Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020 durchgeführt von Iwona (Administrator) auf PEACHES (Sony Corporation SVF1521B7EW) (07-05-2020 15:33:21) Gestartet von C:\Users\Iwona\Downloads Geladene Profile: Iwona (Verfügbare Profile: Iwona & Administrator & Gast) Platform: Windows 10 Home Version 1903 18362.778 (X64) Sprache: Deutsch (Deutschland) Standard-Browser: Edge Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <2> (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe <2> (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe (Creative Technology Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Sound Blaster X-Fi Surround 5.1\Volume Panel\VolPanlu.exe (Creative Technology Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe (Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe <2> (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Facebook, Inc. -> Facebook Inc.) C:\Users\Iwona\AppData\Local\Facebook\Update\FacebookUpdate.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.561\SSScheduler.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Iwona\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrv.exe (Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe (Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe (Realtek Semiconductor Corp -> Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe <2> (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe <2> (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (WebToGo Mobiles Internet GmbH -> ) C:\Program Files (x86)\3DataManager\WTGService.exe ==================== Registry (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-11] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [Creative SB Monitoring Utility] => C:\WINDOWS\system32\sbavmon.dll [103424 2008-12-01] (Creative Labs Inc -> Creative Technology Ltd.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3928264 2015-05-29] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-07-19] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [740376 2013-02-06] (Sony Corporation -> Sony Corporation) HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-02-19] (Intel® Services Manager -> Intel Corporation) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [33648 2007-08-24] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [Module Loader] => C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe [57344 2007-07-23] (Creative Technology Ltd.) [Datei ist nicht signiert] HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi Surround 5.1\Volume Panel\VolPanlu.exe [237693 2008-11-24] (Creative Technology Ltd) [Datei ist nicht signiert] HKU\S-1-5-21-1958920722-3115410223-1745243532-1001\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia -> Nokia) HKU\S-1-5-21-1958920722-3115410223-1745243532-1001\...\Run: [Facebook Update] => C:\Users\Iwona\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-05-05] (Facebook, Inc. -> Facebook Inc.) HKU\S-1-5-21-1958920722-3115410223-1745243532-1001\...\Run: [Spotify] => C:\Users\Iwona\AppData\Roaming\Spotify\Spotify.exe [22907112 2020-04-08] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-1958920722-3115410223-1745243532-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91584872 2020-03-12] (Skype Software Sarl -> Skype Technologies S.A.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-28] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2012-12-14] (Broadcom Corporation -> Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-05-18] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.561\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============ (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {022CE7DF-F8EB-44CD-9D2A-BD1209E89759} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG Task: {03ED312A-B233-4BB2-B88F-BEBABD647329} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {0E04296A-9EFE-406E-8780-24B7031CDBB6} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [3152360 2019-11-08] (Sony Corporation -> Sony Corporation) Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {1EAF8202-AB19-45A7-AD47-C9B546308D72} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [804816 2019-12-06] (Sony Corporation -> Sony Corporation) Task: {22FD8CBD-7D53-4E7D-BF23-05D367590801} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [338544 2012-07-24] (CyberLink -> CyberLink Corp.) Task: {271A77BE-526E-400C-B0AC-DB132CDCE1A8} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG Task: {2724BB73-466E-4262-9DF9-7F3A1C8B5F54} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG Task: {2CF386FE-785B-4A02-9E1A-9A2A25429481} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1958920722-3115410223-1745243532-1001UA => C:\Users\Iwona\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-05-05] (Facebook, Inc. -> Facebook Inc.) Task: {3349E4A8-2080-4515-8843-761548600EFD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-07] (Google Inc -> Google Inc.) Task: {34E8E20D-C52B-4FA9-944B-CFE38DF57215} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3E098D13-E719-4B28-BD46-0270099A5A41} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [502912 2015-12-08] (Sony Corporation -> Sony Corporation) Task: {40AC17CC-7847-485B-A817-CCB8E1B5D5F8} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [804816 2019-12-06] (Sony Corporation -> Sony Corporation) Task: {43703EC6-AF94-4C87-AEAD-CD0711C2A65B} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {474E3A95-1411-49CA-871B-A8EE02C66057} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {50656A20-EEC8-4055-8129-395A85123F90} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG Task: {50AC19C7-F6FB-4A28-B3E1-7A9094CFF202} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [18272 2019-12-06] (Sony Corporation -> Sony Corporation) Task: {57AAC04B-3850-467C-85BC-D877AD7C95B8} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {5ABCE148-F43C-4AAF-A613-0D6ABFCBF9A6} - System32\Tasks\{FCA96FBF-BEE7-4996-AD12-3C230F4D6E76} => "c:\windows\system32\launchwinapp.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.14.0.104&LastError=12007 Task: {5B415529-0EE4-494E-80C2-25A9681F2AA4} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {5C210E64-77E8-45A8-BC8E-17C7F8556039} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [538720 2013-02-02] (Sony Corporation -> Sony Corporation) Task: {5C8CCF0F-2E0C-4500-9DC3-29998E685773} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-07] (Google Inc -> Google Inc.) Task: {5DBB03C1-1C20-4E2E-862D-C60F683E074A} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe [1707616 2013-02-05] (Sony Corporation -> Sony Corporation) Task: {6385DB06-2C9F-46B9-8A71-6DF57BD0E3D0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG Task: {67FF1AA4-D6F1-4941-AAC5-F5DDD00CF70C} - System32\Tasks\{A6C0E319-83C3-44DA-B26E-ABB25EEBDA75} => "c:\windows\system32\launchwinapp.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.14.0.104&LastError=12007 Task: {69F448DD-D104-484B-96D3-38107A59B765} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [804816 2019-12-06] (Sony Corporation -> Sony Corporation) Task: {6AEB636A-5EE3-4A85-B480-F50AB73E79C8} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [1210856 2019-11-08] (Sony Corporation -> Sony Corporation) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {6ECD342A-E837-43E2-B126-777EFC281082} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG Task: {7A1CA2D2-3DE2-4BCB-BFAD-866000475B51} - System32\Tasks\Sony Corporation\VAIO Care\UpdateContacts => C:\ProgramData\Sony Corporation\VAIO Care\UpdateContacts.exe Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8B21F67B-0F5C-4810-A538-140828AC0803} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {900DFACA-E822-4E55-8E21-C7E8A60BE8AA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [570240 2017-02-14] (Apple Inc. -> Apple Inc.) Task: {96C0B751-E866-493C-A77A-6F62C800F7C6} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [1005144 2016-06-02] (Sony Corporation -> Sony Corporation) Task: {9971AC71-E7E6-4CA3-93FE-BFF5F147D46C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG Task: {99FAC1AC-91A8-4AD6-8DA6-18E467AE513D} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {9C334670-CD83-4D87-BD86-26A3175D8497} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [804816 2019-12-06] (Sony Corporation -> Sony Corporation) Task: {9EC28051-9A2F-40E7-9B48-33613B0DD4DC} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe Task: {A18EC710-FB58-4EAF-AC15-FB7D63BF9E30} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [538720 2013-02-02] (Sony Corporation -> Sony Corporation) Task: {ABB4B848-4CFA-4F33-933E-8F9A76827518} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_363_Plugin.exe [1458232 2020-04-14] (Adobe Inc. -> Adobe) Task: {B2983C8B-69EE-4D01-8061-A0B8A73236F3} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {B3CC0B52-E433-4BCC-B0F2-6F7B3A28110F} - System32\Tasks\{3D7DADC0-28B8-4CF9-9511-050CB0E1DB6D} => "c:\windows\system32\launchwinapp.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.14.0.104&LastError=12007 Task: {B75136E3-61B5-4EB6-9A2F-F24A3DB8A8FD} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [804816 2019-12-06] (Sony Corporation -> Sony Corporation) Task: {BAE801A3-F4D2-4CAD-95FD-D5884F2E75DE} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {CB04A085-7E35-4D74-A63D-BD860768C7E3} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {D4B5F5BC-11AD-48F9-ADF1-1D989A7559D8} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [804816 2019-12-06] (Sony Corporation -> Sony Corporation) Task: {D4D745A1-CF6C-4DDD-88DD-0CDFE659120F} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [804816 2019-12-06] (Sony Corporation -> Sony Corporation) Task: {D8C7C588-0130-48C2-AA9A-C0D338190408} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [737376 2013-01-23] (Sony Corporation -> Sony Corporation) Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {E330672A-C477-47C5-B0C8-EE27EB3AC66E} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1958920722-3115410223-1745243532-1001Core => C:\Users\Iwona\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-05-05] (Facebook, Inc. -> Facebook Inc.) Task: {E3C07A37-1D66-41F8-BAA9-6CF3B82BBD21} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {E40E783B-A2DC-4CC2-B120-7B37B7B7F4EC} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [502912 2015-12-08] (Sony Corporation -> Sony Corporation) Task: {E967C585-513E-4634-AB36-A0E1BA7B4D06} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {ECE293BB-CD66-4591-BF5F-A59D8E8C0A46} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [804816 2019-12-06] (Sony Corporation -> Sony Corporation) Task: {F37B3758-12A4-4F4C-A5A7-C88E2E9E6AF8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-04-14] (Adobe Inc. -> Adobe) Task: {F7951D8E-48E8-47BA-B497-CDE9B24B0B39} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG Task: {F8711832-71F3-43EF-83D4-97A52DA7163B} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG Task: {F88105FE-D23A-4B67-B022-E3B29704676C} - System32\Tasks\Sony Corporation\VAIO Hardware Diagnostics\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [1865384 2013-01-25] (Sony Corporation -> Sony Corporation) Task: {FBDAC330-A8EB-4A40-B4EC-A778F1FE73C8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1165920 2017-08-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {FC233DFE-A4A5-4D5C-91A2-757FD46ABAA3} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1958920722-3115410223-1745243532-1001Core.job => C:\Users\Iwona\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1958920722-3115410223-1745243532-1001UA.job => C:\Users\Iwona\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 195.189.32.34 195.189.32.3 8.8.8.8 192.168.1.1 Tcpip\..\Interfaces\{034fa6b8-fbb4-4b4b-9ebb-a51db0afc8d6}: [DhcpNameServer] 62.24.0.99 Tcpip\..\Interfaces\{47c52ddd-a9ee-48e2-acf3-12392712a3de}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{5c9e5631-6f0f-492f-b7b3-2fd1d5e0fc30}: [DhcpNameServer] 195.189.32.34 195.189.32.3 8.8.8.8 192.168.1.1 Tcpip\..\Interfaces\{7651265f-22f5-4438-abae-10097050fab2}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{839f9c86-afa4-4b15-9b03-978b0f3df9f4}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{b5983a4f-8445-49b5-868f-3f7b3dc3f609}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{c0d9cf98-8801-4796-b9af-d7fa0376ab2c}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{d5495238-5f3d-4d4e-8e99-255240ec7e81}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{e32f41fd-752a-4d9b-bdb1-e04f200727be}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{f32c56a2-f663-4400-8026-61ba9a88f06c}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Internet Explorer: ================== HKU\S-1-5-21-1958920722-3115410223-1745243532-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sony13.msn.com/ HKU\S-1-5-21-1958920722-3115410223-1745243532-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com HKU\S-1-5-21-1958920722-3115410223-1745243532-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu SearchScopes: HKU\S-1-5-21-1958920722-3115410223-1745243532-1001 -> {F9D1EB50-6493-456F-A2DF-37E7F68A94DB} URL = hxxp://rover.ebay.com/rover/1/5221-29898-16445-29/4?mpre=hxxp://shop.ebay.at/?oemInLn=ieSrch-&_nkw={searchTerms} BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll [2014-01-24] (Canon Inc. -> CANON INC.) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-02-03] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-02-03] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-01-24] (Canon Inc. -> CANON INC.) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-02-03] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-02-03] (Oracle America, Inc. -> Oracle Corporation) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll [2014-01-24] (Canon Inc. -> CANON INC.) Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-01-24] (Canon Inc. -> CANON INC.) Toolbar: HKU\S-1-5-21-1958920722-3115410223-1745243532-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll [2014-01-24] (Canon Inc. -> CANON INC.) DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Keine Datei FireFox: ======== FF DefaultProfile: 34p1g6bx.default FF ProfilePath: C:\Users\Iwona\AppData\Roaming\Mozilla\Firefox\Profiles\34p1g6bx.default [2020-03-25] FF Extension: (AdGuard Werbeblocker) - C:\Users\Iwona\AppData\Roaming\Mozilla\Firefox\Profiles\34p1g6bx.default\Extensions\adguardadblocker@adguard.com.xpi [2019-02-04] FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Iwona\AppData\Roaming\Mozilla\Firefox\Profiles\34p1g6bx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-03-03] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_363.dll [2020-04-14] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\system32\npDeployJava1.dll [2014-02-03] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-02-03] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_363.dll [2020-04-14] (Adobe Inc. -> ) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2014-02-03] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-02-03] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] (WildTangent Inc -> ) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1958920722-3115410223-1745243532-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Iwona\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Software Sarl -> Skype Limited) FF Plugin HKU\S-1-5-21-1958920722-3115410223-1745243532-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [2013-02-19] (Intel) [Datei ist nicht signiert] FF Plugin HKU\S-1-5-21-1958920722-3115410223-1745243532-1001: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll [2013-02-19] (Intel) [Datei ist nicht signiert] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default [2020-05-07] CHR DefaultSearchURL: Default -> hxxps://myfirsttab.com/api/search-redirect?aid=725&sid=715&t={searchTerms} CHR DefaultSearchKeyword: Default -> Watch Series – MediaTabTV CHR Extension: (Docs) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12] CHR Extension: (Google Drive) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21] CHR Extension: (YouTube) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26] CHR Extension: (uBlock Origin) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-05-01] CHR Extension: (Google-Suche) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28] CHR Extension: (Google Docs Offline) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-01] CHR Extension: (AdBlock – der beste Ad-Blocker) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-18] CHR Extension: (Watch Series – MediaTabTV) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjcdogaogjbhbpnmkapkacfgjchoopka [2018-03-07] CHR Extension: (Block Site) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\lebiggkccaodkkmjeimmbogdedcpnmfb [2020-05-06] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-01] CHR Extension: (Google Mail) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-01] CHR Extension: (Chrome Media Router) - C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-03] CHR Profile: C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-05-06] CHR Profile: C:\Users\Iwona\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-06] ==================== Dienste (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.) R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2651840 2019-04-11] (Comodo Security Solutions, Inc. -> COMODO) S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-04-04] (Creative Labs) [Datei ist nicht signiert] R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2468496 2013-02-21] (Realtek Semiconductor Corp -> Realsil Microelectronics Inc.) R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129824 2013-01-23] (Intel Corporation -> Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166688 2013-01-23] (Intel Corporation -> Intel Corporation) S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [639584 2013-02-05] (Sony Corporation -> Sony Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2495280 2020-04-29] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3446576 2020-04-29] (Electronic Arts, Inc. -> Electronic Arts) R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [483864 2013-02-06] (Sony Corporation -> Sony Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13216784 2020-04-09] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2013-01-06] (Sony Corporation -> Sony Corporation) R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1744872 2019-11-08] (Sony Corporation -> Sony Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-09] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WTGService; C:\Program Files (x86)\3DataManager\WTGService.exe [296400 2009-03-10] (WebToGo Mobiles Internet GmbH -> ) ===================== Treiber (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink -> CyberLink) S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17872 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO) R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [43416 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [849048 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [129152 2016-06-28] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ksaud; C:\WINDOWS\system32\drivers\ksaud.sys [1134208 2009-08-05] (Creative Labs Inc -> Creative Technology Ltd.) S3 pccsmcfd; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [26112 2012-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) R3 SFEP; C:\WINDOWS\System32\drivers\SFEP.sys [14336 2012-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Sony Corporation) R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-05-29] (Synaptics Incorporated -> Synaptics Incorporated) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-06-28] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [221824 2016-06-28] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-11-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-02-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-02-09] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-09] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat (erstellte) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2020-05-06 20:05 - 2020-05-06 20:05 - 000081908 _____ C:\Users\Iwona\Downloads\Shortcut.txt 2020-05-06 20:01 - 2020-05-06 20:05 - 000066390 _____ C:\Users\Iwona\Downloads\Addition.txt 2020-05-06 19:56 - 2020-05-07 15:37 - 000039512 _____ C:\Users\Iwona\Downloads\FRST.txt 2020-05-06 19:56 - 2020-05-07 15:35 - 000000000 ____D C:\FRST 2020-05-06 19:52 - 2020-05-06 19:52 - 002283520 _____ (Farbar) C:\Users\Iwona\Downloads\FRST64.exe 2020-05-06 17:17 - 2020-05-06 17:18 - 003679923 _____ C:\Users\Iwona\Downloads\bPxxbpFXY9ADfTSi.zip 2020-05-06 17:16 - 2020-05-06 17:17 - 003007724 _____ C:\Users\Iwona\Downloads\DXfay6DqorYLyqeK.zip 2020-05-06 17:16 - 2020-05-06 17:17 - 002397302 _____ C:\Users\Iwona\Downloads\52umaqznbCiS8GOg.zip 2020-05-06 17:14 - 2020-05-06 17:15 - 004624212 _____ C:\Users\Iwona\Downloads\Sd7CaesjRA2pQG61.zip 2020-05-06 17:07 - 2020-05-06 17:08 - 006613460 _____ C:\Users\Iwona\Downloads\xaGWB9tjr1KdWOzp.zip 2020-05-06 16:45 - 2020-05-06 16:47 - 002234467 _____ C:\Users\Iwona\Downloads\1384358.zip 2020-05-06 16:41 - 2020-05-06 16:51 - 022601335 _____ C:\Users\Iwona\Downloads\1485329.zip 2020-05-01 14:40 - 2020-05-01 14:40 - 001201129 _____ C:\Users\Iwona\Downloads\InterlacedWoodPaneling-set.zip 2020-05-01 13:55 - 2020-05-01 13:55 - 058279475 _____ C:\Users\Iwona\Downloads\WickedWhims v153d - 29 April 2020.zip 2020-04-29 12:41 - 2020-04-29 12:41 - 000187424 _____ C:\Users\Iwona\Downloads\MTS_littledica_1744929_littledica.tidy.detergent.rar 2020-04-29 12:40 - 2020-04-29 12:41 - 002451399 _____ C:\Users\Iwona\Downloads\MTS_littledica_1750712_littledica.HB.AddWash.rar 2020-04-29 12:38 - 2020-04-29 12:39 - 003105164 _____ C:\Users\Iwona\Downloads\MTS_littledica_1746904_littledica.HB.Dual.Wash.rar 2020-04-28 21:54 - 2020-04-28 22:26 - 026962208 _____ C:\Users\Iwona\Downloads\1313983.zip 2020-04-28 20:31 - 2020-04-28 20:32 - 051321323 _____ C:\Users\Iwona\Downloads\ElizaSkin_SimmerAddiction83.zip 2020-04-28 20:31 - 2020-04-28 20:32 - 042775910 _____ C:\Users\Iwona\Downloads\CleoSkin&EyesPreset_SimmerAddiction83.zip 2020-04-28 20:31 - 2020-04-28 20:31 - 001668403 _____ C:\Users\Iwona\Downloads\HeroEyes_Simmeraddiction83.zip 2020-04-28 20:29 - 2020-04-28 20:29 - 042652390 _____ C:\Users\Iwona\Downloads\SkylarSkin_SimmerAddiction83.zip 2020-04-28 20:24 - 2020-04-28 20:24 - 000480040 _____ C:\Users\Iwona\Downloads\Eyebag_SimmerAddiction83[1] (1).package 2020-04-27 20:48 - 2020-04-27 20:48 - 001431960 _____ C:\Users\Iwona\Downloads\1368693.zip 2020-04-27 19:15 - 2020-04-27 19:15 - 000262214 _____ C:\Users\Iwona\Downloads\Luxury Villa (1).zip 2020-04-27 19:14 - 2020-04-27 19:14 - 000262214 _____ C:\Users\Iwona\Downloads\Luxury Villa.zip 2020-04-27 19:12 - 2020-04-27 19:12 - 000218774 _____ C:\Users\Iwona\Downloads\Rirann_Vanda (1).zip 2020-04-27 18:55 - 2020-04-27 18:57 - 382122882 _____ C:\Users\Iwona\Downloads\felixandresims-c81dcd.zip 2020-04-27 14:19 - 2020-04-27 14:22 - 014360755 _____ C:\Users\Iwona\Downloads\1416703.zip 2020-04-26 18:52 - 2020-04-26 18:56 - 019370574 _____ C:\Users\Iwona\Downloads\grafity_ElliaRomper.package 2020-04-26 17:56 - 2020-04-26 17:56 - 000001229 _____ C:\Users\Iwona\Downloads\iyaS_TS4AsianFansWall200719.package - Verknüpfung.lnk 2020-04-26 17:49 - 2020-04-26 17:55 - 015254837 _____ C:\Users\Iwona\Downloads\1459251.zip 2020-04-26 17:35 - 2020-04-26 17:35 - 000561367 _____ C:\Users\Iwona\Downloads\[W] Magnesium Body Brush and Soap Bar.package 2020-04-26 17:26 - 2020-04-26 17:33 - 012171983 _____ C:\Users\Iwona\Downloads\WW_Azmodan22_Animations_Platinum_Rough.zip 2020-04-26 16:24 - 2020-04-26 17:13 - 024978372 _____ C:\Users\Iwona\Downloads\WW_Azmodan22_Animations_Gold_Rough.zip 2020-04-26 12:40 - 2020-04-26 12:40 - 000081382 _____ C:\Users\Iwona\Downloads\WickedWhims_LP_GER.zip 2020-04-26 12:38 - 2020-04-26 12:49 - 033580973 _____ C:\Users\Iwona\Downloads\WW_ooOLaLaWorld_Animations [SeasonsFix FinalFix].zip 2020-04-26 11:51 - 2020-04-26 12:07 - 015121028 _____ C:\Users\Iwona\Downloads\WW_Amra72_Animations_NAP_V1.3 Final.zip 2020-04-26 00:28 - 2020-04-26 00:28 - 000328451 _____ C:\Users\Iwona\Downloads\SIMc-TSR-Calligaris-Sandals.package 2020-04-26 00:14 - 2020-04-26 00:27 - 058279883 _____ C:\Users\Iwona\Downloads\WickedWhims v153c - 20 April 2020.zip 2020-04-26 00:10 - 2020-04-26 00:10 - 000000800 _____ C:\Users\Iwona\Downloads\MTS_moxiemason_1667773_moxiemason_nomosaic_toddlerupdate_15012017.rar 2020-04-25 23:43 - 2020-04-25 23:43 - 000000800 _____ C:\Users\Iwona\Downloads\nude mod.rar 2020-04-25 17:49 - 2020-04-25 17:49 - 001005502 _____ C:\Users\Iwona\Downloads\MTS_appleteas_1858024_appleteas_wire_shelf.zip 2020-04-25 17:49 - 2020-04-25 17:49 - 001005502 _____ C:\Users\Iwona\Downloads\MTS_appleteas_1858024_appleteas_wire_shelf (1).zip 2020-04-25 17:19 - 2020-04-25 17:20 - 006930995 _____ C:\Users\Iwona\Downloads\MTS_TheJim07_1897466_TheJim07_TS4_Painting_RaphaelSaintMichaelVanquishingSatan.zip 2020-04-25 17:18 - 2020-04-25 17:18 - 000608777 _____ C:\Users\Iwona\Downloads\MTS_player1220_1868169_LeonardodaVinciPaintings.zip 2020-04-25 17:08 - 2020-04-25 17:17 - 028042227 _____ C:\Users\Iwona\Downloads\MTS_LostNlonelyGrl86_1906292_LNLG-LaundryDay-Decor.rar 2020-04-25 17:08 - 2020-04-25 17:15 - 018650977 _____ C:\Users\Iwona\Downloads\MTS_TheJim07_1905420_TheJim07_TS4_Sculpture_HoganMinerva.zip 2020-04-25 17:08 - 2020-04-25 17:10 - 003866126 _____ C:\Users\Iwona\Downloads\MTS_SimsCraft_1903454_FPs2008JeepCommander.rar 2020-04-25 17:02 - 2020-04-25 17:03 - 003139106 _____ C:\Users\Iwona\Downloads\MTS_hippy70_1912625_globusbar44r4.rar 2020-04-25 17:01 - 2020-04-25 17:06 - 013170903 _____ C:\Users\Iwona\Downloads\MTS_TheJim07_1914654_TheJim07_TS4_Painting_RaphaelTheSchoolOfAthens.zip 2020-04-25 17:01 - 2020-04-25 17:02 - 002514047 _____ C:\Users\Iwona\Downloads\MTS_TheJim07_1914927_TheJim07_TS4_Painting_MorPortraitOfManPointingAtATableClock.zip 2020-04-25 16:55 - 2020-04-25 16:57 - 006125395 _____ C:\Users\Iwona\Downloads\MTS_TheJim07_1921229_TheJim07_TS4_Sculpture_BustOfYoungMarcusAurelius.zip 2020-04-25 16:23 - 2020-04-25 16:24 - 010566352 _____ C:\Users\Iwona\Downloads\MXIMS Mid Century Pack 01.rar 2020-04-25 16:19 - 2020-04-25 16:20 - 004079500 _____ C:\Users\Iwona\Downloads\MXIMS Sony TVs Fixed and Industrial Clothing Rack.7z 2020-04-25 16:09 - 2020-04-25 16:18 - 025987174 _____ C:\Users\Iwona\Downloads\MXIMS Mediocre Office Set.7z 2020-04-25 16:00 - 2020-04-25 16:05 - 015745153 _____ C:\Users\Iwona\Downloads\MXIMS HM George Nelson Set.7z 2020-04-25 15:41 - 2020-04-25 15:47 - 024487763 _____ C:\Users\Iwona\Downloads\PXL Ostrich Feather Stand.rar 2020-04-25 15:19 - 2020-04-25 15:19 - 000188907 _____ C:\Users\Iwona\Downloads\[Kijiko]Remove-EA-Lashes.zip 2020-04-25 14:39 - 2020-04-25 14:39 - 043103972 _____ C:\Users\Iwona\Downloads\[THISISTHEM] Reece's Skin&OVERLAY.zip 2020-04-25 14:37 - 2020-04-25 14:37 - 042124748 _____ C:\Users\Iwona\Downloads\[THISISTHEM] Lukas's Skin&OVERLAY.zip 2020-04-24 22:16 - 2020-04-24 22:18 - 005128768 _____ C:\Users\Iwona\Downloads\Ebonix_SupremesimsRemi.zip 2020-04-24 15:02 - 2020-04-24 15:05 - 010630846 _____ C:\Users\Iwona\Downloads\Kiko_ATripToBarneys.zip 2020-04-23 13:33 - 2020-04-23 13:33 - 004489137 _____ C:\Users\Iwona\Downloads\1396484.zip 2020-04-23 13:25 - 2020-04-23 13:27 - 008659403 _____ C:\Users\Iwona\Downloads\1486700.zip 2020-04-23 12:56 - 2020-04-23 12:56 - 000549555 _____ C:\Users\Iwona\Downloads\1459734.zip 2020-04-23 12:48 - 2020-04-23 12:48 - 006814327 _____ C:\Users\Iwona\Downloads\1441552.zip 2020-04-23 11:51 - 2020-04-23 11:52 - 013731946 _____ C:\Users\Iwona\Downloads\1448321.zip 2020-04-23 11:11 - 2020-04-23 11:11 - 000627815 _____ C:\Users\Iwona\Downloads\[Severinka] TS4 Alisha bedroom - wall board.package 2020-04-23 10:57 - 2020-04-23 10:57 - 001501084 _____ C:\Users\Iwona\Downloads\1359506.zip 2020-04-23 09:50 - 2020-04-23 09:50 - 001755479 _____ C:\Users\Iwona\Downloads\1368129.zip 2020-04-23 09:32 - 2020-04-23 09:32 - 000218774 _____ C:\Users\Iwona\Downloads\Rirann_Vanda.zip 2020-04-22 22:27 - 2020-04-22 22:30 - 012822221 _____ C:\Users\Iwona\Downloads\1432463.zip 2020-04-22 22:22 - 2020-04-22 22:23 - 005399446 _____ C:\Users\Iwona\Downloads\1327995.zip 2020-04-22 22:05 - 2020-04-22 22:07 - 008982690 _____ C:\Users\Iwona\Downloads\1326222.zip 2020-04-22 21:30 - 2020-04-22 21:30 - 000003065 _____ C:\Users\Iwona\Downloads\Snaitf_Nudists.zip 2020-04-22 21:01 - 2020-04-22 21:07 - 030855749 _____ C:\Users\Iwona\Downloads\Anto_S4Pack_Nerea.zip 2020-04-22 15:23 - 2020-04-22 15:32 - 043423390 _____ C:\Users\Iwona\Downloads\RemusSirion_Rskin19-F.package 2020-04-22 14:52 - 2020-04-22 14:54 - 010256714 _____ C:\Users\Iwona\Downloads\1308654.zip 2020-04-22 14:46 - 2020-04-22 14:47 - 000952622 _____ C:\Users\Iwona\Downloads\modelsims4 WOODEN FLOOR 2.package 2020-04-22 14:38 - 2020-04-22 14:40 - 005029281 _____ C:\Users\Iwona\Downloads\1475519.zip 2020-04-22 14:23 - 2020-04-22 14:24 - 007013165 _____ C:\Users\Iwona\Downloads\1483130.zip 2020-04-22 14:16 - 2020-04-22 14:19 - 015194161 _____ C:\Users\Iwona\Downloads\1482782.zip 2020-04-22 14:11 - 2020-04-22 14:16 - 026262938 _____ C:\Users\Iwona\Downloads\1475427.zip 2020-04-22 14:06 - 2020-04-22 14:10 - 016545765 _____ C:\Users\Iwona\Downloads\1485586.zip 2020-04-22 14:01 - 2020-04-22 14:05 - 022644007 _____ C:\Users\Iwona\Downloads\1427890.zip 2020-04-22 13:55 - 2020-04-22 13:56 - 006739053 _____ C:\Users\Iwona\Downloads\1473122.zip 2020-04-22 13:22 - 2020-04-22 13:22 - 001892934 _____ C:\Users\Iwona\Downloads\MATTE BRAND SIREN COLLECTION .zip 2020-04-22 13:12 - 2020-04-22 13:15 - 014482041 _____ C:\Users\Iwona\Downloads\KikoFendi Mini Collection.zip 2020-04-22 12:54 - 2020-04-22 12:55 - 004578409 _____ C:\Users\Iwona\Downloads\ColorfulTiles_Annett85.zip 2020-04-22 12:39 - 2020-04-22 12:39 - 001240324 _____ C:\Users\Iwona\Downloads\KikoLinkInBioPreset.package 2020-04-21 11:26 - 2020-04-21 11:53 - 095897412 _____ C:\Users\Iwona\Downloads\Anto_S4Hair_234_Sally.zip 2020-04-21 10:39 - 2020-04-21 10:39 - 001835188 _____ C:\Users\Iwona\Downloads\1296317.zip 2020-04-21 10:14 - 2020-04-21 10:17 - 011827245 _____ C:\Users\Iwona\Downloads\1304107.zip 2020-04-20 22:29 - 2020-04-20 22:30 - 001987906 _____ C:\Users\Iwona\Downloads\KikoZaddyBeards.zip 2020-04-20 18:12 - 2020-04-20 18:12 - 001422786 _____ C:\Users\Iwona\Downloads\KikoSaweetieHat.package 2020-04-20 18:05 - 2020-04-20 18:06 - 003168421 _____ C:\Users\Iwona\Downloads\1453981.zip 2020-04-20 17:27 - 2020-04-20 17:27 - 000001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk 2020-04-20 17:25 - 2020-04-20 17:25 - 003471520 _____ (Alexander Roshal) C:\Users\Iwona\Downloads\winrar-x64-590pl.exe 2020-04-20 17:19 - 2020-04-20 17:22 - 000000000 ____D C:\Users\Iwona\AppData\Local\TeamViewer 2020-04-20 17:19 - 2020-04-20 17:19 - 000001116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk 2020-04-20 17:19 - 2020-04-20 17:19 - 000001104 _____ C:\Users\Public\Desktop\TeamViewer.lnk 2020-04-20 17:19 - 2020-04-20 17:19 - 000000000 ____D C:\Users\Iwona\AppData\Roaming\TeamViewer 2020-04-20 17:18 - 2020-05-06 19:33 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2020-04-20 17:12 - 2020-04-20 17:17 - 027347176 _____ (TeamViewer Germany GmbH) C:\Users\Iwona\Downloads\TeamViewer_Setup.exe 2020-04-20 16:58 - 2020-04-20 16:58 - 016152647 _____ C:\Users\Iwona\Downloads\Dimplicity;s Sliders & Presets Folder.rar 2020-04-17 21:24 - 2020-04-17 21:24 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe 2020-04-17 21:24 - 2020-04-17 21:24 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll 2020-04-17 21:24 - 2020-04-17 21:24 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 004129624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 002951832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 001870408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe 2020-04-17 19:28 - 2020-04-17 19:28 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 001013000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll 2020-04-17 19:28 - 2020-04-17 19:28 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 018027520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 007017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 005910016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 004611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 003512320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe 2020-04-17 19:27 - 2020-04-17 19:27 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 001545216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe 2020-04-17 19:27 - 2020-04-17 19:27 - 001310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2020-04-17 19:27 - 2020-04-17 19:27 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2020-04-17 19:27 - 2020-04-17 19:27 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe 2020-04-17 19:27 - 2020-04-17 19:27 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe 2020-04-17 19:27 - 2020-04-17 19:27 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumapi.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iaspolcy.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2020-04-17 19:27 - 2020-04-17 19:27 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ias.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 022636544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 014818816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 006523048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 003753472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-04-17 19:26 - 2020-04-17 19:26 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001665216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-04-17 19:26 - 2020-04-17 19:26 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001077064 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-04-17 19:26 - 2020-04-17 19:26 - 001055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2020-04-17 19:26 - 2020-04-17 19:26 - 000775696 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2020-04-17 19:26 - 2020-04-17 19:26 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000673704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000673464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2020-04-17 19:26 - 2020-04-17 19:26 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2020-04-17 19:26 - 2020-04-17 19:26 - 000538160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000487784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-04-17 19:26 - 2020-04-17 19:26 - 000277864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe 2020-04-17 19:26 - 2020-04-17 19:26 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000123952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2020-04-17 19:26 - 2020-04-17 19:26 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000066624 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumapi.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000050544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe 2020-04-17 19:26 - 2020-04-17 19:26 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe 2020-04-17 19:26 - 2020-04-17 19:26 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wksprtPS.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsunattend.exe 2020-04-17 19:26 - 2020-04-17 19:26 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-04-17 19:26 - 2020-04-17 19:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-04-17 19:25 - 2020-04-17 19:25 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 003802624 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2020-04-17 19:25 - 2020-04-17 19:25 - 002767928 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 002086656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 001646048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2020-04-17 19:25 - 2020-04-17 19:25 - 001261808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 001243648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2020-04-17 19:25 - 2020-04-17 19:25 - 000759272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000618296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2020-04-17 19:25 - 2020-04-17 19:25 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000515600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000513576 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2020-04-17 19:25 - 2020-04-17 19:25 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2020-04-17 19:25 - 2020-04-17 19:25 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys 2020-04-17 19:25 - 2020-04-17 19:25 - 000147696 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 000142544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000033080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys 2020-04-17 19:25 - 2020-04-17 19:25 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe 2020-04-17 19:25 - 2020-04-17 19:25 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll 2020-04-17 19:25 - 2020-04-17 19:25 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 007849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 004563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-04-17 19:24 - 2020-04-17 19:24 - 003587384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2020-04-17 19:24 - 2020-04-17 19:24 - 003547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-04-17 19:24 - 2020-04-17 19:24 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-04-17 19:24 - 2020-04-17 19:24 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001603584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001512832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 001497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 001427456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001378528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2020-04-17 19:24 - 2020-04-17 19:24 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000684560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-04-17 19:24 - 2020-04-17 19:24 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2020-04-17 19:24 - 2020-04-17 19:24 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000339304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000127280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe 2020-04-17 19:24 - 2020-04-17 19:24 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll 2020-04-17 19:24 - 2020-04-17 19:24 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 017790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 002131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 002126144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 002114560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 001960448 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 001719808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 001263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe 2020-04-17 19:23 - 2020-04-17 19:23 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2020-04-17 19:23 - 2020-04-17 19:23 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2020-04-17 19:23 - 2020-04-17 19:23 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000437560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2020-04-17 19:23 - 2020-04-17 19:23 - 000416016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000297272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2020-04-17 19:23 - 2020-04-17 19:23 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2020-04-17 19:23 - 2020-04-17 19:23 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2020-04-17 19:23 - 2020-04-17 19:23 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2020-04-17 19:23 - 2020-04-17 19:23 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe 2020-04-17 19:23 - 2020-04-17 19:23 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000151352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys 2020-04-17 19:23 - 2020-04-17 19:23 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe 2020-04-17 19:23 - 2020-04-17 19:23 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys 2020-04-17 19:23 - 2020-04-17 19:23 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe 2020-04-17 19:23 - 2020-04-17 19:23 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys 2020-04-17 19:23 - 2020-04-17 19:23 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll 2020-04-17 19:23 - 2020-04-17 19:23 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys 2020-04-17 19:23 - 2020-04-17 19:23 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys 2020-04-17 19:23 - 2020-04-17 19:23 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys 2020-04-17 18:33 - 2020-03-17 05:56 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-04-17 18:32 - 2020-03-17 05:57 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-04-16 18:24 - 2020-04-17 18:25 - 000000000 ____D C:\Users\Iwona\AppData\LocalLow\BitTorrent 2020-04-14 21:27 - 2020-04-14 21:27 - 006230072 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe ==================== Ein Monat (geänderte) ================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2020-05-07 15:46 - 2020-03-23 21:10 - 000000000 ____D C:\Users\Iwona\AppData\Roaming\Origin 2020-05-07 15:44 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-05-07 15:36 - 2014-03-06 17:15 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat 2020-05-07 15:33 - 2019-09-01 19:56 - 000004156 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{7B84023A-C328-474C-9909-2D74FF73801C} 2020-05-07 15:31 - 2014-04-03 16:06 - 000066420 _____ C:\WINDOWS\system32\Drivers\fvstore.dat 2020-05-07 14:57 - 2019-09-01 19:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-05-06 20:19 - 2020-03-23 21:13 - 000000000 ____D C:\Program Files (x86)\Origin Games 2020-05-06 20:19 - 2014-07-01 13:28 - 000000000 ____D C:\ProgramData\Origin 2020-05-06 20:15 - 2020-03-23 21:10 - 000000000 ____D C:\Users\Iwona\AppData\Local\Origin 2020-05-06 19:45 - 2018-10-09 22:45 - 000000000 ____D C:\Users\Iwona\AppData\Local\D3DSCache 2020-05-06 19:36 - 2018-05-10 17:10 - 000000000 ____D C:\Users\Iwona\AppData\Roaming\Spotify 2020-05-06 19:35 - 2018-05-10 17:27 - 000000000 ____D C:\Users\Iwona\AppData\Local\Spotify 2020-05-06 19:33 - 2015-01-24 03:16 - 000000000 __SHD C:\Users\Iwona\IntelGraphicsProfiles 2020-05-06 19:32 - 2019-09-01 19:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-05-06 19:32 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-05-06 19:00 - 2019-09-01 19:25 - 000000000 ____D C:\Users\Iwona 2020-05-06 13:11 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-05-06 13:11 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-05-05 11:04 - 2019-09-01 19:25 - 000000000 ____D C:\Users\Gast.Peaches 2020-05-05 11:04 - 2019-09-01 19:25 - 000000000 ____D C:\Users\Administrator.Peaches 2020-05-01 20:02 - 2020-03-23 21:12 - 000000000 ____D C:\Program Files (x86)\Origin 2020-05-01 12:49 - 2019-09-01 19:14 - 000466184 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-05-01 12:47 - 2014-03-06 16:57 - 000000000 ____D C:\Program Files\WinRAR 2020-04-28 19:04 - 2015-09-07 23:14 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-04-20 17:27 - 2014-03-06 16:57 - 000000000 ____D C:\Users\Iwona\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2020-04-20 17:27 - 2014-03-06 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2020-04-18 11:34 - 2019-09-01 19:38 - 001723292 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-04-18 11:34 - 2019-03-19 14:16 - 000745142 _____ C:\WINDOWS\system32\perfh007.dat 2020-04-18 11:34 - 2019-03-19 14:16 - 000150430 _____ C:\WINDOWS\system32\perfc007.dat 2020-04-18 11:34 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF 2020-04-18 11:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-04-18 11:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2020-04-18 11:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-04-18 11:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-04-18 11:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning 2020-04-18 11:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-04-17 23:36 - 2014-09-29 16:22 - 000000000 ____D C:\Users\Iwona\AppData\Roaming\BitTorrent 2020-04-17 21:37 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-04-17 18:21 - 2019-09-01 19:56 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1958920722-3115410223-1745243532-1001 2020-04-17 18:21 - 2019-09-01 19:25 - 000002420 _____ C:\Users\Iwona\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-04-17 18:21 - 2015-01-24 03:24 - 000000000 ___RD C:\Users\Iwona\OneDrive 2020-04-14 21:27 - 2019-09-01 19:56 - 000004626 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier 2020-04-14 21:27 - 2019-09-01 19:56 - 000004440 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater 2020-04-14 21:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2020-04-14 21:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2020-04-09 21:18 - 2020-03-31 10:50 - 000001448 _____ C:\Users\Public\Desktop\The Sims 4.lnk ==================== SigCheck ============================ (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) ==================== Ende von FRST.txt ========================