.0625 0x2570  HidBatt - ok
16:33:26.0625 0x2570  HidBth - ok
16:33:26.0625 0x2570  hidi2c - ok
16:33:26.0625 0x2570  hidinterrupt - ok
16:33:26.0625 0x2570  HidIr - ok
16:33:26.0641 0x2570  hidserv - ok
16:33:26.0641 0x2570  [ 38DA94B6DD8022DA43810E4328608E54, ACE0A36143FF37BC42F136DB7317028540D1C0F21A5FD13F67E1A3DB2426A5EA ] HIDSwitch      C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys
16:33:26.0641 0x2570  HIDSwitch - ok
16:33:26.0641 0x2570  HidUsb - ok
16:33:26.0656 0x2570  HomeGroupListener - ok
16:33:26.0656 0x2570  HomeGroupProvider - ok
16:33:26.0656 0x2570  HpSAMD - ok
16:33:26.0656 0x2570  HTTP - ok
16:33:26.0656 0x2570  HvHost - ok
16:33:26.0672 0x2570  hvservice - ok
16:33:26.0672 0x2570  hwpolicy - ok
16:33:26.0672 0x2570  hyperkbd - ok
16:33:26.0672 0x2570  i8042prt - ok
16:33:26.0672 0x2570  iagpio - ok
16:33:26.0687 0x2570  iai2c - ok
16:33:26.0687 0x2570  iaLPSS2i_GPIO2 - ok
16:33:26.0687 0x2570  iaLPSS2i_I2C - ok
16:33:26.0687 0x2570  [ 54829E0B5F2FF133E6AEF13104689FA1, 322B3DA3E3BACE1A8584DA5AADA527983FB40B49AFFE23AA002295146435BB12 ] iaLPSS2_I2C    C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys
16:33:26.0703 0x2570  iaLPSS2_I2C - ok
16:33:26.0703 0x2570  iaLPSSi_GPIO - ok
16:33:26.0703 0x2570  iaLPSSi_I2C - ok
16:33:26.0734 0x2570  [ 5F6CA62BE8ECC4D0E1F5D4D4A02B456B, F720A1F14C9053D24C5B42827E5F9578A27F3E62A6C65A3CFA068E580F02F072 ] iaStorA        C:\WINDOWS\system32\drivers\iaStorA.sys
16:33:26.0766 0x2570  iaStorA - ok
16:33:26.0766 0x2570  iaStorAV - ok
16:33:26.0781 0x2570  iaStorV - ok
16:33:26.0781 0x2570  ibbus - ok
16:33:26.0781 0x2570  ibtsiva - ok
16:33:26.0781 0x2570  [ 606148419C4F99C3102E1EF5E3AFC72A, 63DB5D2ABFB3A0F048B87FCF4B32C4B862F396DDBD3AC5E52951648C99BEC3DD ] ibtusb          C:\WINDOWS\system32\DRIVERS\ibtusb.sys
16:33:26.0797 0x2570  ibtusb - ok
16:33:26.0797 0x2570  icssvc - ok
16:33:27.0000 0x2570  [ 42A8E802D412117D6707FB5CB819CF33, 585C81320D58F731472827D9E67F5752ACB554BB5333221A3D91E6F60454E26D ] igfx            C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igdkmd64.sys
16:33:27.0156 0x2570  igfx - ok
16:33:27.0188 0x2570  [ 5495E7F548D0DD4BD5A3D2C071DB1FB3, 320344AEF67751BA80E5737F90D736DEF6555D1610F27D4BE86747C1D8200E31 ] igfxCUIService2.0.0.0 C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe
16:33:27.0188 0x2570  igfxCUIService2.0.0.0 - ok
16:33:27.0203 0x2570  IKEEXT - ok
16:33:27.0203 0x2570  IndirectKmd - ok
16:33:27.0203 0x2570  [ AFA7F1696B431C07729E9BF2565D6045, 77966485A23581C079A480BEC13982AB926F5C62686F48A44F8C562B3C67745B ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
16:33:27.0219 0x2570  intaud_WaveExtensible - ok
16:33:27.0297 0x2570  [ A1F8EEE8C5DF4BC77376485F133750C7, 4AA5BBBA31302640A825DB26507B6FE494CE25966940FA770EFED8D78EAFA491 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
16:33:27.0359 0x2570  IntcAzAudAddService - ok
16:33:27.0391 0x2570  [ 739A977693ACC5D64967F3809BAB1854, 1FAE0ABB0412053D9ACE960C1233E2F556BD8F524A29AB7242847C8D6B4B87AD ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
16:33:27.0406 0x2570  IntcDAud - ok
16:33:27.0438 0x2570  [ B63CF22D1AD2ABDC39D85851B2BEAA6D, 37E9043BABB5895BFD2B59AFB60C438B992C6EAA1B5FDE5B3445314343F4C406 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
16:33:27.0453 0x2570  Intel(R) Capability Licensing Service TCP IP Interface - ok
16:33:27.0453 0x2570  [ 8213094EA736A9C575AB0E22AD09B0BA, 12670A466B5AA37283BD4CB481D000DE3AE2A8D1BD159F67A41703A6FE5675EC ] Intel(R) Security Assist C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
16:33:27.0469 0x2570  Intel(R) Security Assist - detected UnsignedFile.Multi.Generic ( 1 )
16:33:27.0469 0x2570  Detect skipped due to KSN trusted
16:33:27.0469 0x2570  Intel(R) Security Assist - ok
16:33:27.0484 0x2570  [ 97AC7006869B90F9B09445B7122BA90E, B1C8FCD6DEFA468BAE0A905999C8AA828656D6E7A6EF60F99A4FBC1A0597346E ] Intel(R) WiDi SAM C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe
16:33:27.0484 0x2570  Intel(R) WiDi SAM - ok
16:33:27.0484 0x2570  intelide - ok
16:33:27.0484 0x2570  intelpep - ok
16:33:27.0500 0x2570  intelppm - ok
16:33:27.0500 0x2570  [ ED8B27761A86EA41BDCCE7EDC44155DB, 9D8E06836C6D19079179CD4022754F533D6C5556A153E3A8A2A3AA9EF3390931 ] IntelUSBoverIP  C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
16:33:27.0516 0x2570  IntelUSBoverIP - ok
16:33:27.0516 0x2570  iorate - ok
16:33:27.0531 0x2570  IpFilterDriver - ok
16:33:27.0531 0x2570  iphlpsvc - ok
16:33:27.0531 0x2570  IPMIDRV - ok
16:33:27.0531 0x2570  IPNAT - ok
16:33:27.0531 0x2570  irda - ok
16:33:27.0531 0x2570  IRENUM - ok
16:33:27.0547 0x2570  irmon - ok
16:33:27.0547 0x2570  [ 1DFC3CCA51785254C5604238BB1A5467, 31451A90A91AEE14C6B24F84CB9816E5C77179D411B8B3E8547F538235BEEFB0 ] isaHelperSvc    C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
16:33:27.0547 0x2570  isaHelperSvc - detected UnsignedFile.Multi.Generic ( 1 )
16:33:27.0547 0x2570  Detect skipped due to KSN trusted
16:33:27.0547 0x2570  isaHelperSvc - ok
16:33:27.0547 0x2570  isapnp - ok
16:33:27.0563 0x2570  iScsiPrt - ok
16:33:27.0563 0x2570  [ DA0A946E6C4228B659FA798EF0B075C1, BC2F5710D6165615CD578A970BC154C8DB1ECCA5725D09A29954E9BE8FAC0ED7 ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
16:33:27.0563 0x2570  iwdbus - ok
16:33:27.0578 0x2570  [ 1D6E77475AF059458AB7E15034EE1F9D, DEB72B8DCD2341373CBB5BD2915EE991E539864C15E30198B8B3638D42228324 ] jhi_service    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
16:33:27.0578 0x2570  jhi_service - ok
16:33:27.0594 0x2570  kbdclass - ok
16:33:27.0594 0x2570  kbdhid - ok
16:33:27.0594 0x2570  kdnic - ok
16:33:27.0594 0x2570  KeyIso - ok
16:33:27.0594 0x2570  KSecDD - ok
16:33:27.0609 0x2570  KSecPkg - ok
16:33:27.0609 0x2570  ksthunk - ok
16:33:27.0609 0x2570  KtmRm - ok
16:33:27.0609 0x2570  LanmanServer - ok
16:33:27.0609 0x2570  LanmanWorkstation - ok
16:33:27.0656 0x2570  [ 303C2F9010876D1A43616EB94E37EEF6, 224F6E085C6EB81394C05AFB5B12674A3F3790B1EBE3214748569EF288353A9C ] LCTechSSDToolAsus C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe
16:33:27.0703 0x2570  LCTechSSDToolAsus - ok
16:33:27.0719 0x2570  lfsvc - ok
16:33:27.0719 0x2570  LicenseManager - ok
16:33:27.0719 0x2570  lltdio - ok
16:33:27.0719 0x2570  lltdsvc - ok
16:33:27.0734 0x2570  lmhosts - ok
16:33:27.0734 0x2570  [ 258B7A8D42365472A184C064154F265F, 70FDBE83157C6EABF0223C54A6C57137D52E389D0118BFAD4E2BF11D15507354 ] LMS            C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:33:27.0750 0x2570  LMS - ok
16:33:27.0750 0x2570  LSI_SAS - ok
16:33:27.0766 0x2570  LSI_SAS2i - ok
16:33:27.0766 0x2570  LSI_SAS3i - ok
16:33:27.0766 0x2570  LSI_SSS - ok
16:33:27.0766 0x2570  LSM - ok
16:33:27.0766 0x2570  luafv - ok
16:33:27.0766 0x2570  MapsBroker - ok
16:33:27.0781 0x2570  [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector  C:\WINDOWS\system32\drivers\mbam.sys
16:33:27.0781 0x2570  MBAMProtector - ok
16:33:27.0813 0x2570  [ 9611577752E293259C7DCE19E9026362, 8CB5DFD63FA15603BB6FA6B501E09ED7F4DE0E8F68CB28B78CECAC3711BEFD24 ] MBAMScheduler  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
16:33:27.0844 0x2570  MBAMScheduler - ok
16:33:27.0859 0x2570  [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService    C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:33:27.0891 0x2570  MBAMService - ok
16:33:27.0891 0x2570  [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy  C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
16:33:27.0906 0x2570  MBAMSwissArmy - ok
16:33:27.0906 0x2570  [ 898415AC0B5F1D2A9A48ABCB68A6DC4B, E1FD9AE5E22E3E5A18288E66A6184E92A4B63A1274DCE147A7728BB09C6A225E ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
16:33:27.0906 0x2570  MBAMWebAccessControl - ok
16:33:27.0906 0x2570  megasas - ok
16:33:27.0922 0x2570  megasas2i - ok
16:33:27.0922 0x2570  megasr - ok
16:33:27.0922 0x2570  [ 6ECDA51525C123C55ABC470F2144F925, 7B2E8976F126219AF0953FD641E613A9336CCC80843AF4A37AA71067D55CCBBB ] MEIx64          C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
16:33:27.0938 0x2570  MEIx64 - ok
16:33:27.0938 0x2570  MessagingService - ok
16:33:27.0938 0x2570  mlx4_bus - ok
16:33:27.0938 0x2570  MMCSS - ok
16:33:27.0953 0x2570  Modem - ok
16:33:27.0953 0x2570  monitor - ok
16:33:27.0953 0x2570  mouclass - ok
16:33:27.0953 0x2570  mouhid - ok
16:33:27.0953 0x2570  mountmgr - ok
16:33:27.0969 0x2570  mpsdrv - ok
16:33:27.0969 0x2570  MpsSvc - ok
16:33:27.0969 0x2570  MRxDAV - ok
16:33:27.0969 0x2570  mrxsmb - ok
16:33:27.0969 0x2570  mrxsmb10 - ok
16:33:27.0969 0x2570  mrxsmb20 - ok
16:33:27.0985 0x2570  MsBridge - ok
16:33:27.0985 0x2570  MSDTC - ok
16:33:27.0985 0x2570  Msfs - ok
16:33:27.0985 0x2570  msgpiowin32 - ok
16:33:28.0000 0x2570  mshidkmdf - ok
16:33:28.0000 0x2570  mshidumdf - ok
16:33:28.0000 0x2570  msisadrv - ok
16:33:28.0000 0x2570  MSiSCSI - ok
16:33:28.0000 0x2570  msiserver - ok
16:33:28.0016 0x2570  MSKSSRV - ok
16:33:28.0016 0x2570  MsLldp - ok
16:33:28.0016 0x2570  MSPCLOCK - ok
16:33:28.0016 0x2570  MSPQM - ok
16:33:28.0016 0x2570  MsRPC - ok
16:33:28.0031 0x2570  mssmbios - ok
16:33:28.0031 0x2570  MSTEE - ok
16:33:28.0031 0x2570  MTConfig - ok
16:33:28.0031 0x2570  Mup - ok
16:33:28.0031 0x2570  mvumis - ok
16:33:28.0047 0x2570  [ F1F6EE6C068CBDB80BAC43A79591F1F2, 39387A25ECFBFDD5B6A43A9A2CA2EC5703D0CCCFFE36C989B0E461B72C242D1C ] MyWiFiDHCPDNS  C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:33:28.0047 0x2570  MyWiFiDHCPDNS - ok
16:33:28.0063 0x2570  NativeWifiP - ok
16:33:28.0063 0x2570  NcaSvc - ok
16:33:28.0063 0x2570  NcbService - ok
16:33:28.0063 0x2570  NcdAutoSetup - ok
16:33:28.0078 0x2570  ndfltr - ok
16:33:28.0078 0x2570  NDIS - ok
16:33:28.0078 0x2570  NdisCap - ok
16:33:28.0078 0x2570  NdisImPlatform - ok
16:33:28.0078 0x2570  NdisTapi - ok
16:33:28.0078 0x2570  Ndisuio - ok
16:33:28.0094 0x2570  NdisVirtualBus - ok
16:33:28.0094 0x2570  NdisWan - ok
16:33:28.0094 0x2570  ndiswanlegacy - ok
16:33:28.0094 0x2570  ndproxy - ok
16:33:28.0094 0x2570  Ndu - ok
16:33:28.0110 0x2570  NetAdapterCx - ok
16:33:28.0110 0x2570  NetBIOS - ok
16:33:28.0110 0x2570  NetBT - ok
16:33:28.0110 0x2570  Netlogon - ok
16:33:28.0110 0x2570  Netman - ok
16:33:28.0110 0x2570  netprofm - ok
16:33:28.0125 0x2570  NetSetupSvc - ok
16:33:28.0141 0x2570  NetTcpPortSharing - ok
16:33:28.0141 0x2570  Netwtw04 - ok
16:33:28.0141 0x2570  NgcCtnrSvc - ok
16:33:28.0141 0x2570  NgcSvc - ok
16:33:28.0156 0x2570  NlaSvc - ok
16:33:28.0156 0x2570  Npfs - ok
16:33:28.0156 0x2570  npsvctrig - ok
16:33:28.0156 0x2570  nsi - ok
16:33:28.0156 0x2570  nsiproxy - ok
16:33:28.0172 0x2570  NTFS - ok
16:33:28.0172 0x2570  Null - ok
16:33:28.0188 0x2570  [ E5FB1DED60CD5461625955E00838541A, 5F8EF2B1169E0C8F1CF3638A1C670ADAE9DC7D5EAF114D3F91C0556967311EB9 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
16:33:28.0203 0x2570  NvContainerLocalSystem - ok
16:33:28.0203 0x2570  [ E5FB1DED60CD5461625955E00838541A, 5F8EF2B1169E0C8F1CF3638A1C670ADAE9DC7D5EAF114D3F91C0556967311EB9 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
16:33:28.0219 0x2570  NvContainerNetworkService - ok
16:33:28.0250 0x2570  [ EDF2A6D3EC66A6175BF9C48356130F81, 3AFEFE39D911D0298F382AA98B3C7C2EE147211A09D438C25657512D5840E53E ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
16:33:28.0266 0x2570  NVIDIA Wireless Controller Service - ok
16:33:28.0516 0x2570  [ 76ECA562B95DB26C64BEC14BB188A3F6, B4DB40D391B227393EEC13659C64B03499632FD11A75E5183BE8A0C8F3C9688B ] nvlddmkm        C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvlddmkm.sys
16:33:28.0735 0x2570  nvlddmkm - ok
16:33:28.0750 0x2570  nvraid - ok
16:33:28.0750 0x2570  nvstor - ok
16:33:28.0750 0x2570  [ E5340E353E5DB0350DE759C77CD4C3F5, 4D7FE3EE2101FD6208BA56D876A6622175D8B817DCCCE5D3CE8D0026AAE93174 ] NvStreamKms    C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:33:28.0766 0x2570  NvStreamKms - ok
16:33:28.0766 0x2570  [ 1A059C00CD7D0CC0CC9FD03E77FDC646, C9E41B0C8DF5C70C410F229F95CC1EAD24BC249D1F0939AA06D9A86C60B6EF41 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
16:33:28.0766 0x2570  nvvad_WaveExtensible - ok
16:33:28.0782 0x2570  OneSyncSvc - ok
16:33:28.0782 0x2570  [ D1AF4C86F851F9A345A400FD3B9D673A, BCC7B3AF92A2AB09CC52FB10107E209C02AC078E5F0197AEC40D7AE56F3A7CA0 ] ose64          C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:33:28.0797 0x2570  ose64 - ok
16:33:28.0797 0x2570  p2pimsvc - ok
16:33:28.0797 0x2570  p2psvc - ok
16:33:28.0797 0x2570  Parport - ok
16:33:28.0813 0x2570  partmgr - ok
16:33:28.0813 0x2570  PcaSvc - ok
16:33:28.0813 0x2570  pci - ok
16:33:28.0813 0x2570  pciide - ok
16:33:28.0813 0x2570  pcmcia - ok
16:33:28.0829 0x2570  pcw - ok
16:33:28.0829 0x2570  pdc - ok
16:33:28.0829 0x2570  PEAUTH - ok
16:33:28.0829 0x2570  percsas2i - ok
16:33:28.0829 0x2570  percsas3i - ok
16:33:28.0875 0x2570  PerfHost - ok
16:33:28.0875 0x2570  PhoneSvc - ok
16:33:28.0875 0x2570  PimIndexMaintenanceSvc - ok
16:33:28.0891 0x2570  pla - ok
16:33:28.0891 0x2570  PlugPlay - ok
16:33:28.0891 0x2570  PNRPAutoReg - ok
16:33:28.0891 0x2570  PNRPsvc - ok
16:33:28.0907 0x2570  PolicyAgent - ok
16:33:28.0907 0x2570  Power - ok
16:33:28.0907 0x2570  PptpMiniport - ok
16:33:28.0985 0x2570  [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify    C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
16:33:29.0079 0x2570  PrintNotify - ok
16:33:29.0079 0x2570  Processor - ok
16:33:29.0094 0x2570  ProfSvc - ok
16:33:29.0094 0x2570  Psched - ok
16:33:29.0094 0x2570  QWAVE - ok
16:33:29.0094 0x2570  QWAVEdrv - ok
16:33:29.0094 0x2570  RasAcd - ok
16:33:29.0094 0x2570  RasAgileVpn - ok
16:33:29.0110 0x2570  RasAuto - ok
16:33:29.0110 0x2570  Rasl2tp - ok
16:33:29.0110 0x2570  RasMan - ok
16:33:29.0110 0x2570  RasPppoe - ok
16:33:29.0110 0x2570  RasSstp - ok
16:33:29.0125 0x2570  rdbss - ok
16:33:29.0125 0x2570  rdpbus - ok
16:33:29.0125 0x2570  RDPDR - ok
16:33:29.0125 0x2570  RdpVideoMiniport - ok
16:33:29.0141 0x2570  rdyboost - ok
16:33:29.0141 0x2570  ReFSv1 - ok
16:33:29.0141 0x2570  [ B91EE7363FDC2B0CB1C5E6190B46F7DC, 650EE0262F2EE242D99A5BE013A64F76CA3537274C0B9313F9BD7741ACF38017 ] RegSrvc        C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
16:33:29.0157 0x2570  RegSrvc - ok
16:33:29.0157 0x2570  RemoteAccess - ok
16:33:29.0157 0x2570  RemoteRegistry - ok
16:33:29.0157 0x2570  RetailDemo - ok
16:33:29.0157 0x2570  RFCOMM - ok
16:33:29.0172 0x2570  RmSvc - ok
16:33:29.0172 0x2570  RpcEptMapper - ok
16:33:29.0172 0x2570  RpcLocator - ok
16:33:29.0172 0x2570  RpcSs - ok
16:33:29.0172 0x2570  rspndr - ok
16:33:29.0188 0x2570  [ E11A3F79475F9D019CD51ADCCC377909, CF14C494C4A969233C1D2B32A56C86C8636AC70004725B53447C42EB63C31BA9 ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
16:33:29.0219 0x2570  rt640x64 - ok
16:33:29.0235 0x2570  [ F75C6FFD09A6C51E4B5166E05D97FD96, 12174DA89456347704455B1544C6E0FB54E55504E6C88F5E9962018D53D6F84D ] RTSPER          C:\WINDOWS\system32\DRIVERS\RtsPer.sys
16:33:29.0250 0x2570  RTSPER - ok
16:33:29.0250 0x2570  s3cap - ok
16:33:29.0250 0x2570  SamSs - ok
16:33:29.0266 0x2570  sbp2port - ok
16:33:29.0266 0x2570  SCardSvr - ok
16:33:29.0266 0x2570  ScDeviceEnum - ok
16:33:29.0266 0x2570  scfilter - ok
16:33:29.0266 0x2570  Schedule - ok
16:33:29.0282 0x2570  scmbus - ok
16:33:29.0282 0x2570  scmdisk0101 - ok
16:33:29.0282 0x2570  SCPolicySvc - ok
16:33:29.0282 0x2570  sdbus - ok
16:33:29.0282 0x2570  SDRSVC - ok
16:33:29.0282 0x2570  sdstor - ok
16:33:29.0297 0x2570  seclogon - ok
16:33:29.0297 0x2570  SENS - ok
16:33:29.0297 0x2570  SensorDataService - ok
16:33:29.0297 0x2570  SensorService - ok
16:33:29.0297 0x2570  SensrSvc - ok
16:33:29.0313 0x2570  SerCx - ok
16:33:29.0313 0x2570  SerCx2 - ok
16:33:29.0313 0x2570  Serenum - ok
16:33:29.0313 0x2570  Serial - ok
16:33:29.0329 0x2570  sermouse - ok
16:33:29.0329 0x2570  SessionEnv - ok
16:33:29.0329 0x2570  sfloppy - ok
16:33:29.0329 0x2570  SharedAccess - ok
16:33:29.0344 0x2570  ShellHWDetection - ok
16:33:29.0344 0x2570  shpamsvc - ok
16:33:29.0344 0x2570  SiSRaid2 - ok
16:33:29.0344 0x2570  SiSRaid4 - ok
16:33:29.0344 0x2570  smphost - ok
16:33:29.0344 0x2570  SmsRouter - ok
16:33:29.0360 0x2570  SNMPTRAP - ok
16:33:29.0360 0x2570  spaceport - ok
16:33:29.0360 0x2570  SpbCx - ok
16:33:29.0375 0x2570  Spooler - ok
16:33:29.0375 0x2570  sppsvc - ok
16:33:29.0375 0x2570  srv - ok
16:33:29.0375 0x2570  srv2 - ok
16:33:29.0375 0x2570  srvnet - ok
16:33:29.0375 0x2570  SSDPSRV - ok
16:33:29.0391 0x2570  [ 3725AD72054E339CAE17A252AE0EE0FD, 7205D5558C37E6B29056B477945546887368843E195C956CB67E39F14ACD18D5 ] sshid          C:\WINDOWS\System32\drivers\sshid.sys
16:33:29.0391 0x2570  sshid - ok
16:33:29.0391 0x2570  SstpSvc - ok
16:33:29.0407 0x2570  [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm        C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
16:33:29.0407 0x2570  ssudmdm - ok
16:33:29.0422 0x2570  StateRepository - ok
16:33:29.0422 0x2570  stexstor - ok
16:33:29.0422 0x2570  stisvc - ok
16:33:29.0422 0x2570  storahci - ok
16:33:29.0422 0x2570  storflt - ok
16:33:29.0438 0x2570  stornvme - ok
16:33:29.0438 0x2570  storqosflt - ok
16:33:29.0438 0x2570  StorSvc - ok
16:33:29.0438 0x2570  storufs - ok
16:33:29.0438 0x2570  storvsc - ok
16:33:29.0454 0x2570  svsvc - ok
16:33:29.0454 0x2570  swenum - ok
16:33:29.0454 0x2570  swprv - ok
16:33:29.0454 0x2570  Synth3dVsc - ok
16:33:29.0454 0x2570  SysMain - ok
16:33:29.0454 0x2570  SystemEventsBroker - ok
16:33:29.0469 0x2570  TabletInputService - ok
16:33:29.0469 0x2570  TapiSrv - ok
16:33:29.0469 0x2570  Tcpip - ok
16:33:29.0469 0x2570  Tcpip6 - ok
16:33:29.0485 0x2570  tcpipreg - ok
16:33:29.0485 0x2570  tdx - ok
16:33:29.0674 0x2570  [ AD521C349AA567683E1DA4361ECF7DFB, 5BA9DD327565EAF11481553BCBD01C1BFAA6651ABED4D3587D6F742B06294A09 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
16:33:29.0830 0x2570  TeamViewer - ok
16:33:29.0830 0x2570  Object required for P2P: [ AD521C349AA567683E1DA4361ECF7DFB ] TeamViewer
16:33:30.0033 0x2570  Object send P2P result: true
16:33:30.0049 0x2570  terminpt - ok
16:33:30.0049 0x2570  TermService - ok
16:33:30.0064 0x2570  Themes - ok
16:33:30.0064 0x2570  TieringEngineService - ok
16:33:30.0064 0x2570  tiledatamodelsvc - ok
16:33:30.0064 0x2570  TimeBrokerSvc - ok
16:33:30.0080 0x2570  [ 3B2A2F3EE3D783A667F75B2814D223B1, C6B474C24161A00B331AD26DD4B218284CDCE1D60B594F81B3F7BACBCED50D89 ] Tipuly          C:\Program Files (x86)\Drabapythebution\whtcore.dll
16:33:30.0096 0x2570  Tipuly - detected UnsignedFile.Multi.Generic ( 1 )
16:33:30.0142 0x2570  Tipuly ( UnsignedFile.Multi.Generic ) - warning
16:33:30.0142 0x2570  Force sending object to P2P due to detect: Tipuly
16:33:30.0299 0x2570  Object send P2P result: true
16:33:30.0408 0x2570  TPM - ok
16:33:30.0408 0x2570  TrkWks - ok
16:33:30.0408 0x2570  TrustedInstaller - ok
16:33:30.0486 0x2570  [ C3CC02C678D760B12F2F75BB5FD4075A, 4491EC28E5238DE9052CDB5DA31CAA87D6C287DCBAEB2F545D495F6B8D9BDB1A ] TSMaintenanceService C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe
16:33:30.0549 0x2570  TSMaintenanceService - ok
16:33:30.0549 0x2570  tsusbflt - ok
16:33:30.0565 0x2570  TsUsbGD - ok
16:33:30.0565 0x2570  tunnel - ok
16:33:30.0565 0x2570  tzautoupdate - ok
16:33:30.0565 0x2570  UASPStor - ok
16:33:30.0580 0x2570  [ EB482DBC9786F1A9E3ED5AB6864794FA, 4154B259587D743612830F67800450DD04031C215A8459CC26E11D3498640BA0 ] UCGuard        C:\WINDOWS\system32\DRIVERS\ucguard.sys
16:33:30.0580 0x2570  UCGuard - ok
16:33:30.0580 0x2570  UcmCx0101 - ok
16:33:30.0596 0x2570  UcmTcpciCx0101 - ok
16:33:30.0596 0x2570  UcmUcsi - ok
16:33:30.0596 0x2570  Ucx01000 - ok
16:33:30.0596 0x2570  UdeCx - ok
16:33:30.0596 0x2570  udfs - ok
16:33:30.0596 0x2570  UEFI - ok
16:33:30.0611 0x2570  Ufx01000 - ok
16:33:30.0611 0x2570  UfxChipidea - ok
16:33:30.0611 0x2570  ufxsynopsys - ok
16:33:30.0611 0x2570  UI0Detect - ok
16:33:30.0627 0x2570  umbus - ok
16:33:30.0627 0x2570  UmPass - ok
16:33:30.0627 0x2570  UmRdpService - ok
16:33:30.0627 0x2570  UnistoreSvc - ok
16:33:30.0643 0x2570  upnphost - ok
16:33:30.0643 0x2570  UrsChipidea - ok
16:33:30.0643 0x2570  UrsCx01000 - ok
16:33:30.0643 0x2570  UrsSynopsys - ok
16:33:30.0658 0x2570  [ DB2D395585587BC4D63AB7DCC7826EF2, 1B7D39CB6E15A875061BDD1433FF6F344A4F1710BF7B9471CBFFCD722EB66B68 ] usb3Hub        C:\WINDOWS\System32\drivers\usb3Hub.sys
16:33:30.0658 0x2570  usb3Hub - ok
16:33:30.0658 0x2570  usbccgp - ok
16:33:30.0658 0x2570  usbcir - ok
16:33:30.0674 0x2570  usbehci - ok
16:33:30.0674 0x2570  usbhub - ok
16:33:30.0674 0x2570  USBHUB3 - ok
16:33:30.0674 0x2570  usbohci - ok
16:33:30.0689 0x2570  usbprint - ok
16:33:30.0689 0x2570  usbser - ok
16:33:30.0689 0x2570  USBSTOR - ok
16:33:30.0689 0x2570  usbuhci - ok
16:33:30.0689 0x2570  usbvideo - ok
16:33:30.0705 0x2570  USBXHCI - ok
16:33:30.0705 0x2570  UserDataSvc - ok
16:33:30.0705 0x2570  UserManager - ok
16:33:30.0705 0x2570  UsoSvc - ok
16:33:30.0721 0x2570  VaultSvc - ok
16:33:30.0721 0x2570  [ CDA796F41C2B64CEEC143B3A86904CFB, 8D9CACB74608C145A75424F4169E447A9EFA0EC3DD1412F097B56F86C0FC8E6E ] VBoxDrv        C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys
16:33:30.0736 0x2570  VBoxDrv - ok
16:33:30.0736 0x2570  [ 0E3C4F20B2CE21168F3242D9CAC6CBF2, 1BD5E1A2000EBC1C335A8960ACDCD08BDC8230F533A80D086D2EE6FE4990EA02 ] VBoxUSBMon      C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
16:33:30.0752 0x2570  VBoxUSBMon - ok
16:33:30.0752 0x2570  vdrvroot - ok
16:33:30.0752 0x2570  vds - ok
16:33:30.0752 0x2570  VerifierExt - ok
16:33:30.0752 0x2570  vhdmp - ok
16:33:30.0768 0x2570  vhf - ok
16:33:30.0768 0x2570  vmbus - ok
16:33:30.0768 0x2570  VMBusHID - ok
16:33:30.0768 0x2570  vmgid - ok
16:33:30.0768 0x2570  vmicguestinterface - ok
16:33:30.0783 0x2570  vmicheartbeat - ok
16:33:30.0783 0x2570  vmickvpexchange - ok
16:33:30.0783 0x2570  vmicrdv - ok
16:33:30.0783 0x2570  vmicshutdown - ok
16:33:30.0783 0x2570  vmictimesync - ok
16:33:30.0783 0x2570  vmicvmsession - ok
16:33:30.0799 0x2570  vmicvss - ok
16:33:30.0799 0x2570  VMnetAdapter - ok
16:33:30.0799 0x2570  volmgr - ok
16:33:30.0799 0x2570  volmgrx - ok
16:33:30.0814 0x2570  volsnap - ok
16:33:30.0814 0x2570  volume - ok
16:33:30.0814 0x2570  vpci - ok
16:33:30.0814 0x2570  vsmraid - ok
16:33:30.0814 0x2570  VSS - ok
16:33:30.0830 0x2570  VSTXRAID - ok
16:33:30.0830 0x2570  vwifibus - ok
16:33:30.0830 0x2570  vwififlt - ok
16:33:30.0830 0x2570  vwifimp - ok
16:33:30.0830 0x2570  W32Time - ok
16:33:30.0846 0x2570  WacomPen - ok
16:33:30.0846 0x2570  WalletService - ok
16:33:30.0846 0x2570  wanarp - ok
16:33:30.0846 0x2570  wanarpv6 - ok
16:33:30.0846 0x2570  wbengine - ok
16:33:30.0861 0x2570  WbioSrvc - ok
16:33:30.0861 0x2570  wcifs - ok
16:33:30.0861 0x2570  Wcmsvc - ok
16:33:30.0861 0x2570  wcncsvc - ok
16:33:30.0861 0x2570  wcnfs - ok
16:33:30.0877 0x2570  WdBoot - ok
16:33:30.0877 0x2570  Wdf01000 - ok
16:33:30.0877 0x2570  WdFilter - ok
16:33:30.0877 0x2570  WdiServiceHost - ok
16:33:30.0877 0x2570  WdiSystemHost - ok
16:33:30.0893 0x2570  wdiwifi - ok
16:33:30.0893 0x2570  WdNisDrv - ok
16:33:30.0893 0x2570  WdNisSvc - ok
16:33:30.0893 0x2570  WebClient - ok
16:33:30.0893 0x2570  Wecsvc - ok
16:33:30.0893 0x2570  WEPHOSTSVC - ok
16:33:30.0908 0x2570  wercplsupport - ok
16:33:30.0908 0x2570  WerSvc - ok
16:33:30.0908 0x2570  WFPLWFS - ok
16:33:30.0908 0x2570  WiaRpc - ok
16:33:30.0924 0x2570  WIMMount - ok
16:33:30.0924 0x2570  WinDefend - ok
16:33:30.0924 0x2570  WindowsTrustedRT - ok
16:33:30.0924 0x2570  WindowsTrustedRTProxy - ok
16:33:30.0939 0x2570  WinHttpAutoProxySvc - ok
16:33:30.0939 0x2570  WinMad - ok
16:33:30.0955 0x2570  Winmgmt - ok
16:33:30.0955 0x2570  WinRM - ok
16:33:30.0955 0x2570  WINUSB - ok
16:33:30.0971 0x2570  WinVerbs - ok
16:33:30.0971 0x2570  wisvc - ok
16:33:30.0971 0x2570  WlanSvc - ok
16:33:30.0971 0x2570  wlidsvc - ok
16:33:30.0971 0x2570  WmiAcpi - ok
16:33:30.0986 0x2570  wmiApSrv - ok
16:33:30.0986 0x2570  WMPNetworkSvc - ok
16:33:30.0986 0x2570  Wof - ok
16:33:31.0002 0x2570  workfolderssvc - ok
16:33:31.0002 0x2570  WPDBusEnum - ok
16:33:31.0002 0x2570  WpdUpFltr - ok
16:33:31.0002 0x2570  WpnService - ok
16:33:31.0002 0x2570  WpnUserService - ok
16:33:31.0018 0x2570  ws2ifsl - ok
16:33:31.0018 0x2570  wscsvc - ok
16:33:31.0018 0x2570  WSDPrintDevice - ok
16:33:31.0018 0x2570  WSDScan - ok
16:33:31.0018 0x2570  WSearch - ok
16:33:31.0033 0x2570  wuauserv - ok
16:33:31.0033 0x2570  WudfPf - ok
16:33:31.0033 0x2570  WUDFRd - ok
16:33:31.0049 0x2570  wudfsvc - ok
16:33:31.0049 0x2570  WUDFWpdFs - ok
16:33:31.0049 0x2570  WUDFWpdMtp - ok
16:33:31.0049 0x2570  WwanSvc - ok
16:33:31.0049 0x2570  XblAuthManager - ok
16:33:31.0064 0x2570  XblGameSave - ok
16:33:31.0064 0x2570  xboxgip - ok
16:33:31.0064 0x2570  XboxNetApiSvc - ok
16:33:31.0064 0x2570  xinputhid - ok
16:33:31.0080 0x2570  [ D3D9CB4BA15C1854294517AA8954E201, DFBB6E1A5FF01123FEAD6EFFA67F4A0203792AFDF82EAFFC2DA981A584896542 ] XQHDrv          C:\WINDOWS\system32\DRIVERS\XQHDrv.sys
16:33:31.0096 0x2570  XQHDrv - ok
16:33:31.0158 0x2570  [ 65308E8DDBCA0A3D7A72E3404E194319, 93D51235D4CB50F3C73DE006843CB98B8940F92BBB84365443C9A31DEB2426A6 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
16:33:31.0205 0x2570  ZeroConfigService - ok
16:33:31.0221 0x2570  ================ Scan global ===============================
16:33:31.0221 0x2570  [ Global ] - ok
16:33:31.0236 0x2570  ================ Scan MBR ==================================
16:33:31.0236 0x2570  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
16:33:31.0268 0x2570  \Device\Harddisk0\DR0 - ok
16:33:31.0549 0x2570  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
16:33:31.0627 0x2570  \Device\Harddisk1\DR1 - ok
16:33:31.0627 0x2570  ================ Scan VBR ==================================
16:33:31.0627 0x2570  [ 68F507BD2527788522961E365800D983 ] \Device\Harddisk0\DR0\Partition1
16:33:31.0627 0x2570  \Device\Harddisk0\DR0\Partition1 - ok
16:33:31.0627 0x2570  [ 99D9B226D8C32332D88CDBFE6DBE64BB ] \Device\Harddisk0\DR0\Partition2
16:33:31.0627 0x2570  \Device\Harddisk0\DR0\Partition2 - ok
16:33:31.0627 0x2570  [ A91CC8CE6FE74A032D6BD2321C959E54 ] \Device\Harddisk0\DR0\Partition3
16:33:31.0627 0x2570  \Device\Harddisk0\DR0\Partition3 - ok
16:33:31.0627 0x2570  [ BA9706B85B49A72CBD6A2F932C2120F5 ] \Device\Harddisk0\DR0\Partition4
16:33:31.0643 0x2570  \Device\Harddisk0\DR0\Partition4 - ok
16:33:31.0658 0x2570  [ DC14DD589E75DF8F3D7C982CA83AE39C ] \Device\Harddisk1\DR1\Partition1
16:33:31.0658 0x2570  \Device\Harddisk1\DR1\Partition1 - ok
16:33:31.0658 0x2570  ================ Scan generic autorun ======================
16:33:31.0674 0x2570  Logitech Download Assistant - ok
16:33:31.0674 0x2570  ShadowPlay - ok
16:33:31.0674 0x2570  WindowsDefender - ok
16:33:31.0674 0x2570  [ 793749330DCDE2C9850823C632AF5A89, 2EFC8DB3A0B350AAAA13FF96DAB75B2E2BBCC3FC807D9219B80CBFFFFF88544F ] C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\ASUSWSLoader.exe
16:33:31.0674 0x2570  WebStorage - ok
16:33:31.0674 0x2570  DV4TS.EXE - ok
16:33:31.0721 0x2570  OneDriveSetup - ok
16:33:31.0721 0x2570  OneDriveSetup - ok
16:33:31.0736 0x2570  [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
16:33:31.0752 0x2570  OneDrive - ok
16:33:31.0768 0x2570  [ F4DA83165AF5A49A967E7D37187BBD11, 4A85DE224C4AD6E1F8EE0AB472B8B0F9E8FED5E1255DF3EB1B174319E5785906 ] C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe
16:33:31.0783 0x2570  Dashlane - ok
16:33:31.0799 0x2570  [ 2E920FADD711940901519898F2D8A62E, A2781523781CD21A3FA8B08C87DCDBA9D9095A0333B8C07B5978931BD415204F ] C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
16:33:31.0799 0x2570  DashlanePlugin - ok
16:33:31.0815 0x2570  ARLworks - ok
16:33:31.0815 0x2570  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
16:33:31.0815 0x2570  Win FW state via NFP2: enabled ( trusted )
16:33:31.0924 0x2570  ============================================================
16:33:31.0924 0x2570  Scan finished
16:33:31.0924 0x2570  ============================================================
16:33:31.0940 0x26ec  Detected object count: 1
16:33:31.0940 0x26ec  Actual detected object count: 1
16:33:43.0900 0x26ec  Tipuly ( UnsignedFile.Multi.Generic ) - skipped by user
16:33:43.0900 0x26ec  Tipuly ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:33:45.0433 0x2528  Deinitialize success

deeprybka 20.11.2016 17:20
:hallo:

Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...:abklatsch:
  • Bitte arbeite alle Schritte der Reihe nach ab.
  • Lies die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
  • Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
  • Bitte kein Crossposting (posten in mehreren Foren).
  • Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
  • Speichere alle unsere Tools auf dem Desktop ab. Link: So ladet Ihr unsere Tools richtig
  • Poste die Logfiles direkt in Deinen Thread in Code-Tags.
  • Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean :daumenhoc bekommst.


Los geht's:

Bitte FRST-Logs in den Thread posten. Falls nötig splitten.
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://deeprybka.trojaner-board.de/tdss/codetags.gif

gate0keeper 20.11.2016 18:10
Hallo Jürgen,


danke für Deine schnelle Antwort.
Hier noch einmal der gewünschte Log:

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2016
durchgeführt von Daniel (Administrator) auf DANIEL-LAPPI (20-11-2016 16:31:30)
Gestartet von C:\Users\Daniel\Desktop\Malware
Geladene Profile: Daniel (Verfügbare Profile: Daniel)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
() C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe
(LC Technology International, Inc.) C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Tobit.Software) C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxEM.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Dashlane, Inc.) C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe
() C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Tobit.Software) C:\Windows\SysWOW64\DV4TS.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\AsusWSPanel.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-11-13] (Microsoft Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\ASUSWSLoader.exe [63968 2016-08-12] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [DV4TS.EXE] => c:\windows\SysWOW64\DV4TS.EXE [148248 2014-10-20] (Tobit.Software)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [Dashlane] => C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe [478592 2016-11-10] (Dashlane, Inc.)
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [DashlanePlugin] => C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe [536960 2016-11-10] ()
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [ARLworks] => C:\Windows\SysWOW64\regsvr32.exe C:\Users\Daniel\AppData\Local\YxqfPack\bsvlemwk.dll
HKU\S-1-5-18\...\Run: [] => 0
ShellExecuteHooks:  - {87CC2AE2-A5BD-11E6-B178-64006A5CFC23} - C:\Users\Daniel\AppData\Roaming\Chihupyberjesp\Suzaph.dll [146944 2016-11-20] ()
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [KzShlobj] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} =>  Keine Datei

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{5efdabab-d792-46a0-b36e-5f6968815709}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-3857371912-3165755019-847613773-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-11-19] (Microsoft Corporation)
BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\Daniel\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2016-11-10] (Dashlane, Inc.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-19] (Microsoft Corporation)
Toolbar: HKLM-x32 - Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Daniel\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2016-11-10] (Dashlane, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: daniel@99spaces.com
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-11-19] (Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-11-19] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-11] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe [75264 2015-12-24] (ASUS Cloud Corporation) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3073216 2016-10-30] (Microsoft Corporation)
S3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe [301536 2016-11-01] (Intel Corporation)
S3 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe [480224 2016-11-01] (Intel Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-11] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-11] (Dropbox, Inc.)
R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1392792 2015-10-02] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe [341984 2016-11-01] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel)
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-09-18] (Intel Corporation)
R2 LCTechSSDToolAsus; C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe [2563648 2016-09-01] (LC Technology International, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-08-13] ()
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-25] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-10-25] (NVIDIA Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10155792 2016-11-07] (TeamViewer GmbH)
R2 Tipuly; C:\Program Files (x86)\Drabapythebution\whtcore.dll [276992 2016-11-20] () [Datei ist nicht signiert]
R2 TSMaintenanceService; C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe [3584960 2016-08-31] (Tobit.Software)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-08-13] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [141304 2015-12-18] (ASUS Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [57304 2015-10-02] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52200 2015-10-02] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260072 2015-10-02] (Intel Corporation)
S3 iaLPSS2_I2C; C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys [185128 2015-06-16] (Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [250624 2016-10-15] (Intel Corporation)
R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igdkmd64.sys [11033056 2016-11-01] (Intel Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-11-20] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7116288 2016-07-16] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvlddmkm.sys [14159928 2016-10-26] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-10-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-10-25] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek                                            )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [753368 2015-06-15] (Realsil Semiconductor Corporation)
S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [52952 2016-10-03] (SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R1 UCGuard; C:\WINDOWS\System32\DRIVERS\ucguard.sys [81792 2016-08-29] (Huorong Borui (Beijing) Technology Co., Ltd.) <==== ACHTUNG
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Windows (R) Win 7 DDK provider)
R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [127432 2016-11-14] (BigNox Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 XQHDrv; C:\WINDOWS\system32\DRIVERS\XQHDrv.sys [253384 2016-11-14] (BigNox Corporation)
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-20 15:53 - 2016-11-20 16:31 - 00000000 ____D C:\FRST
2016-11-20 15:52 - 2016-11-20 16:29 - 00000000 ____D C:\Users\Daniel\Desktop\Malware
2016-11-20 15:38 - 2016-11-20 15:38 - 00000000 ___HD C:\OneDriveTemp
2016-11-20 15:30 - 2016-11-20 16:24 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-20 15:29 - 2016-11-20 15:37 - 00001167 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-20 15:29 - 2016-11-20 15:29 - 22851472 _____ (Malwarebytes ) C:\Users\Daniel\Downloads\mbam-setup-2.2.1.1043.exe
2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-20 15:29 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-11-20 15:29 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-11-20 15:29 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-11-20 14:48 - 2016-11-20 14:48 - 00001597 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器.lnk
2016-11-20 14:48 - 2016-11-20 14:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\UCBrowser
2016-11-20 14:48 - 2016-11-20 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器
2016-11-20 14:48 - 2016-08-29 11:46 - 00081792 _____ (Huorong Borui (Beijing) Technology Co., Ltd.) C:\WINDOWS\system32\Drivers\ucguard.sys
2016-11-20 14:46 - 2016-11-20 14:46 - 00187904 _____ C:\WINDOWS\rsrcs.dll
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____H C:\WINDOWS\system32\BITBEB6.tmp
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\WINDOWS\SysWOW64\sstmp
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\WINDOWS\system32\sstmp
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-11-20 14:45 - 2016-11-20 15:36 - 00000000 ____D C:\Users\Daniel\AppData\Local\Epftion
2016-11-20 14:45 - 2016-11-20 14:45 - 00000000 _____ C:\TOSTACK
2016-11-20 14:44 - 2016-11-20 15:36 - 00000000 ____D C:\Users\Daniel\AppData\Local\YxqfPack
2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\Avira
2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\Avg
2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-20 14:42 - 2016-11-20 15:34 - 00000000 ____D C:\Program Files (x86)\Drabapythebution
2016-11-20 14:42 - 2016-11-20 14:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\Lewatainpawuch
2016-11-20 14:42 - 2016-11-20 14:42 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Chihupyberjesp
2016-11-20 14:41 - 2016-11-20 15:34 - 00000000 ____D C:\Program Files (x86)\KMSPico 10.0.6
2016-11-20 14:32 - 2016-11-20 14:32 - 09744538 _____ C:\Users\Daniel\Downloads\Filme_Jason Bourne 2016 German DTSHD DL 1080p BluRay AVC REMUX-MULTiPLEX.nzb
2016-11-20 14:32 - 2016-11-20 14:32 - 01106154 _____ C:\Users\Daniel\Downloads\Filme_Blackway Auf dem Pfad der Rache 2015 German 720p BluRay x264 ENCOUNTERS.nzb
2016-11-20 14:29 - 2016-11-20 14:29 - 01263892 _____ C:\Users\Daniel\Downloads\Filme_John Dies at the End 2012 German DTS DL 720p BluRay x264-LeetHD.nzb
2016-11-20 14:28 - 2016-11-20 14:28 - 00794234 _____ C:\Users\Daniel\Downloads\Filme_Mr Right 2015 German 720p BluRay x264-ENCOUNTERS.nzb
2016-11-20 14:11 - 2016-11-20 15:37 - 00000915 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2016-11-20 14:11 - 2016-11-20 15:36 - 00000867 _____ C:\Users\Daniel\Desktop\Start Tor Browser.lnk
2016-11-20 14:10 - 2016-11-20 14:10 - 00000000 ____D C:\Users\Daniel\Desktop\Tor Browser
2016-11-20 14:09 - 2016-11-20 14:10 - 50911952 _____ C:\Users\Daniel\Downloads\torbrowser-install-6.0.6_de.exe
2016-11-19 10:19 - 2016-11-19 10:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignf5c519d31dfcf267
2016-11-19 10:19 - 2016-11-19 10:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign2b990895b01fc659
2016-11-19 09:45 - 2016-11-19 09:45 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignaac81b9269ec4203
2016-11-19 09:45 - 2016-11-19 09:45 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign1872ce2bff0b17ce
2016-11-19 07:56 - 2016-11-19 07:56 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-11-19 07:53 - 2016-11-19 07:53 - 00043751 _____ C:\Users\Daniel\Downloads\581fead3a37ce.zip
2016-11-18 22:13 - 2016-11-18 23:06 - 00003502 _____ C:\Users\Daniel\Documents\Bodeni-Arbeitsbeschreibung.odt
2016-11-18 21:57 - 2016-11-18 21:57 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Foxit Software
2016-11-17 20:27 - 2016-11-17 20:27 - 00000000 ____D C:\Users\Daniel\Documents\EVE
2016-11-17 14:30 - 2016-11-20 15:36 - 00000787 _____ C:\Users\Daniel\Desktop\EVE Launcher.lnk
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVE Launcher
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\AppData\Local\CCP
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\.QtWebEngineProcess
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\.EVE
2016-11-17 14:29 - 2016-11-17 14:29 - 54881176 _____ C:\Users\Daniel\Downloads\EveLauncher-1097946.exe
2016-11-17 14:03 - 2016-11-17 14:04 - 08768160 _____ C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4 (1).rar
2016-11-17 13:48 - 2016-11-17 13:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign7d7adf8535a24a7b
2016-11-17 13:48 - 2016-11-17 13:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign1cfbc5b8419d8363
2016-11-16 22:50 - 2016-11-16 22:50 - 00000000 ____D C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4
2016-11-16 22:40 - 2016-11-16 22:42 - 08768160 _____ C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4.rar
2016-11-16 22:39 - 2016-11-16 22:41 - 09915776 _____ C:\Users\Daniel\Downloads\Download-Interspire-Email-Marketer-v6.1.4-Nulled-Scripts.zip
2016-11-16 16:24 - 2016-11-19 10:58 - 00001456 _____ C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Adobe
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignb5d67b1886cfd58b
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign97c66928bc3ff4c7
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign64377305ec57a3cb
2016-11-16 14:50 - 2016-11-20 16:16 - 00000000 ___RD C:\Users\Daniel\Creative Cloud Files
2016-11-16 14:50 - 2016-11-20 16:16 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-11-15 17:08 - 2016-11-15 17:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsigne4cdea769c6ec550
2016-11-15 17:08 - 2016-11-15 17:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign7accc4c8229f6e07
2016-11-15 17:06 - 2016-11-20 15:37 - 00001381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Update Management Tool.lnk
2016-11-15 17:04 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignd93707d60b50a1e0
2016-11-15 17:04 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign0af6b16f1f08ea07
2016-11-15 17:03 - 2016-11-20 14:08 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-11-15 17:03 - 2016-11-15 17:03 - 00003626 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-DANIEL-LAPPI-Daniel
2016-11-15 17:03 - 2016-11-15 17:03 - 00000000 ____D C:\Users\Daniel\Documents\Adobe
2016-11-15 17:03 - 2016-11-15 17:03 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-11-15 17:01 - 2016-11-15 17:03 - 00000000 ____D C:\Program Files\Adobe
2016-11-15 16:59 - 2016-11-20 16:26 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-11-15 16:52 - 2016-11-20 16:26 - 00000000 ____D C:\ProgramData\Adobe
2016-11-15 16:52 - 2016-11-20 16:16 - 00000000 ____D C:\Users\Daniel\AppData\Local\Adobe
2016-11-15 15:48 - 2016-11-20 15:37 - 00001042 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2016-11-15 15:48 - 2016-11-20 15:37 - 00001024 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2016-11-15 15:47 - 2016-11-15 16:22 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\TeamViewer
2016-11-15 15:42 - 2016-11-15 15:42 - 00000000 ____H C:\Users\Daniel\Documents\Default.rdp
2016-11-15 11:26 - 2016-11-15 11:25 - 30987232 _____ (AceBIT GmbH ) C:\Users\Daniel\Desktop\pdepot7 (1).exe
2016-11-14 15:57 - 2016-11-14 15:57 - 00000000 ____D C:\Users\Daniel\AppData\Local\MultiPlayerManager
2016-11-14 15:41 - 2016-11-20 15:36 - 00000875 _____ C:\Users\Daniel\Desktop\Multi-Drive.lnk
2016-11-14 15:41 - 2016-11-20 15:36 - 00000814 _____ C:\Users\Daniel\Desktop\Nox.lnk
2016-11-14 15:41 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Bignox
2016-11-14 15:41 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\vmlogs
2016-11-14 15:41 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\.BigNox
2016-11-14 15:41 - 2016-11-14 15:41 - 00253384 _____ (BigNox Corporation) C:\WINDOWS\system32\Drivers\XQHDrv.sys
2016-11-14 15:41 - 2016-11-14 15:41 - 00127432 _____ (BigNox Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2016-11-14 15:41 - 2016-11-14 15:41 - 00000041 _____ C:\Users\Daniel\inst.ini
2016-11-14 15:41 - 2016-11-14 15:41 - 00000000 ____D C:\Users\Daniel\Nox_share
2016-11-14 15:41 - 2016-11-14 15:41 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Nox
2016-11-14 15:40 - 2016-11-15 19:21 - 00000000 ____D C:\Users\Daniel\AppData\Local\Nox
2016-11-14 15:29 - 2016-11-20 16:23 - 00000000 ____D C:\AdwCleaner
2016-11-14 15:24 - 2016-11-14 15:40 - 308117896 _____ (Duodian Technology Co. Ltd.) C:\Users\Daniel\Downloads\nox_setup_v3.7.5.0_full_En.exe
2016-11-14 15:03 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\.android
2016-11-14 15:03 - 2016-11-14 15:27 - 00000000 ____D C:\Users\Daniel\.VirtualBox
2016-11-14 15:03 - 2016-11-14 15:10 - 00000078 _____ C:\hsrv.txt
2016-11-14 15:03 - 2016-11-14 15:03 - 00000000 ____D C:\Program Files\Oracle
2016-11-14 15:03 - 2014-05-16 14:04 - 00254240 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2016-11-14 14:59 - 2016-11-14 15:00 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\HaiYuInst
2016-11-14 14:58 - 2016-11-14 14:59 - 09448104 _____ C:\Users\Daniel\Downloads\Droid4XInstaller.exe
2016-11-14 13:01 - 2016-11-14 13:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Andy
2016-11-14 13:00 - 2016-09-06 19:25 - 00052288 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vmkbd.sys
2016-11-14 12:38 - 2016-11-14 12:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\VMware
2016-11-14 12:11 - 2016-11-14 12:11 - 00000000 ____D C:\Users\Daniel\licman
2016-11-14 10:25 - 2016-11-14 10:27 - 00000000 ____D C:\Users\Daniel\Desktop\Share
2016-11-14 10:18 - 2016-11-17 15:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\FileZilla
2016-11-14 10:17 - 2016-11-20 15:37 - 00001967 _____ C:\Users\Public\Desktop\FileZilla Client.lnk
2016-11-14 10:17 - 2016-11-14 10:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2016-11-14 10:17 - 2016-11-14 10:17 - 00000000 ____D C:\Program Files\FileZilla FTP Client
2016-11-13 20:06 - 2016-11-13 20:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\MPC-HC
2016-11-13 20:05 - 2016-11-13 20:05 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Brackets
2016-11-13 19:41 - 2016-11-20 15:37 - 00000733 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10-Upgrade-Assistent.lnk
2016-11-13 19:41 - 2016-11-13 19:41 - 00000000 ____D C:\Windows10Upgrade
2016-11-13 19:38 - 2016-11-13 19:38 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-11-13 19:36 - 2016-11-14 10:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\ConnectedDevicesPlatform
2016-11-13 19:36 - 2016-11-13 19:36 - 00000020 ___SH C:\Users\Daniel\ntuser.ini
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 ____D C:\ProgramData\USOShared
2016-11-13 19:28 - 2016-11-20 16:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-13 19:28 - 2016-11-20 14:01 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-11-13 19:28 - 2016-11-20 14:01 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-11-13 19:28 - 2016-11-13 19:28 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2016-11-13 19:28 - 2016-11-13 19:28 - 00007623 _____ C:\WINDOWS\diagerr.xml
2016-11-13 19:28 - 2016-11-13 19:28 - 00003768 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2016-11-13 19:28 - 2016-11-13 19:28 - 00003654 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-13 19:28 - 2016-11-13 19:28 - 00003544 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2016-11-13 19:28 - 2016-11-13 19:28 - 00003430 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-13 19:28 - 2016-11-13 19:28 - 00003314 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9E9CEFD0-ADC6-483E-B86F-2719D52987D4}
2016-11-13 19:28 - 2016-11-13 19:28 - 00003140 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00003112 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00003042 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2016-11-13 19:28 - 2016-11-13 19:28 - 00003040 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec
2016-11-13 19:28 - 2016-11-13 19:28 - 00002968 _____ C:\WINDOWS\System32\Tasks\Update Checker
2016-11-13 19:28 - 2016-11-13 19:28 - 00002960 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002940 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002924 _____ C:\WINDOWS\System32\Tasks\ATK Package 36D18D69AFC3
2016-11-13 19:28 - 2016-11-13 19:28 - 00002862 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher
2016-11-13 19:28 - 2016-11-13 19:28 - 00002850 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002824 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-11-13 19:28 - 2016-11-13 19:28 - 00002808 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002674 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon
2016-11-13 19:28 - 2016-11-13 19:28 - 00002346 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2016-11-13 19:28 - 2016-11-13 19:28 - 00002340 _____ C:\WINDOWS\System32\Tasks\ASUS USB Charger Plus
2016-11-13 19:28 - 2016-11-13 19:28 - 00002280 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2016-11-13 19:28 - 2016-11-13 19:28 - 00002262 _____ C:\WINDOWS\System32\Tasks\DropboxOEM
2016-11-13 19:28 - 2016-11-13 19:28 - 00002214 _____ C:\WINDOWS\System32\Tasks\ATK Package A22126881260
2016-11-13 19:28 - 2016-11-13 19:28 - 00002214 _____ C:\WINDOWS\System32\Tasks\ASUS Splendid ACMON
2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel
2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2016-11-13 19:25 - 2016-11-20 15:37 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-13 19:23 - 2016-11-20 16:26 - 00000000 ____D C:\Users\Daniel
2016-11-13 19:23 - 2016-11-13 19:26 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Vorlagen
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Startmenü
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Netzwerkumgebung
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Lokale Einstellungen
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Eigene Dateien
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Druckumgebung
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Videos
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Musik
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Bilder
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Local\Verlauf
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Local\Anwendungsdaten
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Anwendungsdaten
2016-11-13 19:22 - 2016-11-13 19:22 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-11-13 19:21 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Intel
2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\Program Files\Intel
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_esif_umdf2_02_00_00.Wdf
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\WINDOWS\system32\DAX2
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\Program Files\Realtek
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2016-11-13 19:21 - 2016-11-01 23:05 - 00113672 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-13 19:21 - 2016-11-01 23:05 - 00104464 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-13 19:21 - 2016-10-25 21:17 - 06386232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 02475968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00548408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-11-13 19:21 - 2016-10-24 07:31 - 07507695 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-11-13 19:21 - 2016-07-16 12:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-11-13 19:20 - 2016-11-20 15:46 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-11-13 19:20 - 2016-11-15 16:24 - 00337736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-13 19:20 - 2016-11-13 19:20 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-11-13 19:19 - 2016-11-13 19:29 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-13 19:18 - 2016-11-13 19:18 - 00000000 ____D C:\Windows.old
2016-11-13 19:16 - 2016-11-13 19:16 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-13 19:16 - 2016-11-13 19:16 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-13 19:16 - 2016-11-13 19:16 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-13 19:16 - 2016-11-13 19:16 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-13 19:16 - 2016-11-13 19:16 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-13 19:16 - 2016-11-13 19:16 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-13 19:16 - 2016-11-13 19:16 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-13 19:16 - 2016-11-13 19:16 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-13 19:16 - 2016-11-13 19:16 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05622088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04136960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 03435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03405824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03287552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03116544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03054080 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02947072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02914304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02827864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02708992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02481768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02476544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02446696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02390016 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02290176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02276736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-13 19:10 - 2016-11-13 19:10 - 02083840 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-13 19:10 - 2016-11-13 19:10 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01990648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01980416 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01913344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01853776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01738040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01705976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01556712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01554944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01358336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01322848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01320448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01292640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01181536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01157000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01112928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01037312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01000288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-11-13 19:10 - 2016-11-13 19:10 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00988512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-11-13 19:10 - 2016-11-13 19:10 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00908640 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00862064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00860512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00856872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00764936 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00755656 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00749920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00742704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00725664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00719360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00681304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00658272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00650240 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00649568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00646136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00595296 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00512416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll

gate0keeper 20.11.2016 18:11
Teil 2

Code:
2016-11-13 19:10 - 2016-11-13 19:10 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00500064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00496872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetworkCollectionAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00450392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00434528 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00433832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00424640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00402352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00292872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00283488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00280472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-11-13 19:10 - 2016-11-13 19:10 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00232800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00218008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingFolder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00206096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvenotify.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00170960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00169056 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-11-13 19:10 - 2016-11-13 19:10 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidclass.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoplay.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovslegacy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00133472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00130912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00119648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00113504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmifw.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-11-13 19:10 - 2016-11-13 19:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmifw.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00074080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pwrshplugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Sens.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TempSignedLicenseExchangeTask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00064352 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\MegaSas2i.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.UserDeviceAssociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057400 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AddressParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundMediaPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidparse.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidusb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\encapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\delegatorprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\c_GSM7.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccessRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-11-13 19:10 - 2016-11-13 19:10 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-11-13 19:10 - 2016-11-13 19:10 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneutilRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-11-13 19:05 - 2016-11-13 19:05 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-11-13 19:03 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-11-13 19:03 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-13 19:03 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-11-13 19:03 - 2016-11-13 19:03 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-11-13 19:03 - 2016-11-13 19:03 - 00000000 ____D C:\Program Files\MSBuild
2016-11-13 19:02 - 2016-11-13 19:02 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2016-11-13 19:02 - 2016-11-13 19:02 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-11-13 19:02 - 2016-05-25 14:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 14:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 14:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-11-13 19:02 - 2016-05-25 11:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 11:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 11:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-11-13 18:51 - 2016-11-20 15:37 - 00000720 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brackets.lnk
2016-11-13 18:51 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Brackets
2016-11-13 18:35 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack 64bit
2016-11-13 18:35 - 2016-11-13 18:35 - 00000000 ____D C:\Program Files\Combined Community Codec Pack 64bit
2016-11-13 10:20 - 2016-11-13 10:20 - 00000000 ____D C:\Users\Daniel\Documents\CPY_SAVES
2016-11-13 04:23 - 2016-11-13 05:14 - 00000000 ____D C:\Users\Daniel\AppData\Local\QuantumBreak
2016-11-13 04:23 - 2016-11-13 04:23 - 00000000 ____D C:\Users\Daniel\Documents\SkidRow
2016-11-12 17:07 - 2016-11-12 17:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-11-12 14:30 - 2016-11-20 15:37 - 00000595 _____ C:\Users\Public\Desktop\Fraps.lnk
2016-11-12 14:30 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-11-12 14:29 - 2016-11-12 14:30 - 00000000 ____D C:\Fraps
2016-11-12 13:47 - 2016-11-20 15:37 - 00001481 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-11-12 13:47 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-12 13:47 - 2016-11-12 13:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\CEF
2016-11-12 13:47 - 2016-10-25 21:22 - 01852352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01452480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00104384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00094144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-11-12 13:40 - 2016-11-20 15:37 - 00001292 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intel WiDi Toast.lnk
2016-11-12 13:33 - 2016-11-12 14:39 - 00000000 ____D C:\Users\Daniel\Documents\The Witcher 3
2016-11-12 12:45 - 2016-11-20 16:23 - 00000000 ____D C:\Users\Daniel\AppData\Local\CrashDumps
2016-11-12 12:45 - 2016-11-12 12:45 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Steam
2016-11-12 12:07 - 2016-11-12 12:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tobit
2016-11-12 12:06 - 2016-11-20 15:37 - 00002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\david®.LNK
2016-11-12 12:06 - 2016-11-19 07:54 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Tobit
2016-11-12 12:06 - 2016-11-17 09:57 - 05985728 _____ (Tobit.Software) C:\WINDOWS\uninstic.exe
2016-11-12 12:06 - 2016-11-13 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tobit.Software
2016-11-12 12:06 - 2014-10-20 10:43 - 00148248 _____ (Tobit.Software) C:\WINDOWS\SysWOW64\DV4TS.EXE
2016-11-12 12:06 - 2009-01-06 10:56 - 00000023 _____ C:\WINDOWS\AVFD.INI
2016-11-12 12:06 - 2006-07-19 11:01 - 00099840 _____ C:\WINDOWS\IMGMSGMO.dll
2016-11-12 12:06 - 2006-07-19 09:31 - 00185344 _____ C:\WINDOWS\DVGRF.DLL
2016-11-12 12:05 - 2016-11-20 15:05 - 00000000 ____D C:\Program Files (x86)\Tobit InfoCenter
2016-11-12 12:05 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\gs
2016-11-12 12:05 - 2016-11-19 07:58 - 00000538 _____ C:\WINDOWS\Tobit.ini
2016-11-12 12:05 - 2016-11-17 13:31 - 11679232 _____ C:\WINDOWS\TOBITCLT.DLL
2016-11-12 12:05 - 2016-11-17 13:31 - 05310976 _____ (Tobit.Software) C:\WINDOWS\DVAPI32.DLL
2016-11-12 12:05 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2016-11-12 12:05 - 2016-11-12 12:05 - 00000000 ____D C:\ProgramData\Tobit
2016-11-12 12:05 - 2016-10-25 13:50 - 00234496 _____ (Tobit Software) C:\WINDOWS\dvepostm.dll
2016-11-12 12:05 - 2010-11-18 14:39 - 00115712 _____ (Tobit Software) C:\WINDOWS\faxwarmo.dll
2016-11-12 09:30 - 2016-11-12 09:30 - 00000000 ____D C:\ProgramData\Steam
2016-11-11 20:33 - 2016-11-11 20:33 - 00000000 ____D C:\Users\Daniel\Documents\My Games
2016-11-11 19:58 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-11 19:58 - 2016-09-09 19:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-11-11 19:58 - 2016-09-09 19:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-11-11 19:58 - 2016-09-09 19:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-11-11 19:58 - 2016-09-09 19:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-11-11 19:57 - 2016-10-25 20:12 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2016-11-11 19:56 - 2016-10-25 22:40 - 40123840 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 35224632 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 34711096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 28202040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10912232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10782952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10332664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 09120512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 08913512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 08723968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 03927288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 03468736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 02940352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 02574784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01953336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437570.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01586744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437570.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01037248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00975296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00943552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00897080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00802768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00683640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00644112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00572888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00438208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00394704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00390200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00327224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00042296 _____ C:\WINDOWS\system32\nvinfo.pb
2016-11-11 19:56 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-11-11 19:56 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2016-11-11 19:51 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2016-11-11 19:51 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-11-11 19:51 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2016-11-11 19:51 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-11-11 19:51 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-11-11 19:51 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2016-11-11 19:51 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2016-11-11 19:51 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2016-11-11 19:51 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2016-11-11 19:51 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-11-11 19:51 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-11-11 19:51 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-11-11 19:51 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-11-11 19:51 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-11-11 19:51 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-11-11 19:51 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2016-11-11 19:51 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-11-11 19:51 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2016-11-11 19:51 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-11-11 19:51 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2016-11-11 19:51 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-11-11 19:51 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2016-11-11 19:51 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-11-11 19:51 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2016-11-11 19:51 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-11-11 19:51 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2016-11-11 19:51 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-11-11 19:51 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-11-11 19:51 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-11-11 19:51 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2016-11-11 19:51 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-11-11 19:51 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2016-11-11 19:51 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-11-11 19:51 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2016-11-11 19:51 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2016-11-11 19:51 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2016-11-11 19:51 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-11-11 19:51 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2016-11-11 19:51 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2016-11-11 19:51 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-11-11 19:51 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-11-11 19:51 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-11-11 19:51 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-11-11 19:51 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-11-11 19:51 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2016-11-11 19:51 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-11-11 19:51 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2016-11-11 19:51 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-11-11 19:51 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-11-11 19:51 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-11-11 19:51 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2016-11-11 19:51 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-11-11 19:51 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2016-11-11 19:51 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-11-11 19:51 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2016-11-11 19:51 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-11-11 19:51 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2016-11-11 19:51 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-11-11 19:51 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2016-11-11 19:41 - 2016-11-11 19:41 - 00692072 _____ (Disc Soft Ltd.) C:\Users\Daniel\Downloads\DTLiteInstaller.exe
2016-11-11 19:38 - 2016-11-11 19:38 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WinRAR
2016-11-11 19:37 - 2016-11-20 15:36 - 00000707 _____ C:\Users\Daniel\Desktop\QuickPar.lnk
2016-11-11 19:37 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar
2016-11-11 19:36 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-11 19:36 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-11 18:55 - 2016-11-20 15:37 - 00000705 _____ C:\Users\Public\Desktop\Alt.Binz.lnk
2016-11-11 18:55 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alt.Binz
2016-11-11 18:55 - 2016-11-11 18:56 - 00000000 ____D C:\Users\Daniel\AppData\Local\Alt.Binz
2016-11-11 18:47 - 2016-11-11 18:54 - 02201253 _____ C:\Users\Daniel\Downloads\altbinz_0.39.4.exe
2016-11-11 17:31 - 2016-11-20 15:37 - 00001291 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eye Care Switcher.lnk
2016-11-11 17:23 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\NVIDIA
2016-11-11 17:23 - 2016-11-14 13:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\VMware
2016-11-11 17:22 - 2016-11-14 13:00 - 01551250 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-11-11 17:21 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-11-11 17:21 - 2016-11-11 17:21 - 00000000 ____D C:\ProgramData\Apple
2016-11-11 17:21 - 2016-11-11 17:21 - 00000000 ____D C:\Program Files\Bonjour
2016-11-11 17:19 - 2016-11-14 13:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Andy
2016-11-11 17:19 - 2016-11-11 17:23 - 00000000 ____D C:\Users\Daniel\Andy
2016-11-11 17:15 - 2016-10-28 02:22 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-11-11 14:59 - 2016-11-11 14:59 - 00000000 __SHD C:\aws
2016-11-11 14:57 - 2016-11-20 15:37 - 00001369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-11 14:57 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-11 14:57 - 2016-11-13 18:02 - 00001142 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-11 14:57 - 2016-11-13 15:02 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-11 14:57 - 2016-11-11 15:06 - 00000000 ____D C:\Users\Daniel\AppData\Local\Google
2016-11-11 14:56 - 2016-11-11 14:56 - 00000000 ____D C:\Users\Daniel\AppData\Local\MicrosoftEdge
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WildTangent
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\kingsoft
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Local\kingsoft
2016-11-11 14:42 - 2016-11-11 14:42 - 00000000 ____D C:\Users\Daniel\AppData\Local\NetworkTiles
2016-11-11 14:34 - 2016-11-20 14:44 - 00000000 _____ C:\Users\Daniel\AppData\LocalLow\rightsCheck_1.txt
2016-11-11 14:32 - 2016-11-11 14:32 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Dashlane
2016-11-11 14:29 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2016-11-11 14:29 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-11-11 14:22 - 2016-11-14 22:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\Comms
2016-11-11 14:22 - 2016-11-11 14:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-11 14:22 - 2016-11-11 14:22 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-11 14:12 - 2016-11-20 15:37 - 00002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 25 GB.lnk
2016-11-11 14:10 - 2016-11-11 14:59 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\awsRun
2016-11-11 14:09 - 2016-11-20 15:37 - 00001302 _____ C:\Users\Public\Desktop\Solid State Doctor - Asus Edition.lnk
2016-11-11 14:09 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Solid State Doctor - Asus Edition
2016-11-11 14:09 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-11-11 14:09 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solid State Doctor - Asus Edition
2016-11-11 14:09 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-11-11 14:09 - 2016-11-11 14:09 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Notepad++
2016-11-11 14:09 - 2016-11-11 14:09 - 00000000 ____D C:\Users\Daniel\AppData\Local\LC Technology Inc
2016-11-11 14:08 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Dashlane
2016-11-11 14:08 - 2016-11-16 12:32 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Dashlane
2016-11-11 14:08 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2016-11-11 14:07 - 2016-11-20 15:37 - 00002367 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMDb.lnk
2016-11-11 14:07 - 2016-11-20 15:37 - 00002367 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CloudConvert.lnk
2016-11-11 14:07 - 2016-11-20 15:36 - 00002337 _____ C:\Users\Daniel\Desktop\IMDb.lnk
2016-11-11 14:07 - 2016-11-20 15:36 - 00002337 _____ C:\Users\Daniel\Desktop\CloudConvert.lnk
2016-11-11 14:06 - 2016-11-11 14:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Macromedia
2016-11-11 14:05 - 2016-11-20 16:24 - 00000000 ___RD C:\Users\Daniel\OneDrive
2016-11-11 14:05 - 2016-11-20 15:37 - 00002388 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-11-11 14:05 - 2016-11-11 14:05 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Skype
2016-11-11 14:05 - 2016-11-11 14:05 - 00000000 ____D C:\Users\Daniel\AppData\Local\ActiveSync
2016-11-11 14:04 - 2016-11-11 14:04 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\DropboxOEM
2016-11-11 14:04 - 2016-11-11 14:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\DropboxOEM
2016-11-11 14:03 - 2016-11-20 16:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Adobe
2016-11-11 14:03 - 2016-11-20 16:24 - 00000206 _____ C:\Users\Daniel\AppData\Roaming\sp_data.sys
2016-11-11 14:03 - 2016-11-20 16:24 - 00000000 __SHD C:\Users\Daniel\IntelGraphicsProfiles
2016-11-11 14:03 - 2016-11-20 16:24 - 00000000 ____D C:\Users\Daniel\AppData\Local\ASUS GIFTBOX
2016-11-11 14:03 - 2016-11-14 22:46 - 00000000 ____D C:\Users\Daniel\AppData\Local\Packages
2016-11-11 14:03 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2016-11-11 14:03 - 2016-11-12 16:30 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA Corporation
2016-11-11 14:03 - 2016-11-12 13:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA
2016-11-11 14:03 - 2016-11-12 12:06 - 00000000 ____D C:\Users\Daniel\AppData\Local\VirtualStore
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WebStorage
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Intel
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\TileDataLayer
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\Publishers
2016-11-11 14:00 - 2016-11-11 14:03 - 00000000 ____D C:\ProgramData\USBChargerPlus
2016-11-11 14:00 - 2016-11-11 14:00 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-11-01 23:05 - 2016-11-01 23:05 - 00271368 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-11-01 23:05 - 2016-11-01 23:05 - 00141320 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00113672 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00112136 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00104464 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00101384 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2016-10-30 09:28 - 2016-10-30 09:28 - 00085744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00394496 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00271104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00089328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00639728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00334616 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00244504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-20 16:31 - 2016-07-16 23:51 - 00707276 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-20 16:31 - 2016-07-16 23:51 - 00147640 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-20 16:31 - 2016-03-24 12:50 - 01866666 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-20 16:24 - 2016-10-17 08:29 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-20 16:23 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-11-20 15:37 - 2016-07-17 19:58 - 00002118 _____ C:\Users\Public\Desktop\Dropbox 25 GB.lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001355 _____ C:\Users\Public\Desktop\WebStorage.lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001148 _____ C:\Users\Public\Desktop\Eye Care Switcher.Lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001011 _____ C:\Users\Public\Desktop\Foxit PhantomPDF.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002543 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002539 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-11-20 15:37 - 2016-03-24 13:04 - 00002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS GIFTBOX.lnk
2016-11-20 15:34 - 2016-07-17 19:39 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-11-20 14:43 - 2016-07-17 19:45 - 00000000 ____D C:\Program Files (x86)\ICEpower
2016-11-20 14:43 - 2016-07-17 19:41 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-11-20 14:43 - 2016-07-17 19:41 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2016-11-20 14:43 - 2016-07-17 19:40 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-20 14:43 - 2016-07-17 19:40 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-11-20 14:43 - 2016-07-17 19:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-11-20 14:43 - 2016-03-24 13:04 - 00000000 ____D C:\Program Files (x86)\Foxit PhantomPDF
2016-11-20 14:43 - 2016-03-24 13:04 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-11-20 14:02 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-20 14:02 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-19 07:57 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-19 07:56 - 2016-07-17 19:48 - 00000000 ____D C:\Program Files\Microsoft Office
2016-11-19 07:56 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-16 21:14 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-15 17:00 - 2016-03-24 13:04 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-15 15:41 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-14 15:41 - 2016-07-17 19:44 - 00000000 ____D C:\Program Files\DIFX
2016-11-14 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Registration
2016-11-14 12:37 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-14 10:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-11-14 10:08 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-11-13 19:36 - 2016-07-17 19:31 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-13 19:29 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-11-13 19:29 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows NT
2016-11-13 19:29 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-11-13 19:28 - 2016-10-17 09:23 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-11-13 19:28 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Media
2016-11-13 19:28 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-11-13 19:27 - 2016-10-17 08:42 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-11-13 19:27 - 2016-07-16 12:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-13 19:26 - 2016-07-17 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2016-11-13 19:26 - 2016-03-24 13:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2016-11-13 19:26 - 2016-03-24 13:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-11-13 19:25 - 2016-10-17 09:18 - 00000000 ____D C:\Users\Default.migrated
2016-11-13 19:24 - 2016-07-17 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICEpower
2016-11-13 19:24 - 2016-07-17 19:41 - 00000000 ____D C:\Program Files\Intel Corporation
2016-11-13 19:24 - 2016-07-17 19:39 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2016-11-13 19:24 - 2016-07-16 23:52 - 00000000 ____D C:\WINDOWS\OCR
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\IME
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Help
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\System
2016-11-13 19:24 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-11-13 19:24 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-11-13 19:24 - 2016-03-24 13:05 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-13 19:22 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-11-13 19:21 - 2016-10-17 08:30 - 00000000 ___HD C:\Intel
2016-11-13 19:19 - 2016-07-16 12:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-13 19:11 - 2016-07-16 12:47 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\setup
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-13 18:55 - 2016-07-17 00:55 - 00000000 ___HD C:\$WINDOWS.~BT
2016-11-13 18:12 - 2016-03-24 13:06 - 00001254 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-13 14:12 - 2016-03-24 13:06 - 00001250 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-11 14:52 - 2016-07-17 19:45 - 00000000 ____D C:\ProgramData\McAfee
2016-11-11 14:49 - 2016-03-24 13:05 - 00000000 ____D C:\ProgramData\WildTangent
2016-11-11 14:16 - 2015-10-30 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-11-11 14:16 - 2015-10-30 08:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-11-11 14:08 - 2016-07-17 19:38 - 00000000 ____D C:\ProgramData\Intel
2016-11-11 14:03 - 2016-03-24 19:38 - 00000000 ____D C:\WINDOWS\Log
2016-10-29 00:56 - 2016-07-16 12:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-11-14 14:59 - 2016-11-14 15:03 - 0003235 _____ () C:\Users\Daniel\AppData\Roaming\droid4xinstaller.log
2016-11-11 14:03 - 2016-11-20 16:24 - 0000206 _____ () C:\Users\Daniel\AppData\Roaming\sp_data.sys
2016-11-16 16:24 - 2016-11-19 10:58 - 0001456 _____ () C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-13 19:21 - 2016-11-13 19:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\libeay32.dll
C:\Users\Daniel\AppData\Local\Temp\msvcr120.dll
C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
C:\Users\Daniel\AppData\Local\Temp\sqlite3.dll
C:\Users\Daniel\AppData\Local\Temp\Uninstall.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-13 19:20

==================== Ende von FRST.txt ============================

deeprybka 20.11.2016 19:44
Hi,

Schritt 1

Bitte lasse die Datei aus der Code-Box bei
http://deeprybka.trojaner-board.de/b...virustotal.png überprüfen.
  • Klicke auf Wählen Sie eine
  • Kopiere nun folgendes in die Suchleiste
    Code:
    C:\Users\Daniel\AppData\Local\YxqfPack\bsvlemwk.dll
  • und klicke auf Öffnen.
  • Klicke auf Scannen!.
  • Warte bitte bis die Datei vollständig hochgeladen wurde. Solltest Du folgende Meldung bekommen
    Zitat:
    Diese Datei wurde bereits von VirusTotal analysiert...
    klicke auf Neu analysieren.
  • Warte bis dir das Analysedatum angezeigt wird und der Scan abgeschlossen ist.
  • Kopiere den Link aus deiner Adresszeile und poste ihn hier.

gate0keeper 20.11.2016 19:58
Die Datei wurde bereits von Malwarebytes in Quarantäne verschoben, ich habe sie wieder hergestellt, gescannt und wieder in Quarantäne verschoben:

https://www.virustotal.com/de/file/23e06ee6dcadc232b0e183c13cf3febcae41a8f3ec8eb293773ccdec43eb8bc0/analysis/1479668126/

deeprybka 20.11.2016 20:16
Code:
2016-11-20 14:41 - 2016-11-20 15:34 - 00000000 ____D C:\Program Files (x86)\KMSPico 10.0.6
Was ist mit dem?

Microsoft-Produkte kann man auch kaufen. Wenn man keine Kohle hat, dann gibts auch Malstifte bei ALDI. Kein Wunder dass man sich die Kiste versaut wenn man jeden Dreck runterlädt...

Schritt 1

http://filepony.de/icon/frst.pnghttp://deeprybka.trojaner-board.de/b...e/frst/sn4.PNG

Drücke bitte die http://deeprybka.trojaner-board.de/b...ne/revo/w8.png + R Taste und schreibe notepad in das Ausführen Fenster.
Klicke auf OK und kopiere nun den Text aus der Codebox in das leere Textdokument:
Code:
CloseProcesses:
R2 Tipuly; C:\Program Files (x86)\Drabapythebution\whtcore.dll [276992 2016-11-20] () [Datei ist nicht signiert]
R1 UCGuard; C:\WINDOWS\System32\DRIVERS\ucguard.sys
C:\WINDOWS\System32\DRIVERS\ucguard.sys
C:\Program Files (x86)\Drabapythebution
C:\Users\Daniel\AppData\Local\YxqfPack
C:\Users\Daniel\AppData\Roaming\Chihupyberjesp
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [ARLworks] => C:\Windows\SysWOW64\regsvr32.exe C:\Users\Daniel\AppData\Local\YxqfPack\bsvlemwk.dll
HKU\S-1-5-18\...\Run: [] => 0
ShellExecuteHooks:  - {87CC2AE2-A5BD-11E6-B178-64006A5CFC23} - C:\Users\Daniel\AppData\Roaming\Chihupyberjesp\Suzaph.dll [146944 2016-11-20] ()
ShellIconOverlayIdentifiers: [KzShlobj] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} =>  Keine Datei
EmptyTemp:
Speichere dieses bitte als Fixlist.txt in das Verzeichnis ab, in dem sich auch die FRST-Anwendung befindet.
  • Starte FRST und drücke auf den Entfernen-Button.
  • Das Tool erstellt eine "Fixlog.txt" -Datei.
  • Poste mir bitte deren Inhalt.

Schritt 2

http://filepony.de/icon/frst.pnghttp://deeprybka.trojaner-board.de/b...e/frst/sn1.PNG

Bitte starte FRST erneut, und drücke auf Untersuchen.
Bitte poste mir den Inhalt des Logs.

gate0keeper 20.11.2016 20:27
Ja, das denke ich auch, mein Sohn hat das irgendwie anders gesehen als er den Computer mit diesem Müll vollgestopft hat. Ich musste noch mehr solcher Software entfernen. Dr Bengel hat auf jeden Fall erstmal Rechnerverbot.

Code:
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
durchgeführt von Daniel (20-11-2016 20:22:26) Run:1
Gestartet von C:\Users\Daniel\Desktop\Malware
Geladene Profile: Daniel (Verfügbare Profile: Daniel)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
CloseProcesses:
R2 Tipuly; C:\Program Files (x86)\Drabapythebution\whtcore.dll [276992 2016-11-20] () [Datei ist nicht signiert]
R1 UCGuard; C:\WINDOWS\System32\DRIVERS\ucguard.sys
C:\WINDOWS\System32\DRIVERS\ucguard.sys
C:\Program Files (x86)\Drabapythebution
C:\Users\Daniel\AppData\Local\YxqfPack
C:\Users\Daniel\AppData\Roaming\Chihupyberjesp
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [ARLworks] => C:\Windows\SysWOW64\regsvr32.exe C:\Users\Daniel\AppData\Local\YxqfPack\bsvlemwk.dll
HKU\S-1-5-18\...\Run: [] => 0
ShellExecuteHooks:  - {87CC2AE2-A5BD-11E6-B178-64006A5CFC23} - C:\Users\Daniel\AppData\Roaming\Chihupyberjesp\Suzaph.dll [146944 2016-11-20] ()
ShellIconOverlayIdentifiers: [KzShlobj] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} =>  Keine Datei
EmptyTemp:
       
*****************

Prozess erfolgreich geschlossen.
Tipuly => Dienst erfolgreich gestoppt.
Tipuly => Dienst erfolgreich entfernt
UCGuard => Dienst konnte nicht gestoppt werden.
UCGuard => Dienst erfolgreich entfernt
C:\WINDOWS\System32\DRIVERS\ucguard.sys => erfolgreich verschoben
C:\Program Files (x86)\Drabapythebution => erfolgreich verschoben
C:\Users\Daniel\AppData\Local\YxqfPack => erfolgreich verschoben
C:\Users\Daniel\AppData\Roaming\Chihupyberjesp => erfolgreich verschoben
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\EnableShellExecuteHooks => Wert erfolgreich entfernt
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Windows\CurrentVersion\Run\\ARLworks => Wert erfolgreich entfernt
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\ => Wert erfolgreich entfernt
HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{87CC2AE2-A5BD-11E6-B178-64006A5CFC23} => Wert erfolgreich entfernt
"HKCR\CLSID\{87CC2AE2-A5BD-11E6-B178-64006A5CFC23}" => Schlüssel erfolgreich entfernt
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\KzShlobj" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} => Schlüssel nicht gefunden.

=========== EmptyTemp: ==========

BITS transfer queue => 40320 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10922863 B
Java, Flash, Steam htmlcache => 610 B
Windows/system/drivers => 25771584 B
Edge => 29333588 B
Chrome => 2929036 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 12148 B
NetworkService => 28206 B
Daniel => 724846801 B

RecycleBin => 0 B
EmptyTemp: => 757.1 MB temporäre Dateien entfernt.

================================


Das System musste neu gestartet werden.

==== Ende von Fixlog 20:22:49 ====

deeprybka 20.11.2016 20:34
Schritt 2 bitte noch...

gate0keeper 20.11.2016 20:37
Sorry, übersehen.

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2016 01
durchgeführt von Daniel (Administrator) auf DANIEL-LAPPI (20-11-2016 20:35:01)
Gestartet von C:\Users\Daniel\Desktop\Malware
Geladene Profile: Daniel (Verfügbare Profile: Daniel)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(LC Technology International, Inc.) C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(Tobit.Software) C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxEM.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
() C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Tobit.Software) C:\Windows\SysWOW64\DV4TS.EXE
(Dashlane, Inc.) C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\AsusWSPanel.exe
() C:\Users\Daniel\Desktop\Malware\adwcleaner_6.030.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-11-13] (Microsoft Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\ASUSWSLoader.exe [63968 2016-08-12] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [DV4TS.EXE] => c:\windows\SysWOW64\DV4TS.EXE [148248 2014-10-20] (Tobit.Software)
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [Dashlane] => C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe [478592 2016-11-10] (Dashlane, Inc.)
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [DashlanePlugin] => C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe [536960 2016-11-10] ()
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{5efdabab-d792-46a0-b36e-5f6968815709}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-3857371912-3165755019-847613773-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-11-19] (Microsoft Corporation)
BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\Daniel\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2016-11-10] (Dashlane, Inc.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-19] (Microsoft Corporation)
Toolbar: HKLM-x32 - Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Daniel\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2016-11-10] (Dashlane, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: daniel@99spaces.com
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-11-19] (Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-11-19] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-11] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-11-20] <==== ACHTUNG
CHR Extension: (Google Präsentationen) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-20]
CHR Extension: (Google Docs) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-20]
CHR Extension: (Google Drive) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-20]
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-20]
CHR Extension: (Google Tabellen) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-20]
CHR Extension: (Google Docs Offline) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-20]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-20]
CHR Extension: (Google Mail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-20]
CHR Extension: (Chrome Media Router) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-20]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe [75264 2015-12-24] (ASUS Cloud Corporation) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3073216 2016-10-30] (Microsoft Corporation)
S3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe [301536 2016-11-01] (Intel Corporation)
S3 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe [480224 2016-11-01] (Intel Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-11] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-11] (Dropbox, Inc.)
R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1392792 2015-10-02] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe [341984 2016-11-01] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel)
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-09-18] (Intel Corporation)
R2 LCTechSSDToolAsus; C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe [2563648 2016-09-01] (LC Technology International, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-08-13] ()
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-25] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-10-25] (NVIDIA Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10155792 2016-11-07] (TeamViewer GmbH)
R2 TSMaintenanceService; C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe [3584960 2016-08-31] (Tobit.Software)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-08-13] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [141304 2015-12-18] (ASUS Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [57304 2015-10-02] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52200 2015-10-02] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260072 2015-10-02] (Intel Corporation)
S3 iaLPSS2_I2C; C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys [185128 2015-06-16] (Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [250624 2016-10-15] (Intel Corporation)
R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igdkmd64.sys [11033056 2016-11-01] (Intel Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-11-20] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7116288 2016-07-16] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvlddmkm.sys [14159928 2016-10-26] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-10-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-10-25] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek                                            )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [753368 2015-06-15] (Realsil Semiconductor Corporation)
S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [52952 2016-10-03] (SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Windows (R) Win 7 DDK provider)
R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [127432 2016-11-14] (BigNox Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 XQHDrv; C:\WINDOWS\system32\DRIVERS\XQHDrv.sys [253384 2016-11-14] (BigNox Corporation)
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-20 19:48 - 2016-11-20 19:48 - 00000000 ___HD C:\OneDriveTemp
2016-11-20 19:11 - 2016-11-20 19:11 - 00620763 _____ C:\Users\Daniel\Downloads\Filme_Jeder gegen jeden 2016 German 720p BluRay x264 SPiCY.nzb
2016-11-20 16:45 - 2016-11-20 16:45 - 00028127 _____ C:\Users\Daniel\Downloads\FRST.rar
2016-11-20 16:32 - 2016-11-20 16:33 - 00169948 _____ C:\TDSSKiller.3.1.0.12_20.11.2016_16.32.59_log.txt
2016-11-20 15:53 - 2016-11-20 20:35 - 00000000 ____D C:\FRST
2016-11-20 15:52 - 2016-11-20 20:22 - 00000000 ____D C:\Users\Daniel\Desktop\Malware
2016-11-20 15:30 - 2016-11-20 20:23 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-20 15:29 - 2016-11-20 15:37 - 00001167 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-20 15:29 - 2016-11-20 15:29 - 22851472 _____ (Malwarebytes ) C:\Users\Daniel\Downloads\mbam-setup-2.2.1.1043.exe
2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-20 15:29 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-11-20 15:29 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-11-20 15:29 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-11-20 14:48 - 2016-11-20 14:48 - 00001597 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器.lnk
2016-11-20 14:48 - 2016-11-20 14:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\UCBrowser
2016-11-20 14:48 - 2016-11-20 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器
2016-11-20 14:46 - 2016-11-20 14:46 - 00187904 _____ C:\WINDOWS\rsrcs.dll
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____H C:\WINDOWS\system32\BITBEB6.tmp
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\WINDOWS\SysWOW64\sstmp
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\WINDOWS\system32\sstmp
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-11-20 14:45 - 2016-11-20 15:36 - 00000000 ____D C:\Users\Daniel\AppData\Local\Epftion
2016-11-20 14:45 - 2016-11-20 14:45 - 00000000 _____ C:\TOSTACK
2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\Avira
2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\Avg
2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-20 14:42 - 2016-11-20 14:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\Lewatainpawuch
2016-11-20 14:41 - 2016-11-20 15:34 - 00000000 ____D C:\Program Files (x86)\KMSPico 10.0.6
2016-11-20 14:32 - 2016-11-20 14:32 - 09744538 _____ C:\Users\Daniel\Downloads\Filme_Jason Bourne 2016 German DTSHD DL 1080p BluRay AVC REMUX-MULTiPLEX.nzb
2016-11-20 14:32 - 2016-11-20 14:32 - 01106154 _____ C:\Users\Daniel\Downloads\Filme_Blackway Auf dem Pfad der Rache 2015 German 720p BluRay x264 ENCOUNTERS.nzb
2016-11-20 14:29 - 2016-11-20 14:29 - 01263892 _____ C:\Users\Daniel\Downloads\Filme_John Dies at the End 2012 German DTS DL 720p BluRay x264-LeetHD.nzb
2016-11-20 14:28 - 2016-11-20 14:28 - 00794234 _____ C:\Users\Daniel\Downloads\Filme_Mr Right 2015 German 720p BluRay x264-ENCOUNTERS.nzb
2016-11-20 14:11 - 2016-11-20 15:37 - 00000915 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2016-11-20 14:11 - 2016-11-20 15:36 - 00000867 _____ C:\Users\Daniel\Desktop\Start Tor Browser.lnk
2016-11-20 14:10 - 2016-11-20 14:10 - 00000000 ____D C:\Users\Daniel\Desktop\Tor Browser
2016-11-20 14:09 - 2016-11-20 14:10 - 50911952 _____ C:\Users\Daniel\Downloads\torbrowser-install-6.0.6_de.exe
2016-11-19 10:19 - 2016-11-19 10:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignf5c519d31dfcf267
2016-11-19 10:19 - 2016-11-19 10:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign2b990895b01fc659
2016-11-19 09:45 - 2016-11-19 09:45 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignaac81b9269ec4203
2016-11-19 09:45 - 2016-11-19 09:45 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign1872ce2bff0b17ce
2016-11-19 07:56 - 2016-11-19 07:56 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-11-19 07:53 - 2016-11-19 07:53 - 00043751 _____ C:\Users\Daniel\Downloads\581fead3a37ce.zip
2016-11-18 22:13 - 2016-11-18 23:06 - 00003502 _____ C:\Users\Daniel\Documents\Bodeni-Arbeitsbeschreibung.odt
2016-11-18 21:57 - 2016-11-18 21:57 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Foxit Software
2016-11-17 20:27 - 2016-11-17 20:27 - 00000000 ____D C:\Users\Daniel\Documents\EVE
2016-11-17 14:30 - 2016-11-20 15:36 - 00000787 _____ C:\Users\Daniel\Desktop\EVE Launcher.lnk
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVE Launcher
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\AppData\Local\CCP
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\.QtWebEngineProcess
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\.EVE
2016-11-17 14:29 - 2016-11-17 14:29 - 54881176 _____ C:\Users\Daniel\Downloads\EveLauncher-1097946.exe
2016-11-17 14:03 - 2016-11-17 14:04 - 08768160 _____ C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4 (1).rar
2016-11-17 13:48 - 2016-11-17 13:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign7d7adf8535a24a7b
2016-11-17 13:48 - 2016-11-17 13:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign1cfbc5b8419d8363
2016-11-16 22:50 - 2016-11-16 22:50 - 00000000 ____D C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4
2016-11-16 22:40 - 2016-11-16 22:42 - 08768160 _____ C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4.rar
2016-11-16 22:39 - 2016-11-16 22:41 - 09915776 _____ C:\Users\Daniel\Downloads\Download-Interspire-Email-Marketer-v6.1.4-Nulled-Scripts.zip
2016-11-16 16:24 - 2016-11-19 10:58 - 00001456 _____ C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Adobe
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignb5d67b1886cfd58b
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign97c66928bc3ff4c7
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign64377305ec57a3cb
2016-11-16 14:50 - 2016-11-20 16:16 - 00000000 ___RD C:\Users\Daniel\Creative Cloud Files
2016-11-16 14:50 - 2016-11-20 16:16 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-11-15 17:08 - 2016-11-15 17:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsigne4cdea769c6ec550
2016-11-15 17:08 - 2016-11-15 17:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign7accc4c8229f6e07
2016-11-15 17:06 - 2016-11-20 15:37 - 00001381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Update Management Tool.lnk
2016-11-15 17:04 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignd93707d60b50a1e0
2016-11-15 17:04 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign0af6b16f1f08ea07
2016-11-15 17:03 - 2016-11-20 14:08 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-11-15 17:03 - 2016-11-15 17:03 - 00003626 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-DANIEL-LAPPI-Daniel
2016-11-15 17:03 - 2016-11-15 17:03 - 00000000 ____D C:\Users\Daniel\Documents\Adobe
2016-11-15 17:03 - 2016-11-15 17:03 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-11-15 17:01 - 2016-11-15 17:03 - 00000000 ____D C:\Program Files\Adobe
2016-11-15 16:59 - 2016-11-20 16:26 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-11-15 16:52 - 2016-11-20 16:26 - 00000000 ____D C:\ProgramData\Adobe
2016-11-15 16:52 - 2016-11-20 16:16 - 00000000 ____D C:\Users\Daniel\AppData\Local\Adobe
2016-11-15 15:48 - 2016-11-20 15:37 - 00001042 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2016-11-15 15:48 - 2016-11-20 15:37 - 00001024 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2016-11-15 15:47 - 2016-11-15 16:22 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\TeamViewer
2016-11-15 15:42 - 2016-11-15 15:42 - 00000000 ____H C:\Users\Daniel\Documents\Default.rdp
2016-11-15 11:26 - 2016-11-15 11:25 - 30987232 _____ (AceBIT GmbH ) C:\Users\Daniel\Desktop\pdepot7 (1).exe
2016-11-14 15:57 - 2016-11-14 15:57 - 00000000 ____D C:\Users\Daniel\AppData\Local\MultiPlayerManager
2016-11-14 15:41 - 2016-11-20 15:36 - 00000875 _____ C:\Users\Daniel\Desktop\Multi-Drive.lnk
2016-11-14 15:41 - 2016-11-20 15:36 - 00000814 _____ C:\Users\Daniel\Desktop\Nox.lnk
2016-11-14 15:41 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Bignox
2016-11-14 15:41 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\vmlogs
2016-11-14 15:41 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\.BigNox
2016-11-14 15:41 - 2016-11-14 15:41 - 00253384 _____ (BigNox Corporation) C:\WINDOWS\system32\Drivers\XQHDrv.sys
2016-11-14 15:41 - 2016-11-14 15:41 - 00127432 _____ (BigNox Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2016-11-14 15:41 - 2016-11-14 15:41 - 00000041 _____ C:\Users\Daniel\inst.ini
2016-11-14 15:41 - 2016-11-14 15:41 - 00000000 ____D C:\Users\Daniel\Nox_share
2016-11-14 15:41 - 2016-11-14 15:41 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Nox
2016-11-14 15:40 - 2016-11-15 19:21 - 00000000 ____D C:\Users\Daniel\AppData\Local\Nox
2016-11-14 15:29 - 2016-11-20 20:31 - 00000000 ____D C:\AdwCleaner
2016-11-14 15:24 - 2016-11-14 15:40 - 308117896 _____ (Duodian Technology Co. Ltd.) C:\Users\Daniel\Downloads\nox_setup_v3.7.5.0_full_En.exe
2016-11-14 15:03 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\.android
2016-11-14 15:03 - 2016-11-14 15:27 - 00000000 ____D C:\Users\Daniel\.VirtualBox
2016-11-14 15:03 - 2016-11-14 15:10 - 00000078 _____ C:\hsrv.txt
2016-11-14 15:03 - 2016-11-14 15:03 - 00000000 ____D C:\Program Files\Oracle
2016-11-14 15:03 - 2014-05-16 14:04 - 00254240 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2016-11-14 14:59 - 2016-11-14 15:00 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\HaiYuInst
2016-11-14 14:58 - 2016-11-14 14:59 - 09448104 _____ C:\Users\Daniel\Downloads\Droid4XInstaller.exe
2016-11-14 13:01 - 2016-11-14 13:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Andy
2016-11-14 13:00 - 2016-09-06 19:25 - 00052288 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vmkbd.sys
2016-11-14 12:38 - 2016-11-14 12:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\VMware
2016-11-14 12:11 - 2016-11-14 12:11 - 00000000 ____D C:\Users\Daniel\licman
2016-11-14 10:25 - 2016-11-14 10:27 - 00000000 ____D C:\Users\Daniel\Desktop\Share
2016-11-14 10:18 - 2016-11-17 15:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\FileZilla
2016-11-14 10:17 - 2016-11-20 15:37 - 00001967 _____ C:\Users\Public\Desktop\FileZilla Client.lnk
2016-11-14 10:17 - 2016-11-14 10:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2016-11-14 10:17 - 2016-11-14 10:17 - 00000000 ____D C:\Program Files\FileZilla FTP Client
2016-11-13 20:06 - 2016-11-13 20:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\MPC-HC
2016-11-13 20:05 - 2016-11-13 20:05 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Brackets
2016-11-13 19:41 - 2016-11-20 15:37 - 00000733 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10-Upgrade-Assistent.lnk
2016-11-13 19:41 - 2016-11-13 19:41 - 00000000 ____D C:\Windows10Upgrade
2016-11-13 19:38 - 2016-11-13 19:38 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-11-13 19:36 - 2016-11-14 10:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\ConnectedDevicesPlatform
2016-11-13 19:36 - 2016-11-13 19:36 - 00000020 ___SH C:\Users\Daniel\ntuser.ini
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 ____D C:\ProgramData\USOShared
2016-11-13 19:28 - 2016-11-20 20:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-13 19:28 - 2016-11-20 14:01 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-11-13 19:28 - 2016-11-20 14:01 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-11-13 19:28 - 2016-11-13 19:28 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2016-11-13 19:28 - 2016-11-13 19:28 - 00007623 _____ C:\WINDOWS\diagerr.xml
2016-11-13 19:28 - 2016-11-13 19:28 - 00003768 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2016-11-13 19:28 - 2016-11-13 19:28 - 00003654 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-13 19:28 - 2016-11-13 19:28 - 00003544 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2016-11-13 19:28 - 2016-11-13 19:28 - 00003430 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-13 19:28 - 2016-11-13 19:28 - 00003314 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9E9CEFD0-ADC6-483E-B86F-2719D52987D4}
2016-11-13 19:28 - 2016-11-13 19:28 - 00003140 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00003112 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00003042 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2016-11-13 19:28 - 2016-11-13 19:28 - 00003040 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec
2016-11-13 19:28 - 2016-11-13 19:28 - 00002968 _____ C:\WINDOWS\System32\Tasks\Update Checker
2016-11-13 19:28 - 2016-11-13 19:28 - 00002960 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002940 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002924 _____ C:\WINDOWS\System32\Tasks\ATK Package 36D18D69AFC3
2016-11-13 19:28 - 2016-11-13 19:28 - 00002862 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher
2016-11-13 19:28 - 2016-11-13 19:28 - 00002850 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002824 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-11-13 19:28 - 2016-11-13 19:28 - 00002808 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002674 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon
2016-11-13 19:28 - 2016-11-13 19:28 - 00002346 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2016-11-13 19:28 - 2016-11-13 19:28 - 00002340 _____ C:\WINDOWS\System32\Tasks\ASUS USB Charger Plus
2016-11-13 19:28 - 2016-11-13 19:28 - 00002280 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2016-11-13 19:28 - 2016-11-13 19:28 - 00002262 _____ C:\WINDOWS\System32\Tasks\DropboxOEM
2016-11-13 19:28 - 2016-11-13 19:28 - 00002214 _____ C:\WINDOWS\System32\Tasks\ATK Package A22126881260
2016-11-13 19:28 - 2016-11-13 19:28 - 00002214 _____ C:\WINDOWS\System32\Tasks\ASUS Splendid ACMON
2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel
2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2016-11-13 19:25 - 2016-11-20 15:37 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-13 19:23 - 2016-11-20 19:32 - 00000000 ____D C:\Users\Daniel
2016-11-13 19:23 - 2016-11-13 19:26 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Vorlagen
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Startmenü
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Netzwerkumgebung
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Lokale Einstellungen
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Eigene Dateien
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Druckumgebung
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Videos
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Musik
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Bilder
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Local\Verlauf
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Local\Anwendungsdaten
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Anwendungsdaten
2016-11-13 19:22 - 2016-11-13 19:22 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-11-13 19:21 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Intel
2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\Program Files\Intel
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_esif_umdf2_02_00_00.Wdf
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\WINDOWS\system32\DAX2
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\Program Files\Realtek
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2016-11-13 19:21 - 2016-11-01 23:05 - 00113672 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-13 19:21 - 2016-11-01 23:05 - 00104464 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-13 19:21 - 2016-10-25 21:17 - 06386232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 02475968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00548408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-11-13 19:21 - 2016-10-24 07:31 - 07507695 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-11-13 19:21 - 2016-07-16 12:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-11-13 19:20 - 2016-11-20 18:50 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-11-13 19:20 - 2016-11-15 16:24 - 00337736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-13 19:20 - 2016-11-13 19:20 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-11-13 19:19 - 2016-11-13 19:29 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-13 19:18 - 2016-11-13 19:18 - 00000000 ____D C:\Windows.old
2016-11-13 19:16 - 2016-11-13 19:16 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-13 19:16 - 2016-11-13 19:16 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-13 19:16 - 2016-11-13 19:16 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-13 19:16 - 2016-11-13 19:16 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-13 19:16 - 2016-11-13 19:16 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-13 19:16 - 2016-11-13 19:16 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-13 19:16 - 2016-11-13 19:16 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-13 19:16 - 2016-11-13 19:16 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-13 19:16 - 2016-11-13 19:16 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05622088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04136960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 03435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03405824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03287552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03116544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03054080 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02947072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02914304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02827864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02708992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02481768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02476544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02446696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02390016 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02290176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02276736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-13 19:10 - 2016-11-13 19:10 - 02083840 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-13 19:10 - 2016-11-13 19:10 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01990648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01980416 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01913344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01853776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01738040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01705976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01556712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01554944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01358336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01322848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01320448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01292640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01181536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01157000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01112928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01037312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01000288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-11-13 19:10 - 2016-11-13 19:10 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00988512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-11-13 19:10 - 2016-11-13 19:10 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00908640 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00862064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00860512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00856872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00764936 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00755656 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00749920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00742704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00725664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00719360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00681304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00658272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00650240 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00649568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00646136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00595296 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe

gate0keeper 20.11.2016 20:39
Code:
2016-11-13 19:10 - 2016-11-13 19:10 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00512416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00500064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00496872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetworkCollectionAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00450392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00434528 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00433832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00424640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00402352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00292872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00283488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00280472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-11-13 19:10 - 2016-11-13 19:10 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00232800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00218008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingFolder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00206096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvenotify.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00170960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00169056 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-11-13 19:10 - 2016-11-13 19:10 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidclass.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoplay.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovslegacy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00133472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00130912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00119648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00113504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmifw.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-11-13 19:10 - 2016-11-13 19:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmifw.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00074080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pwrshplugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Sens.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TempSignedLicenseExchangeTask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00064352 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\MegaSas2i.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.UserDeviceAssociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057400 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AddressParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundMediaPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidparse.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidusb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\encapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\delegatorprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\c_GSM7.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccessRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-11-13 19:10 - 2016-11-13 19:10 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-11-13 19:10 - 2016-11-13 19:10 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneutilRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-11-13 19:05 - 2016-11-13 19:05 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-11-13 19:03 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-11-13 19:03 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-13 19:03 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-11-13 19:03 - 2016-11-13 19:03 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-11-13 19:03 - 2016-11-13 19:03 - 00000000 ____D C:\Program Files\MSBuild
2016-11-13 19:02 - 2016-11-13 19:02 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2016-11-13 19:02 - 2016-11-13 19:02 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-11-13 19:02 - 2016-05-25 14:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 14:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 14:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-11-13 19:02 - 2016-05-25 11:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 11:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 11:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-11-13 18:51 - 2016-11-20 15:37 - 00000720 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brackets.lnk
2016-11-13 18:51 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Brackets
2016-11-13 18:35 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack 64bit
2016-11-13 18:35 - 2016-11-13 18:35 - 00000000 ____D C:\Program Files\Combined Community Codec Pack 64bit
2016-11-13 10:20 - 2016-11-13 10:20 - 00000000 ____D C:\Users\Daniel\Documents\CPY_SAVES
2016-11-13 04:23 - 2016-11-13 05:14 - 00000000 ____D C:\Users\Daniel\AppData\Local\QuantumBreak
2016-11-13 04:23 - 2016-11-13 04:23 - 00000000 ____D C:\Users\Daniel\Documents\SkidRow
2016-11-12 17:07 - 2016-11-12 17:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-11-12 14:30 - 2016-11-20 15:37 - 00000595 _____ C:\Users\Public\Desktop\Fraps.lnk
2016-11-12 14:30 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-11-12 14:29 - 2016-11-12 14:30 - 00000000 ____D C:\Fraps
2016-11-12 13:47 - 2016-11-20 15:37 - 00001481 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-11-12 13:47 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-12 13:47 - 2016-11-12 13:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\CEF
2016-11-12 13:47 - 2016-10-25 21:22 - 01852352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01452480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00104384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00094144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-11-12 13:40 - 2016-11-20 15:37 - 00001292 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intel WiDi Toast.lnk
2016-11-12 13:33 - 2016-11-12 14:39 - 00000000 ____D C:\Users\Daniel\Documents\The Witcher 3
2016-11-12 12:45 - 2016-11-20 16:23 - 00000000 ____D C:\Users\Daniel\AppData\Local\CrashDumps
2016-11-12 12:45 - 2016-11-12 12:45 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Steam
2016-11-12 12:07 - 2016-11-12 12:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tobit
2016-11-12 12:06 - 2016-11-20 15:37 - 00002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\david®.LNK
2016-11-12 12:06 - 2016-11-19 07:54 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Tobit
2016-11-12 12:06 - 2016-11-17 09:57 - 05985728 _____ (Tobit.Software) C:\WINDOWS\uninstic.exe
2016-11-12 12:06 - 2016-11-13 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tobit.Software
2016-11-12 12:06 - 2014-10-20 10:43 - 00148248 _____ (Tobit.Software) C:\WINDOWS\SysWOW64\DV4TS.EXE
2016-11-12 12:06 - 2009-01-06 10:56 - 00000023 _____ C:\WINDOWS\AVFD.INI
2016-11-12 12:06 - 2006-07-19 11:01 - 00099840 _____ C:\WINDOWS\IMGMSGMO.dll
2016-11-12 12:06 - 2006-07-19 09:31 - 00185344 _____ C:\WINDOWS\DVGRF.DLL
2016-11-12 12:05 - 2016-11-20 15:05 - 00000000 ____D C:\Program Files (x86)\Tobit InfoCenter
2016-11-12 12:05 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\gs
2016-11-12 12:05 - 2016-11-19 07:58 - 00000538 _____ C:\WINDOWS\Tobit.ini
2016-11-12 12:05 - 2016-11-17 13:31 - 11679232 _____ C:\WINDOWS\TOBITCLT.DLL
2016-11-12 12:05 - 2016-11-17 13:31 - 05310976 _____ (Tobit.Software) C:\WINDOWS\DVAPI32.DLL
2016-11-12 12:05 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2016-11-12 12:05 - 2016-11-12 12:05 - 00000000 ____D C:\ProgramData\Tobit
2016-11-12 12:05 - 2016-10-25 13:50 - 00234496 _____ (Tobit Software) C:\WINDOWS\dvepostm.dll
2016-11-12 12:05 - 2010-11-18 14:39 - 00115712 _____ (Tobit Software) C:\WINDOWS\faxwarmo.dll
2016-11-12 09:30 - 2016-11-12 09:30 - 00000000 ____D C:\ProgramData\Steam
2016-11-11 20:33 - 2016-11-11 20:33 - 00000000 ____D C:\Users\Daniel\Documents\My Games
2016-11-11 19:58 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-11 19:58 - 2016-09-09 19:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-11-11 19:58 - 2016-09-09 19:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-11-11 19:58 - 2016-09-09 19:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-11-11 19:58 - 2016-09-09 19:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-11-11 19:57 - 2016-10-25 20:12 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2016-11-11 19:56 - 2016-10-25 22:40 - 40123840 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 35224632 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 34711096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 28202040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10912232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10782952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10332664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 09120512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 08913512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 08723968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 03927288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 03468736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 02940352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 02574784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01953336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437570.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01586744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437570.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01037248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00975296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00943552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00897080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00802768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00683640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00644112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00572888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00438208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00394704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00390200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00327224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00042296 _____ C:\WINDOWS\system32\nvinfo.pb
2016-11-11 19:56 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-11-11 19:56 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2016-11-11 19:51 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2016-11-11 19:51 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-11-11 19:51 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2016-11-11 19:51 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-11-11 19:51 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-11-11 19:51 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2016-11-11 19:51 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2016-11-11 19:51 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2016-11-11 19:51 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2016-11-11 19:51 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-11-11 19:51 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-11-11 19:51 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-11-11 19:51 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-11-11 19:51 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-11-11 19:51 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-11-11 19:51 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2016-11-11 19:51 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-11-11 19:51 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2016-11-11 19:51 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-11-11 19:51 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2016-11-11 19:51 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-11-11 19:51 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2016-11-11 19:51 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-11-11 19:51 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2016-11-11 19:51 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-11-11 19:51 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2016-11-11 19:51 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-11-11 19:51 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-11-11 19:51 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-11-11 19:51 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2016-11-11 19:51 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-11-11 19:51 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2016-11-11 19:51 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-11-11 19:51 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2016-11-11 19:51 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2016-11-11 19:51 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2016-11-11 19:51 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-11-11 19:51 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2016-11-11 19:51 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2016-11-11 19:51 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-11-11 19:51 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-11-11 19:51 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-11-11 19:51 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-11-11 19:51 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-11-11 19:51 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2016-11-11 19:51 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-11-11 19:51 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2016-11-11 19:51 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-11-11 19:51 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-11-11 19:51 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-11-11 19:51 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2016-11-11 19:51 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-11-11 19:51 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2016-11-11 19:51 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-11-11 19:51 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2016-11-11 19:51 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-11-11 19:51 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2016-11-11 19:51 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-11-11 19:51 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2016-11-11 19:41 - 2016-11-11 19:41 - 00692072 _____ (Disc Soft Ltd.) C:\Users\Daniel\Downloads\DTLiteInstaller.exe
2016-11-11 19:38 - 2016-11-11 19:38 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WinRAR
2016-11-11 19:37 - 2016-11-20 15:36 - 00000707 _____ C:\Users\Daniel\Desktop\QuickPar.lnk
2016-11-11 19:37 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar
2016-11-11 19:36 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-11 19:36 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-11 18:55 - 2016-11-20 15:37 - 00000705 _____ C:\Users\Public\Desktop\Alt.Binz.lnk
2016-11-11 18:55 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alt.Binz
2016-11-11 18:55 - 2016-11-11 18:56 - 00000000 ____D C:\Users\Daniel\AppData\Local\Alt.Binz
2016-11-11 18:47 - 2016-11-11 18:54 - 02201253 _____ C:\Users\Daniel\Downloads\altbinz_0.39.4.exe
2016-11-11 17:31 - 2016-11-20 15:37 - 00001291 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eye Care Switcher.lnk
2016-11-11 17:23 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\NVIDIA
2016-11-11 17:23 - 2016-11-14 13:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\VMware
2016-11-11 17:22 - 2016-11-14 13:00 - 01551250 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-11-11 17:21 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-11-11 17:21 - 2016-11-11 17:21 - 00000000 ____D C:\ProgramData\Apple
2016-11-11 17:21 - 2016-11-11 17:21 - 00000000 ____D C:\Program Files\Bonjour
2016-11-11 17:19 - 2016-11-14 13:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Andy
2016-11-11 17:19 - 2016-11-11 17:23 - 00000000 ____D C:\Users\Daniel\Andy
2016-11-11 17:15 - 2016-10-28 02:22 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-11-11 14:59 - 2016-11-11 14:59 - 00000000 __SHD C:\aws
2016-11-11 14:57 - 2016-11-20 15:37 - 00001369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-11 14:57 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-11 14:57 - 2016-11-13 18:02 - 00001142 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-11 14:57 - 2016-11-13 15:02 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-11 14:57 - 2016-11-11 15:06 - 00000000 ____D C:\Users\Daniel\AppData\Local\Google
2016-11-11 14:56 - 2016-11-11 14:56 - 00000000 ____D C:\Users\Daniel\AppData\Local\MicrosoftEdge
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WildTangent
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\kingsoft
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Local\kingsoft
2016-11-11 14:42 - 2016-11-11 14:42 - 00000000 ____D C:\Users\Daniel\AppData\Local\NetworkTiles
2016-11-11 14:34 - 2016-11-20 14:44 - 00000000 _____ C:\Users\Daniel\AppData\LocalLow\rightsCheck_1.txt
2016-11-11 14:32 - 2016-11-11 14:32 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Dashlane
2016-11-11 14:29 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2016-11-11 14:29 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-11-11 14:22 - 2016-11-14 22:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\Comms
2016-11-11 14:22 - 2016-11-11 14:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-11 14:22 - 2016-11-11 14:22 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-11 14:12 - 2016-11-20 15:37 - 00002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 25 GB.lnk
2016-11-11 14:10 - 2016-11-11 14:59 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\awsRun
2016-11-11 14:09 - 2016-11-20 15:37 - 00001302 _____ C:\Users\Public\Desktop\Solid State Doctor - Asus Edition.lnk
2016-11-11 14:09 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Solid State Doctor - Asus Edition
2016-11-11 14:09 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-11-11 14:09 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solid State Doctor - Asus Edition
2016-11-11 14:09 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-11-11 14:09 - 2016-11-11 14:09 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Notepad++
2016-11-11 14:09 - 2016-11-11 14:09 - 00000000 ____D C:\Users\Daniel\AppData\Local\LC Technology Inc
2016-11-11 14:08 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Dashlane
2016-11-11 14:08 - 2016-11-16 12:32 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Dashlane
2016-11-11 14:08 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2016-11-11 14:07 - 2016-11-20 15:37 - 00002367 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMDb.lnk
2016-11-11 14:07 - 2016-11-20 15:37 - 00002367 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CloudConvert.lnk
2016-11-11 14:07 - 2016-11-20 15:36 - 00002337 _____ C:\Users\Daniel\Desktop\IMDb.lnk
2016-11-11 14:07 - 2016-11-20 15:36 - 00002337 _____ C:\Users\Daniel\Desktop\CloudConvert.lnk
2016-11-11 14:06 - 2016-11-11 14:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Macromedia
2016-11-11 14:05 - 2016-11-20 20:24 - 00000000 ___RD C:\Users\Daniel\OneDrive
2016-11-11 14:05 - 2016-11-20 15:37 - 00002388 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-11-11 14:05 - 2016-11-11 14:05 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Skype
2016-11-11 14:05 - 2016-11-11 14:05 - 00000000 ____D C:\Users\Daniel\AppData\Local\ActiveSync
2016-11-11 14:04 - 2016-11-11 14:04 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\DropboxOEM
2016-11-11 14:04 - 2016-11-11 14:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\DropboxOEM
2016-11-11 14:03 - 2016-11-20 20:23 - 00000206 _____ C:\Users\Daniel\AppData\Roaming\sp_data.sys
2016-11-11 14:03 - 2016-11-20 20:23 - 00000000 __SHD C:\Users\Daniel\IntelGraphicsProfiles
2016-11-11 14:03 - 2016-11-20 20:23 - 00000000 ____D C:\Users\Daniel\AppData\Local\ASUS GIFTBOX
2016-11-11 14:03 - 2016-11-20 16:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Adobe
2016-11-11 14:03 - 2016-11-14 22:46 - 00000000 ____D C:\Users\Daniel\AppData\Local\Packages
2016-11-11 14:03 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2016-11-11 14:03 - 2016-11-12 16:30 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA Corporation
2016-11-11 14:03 - 2016-11-12 13:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA
2016-11-11 14:03 - 2016-11-12 12:06 - 00000000 ____D C:\Users\Daniel\AppData\Local\VirtualStore
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WebStorage
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Intel
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\TileDataLayer
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\Publishers
2016-11-11 14:00 - 2016-11-11 14:03 - 00000000 ____D C:\ProgramData\USBChargerPlus
2016-11-11 14:00 - 2016-11-11 14:00 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-11-01 23:05 - 2016-11-01 23:05 - 00271368 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-11-01 23:05 - 2016-11-01 23:05 - 00141320 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00113672 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00112136 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00104464 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00101384 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2016-10-30 09:28 - 2016-10-30 09:28 - 00085744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00394496 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00271104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00089328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00639728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00334616 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00244504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-20 20:30 - 2016-07-16 23:51 - 00725690 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-20 20:30 - 2016-07-16 23:51 - 00152832 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-20 20:30 - 2016-03-24 12:50 - 01901796 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-20 20:23 - 2016-10-17 08:29 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-20 20:23 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-11-20 19:29 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-20 15:37 - 2016-07-17 19:58 - 00002118 _____ C:\Users\Public\Desktop\Dropbox 25 GB.lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001355 _____ C:\Users\Public\Desktop\WebStorage.lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001148 _____ C:\Users\Public\Desktop\Eye Care Switcher.Lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001011 _____ C:\Users\Public\Desktop\Foxit PhantomPDF.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002543 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002539 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-11-20 15:37 - 2016-03-24 13:04 - 00002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS GIFTBOX.lnk
2016-11-20 15:34 - 2016-07-17 19:39 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-11-20 14:43 - 2016-07-17 19:45 - 00000000 ____D C:\Program Files (x86)\ICEpower
2016-11-20 14:43 - 2016-07-17 19:41 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-11-20 14:43 - 2016-07-17 19:41 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2016-11-20 14:43 - 2016-07-17 19:40 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-20 14:43 - 2016-07-17 19:40 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-11-20 14:43 - 2016-07-17 19:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-11-20 14:43 - 2016-03-24 13:04 - 00000000 ____D C:\Program Files (x86)\Foxit PhantomPDF
2016-11-20 14:43 - 2016-03-24 13:04 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-11-20 14:02 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-20 14:02 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-19 07:57 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-19 07:56 - 2016-07-17 19:48 - 00000000 ____D C:\Program Files\Microsoft Office
2016-11-19 07:56 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-16 21:14 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-15 17:00 - 2016-03-24 13:04 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-15 15:41 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-14 15:41 - 2016-07-17 19:44 - 00000000 ____D C:\Program Files\DIFX
2016-11-14 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Registration
2016-11-14 10:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-11-14 10:08 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-11-13 19:36 - 2016-07-17 19:31 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-13 19:29 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-11-13 19:29 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows NT
2016-11-13 19:29 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-11-13 19:28 - 2016-10-17 09:23 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-11-13 19:28 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Media
2016-11-13 19:28 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-11-13 19:27 - 2016-10-17 08:42 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-11-13 19:27 - 2016-07-16 12:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-13 19:26 - 2016-07-17 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2016-11-13 19:26 - 2016-03-24 13:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2016-11-13 19:26 - 2016-03-24 13:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-11-13 19:25 - 2016-10-17 09:18 - 00000000 ____D C:\Users\Default.migrated
2016-11-13 19:24 - 2016-07-17 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICEpower
2016-11-13 19:24 - 2016-07-17 19:41 - 00000000 ____D C:\Program Files\Intel Corporation
2016-11-13 19:24 - 2016-07-17 19:39 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2016-11-13 19:24 - 2016-07-16 23:52 - 00000000 ____D C:\WINDOWS\OCR
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\IME
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Help
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\System
2016-11-13 19:24 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-11-13 19:24 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-11-13 19:24 - 2016-03-24 13:05 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-13 19:22 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-11-13 19:21 - 2016-10-17 08:30 - 00000000 ___HD C:\Intel
2016-11-13 19:19 - 2016-07-16 12:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-13 19:11 - 2016-07-16 12:47 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ___RD C:\Program Files\Windows Defender

gate0keeper 20.11.2016 20:40
Code:
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\setup
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-13 18:55 - 2016-07-17 00:55 - 00000000 ___HD C:\$WINDOWS.~BT
2016-11-13 18:12 - 2016-03-24 13:06 - 00001254 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-13 14:12 - 2016-03-24 13:06 - 00001250 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-11 14:52 - 2016-07-17 19:45 - 00000000 ____D C:\ProgramData\McAfee
2016-11-11 14:49 - 2016-03-24 13:05 - 00000000 ____D C:\ProgramData\WildTangent
2016-11-11 14:16 - 2015-10-30 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-11-11 14:16 - 2015-10-30 08:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-11-11 14:08 - 2016-07-17 19:38 - 00000000 ____D C:\ProgramData\Intel
2016-11-11 14:03 - 2016-03-24 19:38 - 00000000 ____D C:\WINDOWS\Log
2016-10-29 00:56 - 2016-07-16 12:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-11-14 14:59 - 2016-11-14 15:03 - 0003235 _____ () C:\Users\Daniel\AppData\Roaming\droid4xinstaller.log
2016-11-11 14:03 - 2016-11-20 20:23 - 0000206 _____ () C:\Users\Daniel\AppData\Roaming\sp_data.sys
2016-11-16 16:24 - 2016-11-19 10:58 - 0001456 _____ () C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-13 19:21 - 2016-11-13 19:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\libeay32.dll
C:\Users\Daniel\AppData\Local\Temp\msvcr120.dll
C:\Users\Daniel\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-13 19:20

==================== Ende von FRST.txt ============================
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
durchgeführt von Daniel (20-11-2016 20:35:28)
Gestartet von C:\Users\Daniel\Desktop\Malware
Windows 10 Home Version 1607 (X64) (2016-11-13 18:29:26)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3857371912-3165755019-847613773-500 - Administrator - Disabled)
Daniel (S-1-5-21-3857371912-3165755019-847613773-1001 - Administrator - Enabled) => C:\Users\Daniel
DefaultAccount (S-1-5-21-3857371912-3165755019-847613773-503 - Limited - Disabled)
Gast (S-1-5-21-3857371912-3165755019-847613773-501 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
Alt.Binz 0.39.4 (HKLM-x32\...\Alt.Binz) (Version: 0.39.4 - Rdl)
Ansel (Version: 375.70 - NVIDIA Corporation) Hidden
ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.1.13 - ASUSTek Computer Inc)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.15.0003 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.112 - ICEpower a/s)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brackets (HKLM-x32\...\{0ED76FF2-9370-4437-8C51-39F27DD0361B}) (Version: 1.8 - brackets.io)
CloudConvert (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\CloudConvert) (Version:  - Lunaweb Ltd.)
Combined Community Codec Pack 64bit 2015-10-18 (HKLM\...\Combined Community Codec Pack 64bit_is1) (Version: 2015.10.19.0 - CCCP Project)
Dashlane (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Dashlane) (Version: 4.6.3.20593 - Dashlane SAS)
david® Client  (HKLM-x32\...\david® Client) (Version: 12.00a - Tobit.Software)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.3 - ASUSTek Computer Inc.)
Dropbox 25 GB (HKLM-x32\...\{736A97C6-8766-3699-84A9-71736C5E0CE3}) (Version: 3.1.11.0 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.57.1 - Dropbox, Inc.) Hidden
eBay (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\eBay) (Version:  - eBay Inc.)
EVE Online (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\{975d25d5-e53d-4afa-9ec8-db6e8b9cfe94}) (Version: 1.0.0 - CCP)
FileZilla Client 3.22.2.2 (HKLM-x32\...\FileZilla Client) (Version: 3.22.2.2 - Tim Kosse)
Foxit PhantomPDF (HKLM-x32\...\{39263796-F296-43AF-909C-FCF99592BAC4}) (Version: 7.2.52.1209 - Foxit Software Inc.)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.14) (Version: 9.14 - Artifex Software Inc.)
IMDb (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\IMDb) (Version:  - IMDb.com, Inc.)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.11 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10604.207 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1169 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4364 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{C7CD6D54-26AF-4D93-B06F-D81ACE8624CB}) (Version: 6.0.40.0 - Intel Corporation)
Intel(R) WiDi Software Asset Manager (x32 Version: 1.1.347 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{64FD4757-7186-4F12-9AA8-5EE809CAB282}) (Version: 17.1.1532.1814 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{4c8b7360-62a2-4339-b745-41323055d0bb}) (Version: 18.20.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.7466.2038 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 7 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.7.5.0 - Duodian Technology Co. Ltd.)
NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.70 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 4.3.12_ZZZZ (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10143.21278 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7647 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
Solid State Doctor - Asus Edition 3.1.3.9 (HKLM-x32\...\{63327DD6-398B-480F-838D-B7C55E82B1D4}_is1) (Version: 3.1.3.9 - LC Technology International, Inc.)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.70155 Beta - TeamViewer)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.11.570 - ASUS Cloud Corporation)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Windows Driver Package - ASUS (AsusSGDrv) Mouse  (11/11/2015 8.0.0.23) (HKLM\...\FF0137EA2940E916D51DA702B6425126CC7C89BF) (Version: 11/11/2015 8.0.0.23 - ASUS)
Windows Driver Package - BigNox Corporation VBoxUSBMon System  (09/16/2015 4.3.12) (HKLM\...\39F54A37125643D2E1E90FA7D81F36ACC9441510) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
Windows Driver Package - BigNox Corporation XQHDrv System  (09/16/2015 4.3.12) (HKLM\...\0147813640F7AF69F569581EE672B6BE1E71798E) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.1.0 - ASUS)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0100E7FD-5EB7-492E-B167-91E916F30B1F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {0E1523E6-CAB2-485B-8AC9-AEFC1EB450E4} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {157421A9-FB3C-4AFA-9FFF-512C01F8711F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {17781704-2916-4310-864A-245F0C8CEAB8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-11] (Google Inc.)
Task: {37D5E902-2B4C-4199-9978-152D48BB5FB3} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {3984F180-3CD4-4C54-B4D0-E2BB4D30188E} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {39CD21EB-35CB-4512-AA79-269F27FC6E2F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-11] (Dropbox, Inc.)
Task: {40C16C89-5B22-4B8C-9C81-473B802B8152} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-11] (Dropbox, Inc.)
Task: {4946EDF4-0687-4D4B-B641-4317E441D4EC} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {4B461FB9-85A6-46DA-84CC-4629C116A3F6} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-18] (AsusTek)
Task: {4D0CA996-758A-498D-A879-F2E2DD79379F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {55B98368-E604-4474-AEB8-DBBC8D7AF48F} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2015-06-05] (Intel Corporation)
Task: {5EFE99ED-0609-4B85-8F0C-B0FB931A558A} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {60BE0F07-FFC3-41B5-882F-2E324A7B65D6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {61EC3082-1113-4C52-84F7-06C10BD03CDE} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {6430CC72-EBF8-4F8C-AF87-2CCE1878ED23} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2016-01-19] (ASUSTek Computer Inc.)
Task: {719AF2B3-0F3C-442A-AD40-47FF278E6E21} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-02] (Realtek Semiconductor)
Task: {76889A72-0460-4039-BE04-868F62E0B8AD} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {89E300DF-43FF-4939-91CB-45285F8EE911} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {9631D532-5E87-47F4-82F5-55C22C4F6F19} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-02] (Realtek Semiconductor)
Task: {9AEAF006-2239-41F4-B7D2-B90EF1E161F2} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {A2AB61D5-D872-47C1-967A-EAD1E3C91A7B} - System32\Tasks\ASUS\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [2016-09-14] (ASUSTek Computer Inc)
Task: {AA1FEAD2-6BB6-4C28-9138-869379C33D41} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {B424492A-A56B-4EFB-857A-175905372003} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {B76BD0CD-871B-4C3B-B89C-51B60F6C0651} - System32\Tasks\AdobeAAMUpdater-1.0-DANIEL-LAPPI-Daniel => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {C1914B36-E14E-4413-889B-0CF9D246EC90} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-10-25] (NVIDIA Corporation)
Task: {D6B9EC85-29B4-43F8-9C7E-02C645225585} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2016-04-04] ()
Task: {D9180713-B6C3-4854-9560-B3F647A70393} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-11] (Google Inc.)
Task: {DEAB7728-9873-4322-B061-7A6EB4875CC6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-10-25] (NVIDIA Corporation)
Task: {E8F5CCD2-280E-42AB-A0FA-514491C2BB9E} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2016-02-23] (ASUS)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Daniel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-12 12:06 - 2006-07-19 11:01 - 00099840 _____ () C:\WINDOWS\IMGMSGMO.dll
2015-05-19 09:11 - 2015-05-19 09:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2016-11-12 13:47 - 2016-10-25 21:22 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-11-13 19:38 - 2016-11-13 19:38 - 01864384 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2016-09-21 21:16 - 2016-09-21 21:16 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-11 14:09 - 2016-11-10 14:52 - 00536960 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
2016-11-11 14:57 - 2016-11-08 22:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-11 14:57 - 2016-11-08 22:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-11-17 13:45 - 2016-11-17 13:45 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-17 13:45 - 2016-11-17 13:45 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-17 13:45 - 2016-11-17 13:45 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-11-14 15:29 - 2016-11-14 15:29 - 03910208 _____ () C:\Users\Daniel\Desktop\Malware\adwcleaner_6.030.exe
2016-11-12 13:47 - 2016-10-25 21:21 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00029184 _____ () C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll
2016-11-12 13:47 - 2016-10-25 20:57 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-12 13:47 - 2016-10-25 20:57 - 02808256 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-12 13:47 - 2016-10-25 21:21 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-12 13:47 - 2016-10-25 20:57 - 00246840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-09-14 16:06 - 2016-09-14 16:06 - 01481728 _____ () C:\Program Files (x86)\ASUS\Giftbox\libglesv2.dll
2016-09-14 16:06 - 2016-09-14 16:06 - 00073728 _____ () C:\Program Files (x86)\ASUS\Giftbox\libegl.dll
2016-09-14 16:06 - 2016-09-14 16:06 - 00239616 _____ () C:\Program Files (x86)\ASUS\Giftbox\node_modules\appcloud-native-utils\anu.node
2016-11-13 19:38 - 2016-11-13 19:38 - 01383616 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2016-11-13 19:38 - 2016-11-13 19:38 - 00118976 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 06322048 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00471424 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 63181696 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00441216 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00346496 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 13827456 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00292736 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 02285440 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00334208 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.6.3.20593.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 60817344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 07602560 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.6.3.20593.dll
2015-09-18 23:34 - 2015-09-18 23:34 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\localhost -> localhost

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-10-30 08:24 - 2016-11-20 16:31 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\asus\wallpapers\asus.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{503EB958-CC8A-41C0-8A3E-CD9F338E4E67}D:\spiele\doom 2016\doomx64vk.exe] => (Allow) D:\spiele\doom 2016\doomx64vk.exe
FirewallRules: [TCP Query User{D809933E-A172-49FB-995F-F883B52972CF}D:\spiele\doom 2016\doomx64vk.exe] => (Allow) D:\spiele\doom 2016\doomx64vk.exe
FirewallRules: [UDP Query User{2A25E36B-69B2-4D01-AB8B-C830637529EC}D:\spiele\quantum break\dx11\quantumbreak.exe] => (Allow) D:\spiele\quantum break\dx11\quantumbreak.exe
FirewallRules: [TCP Query User{25F46325-0B53-4F7F-80F7-4BD4D062C4B3}D:\spiele\quantum break\dx11\quantumbreak.exe] => (Allow) D:\spiele\quantum break\dx11\quantumbreak.exe
FirewallRules: [{F5133C28-3CB8-4EE4-A07E-C34DD8E95323}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{453BA9F9-C703-4CF5-8737-5A793CFED059}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{25F5B39B-92A2-4375-BFC0-89C1EA40780D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{743CD073-70F0-4A5D-913A-F0CA3164A708}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{AD2CBCD9-C4DD-4A90-AC0E-6F4DBDC646E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [UDP Query User{BCB25C4D-2B2A-41F9-9979-EE76CF72078F}D:\spiele\quantum break\game\dx11\quantumbreak.exe] => (Block) D:\spiele\quantum break\game\dx11\quantumbreak.exe
FirewallRules: [TCP Query User{A57BA6F8-8831-4A8E-867A-BC74B259C417}D:\spiele\quantum break\game\dx11\quantumbreak.exe] => (Block) D:\spiele\quantum break\game\dx11\quantumbreak.exe
FirewallRules: [UDP Query User{A31DFB79-2FE4-4E3E-9650-F1A34C62505E}D:\spiele\call of duty infinite warfare\iw7_ship.exe] => (Allow) D:\spiele\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [TCP Query User{F63227DB-3CB4-46DD-A82B-3F40B2D7800F}D:\spiele\call of duty infinite warfare\iw7_ship.exe] => (Allow) D:\spiele\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [{DDA3959D-70CC-4EAC-A008-C55E954F3137}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{97471493-F33B-4D83-9779-7816B3A596CB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A6D932F2-78BF-45F3-A0C2-1DD9C5341971}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B51601E2-B10D-4327-AE6C-4F475F92CAD4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{758D054B-9FA2-42FE-B36D-18B365AD32D0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6EE4C259-DFB6-426B-AFC2-9FF91C894185}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{F26F6E94-0E76-4927-8B21-82EBF142722D}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{B8E0DF08-7602-4E3C-9AE1-71CA7284E838}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiAppOld.exe
FirewallRules: [{A3D1C3B4-C2E7-42E5-8AC6-BE34B232690C}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\Next\WirelessDisplay.exe
FirewallRules: [{1795864C-4439-43F8-B2C4-C9E0A204FAF9}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\SmartAgentTest.exe
FirewallRules: [{A32D5548-A2CB-434C-8105-0A59A2F9F3A9}] => (Allow) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
FirewallRules: [TCP Query User{FBBAF9E3-A66A-4E20-9949-DAF8D946BCB7}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{DA40D239-21AF-4415-A204-2A7AB1901575}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [{1DB6D851-B186-4757-8300-7EBB30165DEC}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3396AE47-66E6-4A83-9F42-FD66694449D9}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3C29DC8E-3A5F-4A55-A25E-4A4A9D3ED040}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{3A6534AB-FB52-46CF-A381-AE00ECFE9E37}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{98F68D9E-F81A-4A6C-BB89-92AE473DA9C1}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0270A14B-40C4-4A03-AF3C-7E25241FCBA2}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{E218D7BE-DAB5-4910-80AA-C9BD5CCE3CB4}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{813BB494-B83B-4E3C-80BC-01822CB188A5}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{676D32BF-7EAD-4A31-AAAF-50015C05FD8C}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{3EC93D62-3AB7-4113-BFFF-2FCDBA9809CA}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{0080A997-9B04-4755-958B-D6E113E452DB}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{B91952FD-910F-4325-81F2-2128A33C3C08}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{291BE070-7EBE-4402-BC36-488ADF0A4C89}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{30BDA45C-947B-4821-9AE9-51E3CDD35FFD}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{E46AEE8E-83C2-4434-94C2-EDE4ECF6D688}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{900B3700-3C7B-46FC-B8D7-A421D0BFF6FB}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [TCP Query User{82418E8B-5667-415F-9271-82B0DF667A58}C:\users\daniel\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\daniel\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe
FirewallRules: [{864147E3-FE8A-4C75-81A2-AA00EE21E4D9}] => (Allow) D:\Programme\Doid4X\Droid4X\Droid4X.exe
FirewallRules: [{9D103E7C-9743-47A2-BE44-D86F335AEE40}] => (Allow) D:\Programme\Doid4X\Droid4X\download\MiniThunderPlatform.exe
FirewallRules: [{875F23DD-6C4F-4191-901B-0ED554957E6A}] => (Allow) D:\Programme\Doid4X\Droid4X\download\MiniThunderPlatform.exe
FirewallRules: [{D3424DE1-2F8B-4E59-8B8F-B67F7D73BF5A}] => (Allow) C:\Program Files\Oracle\VirtualBox\vboxheadless.exe
FirewallRules: [{435EE6E6-A54F-40A8-B040-EAF8179D637B}] => (Allow) D:\Programme\NoxAppPlayer\Nox\bin\Nox.exe
FirewallRules: [{5B52BD14-569E-4A90-A29A-014CCB2518E7}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{99E1310E-7B55-427D-8794-2C56B6A9EBEE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{E0B1D176-4A9F-46E2-AED4-B7C4AC3F14FC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{24C9F2A4-581E-4CE5-834B-A4B33105C0DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A0771446-3AC9-4A1C-AF81-E3513657FA9D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5694C93F-D6E2-4851-BFE4-AE28FDCD58C2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{A11C1B93-6702-47EA-A65F-2E0218427CCA}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{D82E0C3E-D29A-4EAE-B18A-8653D6499E56}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [TCP Query User{B5A66176-D38C-4320-ABB3-81FD30997C37}D:\spiele\eve\sharedcache\tq\bin\exefile.exe] => (Allow) D:\spiele\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [UDP Query User{4103919F-0A86-4708-99B5-5985A41CF5E2}D:\spiele\eve\sharedcache\tq\bin\exefile.exe] => (Allow) D:\spiele\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [{8B281CD7-4698-407C-991D-7EBBF07F04C4}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\is-I4F9A.tmp\download\MiniThunderPlatform.exe
FirewallRules: [{D7393346-0F2D-481C-AAF9-B550BDBBE685}] => (Allow) C:\Program Files (x86)\GreatMaker\MaohaWiFi\MaohaWifiSvr.exe
FirewallRules: [{40FA591D-8DB7-4D1B-9A39-F75E1A0746A2}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
FirewallRules: [{BE526E6B-A01A-4671-8A3D-F44277DEE4F8}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/20/2016 04:26:20 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\daniel\appdata\local\temp\creative cloud uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.

Error: (11/20/2016 04:23:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Adobe CEF Helper.exe, Version: 3.9.1.335, Zeitstempel: 0x580f9487
Name des fehlerhaften Moduls: libcef.dll, Version: 3.2171.2069.0, Zeitstempel: 0x551bdc44
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00444106
ID des fehlerhaften Prozesses: 0x1ed0
Startzeit der fehlerhaften Anwendung: 0x01d2434115fe8ae9
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
Berichtskennung: 38bdbf64-d8e8-421b-a56f-948ffc989879
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (11/20/2016 04:16:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\daniel\appdata\local\temp\creative cloud uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.

Error: (11/20/2016 04:16:16 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\Creative Cloud Uninstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.

Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding  22 2.8.D.D.9.5.6.0.A.2.1.6.4.F.9.A.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Daniel-Lappi-2.local.

Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.2.105:5353  20 2.8.D.D.9.5.6.0.A.2.1.6.4.F.9.A.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Daniel-Lappi.local.

Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding  22 105.2.168.192.in-addr.arpa. PTR Daniel-Lappi-2.local.

Error: (11/20/2016 03:46:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.2.105:5353  20 105.2.168.192.in-addr.arpa. PTR Daniel-Lappi.local.

Error: (11/20/2016 03:46:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Daniel-Lappi.local already in use; will try Daniel-Lappi-2.local instead

Error: (11/20/2016 03:46:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister    4 Daniel-Lappi.local. Addr 192.168.2.105


Systemfehler:
=============
Error: (11/20/2016 08:23:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/20/2016 08:23:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/20/2016 08:23:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/20/2016 08:23:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/20/2016 08:23:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/20/2016 08:23:11 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll

Error: (11/20/2016 08:23:11 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll

Error: (11/20/2016 08:23:10 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll

Error: (11/20/2016 08:22:59 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
Es wird bereits eine Instanz des Dienstes ausgeführt.

Error: (11/20/2016 08:22:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2016-11-20 14:40:39.731
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-20 14:40:39.729
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-17 14:05:01.079
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-17 14:05:01.078
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:43:40.743
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:43:40.742
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:42:28.866
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:42:28.865
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-15 19:30:19.816
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-14 20:04:00.813
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Prozentuale Nutzung des RAM: 32%
Installierter physikalischer RAM: 7991.77 MB
Verfügbarer physikalischer RAM: 5399.7 MB
Summe virtueller Speicher: 16695.77 MB
Verfügbarer virtueller Speicher: 13966.91 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:118.48 GB) (Free:52 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:576.34 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 05CE14A8)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: B9613EEF)

Partition: GPT.

==================== Ende von Addition.txt ============================

deeprybka 20.11.2016 20:45
Bitte Tools genau nach Anleitung ausführen:

Schritt 1

Downloade Dir bitte http://deeprybka.trojaner-board.de/adwcleaner/adwc.pngAdwCleaner auf Deinen Desktop.
  • Schließe alle offenen Programme und Browser.
  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Werkzeuge > Optionen und vergewissere Dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel
    • "Prefetch" Dateien
    • Proxy
    • Winsock
    • Internet Explorer Richtlinien
    • Chrome Richtlinien
  • Bestätige die Auswahl mit Ok.
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen (auch dann wenn AdwCleaner sagt, dass nichts gefunden wurde) und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit Deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.



Schritt 3
Downloade Dir HitmanProhttp://deeprybka.trojaner-board.de/b.../hitmanpro.pngauf Deinen Desktop:

HitmanPro-32 Bit Version
HitmanPro-64 Bit Version
Schritt 4

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


gate0keeper 20.11.2016 21:50
ADWCleaner

Code:
# AdwCleaner v6.030 - Bericht erstellt am 20/11/2016 um 20:48:13
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-11-20.1 [Server]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : Daniel - DANIEL-LAPPI
# Gestartet von : C:\Users\Daniel\Desktop\Malware\adwcleaner_6.030.exe
# Modus: Löschen
# Unterstützung : hxxps://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****



***** [ Dateien ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKLM\SOFTWARE\b`nl{y
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\b`nl{y


***** [ Browser ] *****



*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Image File Execution Options" Schlüssel gelöscht
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
:: Chrome Einstellungen zurückgesetzt: C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [6274 Bytes] - [14/11/2016 15:31:29]
C:\AdwCleaner\AdwCleaner[C2].txt - [1259 Bytes] - [14/11/2016 15:35:36]
C:\AdwCleaner\AdwCleaner[C3].txt - [1601 Bytes] - [14/11/2016 15:38:00]
C:\AdwCleaner\AdwCleaner[C4].txt - [42476 Bytes] - [20/11/2016 15:05:05]
C:\AdwCleaner\AdwCleaner[C5].txt - [2594 Bytes] - [20/11/2016 15:13:55]
C:\AdwCleaner\AdwCleaner[C6].txt - [3512 Bytes] - [20/11/2016 15:25:55]
C:\AdwCleaner\AdwCleaner[C7].txt - [4217 Bytes] - [20/11/2016 16:23:26]
C:\AdwCleaner\AdwCleaner[C8].txt - [1752 Bytes] - [20/11/2016 20:48:13]
C:\AdwCleaner\AdwCleaner[S0].txt - [5911 Bytes] - [14/11/2016 15:30:39]
C:\AdwCleaner\AdwCleaner[S10].txt - [3195 Bytes] - [20/11/2016 15:25:18]
C:\AdwCleaner\AdwCleaner[S11].txt - [3704 Bytes] - [20/11/2016 15:43:57]
C:\AdwCleaner\AdwCleaner[S12].txt - [3783 Bytes] - [20/11/2016 16:23:07]
C:\AdwCleaner\AdwCleaner[S13].txt - [2851 Bytes] - [20/11/2016 16:35:46]
C:\AdwCleaner\AdwCleaner[S14].txt - [2925 Bytes] - [20/11/2016 19:32:18]
C:\AdwCleaner\AdwCleaner[S15].txt - [2991 Bytes] - [20/11/2016 20:31:39]
C:\AdwCleaner\AdwCleaner[S1].txt - [1521 Bytes] - [14/11/2016 15:35:25]
C:\AdwCleaner\AdwCleaner[S2].txt - [1819 Bytes] - [14/11/2016 15:37:29]
C:\AdwCleaner\AdwCleaner[S3].txt - [1788 Bytes] - [14/11/2016 15:40:02]
C:\AdwCleaner\AdwCleaner[S4].txt - [43331 Bytes] - [20/11/2016 14:56:08]
C:\AdwCleaner\AdwCleaner[S5].txt - [38492 Bytes] - [20/11/2016 15:03:43]
C:\AdwCleaner\AdwCleaner[S6].txt - [2522 Bytes] - [20/11/2016 15:07:30]
C:\AdwCleaner\AdwCleaner[S7].txt - [2697 Bytes] - [20/11/2016 15:13:39]
C:\AdwCleaner\AdwCleaner[S8].txt - [2567 Bytes] - [20/11/2016 15:15:43]
C:\AdwCleaner\AdwCleaner[S9].txt - [2742 Bytes] - [20/11/2016 15:23:37]

########## EOF - C:\AdwCleaner\AdwCleaner[C8].txt - [3001 Bytes] ##########
JRT:

Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 10 Home x64
Ran by Daniel (Administrator) on 20.11.2016 at 20:51:11,96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20.11.2016 at 20:51:51,20
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Hitman:

Code:

       
Code:

       
HitmanPro 3.7.15.281
www.hitmanpro.com

   Computer name . . . . : DANIEL-LAPPI
   Windows . . . . . . . : 10.0.0.14393.X64/8
   User name . . . . . . : DANIEL-LAPPI\Daniel
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free

   Scan date . . . . . . : 2016-11-20 20:54:35
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 2m 45s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 18
   Traces  . . . . . . . : 37

   Objects scanned . . . : 2.003.192
   Files scanned . . . . : 41.279
   Remnants scanned  . . : 575.325 files / 1.386.588 keys

Malware _____________________________________________________________________

   C:\AdwCleaner\quarantine\files\brtqcccknokpwtewmkfcstigruhxlorx\Uninstall.exe
      Size . . . . . . . : 78.445 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:38)
      Entropy  . . . . . : 7.5
      SHA-256  . . . . . : 74846BB45107E94C50B2083D9DD1E3031E695D6F1C6C9C48743E3B139009021D
    > Kaspersky  . . . . : not-a-virus:HEUR:AdWare.Win32.Generic
      Fuzzy  . . . . . . : 116.0

   C:\AdwCleaner\quarantine\files\delmzrugbivtsnjefcjxdnyinddlumei\mobilepcstarterkit_widget.exe
      Size . . . . . . . : 3.309.568 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:58:30)
      Entropy  . . . . . : 6.6
      SHA-256  . . . . . : 34E28DBDA438AEBE55275C03B4A88325EC4BA756B519BD5A7FC512B947881707
    > Bitdefender  . . . : Gen:Variant.Application.Midie.5697
    > Kaspersky  . . . . : not-a-virus:AdWare.Win32.Eorezo.gaiw
    > HitmanPro  . . . . : App/Generic-OH
      Fuzzy  . . . . . . : 108.0

   C:\AdwCleaner\quarantine\files\delmzrugbivtsnjefcjxdnyinddlumei\O39SNH.exe
      Size . . . . . . . : 580.608 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:58:30)
      Entropy  . . . . . : 6.3
      SHA-256  . . . . . : B49F3CDAEDE6A24AFF46DC81487EC6ED417ABC4B78DE1088D4CFEC339965887E
      Needs elevation  . : Yes
      Product  . . . . . : 7C2U1K0
      Publisher  . . . . : 7C2U1K
      Description  . . . : 7C2U1K0QH
      Version  . . . . . : 7.0.4.6
      LanguageID . . . . : 0
    > Kaspersky  . . . . : HEUR:Trojan.Win32.Generic
      Fuzzy  . . . . . . : 102.0

   C:\AdwCleaner\quarantine\files\delmzrugbivtsnjefcjxdnyinddlumei\uninstaller.exe
      Size . . . . . . . : 1.187.840 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:58:30)
      Entropy  . . . . . : 6.3
      SHA-256  . . . . . : 894EB29C64C2A6B45336D7A29481289A2B8517DB8F4DF587950CEEB2E75F2440
      Needs elevation  . : Yes
      Product  . . . . . : 7C2U1K0
      Publisher  . . . . : 7C2U1K
      Description  . . . : 7C2U1K0QH
      Version  . . . . . : 7.0.4.6
      LanguageID . . . . : 0
    > Kaspersky  . . . . : HEUR:Trojan.Win32.Generic
      Fuzzy  . . . . . . : 102.0

   C:\AdwCleaner\quarantine\files\delmzrugbivtsnjefcjxdnyinddlumei\wincom_KFD.exe
      Size . . . . . . . : 4.143.104 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:58:30)
      Entropy  . . . . . : 6.6
      SHA-256  . . . . . : D287FD10C5C196E5C1EDFCFF21CDCFE0B6D640899E6C8360C9A341493951489D
    > Bitdefender  . . . : Gen:Variant.Mikey.55670
    > Kaspersky  . . . . : not-a-virus:AdWare.Win32.Eorezo.gkdu
      Fuzzy  . . . . . . : 108.0

   C:\AdwCleaner\quarantine\files\jgreuvovfclmzuegvzrqjsmggfbwjibx\HealerConsole.exe
      Size . . . . . . . : 758.984 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:52)
      Entropy  . . . . . : 6.6
      SHA-256  . . . . . : EDA7C587F60F58E0648C15E7838B99E3CBE6946A3030AC110CF39A1EF27A3600
      Product  . . . . . : SystemHealer.exe
      Publisher
      Description  . . . : SystemHealer.exe
      Version  . . . . . : 4.5.0.3
      Copyright  . . . . : Copyright (C) 2016, All Rights Reserved
      RSA Key Size . . . : 2048
      LanguageID . . . . : 1033
      Authenticode . . . : Valid
    > HitmanPro  . . . . : App/Generic-HG
      Fuzzy  . . . . . . : 96.0

   C:\AdwCleaner\quarantine\files\jgreuvovfclmzuegvzrqjsmggfbwjibx\RescueMonitor.exe
      Size . . . . . . . : 1.024.712 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:52)
      Entropy  . . . . . : 4.8
      SHA-256  . . . . . : EA681E4980F700ADE8D83942D62C2ED76A8F32C3951A6457C0B2534182B8755F
      RSA Key Size . . . : 2048
      Authenticode . . . : Valid
    > Bitdefender  . . . : Trojan.GenericKD.3525556
    > HitmanPro  . . . . : App/Generic-FG
      Fuzzy  . . . . . . : 101.0

   C:\AdwCleaner\quarantine\files\jgreuvovfclmzuegvzrqjsmggfbwjibx\SystemHealer.exe
      Size . . . . . . . : 2.606.280 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:53)
      Entropy  . . . . . : 7.0
      SHA-256  . . . . . : 4E24863231B354AE9E8253345136FB12F6651487B5F83C112536A22D2294873C
      Product  . . . . . : SystemHealer.exe
      Publisher
      Description  . . . : SystemHealer.exe
      Version  . . . . . : 4.5.0.3
      Copyright  . . . . : Copyright (C) 2016, All Rights Reserved
      RSA Key Size . . . : 2048
      LanguageID . . . . : 1033
      Authenticode . . . : Valid
    > HitmanPro  . . . . : App/Generic-KI
      Fuzzy  . . . . . . : 96.0

   C:\AdwCleaner\quarantine\files\kgkcptminntkrxczrvgxejihtmuygwwp\Uninstall.exe
      Size . . . . . . . : 51.270 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:40)
      Entropy  . . . . . : 7.2
      SHA-256  . . . . . : 530877A2D25A38ECC060959675BF69F986C1DE39E0BB245B0FCA2989947C5E92
    > Kaspersky  . . . . : not-a-virus:HEUR:AdWare.Win32.ConvertAd.heur
      Fuzzy  . . . . . . : 112.0

   C:\AdwCleaner\quarantine\files\nmhytnbnniunasidajkstiibrdjtbunv\Uninstall.exe
      Size . . . . . . . : 78.445 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:44)
      Entropy  . . . . . : 7.5
      SHA-256  . . . . . : 74846BB45107E94C50B2083D9DD1E3031E695D6F1C6C9C48743E3B139009021D
    > Kaspersky  . . . . : not-a-virus:HEUR:AdWare.Win32.Generic
      Fuzzy  . . . . . . : 116.0

   C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\sma.exe
      Size . . . . . . . : 266.752 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:47)
      Entropy  . . . . . : 6.5
      SHA-256  . . . . . : BC413B214790D706B68A9F52E065E73926E1F0099A2FA999392D5A0645FA9E69
      Product  . . . . . : W
      Publisher  . . . . : .
      Description  . . . : agent
      Version  . . . . . : 2.6.8.0
      Copyright  . . . . : Copyright (C) 2015
      LanguageID . . . . : 1033
    > Bitdefender  . . . : Gen:Variant.Graftor.311853
      Fuzzy  . . . . . . : 103.0

   C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\smci32.dll
      Size . . . . . . . : 1.781.248 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:47)
      Entropy  . . . . . : 6.7
      SHA-256  . . . . . : 737DA5E8754F9BB0A23E6AAFC0F163150F58CD678B51665A75C82794CC8B8BB3
      Product  . . . . . : SBWatchman
      Publisher  . . . . : Search Module Ltd.
      Description  . . . : Search Module Update Service
      Version  . . . . . : 2.6.8.4215
      Copyright  . . . . : Copyright (C) 2014
      LanguageID . . . . : 1033
    > Bitdefender  . . . : Gen:Variant.Graftor.297355
      Fuzzy  . . . . . . : 102.0

   C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\smi32.exe
      Size . . . . . . . : 320.512 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:48)
      Entropy  . . . . . : 6.6
      SHA-256  . . . . . : 0DA0703EEDE2BEDC1BCD6273394202A59B1FADA448138EA15A650E5183113B0A
    > Bitdefender  . . . : Gen:Variant.Graftor.311853
    > Kaspersky  . . . . : Trojan.Win32.Agentb.ifwj
      Fuzzy  . . . . . . : 108.0

   C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\smu.exe
      Size . . . . . . . : 3.109.888 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:48)
      Entropy  . . . . . : 6.2
      SHA-256  . . . . . : 3160F1AEF75445BA36484E0AB914E60CD44156FC1DDB2DA750157C415753FA22
      Product  . . . . . : W
      Publisher  . . . . : Search Module Ltd.
      Description  . . . : Search Module Update Service
      Version  . . . . . : 2.6.8.4215
      Copyright  . . . . : Copyright (C) 2014
      LanguageID . . . . : 1033
    > Bitdefender  . . . : Trojan.Generic.19594303
    > Kaspersky  . . . . : not-a-virus:HEUR:Monitor.Win64.SSPro.gen
      Fuzzy  . . . . . . : 102.0

   C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\SMUninstall.exe
      Size . . . . . . . : 497.152 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:49)
      Entropy  . . . . . : 6.4
      SHA-256  . . . . . : 54675327EED6FAA07E8090048FB39823E6C31F7072AC1EAAD4BABA721452CD8F
    > Bitdefender  . . . : Gen:Variant.Strictor.108635
    > Kaspersky  . . . . : not-a-virus:AdWare.Win32.WatchMan.cpw
    > HitmanPro  . . . . : App/Generic-EL
      Fuzzy  . . . . . . : 108.0

   C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\smw.sys
      Size . . . . . . . : 52.992 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:57:49)
      Entropy  . . . . . : 6.0
      SHA-256  . . . . . : E6841D5182F55E6E175863693097F967C0905FC56AEAD177E911A078CF1F95B8
      RSA Key Size . . . : 2048
      Authenticode . . . : Valid
    > Bitdefender  . . . : Adware.GenericKD.3676471
      Fuzzy  . . . . . . : 101.0

   C:\AdwCleaner\quarantine\files\zmwnoxndlsepfgpcvjtwohadonjngvik\MaohaWiFi\tips.exe
      Size . . . . . . . : 569.312 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:58:27)
      Entropy  . . . . . : 6.3
      SHA-256  . . . . . : D68983A8BA6257A739EBFFCDBE82AFCCB8DF2440BF342A558CDAD8AAAB7DDE68
      RSA Key Size . . . : 2048
      Authenticode . . . : Valid
    > Bitdefender  . . . : Gen:Variant.Strictor.75575
      Fuzzy  . . . . . . : 101.0

   C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\IE\NEYQNBQW\Note-UP_Setup[1].exe
      Size . . . . . . . : 68.745 bytes
      Age  . . . . . . . : 0.3 days (2016-11-20 14:45:11)
      Entropy  . . . . . : 6.9
      SHA-256  . . . . . : A00A16B9AE0597A0B05445C1AD6EF093FDE16640348C6CDCA02972ECB8DE3FE4
    > Bitdefender  . . . : Trojan.GenericKD.3250417
    > Kaspersky  . . . . : HEUR:Trojan-Downloader.Win32.Generic
    > HitmanPro  . . . . : Mal/Generic-S
      Fuzzy  . . . . . . : 108.0


Suspicious files ____________________________________________________________

   C:\AdwCleaner\quarantine\files\zmwnoxndlsepfgpcvjtwohadonjngvik\MaohaWiFi\MaohaWiFi.exe
      Size . . . . . . . : 1.122.840 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 14:58:26)
      Entropy  . . . . . : 6.6
      SHA-256  . . . . . : 239B08378C55CF42F7D3B365E5323122826C39B3048DB73D1CF98E313449FBD6
      Product  . . . . . : 猫哈免费WiFi
      Publisher  . . . . : 猫哈网络 版权所有
      Description  . . . : 猫哈免费WiFi
      Version  . . . . . : 1.0.8,8
      RSA Key Size . . . : 2048
      LanguageID . . . . : 2052
      Authenticode . . . : Invalid
      Fuzzy  . . . . . . : 25.0
         Program is altered or corrupted since it was code signed by its author. This is typical for malware and pirated software.
         Authors name is missing in version info. This is not common to most programs.
         Time indicates that the file appeared recently on this computer.

   C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\IE\Q1GS3ZTG\FRST64[1].exe
      Size . . . . . . . : 2.412.544 bytes
      Age  . . . . . . . : 0.0 days (2016-11-20 20:22:19)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : D08E1FFE263A083FEE9DF76D1FC1D089B36EBD13514CC0747785EFBFEE49B5E0
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.
      Forensic Cluster
         -2.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\IE\294AOO49\82[1].htm
         -2.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCookies\JXBTPC6V.cookie
         -1.5s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9EC3B71635F8BA3FC68DE181A104A0EF_F6C39EF89D8A3A72327D8412589658B2
         -1.5s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9EC3B71635F8BA3FC68DE181A104A0EF_F6C39EF89D8A3A72327D8412589658B2
         -0.9s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\64DCC9872C5635B1B7891B30665E0558_5552C20A2631357820903FD38A8C0F9F
         -0.9s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\64DCC9872C5635B1B7891B30665E0558_5552C20A2631357820903FD38A8C0F9F
         -0.3s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6AF4EE75E3A4ABA658C0087EB9A0BB5B_4F8D4D4F8A055DA96F5FDDC885E626A4
         -0.3s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6AF4EE75E3A4ABA658C0087EB9A0BB5B_4F8D4D4F8A055DA96F5FDDC885E626A4
         -0.2s C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\IE\294AOO49\FRST64[1].exe
          0.0s C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\IE\Q1GS3ZTG\FRST64[1].exe
          0.0s C:\Users\Daniel\Desktop\Malware\FRST64.exe
          0.9s C:\Users\Daniel\Desktop\Malware\FRST-OlderVersion\
          6.9s C:\FRST\Logs\ct
          6.9s C:\Users\Daniel\Desktop\Malware\Fixlog.txt
         10.6s C:\ProgramData\NVIDIA\MessageBus_7512_0x28106F2DBA0.log
         10.7s C:\ProgramData\NVIDIA\MessageBus_7512_0x28106FF3D20.log
         14.5s C:\FRST\Quarantine\C\
         14.5s C:\FRST\Quarantine\C\WINDOWS\
         14.5s C:\FRST\Quarantine\C\WINDOWS\System32\
         14.5s C:\FRST\Quarantine\C\WINDOWS\System32\DRIVERS\
         14.6s C:\FRST\Quarantine\C\Program Files (x86)\
         14.6s C:\FRST\Quarantine\C\Users\
         14.6s C:\FRST\Quarantine\C\Users\Daniel\AppData\Local\
         14.6s C:\FRST\Quarantine\C\Users\Daniel\AppData\
         14.6s C:\FRST\Quarantine\C\Users\Daniel\
         14.7s C:\FRST\Quarantine\C\Users\Daniel\AppData\Roaming\
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_idx.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_16.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_32.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_48.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_96.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_256.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_768.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_1280.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_1920.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_2560.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_sr.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_wide.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_exif.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_wide_alternate.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_custom_stream.db
         30.3s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\
         30.3s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\f01b4d95cf55d32a.automaticDestinations-ms
         50.1s C:\FRST\Logs\Fixlog_20-11-2016 20.23.09.txt
         50.3s C:\Users\Daniel\AppData\Local\IconCache.db
         50.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000018.db
         69.8s C:\Windows\Temp\DPTF\dptf_wwanproxy.dll
         69.8s C:\Windows\Temp\DPTF\dptf_pnmwlanproxy.dll
         70.2s C:\Windows\Temp\DPTF\esif_assist_64.exe
         70.3s C:\Windows\Temp\ssdtoolservice.log
         70.4s C:\Windows\Temp\adobegc.log
         70.6s C:\ProgramData\NVIDIA\MessageBus_2840_0x2369D5A48E0.log
         70.7s C:\Windows\Temp\DANIEL-LAPPI-20161120-2023.log
         70.9s C:\ProgramData\NVIDIA\MessageBus_2840_0x2369E077F60.log
         71.1s C:\Windows\Temp\officeclicktorun.exe_streamserver(20161120202330A18).log
         76.2s C:\Windows\System32\spp\store\2.0\data.dat
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_idx.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_16.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_32.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_48.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_96.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_256.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_768.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_1280.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_1920.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_2560.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_sr.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_wide.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_exif.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_wide_alternate.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_custom_stream.db
         81.3s C:\ProgramData\Dropbox\Update\Log\DropboxUpdate.log-2016-11-20-19-23-40-038-5624-finished
         81.5s C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc\
         83.6s C:\ProgramData\Dropbox\Update\Log\DropboxUpdate.log-2016-11-20-19-23-43-535-8172-finished
         83.8s C:\ProgramData\Dropbox\Update\Log\DropboxUpdate.log-2016-11-20-19-23-43-671-1564-finished
         84.4s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\5f7b5f1e01b83767.automaticDestinations-ms
         84.5s C:\Users\Daniel\AppData\Local\Temp\nw5500_26377\
         86.7s C:\Users\Daniel\AppData\Local\Temp\ac_cache\
         90.5s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Caches\{3DA71D5A-20CC-432F-A115-DFE92379E91F}.3.ver0x0000000000000072.db
         91.3s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\
         92.6s C:\Users\Daniel\AppData\Local\Temp\ac_cache\-394436725
         93.5s C:\Users\Daniel\AppData\Local\Temp\ac_cache\1498784759
         95.0s C:\ProgramData\Microsoft\Network\Downloader\qmgr0.dat
         95.0s C:\ProgramData\Microsoft\Network\Downloader\qmgr1.dat
         95.2s C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\logs\Personal\SyncEngine-2016-11-20.1923.8460.1.odl
         95.2s C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\setup\logs\Update_2016-11-20_202355_210c-2384.log
         96.4s C:\ProgramData\NVIDIA\MessageBus_8496_0x3766C70.log
         102.3s C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\logs\Personal\SyncEngine-2016-11-20.1924.8460.2.odl
         102.4s C:\Users\Daniel\AppData\Local\Temp\ac_cache\493795395
         102.6s C:\Users\Daniel\AppData\Local\Temp\ac_cache\-1732188077
         103.6s C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\logs\Personal\SyncEngine-2016-11-20.1924.8460.3.odl
         126.9s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\9b9cdc69c1c24e2b.automaticDestinations-ms
         126.9s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\Fixlog.lnk
         126.9s C:\Users\Daniel\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012016112020161121\container.dat
         126.9s C:\Users\Daniel\AppData\Local\Microsoft\Windows\History\desktop.ini
         126.9s C:\Users\Daniel\AppData\Local\Microsoft\Windows\History\History.IE5\container.dat
         126.9s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\Malware.lnk

   C:\Users\Daniel\Desktop\Malware\FRST-OlderVersion\FRST64.exe
      Size . . . . . . . : 2.413.056 bytes
      Age  . . . . . . . : 0.2 days (2016-11-20 15:52:15)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : A5B72AE2614D8A22D976926ED04CDC8DBA2CE9B842C698566A8B4C04F07BFF6A
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.

   C:\Users\Daniel\Desktop\Malware\FRST64.exe
      Size . . . . . . . : 2.412.544 bytes
      Age  . . . . . . . : 0.0 days (2016-11-20 20:22:19)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : D08E1FFE263A083FEE9DF76D1FC1D089B36EBD13514CC0747785EFBFEE49B5E0
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.
      Forensic Cluster
         -2.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\IE\294AOO49\82[1].htm
         -2.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCookies\JXBTPC6V.cookie
         -1.5s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9EC3B71635F8BA3FC68DE181A104A0EF_F6C39EF89D8A3A72327D8412589658B2
         -1.5s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9EC3B71635F8BA3FC68DE181A104A0EF_F6C39EF89D8A3A72327D8412589658B2
         -0.9s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\64DCC9872C5635B1B7891B30665E0558_5552C20A2631357820903FD38A8C0F9F
         -0.9s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\64DCC9872C5635B1B7891B30665E0558_5552C20A2631357820903FD38A8C0F9F
         -0.3s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6AF4EE75E3A4ABA658C0087EB9A0BB5B_4F8D4D4F8A055DA96F5FDDC885E626A4
         -0.3s C:\Users\Daniel\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6AF4EE75E3A4ABA658C0087EB9A0BB5B_4F8D4D4F8A055DA96F5FDDC885E626A4
         -0.2s C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\IE\294AOO49\FRST64[1].exe
         -0.0s C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\IE\Q1GS3ZTG\FRST64[1].exe
          0.0s C:\Users\Daniel\Desktop\Malware\FRST64.exe
          0.9s C:\Users\Daniel\Desktop\Malware\FRST-OlderVersion\
          6.9s C:\FRST\Logs\ct
          6.9s C:\Users\Daniel\Desktop\Malware\Fixlog.txt
         10.6s C:\ProgramData\NVIDIA\MessageBus_7512_0x28106F2DBA0.log
         10.7s C:\ProgramData\NVIDIA\MessageBus_7512_0x28106FF3D20.log
         14.5s C:\FRST\Quarantine\C\
         14.5s C:\FRST\Quarantine\C\WINDOWS\
         14.5s C:\FRST\Quarantine\C\WINDOWS\System32\
         14.5s C:\FRST\Quarantine\C\WINDOWS\System32\DRIVERS\
         14.6s C:\FRST\Quarantine\C\Program Files (x86)\
         14.6s C:\FRST\Quarantine\C\Users\
         14.6s C:\FRST\Quarantine\C\Users\Daniel\AppData\Local\
         14.6s C:\FRST\Quarantine\C\Users\Daniel\AppData\
         14.6s C:\FRST\Quarantine\C\Users\Daniel\
         14.7s C:\FRST\Quarantine\C\Users\Daniel\AppData\Roaming\
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_idx.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_16.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_32.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_48.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_96.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_256.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_768.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_1280.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_1920.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_2560.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_sr.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_wide.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_exif.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_wide_alternate.db
         27.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\thumbcache_custom_stream.db
         30.3s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\
         30.3s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\f01b4d95cf55d32a.automaticDestinations-ms
         50.1s C:\FRST\Logs\Fixlog_20-11-2016 20.23.09.txt
         50.3s C:\Users\Daniel\AppData\Local\IconCache.db
         50.4s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000018.db
         69.8s C:\Windows\Temp\DPTF\dptf_wwanproxy.dll
         69.8s C:\Windows\Temp\DPTF\dptf_pnmwlanproxy.dll
         70.2s C:\Windows\Temp\DPTF\esif_assist_64.exe
         70.3s C:\Windows\Temp\ssdtoolservice.log
         70.4s C:\Windows\Temp\adobegc.log
         70.6s C:\ProgramData\NVIDIA\MessageBus_2840_0x2369D5A48E0.log
         70.7s C:\Windows\Temp\DANIEL-LAPPI-20161120-2023.log
         70.9s C:\ProgramData\NVIDIA\MessageBus_2840_0x2369E077F60.log
         71.1s C:\Windows\Temp\officeclicktorun.exe_streamserver(20161120202330A18).log
         76.2s C:\Windows\System32\spp\store\2.0\data.dat
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_idx.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_16.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_32.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_48.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_96.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_256.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_768.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_1280.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_1920.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_2560.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_sr.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_wide.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_exif.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_wide_alternate.db
         80.1s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Explorer\iconcache_custom_stream.db
         81.3s C:\ProgramData\Dropbox\Update\Log\DropboxUpdate.log-2016-11-20-19-23-40-038-5624-finished
         81.5s C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc\
         83.6s C:\ProgramData\Dropbox\Update\Log\DropboxUpdate.log-2016-11-20-19-23-43-535-8172-finished
         83.8s C:\ProgramData\Dropbox\Update\Log\DropboxUpdate.log-2016-11-20-19-23-43-671-1564-finished
         84.4s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\5f7b5f1e01b83767.automaticDestinations-ms
         84.5s C:\Users\Daniel\AppData\Local\Temp\nw5500_26377\
         86.7s C:\Users\Daniel\AppData\Local\Temp\ac_cache\
         90.5s C:\Users\Daniel\AppData\Local\Microsoft\Windows\Caches\{3DA71D5A-20CC-432F-A115-DFE92379E91F}.3.ver0x0000000000000072.db
         91.3s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\
         92.6s C:\Users\Daniel\AppData\Local\Temp\ac_cache\-394436725
         93.5s C:\Users\Daniel\AppData\Local\Temp\ac_cache\1498784759
         95.0s C:\ProgramData\Microsoft\Network\Downloader\qmgr0.dat
         95.0s C:\ProgramData\Microsoft\Network\Downloader\qmgr1.dat
         95.1s C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\logs\Personal\SyncEngine-2016-11-20.1923.8460.1.odl
         95.2s C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\setup\logs\Update_2016-11-20_202355_210c-2384.log
         96.4s C:\ProgramData\NVIDIA\MessageBus_8496_0x3766C70.log
         102.3s C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\logs\Personal\SyncEngine-2016-11-20.1924.8460.2.odl
         102.4s C:\Users\Daniel\AppData\Local\Temp\ac_cache\493795395
         102.6s C:\Users\Daniel\AppData\Local\Temp\ac_cache\-1732188077
         103.6s C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\logs\Personal\SyncEngine-2016-11-20.1924.8460.3.odl
         126.9s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\9b9cdc69c1c24e2b.automaticDestinations-ms
         126.9s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\Fixlog.lnk
         126.9s C:\Users\Daniel\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012016112020161121\container.dat
         126.9s C:\Users\Daniel\AppData\Local\Microsoft\Windows\History\desktop.ini
         126.9s C:\Users\Daniel\AppData\Local\Microsoft\Windows\History\History.IE5\container.dat
         126.9s C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Recent\Malware.lnk


Potential Unwanted Programs _________________________________________________

   HKLM\SOFTWARE\Classes\Interface\{0FF03983-EAA6-4628-8E7C-387B2D4F8EF2}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{3A71C84A-1CC4-4201-B037-C81CE118D66F}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{432599E9-40CF-41E3-951A-E1E81B7B1D29}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{6C42038D-817A-472C-8C2A-EF46F1DA576D}\ (PCSpeedUp)
   HKLM\SOFTWARE\Classes\Interface\{7D215707-3E74-4E0E-A078-2C95E1CDE233}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{873C7DA8-195D-4D5A-B830-C5E2831901EA}\ (PCSpeedUp)
   HKLM\SOFTWARE\Classes\Interface\{9295785F-8C01-4ED3-9322-8BE5C17CA141}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{B98E44C8-7BB7-4A4A-B8D2-60874CA109B2}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{C656BCEB-6B19-4992-9975-D53CEA283356}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{D5AC4B9C-8EE4-48AD-A77E-1560AD886A0B}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{D6914FD3-FD8E-45AD-8993-901E7B2759FD}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{E0106905-0EDD-4F56-BDB5-890A1F6E8F47}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{E26E880F-176C-4007-B2A7-B8F27621EC51}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{E776B534-9402-4049-87C3-089EC0F54BAF}\ (OtherSearch)
   HKLM\SOFTWARE\Classes\Interface\{FCFBBE24-2ADA-4D6E-A381-DEC6E3EAEE21}\ (OtherSearch)

ESET dauert noch einen Moment

Code:
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=20c970a0f204c449a689c803a137bab6
# end=init
# utc_time=2016-11-20 07:59:43
# local_time=2016-11-20 08:59:43 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 31473
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=20c970a0f204c449a689c803a137bab6
# end=updated
# utc_time=2016-11-20 08:01:40
# local_time=2016-11-20 09:01:40 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=20c970a0f204c449a689c803a137bab6
# engine=31473
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-11-20 08:49:52
# local_time=2016-11-20 09:49:52 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 25383 11005608 0 0
# scanned=335499
# found=39
# cleaned=0
# scan_time=2892
sh=807269BA010AEE995521FEF33F9329DC8A82D4D8 ft=1 fh=e4f5a70ae8b5ef1b vn="Variante von Win64/Packed.Komodia.F verdächtige Datei" ac=I fn="C:\AdwCleaner\quarantine\files\htzufuygcfncctaaatfeaejxxyalbyii.back"
sh=EEDBB401A1BB1531C0969B5C230B6149AFDD4E47 ft=1 fh=0766c6f8a3f81d84 vn="Variante von Win32/Packed.Komodia.E verdächtige Datei" ac=I fn="C:\AdwCleaner\quarantine\files\iebzvfpyhimuuqgfzhogizoeeaslohvw.back"
sh=807269BA010AEE995521FEF33F9329DC8A82D4D8 ft=1 fh=e4f5a70ae8b5ef1b vn="Variante von Win64/Packed.Komodia.F verdächtige Datei" ac=I fn="C:\AdwCleaner\quarantine\files\mihangojihpugmczvelxfalqkjbjnsqx.back"
sh=EEDBB401A1BB1531C0969B5C230B6149AFDD4E47 ft=1 fh=0766c6f8a3f81d84 vn="Variante von Win32/Packed.Komodia.E verdächtige Datei" ac=I fn="C:\AdwCleaner\quarantine\files\qyljssuptbnlwhvlumfwxwpmkndgfzac.back"
sh=12495AD71AA29F53763B246A9CE15DB130E54607 ft=1 fh=187409252f5a37a8 vn="Variante von Win32/Adware.Agent.NPN Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\ucqcqduihcwawsphdiaupvbutbhrgyyo.back"
sh=807269BA010AEE995521FEF33F9329DC8A82D4D8 ft=1 fh=e4f5a70ae8b5ef1b vn="Variante von Win64/Packed.Komodia.F verdächtige Datei" ac=I fn="C:\AdwCleaner\quarantine\files\wlqxytlslflecswytqmbumxjsnjfqnqf.back"
sh=AE69823B69EFF598164FAC218889AAF294787B5D ft=1 fh=89bc9789347f6581 vn="Variante von Win32/Adware.ConvertAd.AIB Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\brtqcccknokpwtewmkfcstigruhxlorx\knsrFA1.tmpfs"
sh=E75897AB17E3E38165B9AB12DFAE90327704DBEE ft=1 fh=c71c001163f7748f vn="Variante von Win32/AdWare.EoRezo.AU Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\delmzrugbivtsnjefcjxdnyinddlumei\mobilepcstarterkit_widget.exe"
sh=DE3565C17B185718117760D96128C40BDEA819CB ft=1 fh=6c09c976994682e6 vn="Variante von MSIL/Injector.QAB Trojaner" ac=I fn="C:\AdwCleaner\quarantine\files\delmzrugbivtsnjefcjxdnyinddlumei\O39SNH.exe"
sh=83DFE35376D11B10C7714A62B9F2C894AE8AF124 ft=1 fh=068fa4b03720f2c3 vn="Variante von MSIL/Injector.QAB Trojaner" ac=I fn="C:\AdwCleaner\quarantine\files\delmzrugbivtsnjefcjxdnyinddlumei\uninstaller.exe"
sh=C5746B384B17F8A056B5D588383DA7A3D22F8D61 ft=1 fh=c71c0011c05bd115 vn="Variante von Win32/AdWare.EoRezo.AU Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\delmzrugbivtsnjefcjxdnyinddlumei\wincom_KFD.exe"
sh=754AE20F48D2621ECA30FF494813463E589D7ED0 ft=0 fh=0000000000000000 vn="Variante von Win32/Speedchecker.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\dhdwxytayubsjjbvthmiiwqdlrbekgnx\application.xap"
sh=4D68E6FB105D46174A7EDF60806EF4081EA8066E ft=1 fh=9a8b58993e20443f vn="Variante von Win32/Adware.ConvertAd.AIN Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\ehfbtnrqrckuabgetyomvkesxqfcifes\uninstall.exe"
sh=7681569FEB87545F1F50CDB3D5821E98EAEFC942 ft=1 fh=497e155a4a24b776 vn="Variante von Win32/OptimizerEliteMax.E evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\jgreuvovfclmzuegvzrqjsmggfbwjibx\HealerConsole.exe"
sh=56874034CEE605E82089274AC25F4D908FCBEC83 ft=1 fh=34b7a21eea349310 vn="Win32/Adware.Adposhel.A Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\jgreuvovfclmzuegvzrqjsmggfbwjibx\RescueMonitor.exe"
sh=A8B9C5B5A891CC63DE717D8B81D99E43F02C965E ft=1 fh=2eca211022922b1c vn="Variante von Win32/OptimizerEliteMax.E evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\jgreuvovfclmzuegvzrqjsmggfbwjibx\SystemHealer.exe"
sh=764A021A60890EC6E7156C8AE5D9EC34A909A40C ft=1 fh=c71c001131ef779a vn="Variante von Win32/Adware.ConvertAd.AEX Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\kgkcptminntkrxczrvgxejihtmuygwwp\qnsuAE00.tmp"
sh=FA0E376F07A07228969860985E41A0B3C771840B ft=1 fh=632a91d9111d7d05 vn="Win32/Adware.ConvertAd.AHL Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\kgkcptminntkrxczrvgxejihtmuygwwp\Uninstall.exe"
sh=8C861BA6F67B5455E787744720E69BCBB26CE772 ft=1 fh=5a66b0f4caa7c850 vn="Variante von Win32/Speedchecker.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\pivckuydibtinwzjnbimxgywxkldthpi\PCSUSD.exe"
sh=CDD586DF54134E12C80C4D432F3DDBDFABD5E58F ft=1 fh=0e6624e2656c8b93 vn="Variante von Win32/Speedchecker.C evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\pivckuydibtinwzjnbimxgywxkldthpi\PCSUService.exe"
sh=9B1F08431B8B0B259516C077B3360B8ED9DFDA0D ft=1 fh=95fadfb541ab9fba vn="Variante von Win32/Speedchecker.E evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\pivckuydibtinwzjnbimxgywxkldthpi\PCSUUCC.exe"
sh=90A053EA897E207FD7E0235ABA7F4D782253E3EE ft=1 fh=441d6d3a4dc1dd54 vn="Variante von Win32/SpeedBit.AS evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\smci32.dll"
sh=1A6E3A093CC0604975935D47A501303E2AF753F4 ft=1 fh=ceaa452d4312a563 vn="Variante von Win64/SBWatchman.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\smci64.dll"
sh=AEE4E901D61AC01FF5C08FFD5568D785F831D1AB ft=1 fh=e3452aefce889738 vn="Variante von Win32/SpeedBit.AU evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\smi32.exe"
sh=EBF5648403A2FE8EC9EAC3C991E4F4D166A00E2D ft=1 fh=6252101ca9c7f478 vn="Variante von Win64/SBWatchman.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\smu.exe"
sh=4BB2F581E009278DE5B0B28B31B9E0C9B79FA1D5 ft=1 fh=09e09ed51b67a42c vn="Variante von Win32/SBWatchman.K evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\SMUninstall.exe"
sh=66ECFC5B4AE8706A37538151AD0CAE80954BA084 ft=1 fh=7e131f694dee80d7 vn="Variante von Win64/SpeedBit.D evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\puffkffjfmudpbrzqulmayynvgnynnqx\GNUpdate\smw.sys"
sh=EEDBB401A1BB1531C0969B5C230B6149AFDD4E47 ft=1 fh=0766c6f8a3f81d84 vn="Variante von Win32/Packed.Komodia.E verdächtige Datei" ac=I fn="C:\AdwCleaner\quarantine\files\xkgyyzlwwdulvvjbhhpcmlelcyfvfwdf\zdengine.dll"
sh=DD11A9B459A629AF62222B1FD0D35D2C689B8F81 ft=1 fh=7cda2cf6dd125eae vn="Variante von Win32/Packed.Komodia.E verdächtige Datei" ac=I fn="C:\AdwCleaner\quarantine\files\xkgyyzlwwdulvvjbhhpcmlelcyfvfwdf\zdengine.exe"
sh=807269BA010AEE995521FEF33F9329DC8A82D4D8 ft=1 fh=e4f5a70ae8b5ef1b vn="Variante von Win64/Packed.Komodia.F verdächtige Datei" ac=I fn="C:\AdwCleaner\quarantine\files\xkgyyzlwwdulvvjbhhpcmlelcyfvfwdf\zdengine64.dll"
sh=C9215187DEC2B041501DF4979F6110EEEA56B987 ft=1 fh=f39863c068fa49a7 vn="Variante von Win32/Packed.Komodia.E verdächtige Datei" ac=I fn="C:\AdwCleaner\quarantine\files\xkgyyzlwwdulvvjbhhpcmlelcyfvfwdf\zdenginecert.dll"
sh=BE7AA4F6F182700F118E0CA7BFCBDDDA728BC34E ft=1 fh=b5fc00c99f01d806 vn="Variante von Win32/RiskWare.Komodia.P Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\xkgyyzlwwdulvvjbhhpcmlelcyfvfwdf\zdinstaller.exe"
sh=B5D4D6A1AA2453F628CB9BB8702D1A77E71CC8B7 ft=1 fh=380b495be1218536 vn="Variante von Win32/Packed.Komodia.E verdächtige Datei" ac=I fn="C:\AdwCleaner\quarantine\files\xkgyyzlwwdulvvjbhhpcmlelcyfvfwdf\ziengine.exe"
sh=0DAAE2C5E51E3AA601E542DB0E803232E5CEB5E0 ft=1 fh=c1aac49a4a43fdc0 vn="Variante von Win64/Packed.Komodia.D verdächtige Datei" ac=I fn="C:\AdwCleaner\quarantine\files\xkgyyzlwwdulvvjbhhpcmlelcyfvfwdf\ziengine64.exe"
sh=5340F881C32B73964959439BD008E63A42D07660 ft=1 fh=52827a1860bcdbb6 vn="Variante von Win32/Adware.ELEX.BC Anwendung" ac=I fn="C:\FRST\Quarantine\C\Program Files (x86)\Drabapythebution\whtcore.dll"
sh=65033F428765969B541F6E2AD289CB8349C4A28A ft=1 fh=d4a66b23d267f62f vn="Variante von Win64/Adware.ELEX.E Anwendung" ac=I fn="C:\FRST\Quarantine\C\Users\Daniel\AppData\Roaming\Chihupyberjesp\Suzaph.dll"
sh=D58EC0DE6C1C5470ED3B77DE9D46388D2154D4E3 ft=0 fh=0000000000000000 vn="Win32/TrojanDropper.Addrop.AS Trojaner" ac=I fn="C:\Program Files (x86)\KMSPico 10.0.6\KMSINSTALL.bat"
sh=AE69823B69EFF598164FAC218889AAF294787B5D ft=1 fh=89bc9789347f6581 vn="Variante von Win32/Adware.ConvertAd.AIB Anwendung" ac=I fn="C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\IE\294AOO49\9BR4L[1].exe"
sh=E0F7C95E8C42FBB0F04FEFD25124A101FDB772AE ft=1 fh=0ddd7e7611c8e9dc vn="Variante von Win32/KuaiZip.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\IE\294AOO49\KuaiZip_Setup_129823379_zzlm_013[1].exe"

deeprybka 21.11.2016 17:42
http://www.trojaner-board.de/extra/lesestoff.pngGibt es jetzt noch Probleme mit dem PC? Wenn ja, welche?

gate0keeper 21.11.2016 18:38
Hallo, ja, ich kann keine Standardprogramme festlegen, das betrifft den Videoplayer, warum auch immer und den Browser. Die Felder bleiben einfach leer.

Weiterhin wurde Windows Defender über eine Gruppenrichtlinie deaktiviert.

Google Chrome spinnt noch, aber den werde ich deinstallieren und neu installieren. Weitere Probleme konnte ich nicht erkennen.

deeprybka 21.11.2016 18:46
Bitte mal nen Screenshot posten von den Standardprogrammen sowie einen Satz frische Logs:

Schritt 1

http://filepony.de/icon/frst.pnghttp://deeprybka.trojaner-board.de/b...e/frst/sn1.PNG

Bitte starte FRST erneut, markiere auch die checkbox http://deeprybka.trojaner-board.de/b...t/addition.pngund drücke auf Untersuchen.
Bitte poste mir den Inhalt der beiden Logs die erstellt werden.

gate0keeper 21.11.2016 18:53
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2016 01
durchgeführt von Daniel (Administrator) auf DANIEL-LAPPI (21-11-2016 18:52:21)
Gestartet von C:\Users\Daniel\Desktop\Malware
Geladene Profile: Daniel (Verfügbare Profile: Daniel)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
() C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(LC Technology International, Inc.) C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Tobit.Software) C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxEM.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Dashlane, Inc.) C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe
() C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Tobit.Software) C:\Windows\SysWOW64\DV4TS.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\AsusWSPanel.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-11-13] (Microsoft Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.11.570\ASUSWSLoader.exe [63968 2016-08-12] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [DV4TS.EXE] => c:\windows\SysWOW64\DV4TS.EXE [148248 2014-10-20] (Tobit.Software)
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [Dashlane] => C:\Users\Daniel\AppData\Roaming\Dashlane\Dashlane.exe [478592 2016-11-10] (Dashlane, Inc.)
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Run: [DashlanePlugin] => C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe [536960 2016-11-10] ()
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.11.570\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{5efdabab-d792-46a0-b36e-5f6968815709}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-3857371912-3165755019-847613773-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-11-19] (Microsoft Corporation)
BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\Daniel\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2016-11-10] (Dashlane, Inc.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-19] (Microsoft Corporation)
Toolbar: HKLM-x32 - Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Daniel\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2016-11-10] (Dashlane, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-11-19] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: daniel@99spaces.com
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-11-19] (Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-11-19] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-11] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-11-21] <==== ACHTUNG
CHR Extension: (Google Präsentationen) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-20]
CHR Extension: (Google Docs) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-20]
CHR Extension: (Google Drive) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-20]
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-20]
CHR Extension: (Google Tabellen) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-20]
CHR Extension: (Google Docs Offline) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-20]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-20]
CHR Extension: (Google Mail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-20]
CHR Extension: (Chrome Media Router) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-20]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe [75264 2015-12-24] (ASUS Cloud Corporation) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3073216 2016-10-30] (Microsoft Corporation)
S3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe [301536 2016-11-01] (Intel Corporation)
S3 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe [480224 2016-11-01] (Intel Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-11] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-11] (Dropbox, Inc.)
R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1392792 2015-10-02] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe [341984 2016-11-01] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel)
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-09-18] (Intel Corporation)
R2 LCTechSSDToolAsus; C:\Program Files (x86)\Solid State Doctor - Asus Edition\SSDToolService.exe [2563648 2016-09-01] (LC Technology International, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-08-13] ()
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-25] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-10-25] (NVIDIA Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10155792 2016-11-07] (TeamViewer GmbH)
R2 TSMaintenanceService; C:\Program Files (x86)\Common Files\Tobit\TSMaintenanceSvc.exe [3584960 2016-08-31] (Tobit.Software)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-08-13] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [141304 2015-12-18] (ASUS Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [57304 2015-10-02] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52200 2015-10-02] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260072 2015-10-02] (Intel Corporation)
S3 iaLPSS2_I2C; C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys [185128 2015-06-16] (Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [250624 2016-10-15] (Intel Corporation)
R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igdkmd64.sys [11033056 2016-11-01] (Intel Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-11-21] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7116288 2016-07-16] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvlddmkm.sys [14159928 2016-10-26] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-10-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-10-25] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek                                            )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [753368 2015-06-15] (Realsil Semiconductor Corporation)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [52952 2016-10-03] (SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Windows (R) Win 7 DDK provider)
R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [127432 2016-11-14] (BigNox Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 XQHDrv; C:\WINDOWS\system32\DRIVERS\XQHDrv.sys [253384 2016-11-14] (BigNox Corporation)
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-21 18:43 - 2016-11-21 18:43 - 00000000 ___HD C:\OneDriveTemp
2016-11-21 18:32 - 2016-11-21 18:32 - 00000000 ____D C:\Users\Daniel\AppData\Local\Crashpad
2016-11-20 20:59 - 2016-11-20 20:59 - 00000000 ____D C:\Program Files (x86)\ESET
2016-11-20 20:53 - 2016-11-20 20:57 - 00000000 ____D C:\ProgramData\HitmanPro
2016-11-20 20:51 - 2016-11-20 20:51 - 00000548 _____ C:\Users\Daniel\Desktop\JRT.txt
2016-11-20 19:11 - 2016-11-20 19:11 - 00620763 _____ C:\Users\Daniel\Downloads\Filme_Jeder gegen jeden 2016 German 720p BluRay x264 SPiCY.nzb
2016-11-20 16:45 - 2016-11-20 16:45 - 00028127 _____ C:\Users\Daniel\Downloads\FRST.rar
2016-11-20 16:32 - 2016-11-20 16:33 - 00169948 _____ C:\TDSSKiller.3.1.0.12_20.11.2016_16.32.59_log.txt
2016-11-20 15:53 - 2016-11-21 18:52 - 00000000 ____D C:\FRST
2016-11-20 15:52 - 2016-11-20 20:59 - 00000000 ____D C:\Users\Daniel\Desktop\Malware
2016-11-20 15:30 - 2016-11-21 18:43 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-20 15:29 - 2016-11-20 15:37 - 00001167 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-20 15:29 - 2016-11-20 15:29 - 22851472 _____ (Malwarebytes ) C:\Users\Daniel\Downloads\mbam-setup-2.2.1.1043.exe
2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-20 15:29 - 2016-11-20 15:29 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-20 15:29 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-11-20 15:29 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-11-20 15:29 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-11-20 14:48 - 2016-11-20 14:48 - 00001597 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器.lnk
2016-11-20 14:48 - 2016-11-20 14:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\UCBrowser
2016-11-20 14:48 - 2016-11-20 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器
2016-11-20 14:46 - 2016-11-20 14:46 - 00187904 _____ C:\WINDOWS\rsrcs.dll
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____H C:\WINDOWS\system32\BITBEB6.tmp
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\WINDOWS\SysWOW64\sstmp
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\WINDOWS\system32\sstmp
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-11-20 14:46 - 2016-11-20 14:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-11-20 14:45 - 2016-11-20 14:45 - 00000000 _____ C:\TOSTACK
2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\Avira
2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\Avg
2016-11-20 14:43 - 2016-11-20 14:43 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-20 14:42 - 2016-11-20 14:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\Lewatainpawuch
2016-11-20 14:41 - 2016-11-20 15:34 - 00000000 ____D C:\Program Files (x86)\KMSPico 10.0.6
2016-11-20 14:32 - 2016-11-20 14:32 - 09744538 _____ C:\Users\Daniel\Downloads\Filme_Jason Bourne 2016 German DTSHD DL 1080p BluRay AVC REMUX-MULTiPLEX.nzb
2016-11-20 14:32 - 2016-11-20 14:32 - 01106154 _____ C:\Users\Daniel\Downloads\Filme_Blackway Auf dem Pfad der Rache 2015 German 720p BluRay x264 ENCOUNTERS.nzb
2016-11-20 14:29 - 2016-11-20 14:29 - 01263892 _____ C:\Users\Daniel\Downloads\Filme_John Dies at the End 2012 German DTS DL 720p BluRay x264-LeetHD.nzb
2016-11-20 14:28 - 2016-11-20 14:28 - 00794234 _____ C:\Users\Daniel\Downloads\Filme_Mr Right 2015 German 720p BluRay x264-ENCOUNTERS.nzb
2016-11-20 14:11 - 2016-11-20 15:37 - 00000915 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2016-11-20 14:11 - 2016-11-20 15:36 - 00000867 _____ C:\Users\Daniel\Desktop\Start Tor Browser.lnk
2016-11-20 14:10 - 2016-11-20 14:10 - 00000000 ____D C:\Users\Daniel\Desktop\Tor Browser
2016-11-20 14:09 - 2016-11-20 14:10 - 50911952 _____ C:\Users\Daniel\Downloads\torbrowser-install-6.0.6_de.exe
2016-11-19 10:19 - 2016-11-19 10:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignf5c519d31dfcf267
2016-11-19 10:19 - 2016-11-19 10:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign2b990895b01fc659
2016-11-19 09:45 - 2016-11-19 09:45 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignaac81b9269ec4203
2016-11-19 09:45 - 2016-11-19 09:45 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign1872ce2bff0b17ce
2016-11-19 07:56 - 2016-11-19 07:56 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-11-19 07:53 - 2016-11-19 07:53 - 00043751 _____ C:\Users\Daniel\Downloads\581fead3a37ce.zip
2016-11-18 22:13 - 2016-11-18 23:06 - 00003502 _____ C:\Users\Daniel\Documents\Bodeni-Arbeitsbeschreibung.odt
2016-11-18 21:57 - 2016-11-18 21:57 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Foxit Software
2016-11-17 20:27 - 2016-11-17 20:27 - 00000000 ____D C:\Users\Daniel\Documents\EVE
2016-11-17 14:30 - 2016-11-20 15:36 - 00000787 _____ C:\Users\Daniel\Desktop\EVE Launcher.lnk
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVE Launcher
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\AppData\Local\CCP
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\.QtWebEngineProcess
2016-11-17 14:30 - 2016-11-17 14:30 - 00000000 ____D C:\Users\Daniel\.EVE
2016-11-17 14:29 - 2016-11-17 14:29 - 54881176 _____ C:\Users\Daniel\Downloads\EveLauncher-1097946.exe
2016-11-17 14:03 - 2016-11-17 14:04 - 08768160 _____ C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4 (1).rar
2016-11-17 13:48 - 2016-11-17 13:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign7d7adf8535a24a7b
2016-11-17 13:48 - 2016-11-17 13:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign1cfbc5b8419d8363
2016-11-16 22:50 - 2016-11-16 22:50 - 00000000 ____D C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4
2016-11-16 22:40 - 2016-11-16 22:42 - 08768160 _____ C:\Users\Daniel\Downloads\Interspire Email Marketer 6.1.4.rar
2016-11-16 22:39 - 2016-11-16 22:41 - 09915776 _____ C:\Users\Daniel\Downloads\Download-Interspire-Email-Marketer-v6.1.4-Nulled-Scripts.zip
2016-11-16 16:24 - 2016-11-19 10:58 - 00001456 _____ C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Adobe
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignb5d67b1886cfd58b
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign97c66928bc3ff4c7
2016-11-16 15:08 - 2016-11-16 15:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign64377305ec57a3cb
2016-11-16 14:50 - 2016-11-20 16:16 - 00000000 ___RD C:\Users\Daniel\Creative Cloud Files
2016-11-16 14:50 - 2016-11-20 16:16 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-11-15 17:08 - 2016-11-15 17:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsigne4cdea769c6ec550
2016-11-15 17:08 - 2016-11-15 17:08 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign7accc4c8229f6e07
2016-11-15 17:06 - 2016-11-20 15:37 - 00001381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Update Management Tool.lnk
2016-11-15 17:04 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsignd93707d60b50a1e0
2016-11-15 17:04 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tempzxpsign0af6b16f1f08ea07
2016-11-15 17:03 - 2016-11-20 14:08 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-11-15 17:03 - 2016-11-15 17:03 - 00003626 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-DANIEL-LAPPI-Daniel
2016-11-15 17:03 - 2016-11-15 17:03 - 00000000 ____D C:\Users\Daniel\Documents\Adobe
2016-11-15 17:03 - 2016-11-15 17:03 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-11-15 17:01 - 2016-11-15 17:03 - 00000000 ____D C:\Program Files\Adobe
2016-11-15 16:59 - 2016-11-20 16:26 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-11-15 16:52 - 2016-11-20 16:26 - 00000000 ____D C:\ProgramData\Adobe
2016-11-15 16:52 - 2016-11-20 16:16 - 00000000 ____D C:\Users\Daniel\AppData\Local\Adobe
2016-11-15 15:48 - 2016-11-20 15:37 - 00001042 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2016-11-15 15:48 - 2016-11-20 15:37 - 00001024 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2016-11-15 15:47 - 2016-11-15 16:22 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\TeamViewer
2016-11-15 15:42 - 2016-11-15 15:42 - 00000000 ____H C:\Users\Daniel\Documents\Default.rdp
2016-11-15 11:26 - 2016-11-15 11:25 - 30987232 _____ (AceBIT GmbH ) C:\Users\Daniel\Desktop\pdepot7 (1).exe
2016-11-14 15:57 - 2016-11-14 15:57 - 00000000 ____D C:\Users\Daniel\AppData\Local\MultiPlayerManager
2016-11-14 15:41 - 2016-11-20 15:36 - 00000875 _____ C:\Users\Daniel\Desktop\Multi-Drive.lnk
2016-11-14 15:41 - 2016-11-20 15:36 - 00000814 _____ C:\Users\Daniel\Desktop\Nox.lnk
2016-11-14 15:41 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Bignox
2016-11-14 15:41 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\vmlogs
2016-11-14 15:41 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\.BigNox
2016-11-14 15:41 - 2016-11-14 15:41 - 00253384 _____ (BigNox Corporation) C:\WINDOWS\system32\Drivers\XQHDrv.sys
2016-11-14 15:41 - 2016-11-14 15:41 - 00127432 _____ (BigNox Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2016-11-14 15:41 - 2016-11-14 15:41 - 00000041 _____ C:\Users\Daniel\inst.ini
2016-11-14 15:41 - 2016-11-14 15:41 - 00000000 ____D C:\Users\Daniel\Nox_share
2016-11-14 15:41 - 2016-11-14 15:41 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Nox
2016-11-14 15:40 - 2016-11-15 19:21 - 00000000 ____D C:\Users\Daniel\AppData\Local\Nox
2016-11-14 15:29 - 2016-11-21 18:49 - 00000000 ____D C:\AdwCleaner
2016-11-14 15:24 - 2016-11-14 15:40 - 308117896 _____ (Duodian Technology Co. Ltd.) C:\Users\Daniel\Downloads\nox_setup_v3.7.5.0_full_En.exe
2016-11-14 15:03 - 2016-11-15 17:37 - 00000000 ____D C:\Users\Daniel\.android
2016-11-14 15:03 - 2016-11-14 15:27 - 00000000 ____D C:\Users\Daniel\.VirtualBox
2016-11-14 15:03 - 2016-11-14 15:10 - 00000078 _____ C:\hsrv.txt
2016-11-14 15:03 - 2016-11-14 15:03 - 00000000 ____D C:\Program Files\Oracle
2016-11-14 15:03 - 2014-05-16 14:04 - 00254240 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2016-11-14 14:59 - 2016-11-14 15:00 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\HaiYuInst
2016-11-14 14:58 - 2016-11-14 14:59 - 09448104 _____ C:\Users\Daniel\Downloads\Droid4XInstaller.exe
2016-11-14 13:01 - 2016-11-14 13:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Andy
2016-11-14 13:00 - 2016-09-06 19:25 - 00052288 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\vmkbd.sys
2016-11-14 12:38 - 2016-11-14 12:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\VMware
2016-11-14 12:11 - 2016-11-14 12:11 - 00000000 ____D C:\Users\Daniel\licman
2016-11-14 10:25 - 2016-11-14 10:27 - 00000000 ____D C:\Users\Daniel\Desktop\Share
2016-11-14 10:18 - 2016-11-17 15:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\FileZilla
2016-11-14 10:17 - 2016-11-20 15:37 - 00001967 _____ C:\Users\Public\Desktop\FileZilla Client.lnk
2016-11-14 10:17 - 2016-11-14 10:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2016-11-14 10:17 - 2016-11-14 10:17 - 00000000 ____D C:\Program Files\FileZilla FTP Client
2016-11-13 20:06 - 2016-11-13 20:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\MPC-HC
2016-11-13 20:05 - 2016-11-13 20:05 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Brackets
2016-11-13 19:41 - 2016-11-20 15:37 - 00000733 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10-Upgrade-Assistent.lnk
2016-11-13 19:41 - 2016-11-13 19:41 - 00000000 ____D C:\Windows10Upgrade
2016-11-13 19:38 - 2016-11-13 19:38 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-11-13 19:36 - 2016-11-14 10:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\ConnectedDevicesPlatform
2016-11-13 19:36 - 2016-11-13 19:36 - 00000020 ___SH C:\Users\Daniel\ntuser.ini
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-11-13 19:29 - 2016-11-13 19:29 - 00000000 ____D C:\ProgramData\USOShared
2016-11-13 19:28 - 2016-11-21 18:42 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-13 19:28 - 2016-11-21 18:33 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-11-13 19:28 - 2016-11-21 18:33 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-11-13 19:28 - 2016-11-13 19:28 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2016-11-13 19:28 - 2016-11-13 19:28 - 00007623 _____ C:\WINDOWS\diagerr.xml
2016-11-13 19:28 - 2016-11-13 19:28 - 00003768 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2016-11-13 19:28 - 2016-11-13 19:28 - 00003654 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-13 19:28 - 2016-11-13 19:28 - 00003544 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2016-11-13 19:28 - 2016-11-13 19:28 - 00003430 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-13 19:28 - 2016-11-13 19:28 - 00003314 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9E9CEFD0-ADC6-483E-B86F-2719D52987D4}
2016-11-13 19:28 - 2016-11-13 19:28 - 00003140 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00003112 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00003042 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2016-11-13 19:28 - 2016-11-13 19:28 - 00003040 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec
2016-11-13 19:28 - 2016-11-13 19:28 - 00002968 _____ C:\WINDOWS\System32\Tasks\Update Checker
2016-11-13 19:28 - 2016-11-13 19:28 - 00002960 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002940 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002924 _____ C:\WINDOWS\System32\Tasks\ATK Package 36D18D69AFC3
2016-11-13 19:28 - 2016-11-13 19:28 - 00002862 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher
2016-11-13 19:28 - 2016-11-13 19:28 - 00002850 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002824 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-11-13 19:28 - 2016-11-13 19:28 - 00002808 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-13 19:28 - 2016-11-13 19:28 - 00002674 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon
2016-11-13 19:28 - 2016-11-13 19:28 - 00002346 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2016-11-13 19:28 - 2016-11-13 19:28 - 00002340 _____ C:\WINDOWS\System32\Tasks\ASUS USB Charger Plus
2016-11-13 19:28 - 2016-11-13 19:28 - 00002280 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2016-11-13 19:28 - 2016-11-13 19:28 - 00002262 _____ C:\WINDOWS\System32\Tasks\DropboxOEM
2016-11-13 19:28 - 2016-11-13 19:28 - 00002214 _____ C:\WINDOWS\System32\Tasks\ATK Package A22126881260
2016-11-13 19:28 - 2016-11-13 19:28 - 00002214 _____ C:\WINDOWS\System32\Tasks\ASUS Splendid ACMON
2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel
2016-11-13 19:28 - 2016-11-13 19:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2016-11-13 19:25 - 2016-11-20 15:37 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-13 19:23 - 2016-11-20 19:32 - 00000000 ____D C:\Users\Daniel
2016-11-13 19:23 - 2016-11-13 19:26 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Vorlagen
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Startmenü
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Netzwerkumgebung
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Lokale Einstellungen
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Eigene Dateien
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Druckumgebung
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Videos
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Musik
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Documents\Eigene Bilder
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Local\Verlauf
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\AppData\Local\Anwendungsdaten
2016-11-13 19:23 - 2016-11-13 19:23 - 00000000 _SHDL C:\Users\Daniel\Anwendungsdaten
2016-11-13 19:22 - 2016-11-13 19:22 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-11-13 19:21 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Intel
2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-11-13 19:21 - 2016-11-13 19:24 - 00000000 ____D C:\Program Files\Intel
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_esif_umdf2_02_00_00.Wdf
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\WINDOWS\system32\DAX2
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 ____D C:\Program Files\Realtek
2016-11-13 19:21 - 2016-11-13 19:21 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2016-11-13 19:21 - 2016-11-01 23:05 - 00113672 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-13 19:21 - 2016-11-01 23:05 - 00104464 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-13 19:21 - 2016-10-25 21:17 - 06386232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 02475968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00548408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-11-13 19:21 - 2016-10-24 07:31 - 07507695 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-11-13 19:21 - 2016-07-16 12:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-11-13 19:20 - 2016-11-20 18:50 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-11-13 19:20 - 2016-11-15 16:24 - 00337736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-13 19:20 - 2016-11-13 19:20 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-11-13 19:19 - 2016-11-13 19:29 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-13 19:18 - 2016-11-13 19:18 - 00000000 ____D C:\Windows.old
2016-11-13 19:16 - 2016-11-13 19:16 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-13 19:16 - 2016-11-13 19:16 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-13 19:16 - 2016-11-13 19:16 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-13 19:16 - 2016-11-13 19:16 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-13 19:16 - 2016-11-13 19:16 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-13 19:16 - 2016-11-13 19:16 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-13 19:16 - 2016-11-13 19:16 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-13 19:16 - 2016-11-13 19:16 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-13 19:16 - 2016-11-13 19:16 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-13 19:16 - 2016-11-13 19:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-13 19:16 - 2016-11-13 19:16 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05622088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll

gate0keeper 21.11.2016 18:54
Code:
2016-11-13 19:10 - 2016-11-13 19:10 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 04136960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 03435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03405824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03287552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03116544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 03054080 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02947072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02914304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02827864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02708992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02481768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02476544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02446696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02390016 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02290176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02276736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-13 19:10 - 2016-11-13 19:10 - 02083840 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-13 19:10 - 2016-11-13 19:10 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01990648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01980416 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01913344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01853776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01738040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01705976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01556712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01554944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01358336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01322848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01320448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01292640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01181536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01157000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01112928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01037312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 01000288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-11-13 19:10 - 2016-11-13 19:10 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00988512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-11-13 19:10 - 2016-11-13 19:10 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00908640 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00862064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00860512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00856872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00764936 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00755656 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00749920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00742704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00725664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00719360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00691080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00681304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00658272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00650240 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00649568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00646136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00595296 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00512416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00500064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00496872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetworkCollectionAgent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00450392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00434528 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00433832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00424640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00402352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00292872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00283488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00280472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-11-13 19:10 - 2016-11-13 19:10 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00232800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00218008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingFolder.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00206096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvenotify.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00170960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00169056 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-11-13 19:10 - 2016-11-13 19:10 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidclass.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoplay.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovslegacy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00133472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00130912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe

gate0keeper 21.11.2016 18:55
Code:
2016-11-13 19:10 - 2016-11-13 19:10 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00119648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00113504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmifw.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-11-13 19:10 - 2016-11-13 19:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmifw.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00074080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pwrshplugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Sens.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TempSignedLicenseExchangeTask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00064352 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\MegaSas2i.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.UserDeviceAssociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057400 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AddressParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundMediaPolicy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactActivation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidparse.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidusb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2016-11-13 19:10 - 2016-11-13 19:10 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\encapi.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\delegatorprovider.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2016-11-13 19:10 - 2016-11-13 19:10 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\c_GSM7.DLL
2016-11-13 19:10 - 2016-11-13 19:10 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-11-13 19:10 - 2016-11-13 19:10 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccessRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-11-13 19:10 - 2016-11-13 19:10 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-11-13 19:10 - 2016-11-13 19:10 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneutilRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-11-13 19:05 - 2016-11-13 19:05 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-11-13 19:03 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-11-13 19:03 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-13 19:03 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-11-13 19:03 - 2016-11-13 19:03 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-11-13 19:03 - 2016-11-13 19:03 - 00000000 ____D C:\Program Files\MSBuild
2016-11-13 19:02 - 2016-11-13 19:02 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2016-11-13 19:02 - 2016-11-13 19:02 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-11-13 19:02 - 2016-05-25 14:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 14:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 14:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-11-13 19:02 - 2016-05-25 11:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 11:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 19:02 - 2016-05-25 11:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-11-13 18:51 - 2016-11-20 15:37 - 00000720 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brackets.lnk
2016-11-13 18:51 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Brackets
2016-11-13 18:35 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack 64bit
2016-11-13 18:35 - 2016-11-13 18:35 - 00000000 ____D C:\Program Files\Combined Community Codec Pack 64bit
2016-11-13 10:20 - 2016-11-13 10:20 - 00000000 ____D C:\Users\Daniel\Documents\CPY_SAVES
2016-11-13 04:23 - 2016-11-13 05:14 - 00000000 ____D C:\Users\Daniel\AppData\Local\QuantumBreak
2016-11-13 04:23 - 2016-11-13 04:23 - 00000000 ____D C:\Users\Daniel\Documents\SkidRow
2016-11-12 17:07 - 2016-11-12 17:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-11-12 14:30 - 2016-11-20 15:37 - 00000595 _____ C:\Users\Public\Desktop\Fraps.lnk
2016-11-12 14:30 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-11-12 14:29 - 2016-11-12 14:30 - 00000000 ____D C:\Fraps
2016-11-12 13:47 - 2016-11-20 15:37 - 00001481 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-11-12 13:47 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-12 13:47 - 2016-11-12 13:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\CEF
2016-11-12 13:47 - 2016-10-25 21:22 - 01852352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01452480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00104384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00094144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-11-12 13:46 - 2016-10-25 21:22 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-11-12 13:40 - 2016-11-20 15:37 - 00001292 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intel WiDi Toast.lnk
2016-11-12 13:33 - 2016-11-12 14:39 - 00000000 ____D C:\Users\Daniel\Documents\The Witcher 3
2016-11-12 12:45 - 2016-11-20 16:23 - 00000000 ____D C:\Users\Daniel\AppData\Local\CrashDumps
2016-11-12 12:45 - 2016-11-12 12:45 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Steam
2016-11-12 12:07 - 2016-11-12 12:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\Tobit
2016-11-12 12:06 - 2016-11-20 15:37 - 00002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\david®.LNK
2016-11-12 12:06 - 2016-11-19 07:54 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Tobit
2016-11-12 12:06 - 2016-11-17 09:57 - 05985728 _____ (Tobit.Software) C:\WINDOWS\uninstic.exe
2016-11-12 12:06 - 2016-11-13 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tobit.Software
2016-11-12 12:06 - 2014-10-20 10:43 - 00148248 _____ (Tobit.Software) C:\WINDOWS\SysWOW64\DV4TS.EXE
2016-11-12 12:06 - 2009-01-06 10:56 - 00000023 _____ C:\WINDOWS\AVFD.INI
2016-11-12 12:06 - 2006-07-19 11:01 - 00099840 _____ C:\WINDOWS\IMGMSGMO.dll
2016-11-12 12:06 - 2006-07-19 09:31 - 00185344 _____ C:\WINDOWS\DVGRF.DLL
2016-11-12 12:05 - 2016-11-20 15:05 - 00000000 ____D C:\Program Files (x86)\Tobit InfoCenter
2016-11-12 12:05 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\gs
2016-11-12 12:05 - 2016-11-19 07:58 - 00000538 _____ C:\WINDOWS\Tobit.ini
2016-11-12 12:05 - 2016-11-17 13:31 - 11679232 _____ C:\WINDOWS\TOBITCLT.DLL
2016-11-12 12:05 - 2016-11-17 13:31 - 05310976 _____ (Tobit.Software) C:\WINDOWS\DVAPI32.DLL
2016-11-12 12:05 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2016-11-12 12:05 - 2016-11-12 12:05 - 00000000 ____D C:\ProgramData\Tobit
2016-11-12 12:05 - 2016-10-25 13:50 - 00234496 _____ (Tobit Software) C:\WINDOWS\dvepostm.dll
2016-11-12 12:05 - 2010-11-18 14:39 - 00115712 _____ (Tobit Software) C:\WINDOWS\faxwarmo.dll
2016-11-12 09:30 - 2016-11-12 09:30 - 00000000 ____D C:\ProgramData\Steam
2016-11-11 20:33 - 2016-11-11 20:33 - 00000000 ____D C:\Users\Daniel\Documents\My Games
2016-11-11 19:58 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-11 19:58 - 2016-09-09 19:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-11-11 19:58 - 2016-09-09 19:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-11-11 19:58 - 2016-09-09 19:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-11-11 19:58 - 2016-09-09 19:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-11-11 19:57 - 2016-10-25 20:12 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2016-11-11 19:56 - 2016-10-25 22:40 - 40123840 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 35224632 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 34711096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 28202040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10912232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10782952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 10332664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 09120512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 08913512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 08723968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 03927288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 03468736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 02940352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 02574784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01953336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437570.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01586744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437570.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 01037248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00975296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00943552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00897080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00802768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00683640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00644112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00572888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00438208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00394704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00390200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00327224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-11-11 19:56 - 2016-10-25 22:40 - 00042296 _____ C:\WINDOWS\system32\nvinfo.pb
2016-11-11 19:56 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-11-11 19:56 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2016-11-11 19:51 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-11-11 19:51 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-11-11 19:51 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-11-11 19:51 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-11-11 19:51 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-11-11 19:51 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-11-11 19:51 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-11-11 19:51 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-11-11 19:51 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-11-11 19:51 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-11-11 19:51 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2016-11-11 19:51 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-11-11 19:51 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2016-11-11 19:51 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2016-11-11 19:51 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-11-11 19:51 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-11-11 19:51 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2016-11-11 19:51 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2016-11-11 19:51 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2016-11-11 19:51 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2016-11-11 19:51 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-11-11 19:51 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2016-11-11 19:51 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2016-11-11 19:51 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-11-11 19:51 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-11-11 19:51 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-11-11 19:51 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-11-11 19:51 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-11-11 19:51 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-11-11 19:51 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-11-11 19:51 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2016-11-11 19:51 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-11-11 19:51 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-11-11 19:51 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2016-11-11 19:51 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-11-11 19:51 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2016-11-11 19:51 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-11-11 19:51 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-11-11 19:51 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2016-11-11 19:51 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-11-11 19:51 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-11-11 19:51 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2016-11-11 19:51 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-11-11 19:51 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2016-11-11 19:51 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-11-11 19:51 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-11-11 19:51 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-11-11 19:51 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-11-11 19:51 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2016-11-11 19:51 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-11-11 19:51 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2016-11-11 19:51 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-11-11 19:51 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2016-11-11 19:51 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2016-11-11 19:51 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-11-11 19:51 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2016-11-11 19:51 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2016-11-11 19:51 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-11-11 19:51 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2016-11-11 19:51 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2016-11-11 19:51 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2016-11-11 19:51 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-11-11 19:51 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-11-11 19:51 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-11-11 19:51 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-11-11 19:51 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-11-11 19:51 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-11-11 19:51 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2016-11-11 19:51 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-11-11 19:51 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2016-11-11 19:51 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-11-11 19:51 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-11-11 19:51 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-11-11 19:51 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2016-11-11 19:51 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-11-11 19:51 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2016-11-11 19:51 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-11-11 19:51 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2016-11-11 19:51 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-11-11 19:51 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2016-11-11 19:51 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-11-11 19:51 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2016-11-11 19:41 - 2016-11-11 19:41 - 00692072 _____ (Disc Soft Ltd.) C:\Users\Daniel\Downloads\DTLiteInstaller.exe
2016-11-11 19:38 - 2016-11-11 19:38 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WinRAR
2016-11-11 19:37 - 2016-11-20 15:36 - 00000707 _____ C:\Users\Daniel\Desktop\QuickPar.lnk
2016-11-11 19:37 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickPar
2016-11-11 19:36 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-11 19:36 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-11 18:55 - 2016-11-20 15:37 - 00000705 _____ C:\Users\Public\Desktop\Alt.Binz.lnk
2016-11-11 18:55 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alt.Binz
2016-11-11 18:55 - 2016-11-11 18:56 - 00000000 ____D C:\Users\Daniel\AppData\Local\Alt.Binz
2016-11-11 18:47 - 2016-11-11 18:54 - 02201253 _____ C:\Users\Daniel\Downloads\altbinz_0.39.4.exe
2016-11-11 17:31 - 2016-11-20 15:37 - 00001291 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eye Care Switcher.lnk
2016-11-11 17:23 - 2016-11-15 17:04 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\NVIDIA
2016-11-11 17:23 - 2016-11-14 13:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\VMware
2016-11-11 17:22 - 2016-11-14 13:00 - 01551250 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-11-11 17:21 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-11-11 17:21 - 2016-11-11 17:21 - 00000000 ____D C:\ProgramData\Apple
2016-11-11 17:21 - 2016-11-11 17:21 - 00000000 ____D C:\Program Files\Bonjour
2016-11-11 17:19 - 2016-11-14 13:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Andy
2016-11-11 17:19 - 2016-11-11 17:23 - 00000000 ____D C:\Users\Daniel\Andy
2016-11-11 17:15 - 2016-10-28 02:22 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-11-11 14:59 - 2016-11-11 14:59 - 00000000 __SHD C:\aws
2016-11-11 14:57 - 2016-11-20 15:37 - 00001369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-11 14:57 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-11 14:57 - 2016-11-13 18:02 - 00001142 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-11 14:57 - 2016-11-13 15:02 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-11 14:57 - 2016-11-11 15:06 - 00000000 ____D C:\Users\Daniel\AppData\Local\Google
2016-11-11 14:56 - 2016-11-11 14:56 - 00000000 ____D C:\Users\Daniel\AppData\Local\MicrosoftEdge
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WildTangent
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\kingsoft
2016-11-11 14:49 - 2016-11-11 14:49 - 00000000 ____D C:\Users\Daniel\AppData\Local\kingsoft
2016-11-11 14:42 - 2016-11-11 14:42 - 00000000 ____D C:\Users\Daniel\AppData\Local\NetworkTiles
2016-11-11 14:34 - 2016-11-20 14:44 - 00000000 _____ C:\Users\Daniel\AppData\LocalLow\rightsCheck_1.txt
2016-11-11 14:32 - 2016-11-11 14:32 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Dashlane
2016-11-11 14:29 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2016-11-11 14:29 - 2016-11-13 19:24 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-11-11 14:22 - 2016-11-14 22:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\Comms
2016-11-11 14:22 - 2016-11-11 14:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-11 14:22 - 2016-11-11 14:22 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-11 14:12 - 2016-11-20 15:37 - 00002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 25 GB.lnk
2016-11-11 14:10 - 2016-11-11 14:59 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\awsRun
2016-11-11 14:09 - 2016-11-20 15:37 - 00001302 _____ C:\Users\Public\Desktop\Solid State Doctor - Asus Edition.lnk
2016-11-11 14:09 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Solid State Doctor - Asus Edition
2016-11-11 14:09 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-11-11 14:09 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solid State Doctor - Asus Edition
2016-11-11 14:09 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-11-11 14:09 - 2016-11-11 14:09 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Notepad++
2016-11-11 14:09 - 2016-11-11 14:09 - 00000000 ____D C:\Users\Daniel\AppData\Local\LC Technology Inc
2016-11-11 14:08 - 2016-11-20 14:43 - 00000000 ____D C:\Program Files (x86)\Dashlane
2016-11-11 14:08 - 2016-11-16 12:32 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Dashlane
2016-11-11 14:08 - 2016-11-13 19:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2016-11-11 14:07 - 2016-11-20 15:37 - 00002367 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMDb.lnk
2016-11-11 14:07 - 2016-11-20 15:37 - 00002367 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CloudConvert.lnk
2016-11-11 14:07 - 2016-11-20 15:36 - 00002337 _____ C:\Users\Daniel\Desktop\IMDb.lnk
2016-11-11 14:07 - 2016-11-20 15:36 - 00002337 _____ C:\Users\Daniel\Desktop\CloudConvert.lnk
2016-11-11 14:06 - 2016-11-11 14:06 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Macromedia
2016-11-11 14:05 - 2016-11-21 18:43 - 00000000 ___RD C:\Users\Daniel\OneDrive
2016-11-11 14:05 - 2016-11-20 15:37 - 00002388 _____ C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-11-11 14:05 - 2016-11-11 14:05 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Skype
2016-11-11 14:05 - 2016-11-11 14:05 - 00000000 ____D C:\Users\Daniel\AppData\Local\ActiveSync
2016-11-11 14:04 - 2016-11-11 14:04 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\DropboxOEM
2016-11-11 14:04 - 2016-11-11 14:04 - 00000000 ____D C:\Users\Daniel\AppData\Local\DropboxOEM
2016-11-11 14:03 - 2016-11-21 18:43 - 00000206 _____ C:\Users\Daniel\AppData\Roaming\sp_data.sys
2016-11-11 14:03 - 2016-11-21 18:43 - 00000000 ____D C:\Users\Daniel\AppData\Local\ASUS GIFTBOX
2016-11-11 14:03 - 2016-11-21 18:42 - 00000000 __SHD C:\Users\Daniel\IntelGraphicsProfiles
2016-11-11 14:03 - 2016-11-20 16:26 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Adobe
2016-11-11 14:03 - 2016-11-14 22:46 - 00000000 ____D C:\Users\Daniel\AppData\Local\Packages
2016-11-11 14:03 - 2016-11-13 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2016-11-11 14:03 - 2016-11-12 16:30 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA Corporation
2016-11-11 14:03 - 2016-11-12 13:47 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA
2016-11-11 14:03 - 2016-11-12 12:06 - 00000000 ____D C:\Users\Daniel\AppData\Local\VirtualStore
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WebStorage
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Intel
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\TileDataLayer
2016-11-11 14:03 - 2016-11-11 14:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\Publishers
2016-11-11 14:00 - 2016-11-11 14:03 - 00000000 ____D C:\ProgramData\USBChargerPlus
2016-11-11 14:00 - 2016-11-11 14:00 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-11-01 23:05 - 2016-11-01 23:05 - 00271368 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-11-01 23:05 - 2016-11-01 23:05 - 00141320 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00113672 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00112136 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00104464 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00101384 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2016-10-30 09:28 - 2016-10-30 09:28 - 00085744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00394496 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00271104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140.dll
2016-10-30 09:24 - 2016-10-30 09:24 - 00089328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00639728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00334616 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll
2016-10-30 09:23 - 2016-10-30 09:23 - 00244504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-21 18:50 - 2016-07-16 23:51 - 00762518 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-21 18:50 - 2016-07-16 23:51 - 00163216 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-21 18:50 - 2016-03-24 12:50 - 01972056 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-21 18:43 - 2016-10-17 08:29 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-21 18:42 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-11-21 18:30 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-20 19:29 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-20 15:37 - 2016-07-17 19:58 - 00002118 _____ C:\Users\Public\Desktop\Dropbox 25 GB.lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001355 _____ C:\Users\Public\Desktop\WebStorage.lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001148 _____ C:\Users\Public\Desktop\Eye Care Switcher.Lnk
2016-11-20 15:37 - 2016-07-17 19:58 - 00001011 _____ C:\Users\Public\Desktop\Foxit PhantomPDF.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002543 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002539 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-11-20 15:37 - 2016-07-17 19:49 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-11-20 15:37 - 2016-03-24 13:04 - 00002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS GIFTBOX.lnk
2016-11-20 15:34 - 2016-07-17 19:39 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-11-20 14:43 - 2016-07-17 19:45 - 00000000 ____D C:\Program Files (x86)\ICEpower
2016-11-20 14:43 - 2016-07-17 19:41 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-11-20 14:43 - 2016-07-17 19:41 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2016-11-20 14:43 - 2016-07-17 19:40 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-20 14:43 - 2016-07-17 19:40 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-11-20 14:43 - 2016-07-17 19:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-11-20 14:43 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-20 14:43 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-11-20 14:43 - 2016-03-24 13:04 - 00000000 ____D C:\Program Files (x86)\Foxit PhantomPDF
2016-11-20 14:43 - 2016-03-24 13:04 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-11-20 14:02 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-19 07:57 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-19 07:56 - 2016-07-17 19:48 - 00000000 ____D C:\Program Files\Microsoft Office
2016-11-19 07:56 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-16 21:14 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-15 17:00 - 2016-03-24 13:04 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-15 15:41 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-14 15:41 - 2016-07-17 19:44 - 00000000 ____D C:\Program Files\DIFX
2016-11-14 15:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Registration
2016-11-14 10:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-11-14 10:08 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-11-13 19:36 - 2016-07-17 19:31 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-13 19:29 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-11-13 19:29 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows NT
2016-11-13 19:29 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-11-13 19:28 - 2016-10-17 09:23 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-11-13 19:28 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Media
2016-11-13 19:28 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-11-13 19:27 - 2016-10-17 08:42 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-11-13 19:27 - 2016-07-16 12:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-13 19:26 - 2016-07-17 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2016-11-13 19:26 - 2016-03-24 13:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2016-11-13 19:26 - 2016-03-24 13:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-11-13 19:25 - 2016-10-17 09:18 - 00000000 ____D C:\Users\Default.migrated
2016-11-13 19:24 - 2016-07-17 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICEpower
2016-11-13 19:24 - 2016-07-17 19:41 - 00000000 ____D C:\Program Files\Intel Corporation
2016-11-13 19:24 - 2016-07-17 19:39 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2016-11-13 19:24 - 2016-07-16 23:52 - 00000000 ____D C:\WINDOWS\OCR
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-11-13 19:24 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\IME
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Help
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-11-13 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\System
2016-11-13 19:24 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-11-13 19:24 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-11-13 19:24 - 2016-03-24 13:05 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-11-13 19:22 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-13 19:22 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-11-13 19:21 - 2016-10-17 08:30 - 00000000 ___HD C:\Intel
2016-11-13 19:19 - 2016-07-16 12:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-13 19:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-13 19:11 - 2016-07-16 12:47 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\setup
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-11-13 19:11 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-13 18:55 - 2016-07-17 00:55 - 00000000 ___HD C:\$WINDOWS.~BT
2016-11-13 18:12 - 2016-03-24 13:06 - 00001254 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-13 14:12 - 2016-03-24 13:06 - 00001250 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-11 14:52 - 2016-07-17 19:45 - 00000000 ____D C:\ProgramData\McAfee
2016-11-11 14:49 - 2016-03-24 13:05 - 00000000 ____D C:\ProgramData\WildTangent
2016-11-11 14:16 - 2015-10-30 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-11-11 14:16 - 2015-10-30 08:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-11-11 14:08 - 2016-07-17 19:38 - 00000000 ____D C:\ProgramData\Intel
2016-11-11 14:03 - 2016-03-24 19:38 - 00000000 ____D C:\WINDOWS\Log
2016-10-29 00:56 - 2016-07-16 12:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-11-14 14:59 - 2016-11-14 15:03 - 0003235 _____ () C:\Users\Daniel\AppData\Roaming\droid4xinstaller.log
2016-11-11 14:03 - 2016-11-21 18:43 - 0000206 _____ () C:\Users\Daniel\AppData\Roaming\sp_data.sys
2016-11-16 16:24 - 2016-11-19 10:58 - 0001456 _____ () C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-13 19:21 - 2016-11-13 19:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-13 19:20

==================== Ende von FRST.txt ============================

gate0keeper 21.11.2016 18:56
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
durchgeführt von Daniel (21-11-2016 18:52:44)
Gestartet von C:\Users\Daniel\Desktop\Malware
Windows 10 Home Version 1607 (X64) (2016-11-13 18:29:26)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3857371912-3165755019-847613773-500 - Administrator - Disabled)
Daniel (S-1-5-21-3857371912-3165755019-847613773-1001 - Administrator - Enabled) => C:\Users\Daniel
DefaultAccount (S-1-5-21-3857371912-3165755019-847613773-503 - Limited - Disabled)
Gast (S-1-5-21-3857371912-3165755019-847613773-501 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
Alt.Binz 0.39.4 (HKLM-x32\...\Alt.Binz) (Version: 0.39.4 - Rdl)
Ansel (Version: 375.70 - NVIDIA Corporation) Hidden
ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.3.7 - ASUSTek Computer Inc)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.15.0003 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.112 - ICEpower a/s)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brackets (HKLM-x32\...\{0ED76FF2-9370-4437-8C51-39F27DD0361B}) (Version: 1.8 - brackets.io)
CloudConvert (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\CloudConvert) (Version:  - Lunaweb Ltd.)
Combined Community Codec Pack 64bit 2015-10-18 (HKLM\...\Combined Community Codec Pack 64bit_is1) (Version: 2015.10.19.0 - CCCP Project)
Dashlane (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\Dashlane) (Version: 4.6.3.20593 - Dashlane SAS)
david® Client  (HKLM-x32\...\david® Client) (Version: 12.00a - Tobit.Software)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.3 - ASUSTek Computer Inc.)
Dropbox 25 GB (HKLM-x32\...\{736A97C6-8766-3699-84A9-71736C5E0CE3}) (Version: 3.1.11.0 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.57.1 - Dropbox, Inc.) Hidden
eBay (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\eBay) (Version:  - eBay Inc.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
EVE Online (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\{975d25d5-e53d-4afa-9ec8-db6e8b9cfe94}) (Version: 1.0.0 - CCP)
FileZilla Client 3.22.2.2 (HKLM-x32\...\FileZilla Client) (Version: 3.22.2.2 - Tim Kosse)
Foxit PhantomPDF (HKLM-x32\...\{39263796-F296-43AF-909C-FCF99592BAC4}) (Version: 7.2.52.1209 - Foxit Software Inc.)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.14) (Version: 9.14 - Artifex Software Inc.)
IMDb (HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\IMDb) (Version:  - IMDb.com, Inc.)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.11 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10604.207 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1169 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4364 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{C7CD6D54-26AF-4D93-B06F-D81ACE8624CB}) (Version: 6.0.40.0 - Intel Corporation)
Intel(R) WiDi Software Asset Manager (x32 Version: 1.1.347 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{64FD4757-7186-4F12-9AA8-5EE809CAB282}) (Version: 17.1.1532.1814 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{4c8b7360-62a2-4339-b745-41323055d0bb}) (Version: 18.20.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.7466.2038 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 7 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.7.5.0 - Duodian Technology Co. Ltd.)
NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.70 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 4.3.12_ZZZZ (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10143.21278 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7647 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
Solid State Doctor - Asus Edition 3.1.3.9 (HKLM-x32\...\{63327DD6-398B-480F-838D-B7C55E82B1D4}_is1) (Version: 3.1.3.9 - LC Technology International, Inc.)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.70155 Beta - TeamViewer)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.11.570 - ASUS Cloud Corporation)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Windows Driver Package - ASUS (AsusSGDrv) Mouse  (11/11/2015 8.0.0.23) (HKLM\...\FF0137EA2940E916D51DA702B6425126CC7C89BF) (Version: 11/11/2015 8.0.0.23 - ASUS)
Windows Driver Package - BigNox Corporation VBoxUSBMon System  (09/16/2015 4.3.12) (HKLM\...\39F54A37125643D2E1E90FA7D81F36ACC9441510) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
Windows Driver Package - BigNox Corporation XQHDrv System  (09/16/2015 4.3.12) (HKLM\...\0147813640F7AF69F569581EE672B6BE1E71798E) (Version: 09/16/2015 4.3.12 - BigNox Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.1.0 - ASUS)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3857371912-3165755019-847613773-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0100E7FD-5EB7-492E-B167-91E916F30B1F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {0E1523E6-CAB2-485B-8AC9-AEFC1EB450E4} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {157421A9-FB3C-4AFA-9FFF-512C01F8711F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {17781704-2916-4310-864A-245F0C8CEAB8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-11] (Google Inc.)
Task: {190EC575-0075-4019-8DDC-75EB803A1247} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {37D5E902-2B4C-4199-9978-152D48BB5FB3} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {3984F180-3CD4-4C54-B4D0-E2BB4D30188E} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {39CD21EB-35CB-4512-AA79-269F27FC6E2F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-11] (Dropbox, Inc.)
Task: {40C16C89-5B22-4B8C-9C81-473B802B8152} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-11] (Dropbox, Inc.)
Task: {4B461FB9-85A6-46DA-84CC-4629C116A3F6} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-18] (AsusTek)
Task: {4D0CA996-758A-498D-A879-F2E2DD79379F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {55B98368-E604-4474-AEB8-DBBC8D7AF48F} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2015-06-05] (Intel Corporation)
Task: {5EFE99ED-0609-4B85-8F0C-B0FB931A558A} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {60BE0F07-FFC3-41B5-882F-2E324A7B65D6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {61EC3082-1113-4C52-84F7-06C10BD03CDE} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {6430CC72-EBF8-4F8C-AF87-2CCE1878ED23} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2016-01-19] (ASUSTek Computer Inc.)
Task: {719AF2B3-0F3C-442A-AD40-47FF278E6E21} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-02] (Realtek Semiconductor)
Task: {76889A72-0460-4039-BE04-868F62E0B8AD} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {89E300DF-43FF-4939-91CB-45285F8EE911} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {9631D532-5E87-47F4-82F5-55C22C4F6F19} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-02] (Realtek Semiconductor)
Task: {9AEAF006-2239-41F4-B7D2-B90EF1E161F2} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {A2AB61D5-D872-47C1-967A-EAD1E3C91A7B} - System32\Tasks\ASUS\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [2016-11-14] (ASUSTek Computer Inc)
Task: {AA1FEAD2-6BB6-4C28-9138-869379C33D41} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {B76BD0CD-871B-4C3B-B89C-51B60F6C0651} - System32\Tasks\AdobeAAMUpdater-1.0-DANIEL-LAPPI-Daniel => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {C1914B36-E14E-4413-889B-0CF9D246EC90} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-10-25] (NVIDIA Corporation)
Task: {CF900B36-AB53-4C6E-A0FC-F06AACDBD358} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {D6B9EC85-29B4-43F8-9C7E-02C645225585} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2016-04-04] ()
Task: {D9180713-B6C3-4854-9560-B3F647A70393} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-11] (Google Inc.)
Task: {DEAB7728-9873-4322-B061-7A6EB4875CC6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-10-25] (NVIDIA Corporation)
Task: {E8F5CCD2-280E-42AB-A0FA-514491C2BB9E} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2016-02-23] (ASUS)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Daniel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-12 12:06 - 2006-07-19 11:01 - 00099840 _____ () C:\WINDOWS\IMGMSGMO.dll
2015-05-19 09:11 - 2015-05-19 09:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2016-11-12 13:47 - 2016-10-25 21:22 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-12 13:47 - 2016-10-25 21:22 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-11-13 19:21 - 2016-10-25 21:17 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-11-13 19:38 - 2016-11-13 19:38 - 01864384 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2016-09-21 21:16 - 2016-09-21 21:16 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-11-01 19:10 - 2016-11-01 19:10 - 00052400 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2016-11-13 19:10 - 2016-11-13 19:10 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-13 19:16 - 2016-11-13 19:16 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-11 14:09 - 2016-11-10 14:52 - 00536960 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\DashlanePlugin.exe
2016-11-17 13:45 - 2016-11-17 13:45 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-17 13:45 - 2016-11-17 13:45 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-17 13:45 - 2016-11-17 13:45 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-11-11 14:57 - 2016-11-08 22:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-11 14:57 - 2016-11-08 22:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-14 18:51 - 2016-11-14 18:51 - 01937408 _____ () C:\Program Files (x86)\ASUS\Giftbox\ffmpeg.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2016-02-23 18:56 - 2016-02-23 18:56 - 00029184 _____ () C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll
2016-11-12 13:47 - 2016-10-25 20:57 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-12 13:47 - 2016-10-25 20:57 - 02808256 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-12 13:47 - 2016-10-25 21:21 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-12 13:47 - 2016-10-25 20:57 - 00246840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-12 13:47 - 2016-10-25 20:57 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-11-14 18:51 - 2016-11-14 18:51 - 02177536 _____ () C:\Program Files (x86)\ASUS\Giftbox\libglesv2.dll
2016-11-14 18:51 - 2016-11-14 18:51 - 00079360 _____ () C:\Program Files (x86)\ASUS\Giftbox\libegl.dll
2016-11-14 18:51 - 2016-11-14 18:51 - 03561984 _____ () C:\Program Files (x86)\ASUS\Giftbox\node.dll
2016-11-14 18:50 - 2016-11-14 18:51 - 00289792 _____ () \\?\C:\Program Files (x86)\ASUS\Giftbox\node_modules\appcloud-native-utils\anu.node
2016-11-14 18:50 - 2016-11-14 18:50 - 00236032 _____ () \\?\C:\Program Files (x86)\ASUS\Giftbox\node_modules\appcloud-engine\node_modules\appcloud-native-utils\anu.node
2016-11-13 19:38 - 2016-11-13 19:38 - 01383616 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2016-11-13 19:38 - 2016-11-13 19:38 - 00118976 _____ () C:\Users\Daniel\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00346496 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00441216 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00471424 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 63181696 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00292736 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 06322048 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 07602560 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 13827456 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 02285440 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.6.3.20593.dll
2016-11-10 14:52 - 2016-11-10 14:52 - 00334208 _____ () C:\Users\Daniel\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.6.3.20593.dll
2016-11-12 13:47 - 2016-10-25 21:21 - 60817344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2015-09-18 23:34 - 2015-09-18 23:34 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3857371912-3165755019-847613773-1001\...\localhost -> localhost

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-10-30 08:24 - 2016-11-20 16:31 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3857371912-3165755019-847613773-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\asus\wallpapers\asus.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{503EB958-CC8A-41C0-8A3E-CD9F338E4E67}D:\spiele\doom 2016\doomx64vk.exe] => (Allow) D:\spiele\doom 2016\doomx64vk.exe
FirewallRules: [TCP Query User{D809933E-A172-49FB-995F-F883B52972CF}D:\spiele\doom 2016\doomx64vk.exe] => (Allow) D:\spiele\doom 2016\doomx64vk.exe
FirewallRules: [UDP Query User{2A25E36B-69B2-4D01-AB8B-C830637529EC}D:\spiele\quantum break\dx11\quantumbreak.exe] => (Allow) D:\spiele\quantum break\dx11\quantumbreak.exe
FirewallRules: [TCP Query User{25F46325-0B53-4F7F-80F7-4BD4D062C4B3}D:\spiele\quantum break\dx11\quantumbreak.exe] => (Allow) D:\spiele\quantum break\dx11\quantumbreak.exe
FirewallRules: [{F5133C28-3CB8-4EE4-A07E-C34DD8E95323}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{453BA9F9-C703-4CF5-8737-5A793CFED059}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{25F5B39B-92A2-4375-BFC0-89C1EA40780D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{743CD073-70F0-4A5D-913A-F0CA3164A708}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{AD2CBCD9-C4DD-4A90-AC0E-6F4DBDC646E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [UDP Query User{BCB25C4D-2B2A-41F9-9979-EE76CF72078F}D:\spiele\quantum break\game\dx11\quantumbreak.exe] => (Block) D:\spiele\quantum break\game\dx11\quantumbreak.exe
FirewallRules: [TCP Query User{A57BA6F8-8831-4A8E-867A-BC74B259C417}D:\spiele\quantum break\game\dx11\quantumbreak.exe] => (Block) D:\spiele\quantum break\game\dx11\quantumbreak.exe
FirewallRules: [UDP Query User{A31DFB79-2FE4-4E3E-9650-F1A34C62505E}D:\spiele\call of duty infinite warfare\iw7_ship.exe] => (Allow) D:\spiele\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [TCP Query User{F63227DB-3CB4-46DD-A82B-3F40B2D7800F}D:\spiele\call of duty infinite warfare\iw7_ship.exe] => (Allow) D:\spiele\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [{DDA3959D-70CC-4EAC-A008-C55E954F3137}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{97471493-F33B-4D83-9779-7816B3A596CB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A6D932F2-78BF-45F3-A0C2-1DD9C5341971}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B51601E2-B10D-4327-AE6C-4F475F92CAD4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{758D054B-9FA2-42FE-B36D-18B365AD32D0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6EE4C259-DFB6-426B-AFC2-9FF91C894185}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{F26F6E94-0E76-4927-8B21-82EBF142722D}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{B8E0DF08-7602-4E3C-9AE1-71CA7284E838}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiAppOld.exe
FirewallRules: [{A3D1C3B4-C2E7-42E5-8AC6-BE34B232690C}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\Next\WirelessDisplay.exe
FirewallRules: [{1795864C-4439-43F8-B2C4-C9E0A204FAF9}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\SmartAgentTest.exe
FirewallRules: [{A32D5548-A2CB-434C-8105-0A59A2F9F3A9}] => (Allow) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
FirewallRules: [TCP Query User{FBBAF9E3-A66A-4E20-9949-DAF8D946BCB7}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{DA40D239-21AF-4415-A204-2A7AB1901575}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [{1DB6D851-B186-4757-8300-7EBB30165DEC}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3396AE47-66E6-4A83-9F42-FD66694449D9}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{3C29DC8E-3A5F-4A55-A25E-4A4A9D3ED040}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{3A6534AB-FB52-46CF-A381-AE00ECFE9E37}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{98F68D9E-F81A-4A6C-BB89-92AE473DA9C1}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0270A14B-40C4-4A03-AF3C-7E25241FCBA2}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{E218D7BE-DAB5-4910-80AA-C9BD5CCE3CB4}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{813BB494-B83B-4E3C-80BC-01822CB188A5}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{676D32BF-7EAD-4A31-AAAF-50015C05FD8C}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{3EC93D62-3AB7-4113-BFFF-2FCDBA9809CA}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{0080A997-9B04-4755-958B-D6E113E452DB}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{B91952FD-910F-4325-81F2-2128A33C3C08}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{291BE070-7EBE-4402-BC36-488ADF0A4C89}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{30BDA45C-947B-4821-9AE9-51E3CDD35FFD}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{E46AEE8E-83C2-4434-94C2-EDE4ECF6D688}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{900B3700-3C7B-46FC-B8D7-A421D0BFF6FB}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [TCP Query User{82418E8B-5667-415F-9271-82B0DF667A58}C:\users\daniel\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\daniel\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe
FirewallRules: [{864147E3-FE8A-4C75-81A2-AA00EE21E4D9}] => (Allow) D:\Programme\Doid4X\Droid4X\Droid4X.exe
FirewallRules: [{9D103E7C-9743-47A2-BE44-D86F335AEE40}] => (Allow) D:\Programme\Doid4X\Droid4X\download\MiniThunderPlatform.exe
FirewallRules: [{875F23DD-6C4F-4191-901B-0ED554957E6A}] => (Allow) D:\Programme\Doid4X\Droid4X\download\MiniThunderPlatform.exe
FirewallRules: [{D3424DE1-2F8B-4E59-8B8F-B67F7D73BF5A}] => (Allow) C:\Program Files\Oracle\VirtualBox\vboxheadless.exe
FirewallRules: [{435EE6E6-A54F-40A8-B040-EAF8179D637B}] => (Allow) D:\Programme\NoxAppPlayer\Nox\bin\Nox.exe
FirewallRules: [{5B52BD14-569E-4A90-A29A-014CCB2518E7}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{99E1310E-7B55-427D-8794-2C56B6A9EBEE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{E0B1D176-4A9F-46E2-AED4-B7C4AC3F14FC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{24C9F2A4-581E-4CE5-834B-A4B33105C0DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A0771446-3AC9-4A1C-AF81-E3513657FA9D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5694C93F-D6E2-4851-BFE4-AE28FDCD58C2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{A11C1B93-6702-47EA-A65F-2E0218427CCA}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{D82E0C3E-D29A-4EAE-B18A-8653D6499E56}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [TCP Query User{B5A66176-D38C-4320-ABB3-81FD30997C37}D:\spiele\eve\sharedcache\tq\bin\exefile.exe] => (Allow) D:\spiele\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [UDP Query User{4103919F-0A86-4708-99B5-5985A41CF5E2}D:\spiele\eve\sharedcache\tq\bin\exefile.exe] => (Allow) D:\spiele\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [{8B281CD7-4698-407C-991D-7EBBF07F04C4}] => (Allow) C:\Users\Daniel\AppData\Local\Temp\is-I4F9A.tmp\download\MiniThunderPlatform.exe
FirewallRules: [{D7393346-0F2D-481C-AAF9-B550BDBBE685}] => (Allow) C:\Program Files (x86)\GreatMaker\MaohaWiFi\MaohaWifiSvr.exe
FirewallRules: [{40FA591D-8DB7-4D1B-9A39-F75E1A0746A2}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
FirewallRules: [{BE526E6B-A01A-4671-8A3D-F44277DEE4F8}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/20/2016 09:51:36 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (11/20/2016 09:51:27 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (11/20/2016 09:50:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (11/20/2016 09:00:26 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (11/20/2016 09:00:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (11/20/2016 08:59:41 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\daniel\desktop\malware\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (11/20/2016 08:59:37 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Daniel\Desktop\Malware\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (11/20/2016 08:59:36 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Daniel\Desktop\Malware\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (11/20/2016 08:59:13 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Daniel\Desktop\Malware\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (11/20/2016 08:59:02 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Daniel\Downloads\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.


Systemfehler:
=============
Error: (11/21/2016 06:42:58 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/21/2016 06:42:58 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/21/2016 06:42:58 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/21/2016 06:42:58 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/21/2016 06:42:57 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/21/2016 06:30:59 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/21/2016 06:30:59 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/21/2016 06:30:59 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/21/2016 06:30:50 PM) (Source: TPM) (EventID: 15) (User: NT-AUTORITÄT)
Description: Beim Gerätetreiber für das Trusted Platform Module (TPM) ist ein nicht behebbarer Fehler in der TPM-Hardware aufgetreten, der die Verwendung der TPM-Dienste (z. B. Datenverschlüsselung) verhindert. Wenden Sie sich an den Computerhersteller, um weitere Hilfe zu erhalten.

Error: (11/20/2016 09:56:28 PM) (Source: TPM) (EventID: 12) (User: )
Description: Beim Gerätetreiber für das Trusted Platform Module (TPM) ist ein Fehler in der TPM-Hardware aufgetreten, der dazu führen kann, dass einige Anwendungen, die TPM-Dienste verwenden, nicht ordnungsgemäß ausgeführt werden. Starten Sie den Computer neu, um die TPM-Hardware zurückzusetzen. Wenn Sie weitere Unterstützung benötigen, wenden Sie sich an den Computerhersteller, um weitere Informationen zu erhalten.


CodeIntegrity:
===================================
  Date: 2016-11-20 14:40:39.731
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-20 14:40:39.729
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-17 14:05:01.079
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-17 14:05:01.078
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:43:40.743
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:43:40.742
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:42:28.866
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-16 22:42:28.865
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-15 19:30:19.816
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-14 20:04:00.813
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_09482e89528c3434\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Prozentuale Nutzung des RAM: 32%
Installierter physikalischer RAM: 7991.77 MB
Verfügbarer physikalischer RAM: 5399.09 MB
Summe virtueller Speicher: 16695.77 MB
Verfügbarer virtueller Speicher: 13980.18 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:118.48 GB) (Free:52.5 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:576.34 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 05CE14A8)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: B9613EEF)

Partition: GPT.

==================== Ende von Addition.txt ============================

gate0keeper 21.11.2016 19:00
Liste der Anhänge anzeigen (Anzahl: 1)
Beim Browser bekomme ich Edge als Standard rein, allerdings ist das doch etwas seltsam. Ich wähle ein Standardprogrmm aus, aber es passiert nichts in dem Fenster. Ich muss erst links die Tabs wechseln, dann sehe ich die Änderung. Keine Ahnung ob das normal so ist, so tiefgehend ist meine Erfahrung mit Windows 10 leider nicht.

gate0keeper 21.11.2016 19:21
Habe Chrome neu installiert, geht immer noch nicht als Standardbrowser zu setzen. Was mache ich mit den in Hitman gefundenen Sachen? Die sind auch immer noch da. ADWCleaner hat dann auch gleich wieder was gefunden:

Code:
# AdwCleaner v6.030 - Bericht erstellt am 21/11/2016 um 19:18:35
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-11-20.1 [Server]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : Daniel - DANIEL-LAPPI
# Gestartet von : C:\Users\Daniel\Desktop\Malware\adwcleaner_6.030.exe
# Modus: Löschen
# Unterstützung : hxxps://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****



***** [ Dateien ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****



***** [ Browser ] *****

[-] [C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Gelöscht: hxxp://www.trotux.com/?z=88c90549dc761541404531bg1z2m1t3qcz3tcc9m0q&from=amz&uid=SAMSUNGXMZNLF128HCHP-00004_S2DNNX0H429548&type=hp


*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Image File Execution Options" Schlüssel gelöscht
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: TCP/IP Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
:: Chrome Einstellungen zurückgesetzt: C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [6274 Bytes] - [14/11/2016 15:31:29]
C:\AdwCleaner\AdwCleaner[C2].txt - [1259 Bytes] - [14/11/2016 15:35:36]
C:\AdwCleaner\AdwCleaner[C3].txt - [1601 Bytes] - [14/11/2016 15:38:00]
C:\AdwCleaner\AdwCleaner[C4].txt - [42476 Bytes] - [20/11/2016 15:05:05]
C:\AdwCleaner\AdwCleaner[C5].txt - [2594 Bytes] - [20/11/2016 15:13:55]
C:\AdwCleaner\AdwCleaner[C6].txt - [3512 Bytes] - [20/11/2016 15:25:55]
C:\AdwCleaner\AdwCleaner[C7].txt - [4217 Bytes] - [20/11/2016 16:23:26]
C:\AdwCleaner\AdwCleaner[C8].txt - [3084 Bytes] - [20/11/2016 20:48:13]
C:\AdwCleaner\AdwCleaner[C9].txt - [1983 Bytes] - [21/11/2016 19:18:35]
C:\AdwCleaner\AdwCleaner[S0].txt - [5911 Bytes] - [14/11/2016 15:30:39]
C:\AdwCleaner\AdwCleaner[S10].txt - [3195 Bytes] - [20/11/2016 15:25:18]
C:\AdwCleaner\AdwCleaner[S11].txt - [3704 Bytes] - [20/11/2016 15:43:57]
C:\AdwCleaner\AdwCleaner[S12].txt - [3783 Bytes] - [20/11/2016 16:23:07]
C:\AdwCleaner\AdwCleaner[S13].txt - [2851 Bytes] - [20/11/2016 16:35:46]
C:\AdwCleaner\AdwCleaner[S14].txt - [2925 Bytes] - [20/11/2016 19:32:18]
C:\AdwCleaner\AdwCleaner[S15].txt - [2991 Bytes] - [20/11/2016 20:31:39]
C:\AdwCleaner\AdwCleaner[S16].txt - [3116 Bytes] - [20/11/2016 21:52:36]
C:\AdwCleaner\AdwCleaner[S17].txt - [3190 Bytes] - [21/11/2016 18:38:18]
C:\AdwCleaner\AdwCleaner[S18].txt - [3264 Bytes] - [21/11/2016 18:49:53]
C:\AdwCleaner\AdwCleaner[S19].txt - [3495 Bytes] - [21/11/2016 19:18:04]
C:\AdwCleaner\AdwCleaner[S1].txt - [1521 Bytes] - [14/11/2016 15:35:25]
C:\AdwCleaner\AdwCleaner[S2].txt - [1819 Bytes] - [14/11/2016 15:37:29]
C:\AdwCleaner\AdwCleaner[S3].txt - [1788 Bytes] - [14/11/2016 15:40:02]
C:\AdwCleaner\AdwCleaner[S4].txt - [43331 Bytes] - [20/11/2016 14:56:08]
C:\AdwCleaner\AdwCleaner[S5].txt - [38492 Bytes] - [20/11/2016 15:03:43]
C:\AdwCleaner\AdwCleaner[S6].txt - [2522 Bytes] - [20/11/2016 15:07:30]
C:\AdwCleaner\AdwCleaner[S7].txt - [2697 Bytes] - [20/11/2016 15:13:39]
C:\AdwCleaner\AdwCleaner[S8].txt - [2567 Bytes] - [20/11/2016 15:15:43]
C:\AdwCleaner\AdwCleaner[S9].txt - [2742 Bytes] - [20/11/2016 15:23:37]

########## EOF - C:\AdwCleaner\AdwCleaner[C9].txt - [3528 Bytes] ##########

deeprybka 22.11.2016 09:42
Habe ich irgendwas geschrieben, dass Du Adwcleaner laufen lassen sollst oder Chrome neu installieren? Ist es denn so schwierig, wenn man schon nach Hilfe bittet, dass man sich nach den Vorgaben richtet? Wir können das hier auch beenden wenn Du es besser weißt. Der Standardbrowser interessiert erstmal nicht. Der PC muss erst sauber sein, dann kümmert man sich um solche Dinge.

HitmanPro hat keinen einzigen relevanten Fund. Alles die Quarantäne des Adwcleaners. Also was soll damit sein?

Mach bitte noch diesen zusätzlichen Scan bei soviel Müll wie auf den PC geladen wurde:

Schritt 1

http://www.deeprybka.trojaner-board....rdprotect2.PNG

Bitte lade Dir herdprotect von Reason Software (portable edition) auf Deinen Desktop.
  • Mit Rechts-Klick als Administrator starten.
  • Wähle als Installationspfad den vorgegebenen. (%ProgramFiles%)
  • Bestätige die Bedingungen und starte herdprotect durch Klick auf Finish.http://www.deeprybka.trojaner-board....rdprotect3.PNG
  • Klicke auf Scan und warte geduldig bis der Scan beendet wurde.
  • Keine Funde entfernen lassen und Logdatei über Save Results abspeichern.
  • Poste bitte den Inhalt der Log-Datei.

gate0keeper 22.11.2016 12:33
Hallo Jürgen,

entschuldige bitte, ich wollte Dir keines Falls dazwischen funken. Natürlich weiß ich nichts besser, sonst hätte ich mich nicht an Euch gewandt.

Code:
Saved date:                  22.11.2016 12:29:41
Files detected:        35
Files scanned:                10.798
Processes scanned:        99
Modules scanned:        1.064
ASEPs scanned:                604
Downloads scanned:        0
Deep analysis:                4/0
---------------------------------------------------------------------------------

Files

---------------------------------------------------------------------------------

File path:                c:\program files (x86)\bonjour\mdnsnsp.dll
Publisher:                Apple Inc.
Signer:                Apple Inc.
MD5:                        40947436a70e0034e41123df5a0a7702
SHA-1:                        6c27e1dd1c1533feb6435190a5074300ac2a9822
Created:                31.08.2011 00:05:02
Detections:                1
Determination:                Ignore detections (false positive)
                        - Reason Heuristics as Adware.Eorezo (M) (Adware)

---------------------------------------------------------------------------------

File path:                c:\program files (x86)\asus\splendid\acmon.exe
Publisher:                ASUS
MD5:                        7de448e40d52181e7f86685a4a983bd8
SHA-1:                        0a7ca6768ed7b0c7dfcbc60a5fbdd74cc90b6f19
Created:                23.02.2016 18:56:58
Detections:                1
Determination:                Ignore detections (false positive)
                        - Rising Antivirus as PE:Malware.Generic/QRS!1.9E2D [F] (Undefined)

---------------------------------------------------------------------------------

File path:                c:\program files (x86)\asus\webstorage\2.2.6.547\asuswswinservice.exe
Publisher:                ASUS Cloud Corporation
MD5:                        af0561974536c33073e0df48c2f47c19
SHA-1:                        2c2fa63fa2968fbb24db9999f1be094ca39d2d3a
Created:                24.12.2015 08:31:24
Detections:                1
Determination:                Inconclusive
                        - Avira AntiVirus as W32/Chir.B (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\temp\jrt\nfo\nircmdc.exe
Publisher:                NirSoft
MD5:                        2f9c7fda92c346cb5aa32091536ae0cb
SHA-1:                        a3bbbba563eac751692ba814ada18c3f1c33dd9b
Created:                20.11.2016 20:51:09
Detections:                2
Determination:                Ignore detections (false positive)
                        - The Hacker as Posible_Worm32 (Undefined)
                        - Sophos as PUA 'NirCmd'

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\content.ie5\294aoo49\9br4l[1].exe
Publisher:               
MD5:                        7c3db76eaf25b4acc8b12700f07ebede
SHA-1:                        ae69823b69eff598164fac218889aaf294787b5d
Created:                20.11.2016 14:45:21
Detections:                1
Determination:                Adware
                        - Reason Heuristics as PUP.ConvertAd (Adware)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\content.ie5\294aoo49\amfvcbnvc[1]
Publisher:               
MD5:                        583e342e2d7bbd98a5a4ab760654a0c8
SHA-1:                        7a60cb59bbf9ff385a5f309a58335cfd3879cbde
Created:                20.11.2016 14:45:21
Detections:                5
Determination:                Adware
                        - Malwarebytes as PUP.Optional.NoteUp (Adware)
                        - avast! as Win32:Evo-gen [Susp] (Undefined)
                        - NANO AntiVirus as Trojan.Win32.Click3.duqcla (Undefined)
                        - Dr.Web as infected with Trojan.Click3.17001 (Undefined)
                        - Total Defense as Win32/Tnega.RQNYeIC (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\content.ie5\294aoo49\d0ptn[1].exe
Publisher:               
MD5:                        332eebba40054cd3eeb4bd62b8ee4d44
SHA-1:                        10c8eff937f8f77aa4fd90f3ba7e3c0bc40bb7c3
Created:                20.11.2016 14:45:59
Detections:                1
Determination:                UndefinedMalware
                        - Reason Heuristics as Trojan.Downloader (M) (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\content.ie5\294aoo49\kuaizip_setup_129823379_zzlm_013[1].exe
Publisher:               
Signer:                上海广乐网络科技有限公司
MD5:                        9c72f085a7a0c39234e051f537edb5aa
SHA-1:                        e0f7c95e8c42fbb0f04fefd25124a101fdb772ae
Created:                20.11.2016 14:46:40
Detections:                2
Determination:                Adware
                        - ESET NOD32 as Win32/KuaiZip.A potentially unwanted application (Adware)
                        - Reason Heuristics as PUP.KuaiZip (M) (Adware)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\content.ie5\nbusestr\smp2[1].exe
Publisher:               
MD5:                        81241b5c6c64294d132a364d2f257561
SHA-1:                        ca75d57fe1e3c4ea6aad3d0d745422f1aa870e2a
Created:                20.11.2016 14:46:10
Detections:                1
Determination:                UndefinedMalware
                        - Reason Heuristics as Trojan.Agent (M) (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\content.ie5\nbusestr\wcinstaller[1].exe
Publisher:                Lavasoft
Signer:                Lavasoft Software Canada
MD5:                        7cd23aff0d8643e58c531a04a6f6cb0f
SHA-1:                        9192d2ac8dc0afa25884621daf25cbd40ad714e5
Created:                14.11.2016 10:16:44
Detections:                1
Determination:                Adware
                        - Reason as PUP.WebCompanion (Adware)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\content.ie5\neyqnbqw\note-up_setup[1].exe
Publisher:               
MD5:                        bf3a1f2c03d10e52096f24c664376869
SHA-1:                        496125cfeb35db29755346e2f8b682706abba945
Created:                20.11.2016 14:45:11
Detections:                3
Determination:                Adware
                        - McAfee as Trojan.Artemis!BF3A1F2C03D1 (Undefined)
                        - Dr.Web as Adware.ClickMeIn.7431 (Adware)
                        - Reason Heuristics as Adware.CMI.DB (M) (Adware)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\content.ie5\neyqnbqw\service[1].exe
Publisher:               
MD5:                        d41d8cd98f00b204e9800998ecf8427e
SHA-1:                        da39a3ee5e6b4b0d3255bfef95601890afd80709
Created:                20.11.2016 14:46:28
Detections:                2
Determination:                Inconclusive
                        - Microsoft Security Essentials as PWS:Win32/VB.CU (Undefined)
                        - F-Secure as Application:W32/Generic.70053c248f!Online (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\content.ie5\q1gs3ztg\frst64[1].exe
Publisher:                Farbar
MD5:                        08aa4c1d9e7f49cbbfd0abff28c0007b
SHA-1:                        213e4c2008cb3438efedd30292a96f6c38e19897
Created:                20.11.2016 20:22:19
Detections:                2
Determination:                Ignore detections (false positive)
                        - Bkav FE as W32.HfsAtITA (Undefined)
                        - Antiy Labs AVL as Trojan/Generic.ASVCS3S.1E5 (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\content.ie5\q1gs3ztg\fug3fz58t[1].exe
Publisher:               
MD5:                        332eebba40054cd3eeb4bd62b8ee4d44
SHA-1:                        10c8eff937f8f77aa4fd90f3ba7e3c0bc40bb7c3
Created:                20.11.2016 14:45:23
Detections:                1
Determination:                UndefinedMalware
                        - Reason Heuristics as Trojan.Downloader (M) (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\content.ie5\q1gs3ztg\lenovemgrdlr[1].exe
Publisher:               
MD5:                        d41d8cd98f00b204e9800998ecf8427e
SHA-1:                        da39a3ee5e6b4b0d3255bfef95601890afd80709
Created:                20.11.2016 14:46:27
Detections:                2
Determination:                Inconclusive
                        - Microsoft Security Essentials as PWS:Win32/VB.CU (Undefined)
                        - F-Secure as Application:W32/Generic.70053c248f!Online (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\ie\294aoo49\9br4l[1].exe
Publisher:               
MD5:                        7c3db76eaf25b4acc8b12700f07ebede
SHA-1:                        ae69823b69eff598164fac218889aaf294787b5d
Created:                20.11.2016 14:45:21
Detections:                1
Determination:                Adware
                        - Reason Heuristics as PUP.ConvertAd (Adware)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\ie\294aoo49\amfvcbnvc[1]
Publisher:               
MD5:                        583e342e2d7bbd98a5a4ab760654a0c8
SHA-1:                        7a60cb59bbf9ff385a5f309a58335cfd3879cbde
Created:                20.11.2016 14:45:21
Detections:                5
Determination:                Adware
                        - Malwarebytes as PUP.Optional.NoteUp (Adware)
                        - avast! as Win32:Evo-gen [Susp] (Undefined)
                        - NANO AntiVirus as Trojan.Win32.Click3.duqcla (Undefined)
                        - Dr.Web as infected with Trojan.Click3.17001 (Undefined)
                        - Total Defense as Win32/Tnega.RQNYeIC (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\ie\294aoo49\d0ptn[1].exe
Publisher:               
MD5:                        332eebba40054cd3eeb4bd62b8ee4d44
SHA-1:                        10c8eff937f8f77aa4fd90f3ba7e3c0bc40bb7c3
Created:                20.11.2016 14:45:59
Detections:                1
Determination:                UndefinedMalware
                        - Reason Heuristics as Trojan.Downloader (M) (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\ie\294aoo49\kuaizip_setup_129823379_zzlm_013[1].exe
Publisher:               
Signer:                上海广乐网络科技有限公司
MD5:                        9c72f085a7a0c39234e051f537edb5aa
SHA-1:                        e0f7c95e8c42fbb0f04fefd25124a101fdb772ae
Created:                20.11.2016 14:46:40
Detections:                2
Determination:                Adware
                        - ESET NOD32 as Win32/KuaiZip.A potentially unwanted application (Adware)
                        - Reason Heuristics as PUP.KuaiZip (M) (Adware)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\ie\nbusestr\smp2[1].exe
Publisher:               
MD5:                        81241b5c6c64294d132a364d2f257561
SHA-1:                        ca75d57fe1e3c4ea6aad3d0d745422f1aa870e2a
Created:                20.11.2016 14:46:10
Detections:                1
Determination:                UndefinedMalware
                        - Reason Heuristics as Trojan.Agent (M) (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\ie\nbusestr\wcinstaller[1].exe
Publisher:                Lavasoft
Signer:                Lavasoft Software Canada
MD5:                        7cd23aff0d8643e58c531a04a6f6cb0f
SHA-1:                        9192d2ac8dc0afa25884621daf25cbd40ad714e5
Created:                14.11.2016 10:16:44
Detections:                1
Determination:                Adware
                        - Reason as PUP.WebCompanion (Adware)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\ie\neyqnbqw\note-up_setup[1].exe
Publisher:               
MD5:                        bf3a1f2c03d10e52096f24c664376869
SHA-1:                        496125cfeb35db29755346e2f8b682706abba945
Created:                20.11.2016 14:45:11
Detections:                3
Determination:                Adware
                        - McAfee as Trojan.Artemis!BF3A1F2C03D1 (Undefined)
                        - Dr.Web as Adware.ClickMeIn.7431 (Adware)
                        - Reason Heuristics as Adware.CMI.DB (M) (Adware)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\ie\neyqnbqw\service[1].exe
Publisher:               
MD5:                        d41d8cd98f00b204e9800998ecf8427e
SHA-1:                        da39a3ee5e6b4b0d3255bfef95601890afd80709
Created:                20.11.2016 14:46:28
Detections:                2
Determination:                Inconclusive
                        - Microsoft Security Essentials as PWS:Win32/VB.CU (Undefined)
                        - F-Secure as Application:W32/Generic.70053c248f!Online (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\ie\q1gs3ztg\frst64[1].exe
Publisher:                Farbar
MD5:                        08aa4c1d9e7f49cbbfd0abff28c0007b
SHA-1:                        213e4c2008cb3438efedd30292a96f6c38e19897
Created:                20.11.2016 20:22:19
Detections:                2
Determination:                Ignore detections (false positive)
                        - Bkav FE as W32.HfsAtITA (Undefined)
                        - Antiy Labs AVL as Trojan/Generic.ASVCS3S.1E5 (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\ie\q1gs3ztg\fug3fz58t[1].exe
Publisher:               
MD5:                        332eebba40054cd3eeb4bd62b8ee4d44
SHA-1:                        10c8eff937f8f77aa4fd90f3ba7e3c0bc40bb7c3
Created:                20.11.2016 14:45:23
Detections:                1
Determination:                UndefinedMalware
                        - Reason Heuristics as Trojan.Downloader (M) (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\microsoft\windows\inetcache\ie\q1gs3ztg\lenovemgrdlr[1].exe
Publisher:               
MD5:                        d41d8cd98f00b204e9800998ecf8427e
SHA-1:                        da39a3ee5e6b4b0d3255bfef95601890afd80709
Created:                20.11.2016 14:46:27
Detections:                2
Determination:                Inconclusive
                        - Microsoft Security Essentials as PWS:Win32/VB.CU (Undefined)
                        - F-Secure as Application:W32/Generic.70053c248f!Online (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\downloads\droid4xinstaller.exe
Publisher:               
Signer:                Haiyu Dongxiang Co.,Ltd.
MD5:                        f5050ef3e4e2b90b4a89cc95aa3530e5
SHA-1:                        30153a1966b58845b48da020b2ba138115ada2ec
Created:                14.11.2016 14:58:51
Detections:                1
Determination:                Inconclusive
                        - Dr.Web as c:\users\test\appdata\local\temp\3015a6656393586e011358262f78dcb13d97349c c:\users\test\appdata\loca (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\downloads\dtliteinstaller.exe
Publisher:                Disc Soft Ltd.
Signer:                Disc Soft Ltd
MD5:                        ceaa57526f3a0a33d2c61716ddd23c84
SHA-1:                        f4abc426448e1874ea4e4fdfef20ae86e7e5502a
Created:                11.11.2016 19:41:22
Detections:                1
Determination:                Ignore detections (false positive)
                        - Clam AntiVirus as Win.Trojan.Generic-453 (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\desktop\malware\adwcleaner_6.030.exe
Publisher:               
Signer:                ToolsLib
MD5:                        960588b10819eb62db056b7f14468369
SHA-1:                        1c92c7bae85a85cb07e19c993a867a85af9d0c40
Created:                14.11.2016 15:29:40
Detections:                4
Determination:                Inconclusive
                        - Clam AntiVirus as Win.Trojan.Philadelphia-1 (Undefined)
                        - Rising Antivirus as Malware.Heuristic!ET (rdm+) (Undefined)
                        - Invincea as virus.win32.sality.at (Undefined)
                        - Qihoo 360 Security as HEUR/QVM11.1.0000.Malware.Gen (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\desktop\malware\frst64.exe
Publisher:                Farbar
MD5:                        08aa4c1d9e7f49cbbfd0abff28c0007b
SHA-1:                        213e4c2008cb3438efedd30292a96f6c38e19897
Created:                20.11.2016 15:52:15
Detections:                2
Determination:                Ignore detections (false positive)
                        - Bkav FE as W32.HfsAtITA (Undefined)
                        - Antiy Labs AVL as Trojan/Generic.ASVCS3S.1E5 (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\desktop\malware\frst-olderversion\frst64.exe
Publisher:                Farbar
MD5:                        ca4bb4d2ef77196b2793e21e1f6b502e
SHA-1:                        52dd5e03efe8e852f1debf48681d278975d31104
Created:                20.11.2016 15:52:15
Detections:                2
Determination:                Ignore detections (false positive)
                        - Bkav FE as W32.HfsAtITA (Undefined)
                        - Antiy Labs AVL as Trojan/Generic.ASVCS3S.1E5 (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\desktop\share\rsload.net.link.commander.pro.v4.6.4.1150.keygen-vovan666\lc_pro_setup.exe
Publisher:                Resort Labs                                               
MD5:                        99a5c063c557d508caeb02188006df73
SHA-1:                        df7993e109dc355e22730fa60c385b389f8b7d99
Created:                14.11.2016 10:27:44
Detections:                1
Determination:                Ignore detections (false positive)
                        - Bkav FE as HW32.Pedka (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\desktop\tor browser\browser\firefox.exe
Publisher:                Mozilla Corporation
MD5:                        2867f044b45d297d8ed369857750f6a0
SHA-1:                        8de0ad3478f15a653774ab044eb3f6db0c9c6ed5
Created:                01.01.2000 01:00:00
Detections:                1
Determination:                Ignore detections (false positive)
                        - Bkav FE as W32.eHeur.Malware08 (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\desktop\tor browser\browser\torbrowser\tor\pluggabletransports\meek-client.exe
Publisher:               
MD5:                        a8b534817e99dde7f380ad19807133a3
SHA-1:                        a2a8b9e103fc4ace646d2e0e82ade85397c58db8
Created:                01.01.2000 01:00:00
Detections:                1
Determination:                Inconclusive
                        - Invincea as virus.win32.sality.at (Undefined)

---------------------------------------------------------------------------------

File path:                c:\users\daniel\appdata\local\anwendungsdaten\anwendungsdaten\anwendungsdaten\anwendungsdaten\anwendungsdaten\anwendungsdaten\anwendungsdaten\anwendungsdaten\anwendungsdaten\anwendungsdaten\anwendungsdaten\anwendungsdaten\temp\jrt\nfo\nircmdc.exe
Publisher:                NirSoft
MD5:                        2f9c7fda92c346cb5aa32091536ae0cb
SHA-1:                        a3bbbba563eac751692ba814ada18c3f1c33dd9b
Created:                20.11.2016 20:51:09
Detections:                2
Determination:                Ignore detections (false positive)
                        - The Hacker as Posible_Worm32 (Undefined)
                        - Sophos as PUA 'NirCmd'

deeprybka 22.11.2016 19:49
Hi, jetzt bitte diese Anleitung abarbeiten.
Windows reparieren - so geht's - Anleitungen

Reparaturen im Safe Mode durchführen. Die neueste Tool-Version bitte hier runterladen:
http://www.tweaking.com/content/page...ll_in_one.html

gate0keeper 23.11.2016 10:28
Danke. Das Tool läuft gerade nach Anleitung. Sind nach dem Abschluss noch weitere Schritte erforderlich?

Hallo Jürgen,


ich danke Dir vielmals für Deine Hilfe. Das Thema kann geschlossen werden. Der Zeitaufwand für die Reparatur war einfach zu hoch, ich habe Windows neu initialisiert.


Viele Grüße,
Daniel

deeprybka 23.11.2016 11:05
OK.


Alle Zeitangaben in WEZ +1. Es ist jetzt 18:30 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131