Solved I can't remove the "Occamy.C" trojan

sollussekundas · May 6, 2020

Hello there. My Windows Defender says it has detected Trojan:Win32/Occamy.C and it's removed, but this message appears every time when I turn the PC on.
I checked with every antivirus that I know: malwarebytes, kaspersky, dr. web, trojan killer, etc. None of them found anything.
Can you help me please?

Broni · May 6, 2020

Please, complete all steps listed here: http://www.techspot.com/vb/topic58138.html
Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
Attached logs won't be reviewed.

Please, observe following rules:

Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
If you're stuck, or you're not sure about certain step, always ask before doing anything else.
Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
Never run more than one scan at a time.
Keep updating me regarding your computer behavior, good, or bad.
The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

sollussekundas · May 6, 2020

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020
durchgeführt von Admin (Administrator) auf DESKTOP-G75MQVV (06-05-2020 18:01:58)
Gestartet von C:\Users\Admin\Downloads
Geladene Profile: Admin (Verfügbare Profile: Admin)
Platform: Windows 10 Pro Version 1909 18363.815 (X64) Sprache: German (Germany)
Standard-Browser: Chrome
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14>
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_48973fc6c96c696a\RstMwService.exe
(Kristjan Skutta -> ) D:\Games\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> ) C:\Windows\runSW.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp. -> Realtek) C:\Windows\SwUSB.exe
(TEFINCOM S.A. -> ) C:\Program Files (x86)\NordVPN\nordvpn-service.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9277520 2020-04-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [108728 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Launch 0 FwCustom] => C:\Program Files (x86)\SKILLER MECH SGK3\SKILLER MECH SGK3.exe [3324416 2017-08-08] (0) [Datei ist nicht signiert]
HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3372832 2020-04-28] (Valve -> Valve Corporation)
HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\Run: [GameCenter] => C:\Users\Admin\AppData\Local\GameCenter\GameCenter.exe [10394720 2020-05-02] (Mail.Ru LLC -> )
HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\Run: [NordVPN] => C:\Program Files (x86)\NordVPN\NordVPN.exe [1825744 2020-04-21] (TEFINCOM S.A. -> NordVPN)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-30] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {1425E1E6-8729-4C01-803E-5D5B8FC1C986} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {260CE7D5-E09F-4C79-B199-E8C48F6F6AA2} - System32\Tasks\UninstallTool_SkipUAC_Admin => C:\Program Files\Uninstall Tool\UninstallTool.exe [4924576 2020-04-16] (CrystalBit Solutions -> CrystalIDEA Software) [Datei ist nicht signiert]
Task: {26EFDCDF-C065-475E-A350-E9399CCF66DC} - System32\Tasks\Driver Booster SkipUAC (Admin) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [7929104 2020-04-07] (IObit) [Datei ist nicht signiert]
Task: {42D0E9E6-837D-4DB1-9A21-C704CCFDF75F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-21] (Google LLC -> Google LLC)
Task: {4F98F62C-B639-4960-B0C8-87CA08840908} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {54001854-66A4-4EC1-B24D-13C9B9989F3D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5B7425E5-1AB0-4994-868C-BE3AC94EDE1D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B4DDDC2-7ECC-43B5-8DF2-0ADDB1EE964C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-05-06] (Avast Software s.r.o. -> Avast Software)
Task: {B8FFDF9E-A947-48C4-BBC5-62DD263E8AAE} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D3A43A9E-0412-4654-A497-D271385A0B0A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D71AB58C-C817-4239-82DA-5A75DD88D577} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3339472 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
Task: {D88275BC-877F-4E7B-9557-F7C62A50E35B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DB16C10B-DA1D-48EA-88AA-9A9141C43226} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DEADA28D-D1F9-4820-B79C-F278D2FEF05B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-21] (Google LLC -> Google LLC)
Task: {E3CF0C44-D570-45CA-B5CC-4DC7EE1F9D04} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E466671A-2B83-4B04-BBE0-CDFC4CABDBCC} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {F2E82A3E-01AF-4AB7-962D-1C0210D546AB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {FFB1B2FB-E26B-4BD5-8EE9-A4B6F1835634} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\..\Interfaces\{59d9ad76-7de6-46ab-9e14-233f6ef517c4}: [DhcpNameServer] 103.86.96.100 103.86.99.100
Tcpip\..\Interfaces\{9165677b-a520-4cde-b217-ef17fb4a3e0d}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{cda9a4af-60d4-472a-8182-207e42f5813d}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{f9741b27-973a-429e-96b6-bec8aa7a6b65}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=COS2&ptag=D041020-A74DCDF78DC&form=CONMHP&conlogo=CT3335043
SearchScopes: HKU\S-1-5-21-3854084222-4285785828-2850556555-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D041020-N0700A74DCDF78DC&form=CONBDF&conlogo=CT3335043&q={searchTerms}
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-25] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-25] (Oracle America, Inc. -> Oracle Corporation)

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2020-05-06]
CHR Extension: (Slides) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-21]
CHR Extension: (Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-21]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-04-21]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-21]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-05-06]
CHR Extension: (Sheets) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-21]
CHR Extension: (Google Docs Offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-21]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-21]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-05-05]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-21]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-04-21]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-21]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-03]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6350752 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [348968 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-04-25] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-04-26] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2406576 2017-03-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\System32\MixedRealityRuntime.dll [139952 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll [105840 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [20119200 2020-05-02] (Mail.Ru LLC -> LLC Mail.Ru)
R2 nordvpn-service; C:\Program Files (x86)\NordVPN\nordvpn-service.exe [237520 2020-04-21] (TEFINCOM S.A. -> )
S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2495280 2020-04-29] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3446576 2020-04-29] (Electronic Arts, Inc. -> Electronic Arts)
R2 RstMwService; C:\WINDOWS\System32\DriverStore\FileRepository\iaahcic.inf_amd64_48973fc6c96c696a\RstMwService.exe [2241536 2020-04-21] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 RunSwUSB; C:\Windows\runSW.exe [59232 2018-02-07] (Realtek Semiconductor Corp. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wallpaper Engine Service; D:\Games\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [350712 2020-04-25] (Kristjan Skutta -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205880 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [234560 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [178760 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2020-05-06] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175704 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [501472 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851592 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460992 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [235488 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319120 2020-05-06] (Avast Software s.r.o. -> AVAST Software)
S3 CisUtMonitor; C:\WINDOWS\System32\DRIVERS\CisUtMonitor.sys [54800 2018-11-24] (Software Security Systems ChTUP -> CrystalIdea Software)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-04-21] (Martin Malik - REALiX -> REALiX(tm))
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [1339360 2020-04-21] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [69632 2017-03-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S0 IFCoEVB; C:\WINDOWS\System32\drivers\ifp63x64.sys [198632 2016-10-08] (Intel(R) INTELND1617 -> Intel(R) Corporation)
R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [266128 2020-04-21] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MonectMiniportDriver; C:\WINDOWS\System32\drivers\MonectMiniportDriver.sys [27992 2020-04-04] (广州凝思科技有限公司 -> )
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv.sys [19351048 2020-05-02] (Mail.Ru LLC -> LLC Mail.Ru)
R3 nlwt; C:\WINDOWS\system32\DRIVERS\nlwt.sys [39360 2020-04-20] (TEFINCOM S.A. -> WireGuard LLC)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\nvlddmkm.sys [23446760 2020-04-21] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1162832 2020-04-21] (Realtek Semiconductor Corp. -> Realtek )
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [7148864 2018-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [56840 2020-04-21] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssbthid; C:\WINDOWS\System32\drivers\ssbthid.sys [43824 2019-12-23] (SteelSeries ApS -> )
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-12-23] (SteelSeries ApS -> )
S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [47824 2019-12-23] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 STTub30; C:\WINDOWS\System32\Drivers\STTub30.sys [54104 2019-12-23] (STMicroelectronics -> STMicroelectronics)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-06] (Windscribe Limited -> The OpenVPN Project)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2019-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-05-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [394680 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [51536 2018-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

==================== Ein Monat (erstellte) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2020-05-06 18:01 - 2020-05-06 18:02 - 000023078 _____ C:\Users\Admin\Downloads\FRST.txt
2020-05-06 18:01 - 2020-05-06 18:01 - 002283520 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2020-05-06 18:01 - 2020-05-06 18:01 - 000000000 ____D C:\Users\Admin\Downloads\FRST-OlderVersion
2020-05-06 17:59 - 2020-05-06 17:59 - 000000000 ___HD C:\$AV_ASW
2020-05-06 17:56 - 2020-05-06 17:56 - 000501472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-05-06 17:56 - 2020-05-06 17:56 - 000337560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-05-06 17:56 - 2020-05-06 17:56 - 000235488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-05-06 17:56 - 2020-05-06 17:56 - 000175704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-05-06 17:53 - 2020-05-06 17:53 - 000001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-05-06 17:53 - 2020-05-06 17:53 - 000001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-05-06 17:53 - 2020-05-06 17:53 - 000001967 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-05-06 17:53 - 2020-05-06 17:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-05-06 17:53 - 2020-05-06 17:53 - 000000000 ____D C:\Users\Admin\AppData\Roaming\AVAST Software
2020-05-06 17:52 - 2020-05-06 17:56 - 000851592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-05-06 17:52 - 2020-05-06 17:56 - 000460992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-05-06 17:52 - 2020-05-06 17:56 - 000319120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-05-06 17:52 - 2020-05-06 17:56 - 000205880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-05-06 17:52 - 2020-05-06 17:56 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-05-06 17:52 - 2020-05-06 17:56 - 000084856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-05-06 17:52 - 2020-05-06 17:56 - 000042784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-05-06 17:52 - 2020-05-06 17:56 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-05-06 17:52 - 2020-05-06 17:56 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-05-06 17:52 - 2020-05-06 17:55 - 000234560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-05-06 17:52 - 2020-05-06 17:55 - 000178760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-05-06 17:52 - 2020-05-06 17:55 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-05-06 17:52 - 2020-05-06 17:52 - 000016304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2020-05-06 17:52 - 2020-05-06 17:52 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2020-05-06 17:52 - 2020-05-06 17:52 - 000000000 ____D C:\Program Files\AVAST Software
2020-05-06 17:51 - 2020-05-06 17:52 - 000000000 ____D C:\ProgramData\AVAST Software
2020-05-06 17:44 - 2020-05-06 18:02 - 000000000 ____D C:\FRST
2020-05-06 17:11 - 2020-05-06 17:11 - 000000000 ____D C:\Users\Admin\AppData\Local\mbam
2020-05-06 17:10 - 2020-05-06 17:54 - 000000000 ____D C:\Program Files (x86)\Malwarebytes
2020-05-06 17:10 - 2020-05-06 17:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\etc\BACKUP
2020-05-06 17:10 - 2020-05-06 17:10 - 000000000 ____D C:\Users\Admin\AppData\Local\mbamtray
2020-05-06 17:08 - 2020-05-06 17:08 - 000000000 ____D C:\KVRT_Data
2020-05-06 14:16 - 2020-05-06 16:05 - 000000000 ____D C:\PABCWork.NET
2020-05-06 14:14 - 2012-11-02 02:11 - 000000000 ____D C:\Users\Admin\Desktop\Pascal ABC 3.0.1 Rus Portable
2020-05-04 23:32 - 2020-05-05 19:08 - 000013022 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
2020-05-03 19:29 - 2020-05-03 19:29 - 000000749 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-05-03 19:29 - 2020-05-03 19:29 - 000000000 ____D C:\Users\Admin\AppData\Local\ESET
2020-05-03 19:16 - 2020-05-03 19:16 - 000000000 ____D C:\Users\Admin\Desktop\x64
2020-05-03 19:16 - 2020-05-03 19:16 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Process Hacker 2
2020-05-03 18:57 - 2020-05-03 18:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\dnSpy
2020-05-03 18:48 - 2020-05-03 18:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Notepad++
2020-05-03 18:48 - 2020-05-03 18:48 - 000001104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2020-05-03 18:48 - 2020-05-03 18:48 - 000000000 ____D C:\Program Files (x86)\Notepad++
2020-05-03 18:45 - 2020-05-03 18:45 - 000000000 ____D C:\Users\Admin\AppData\Local\dnSpy
2020-05-03 18:33 - 2020-05-03 18:40 - 000000000 _____ C:\Users\Admin\Documents\New CW Hack v16.rar
2020-05-03 15:29 - 2020-05-03 15:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WindowsWord
2020-05-03 15:29 - 2020-05-03 15:29 - 000000000 ____D C:\Program Files (x86)\WindowsWord
2020-05-02 20:46 - 2020-05-02 20:46 - 000000022 _____ C:\Users\Admin\Desktop\New Text Document.txt
2020-05-02 20:43 - 2020-05-02 20:43 - 020119200 _____ (LLC Mail.Ru) C:\WINDOWS\system32\mracsvc.exe
2020-05-02 20:43 - 2020-05-02 20:43 - 019351048 _____ (LLC Mail.Ru) C:\WINDOWS\system32\Drivers\mracdrv.sys
2020-05-02 20:42 - 2020-05-02 20:42 - 000000268 _____ C:\Users\Admin\Desktop\Warface.url
2020-05-02 20:06 - 2020-05-03 22:22 - 000000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2020-05-02 20:06 - 2020-05-02 20:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-05-02 20:06 - 2020-05-02 20:06 - 000000000 ____D C:\Program Files (x86)\VideoLAN
2020-05-02 20:03 - 2020-05-02 20:05 - 1467234981 _____ C:\Users\Admin\Desktop\[JAM_CLUB]_Kami_no_Tou_05_[1080p][RUS][DUB].mp4
2020-05-02 17:01 - 2020-05-02 17:01 - 000000420 _____ C:\Users\Admin\Desktop\This PC - Shortcut.lnk
2020-05-02 16:58 - 2020-05-02 16:58 - 000002888 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-05-02 16:51 - 2020-05-02 16:51 - 000000000 ____D C:\Users\Admin\Doctor Web
2020-05-02 16:51 - 2020-05-02 16:51 - 000000000 ____D C:\ProgramData\Doctor Web
2020-05-02 00:39 - 2020-05-02 00:39 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 007011840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 006291968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 003822080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 002190648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001719336 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001616912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001559040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001497416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001386296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000959800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\assignedaccessmanagersvc.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000827192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000816952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000666424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000649016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000643072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessManager.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000502784 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000494904 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000396088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000259384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2020-05-02 00:39 - 2020-05-02 00:39 - 000230416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000181560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2020-05-02 00:39 - 2020-05-02 00:39 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2020-05-02 00:39 - 2020-05-02 00:39 - 000139952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityRuntime.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwclientres.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000105840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000037688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2020-05-02 00:39 - 2020-05-02 00:39 - 000022032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScriptRunner.exe
2020-05-02 00:39 - 2020-05-02 00:39 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwstreamingux.dll
2020-05-02 00:38 - 2020-05-02 00:39 - 018028032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 022637056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 017791488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 014819328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 007899528 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 007267328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 007257816 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 006522840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 006434304 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 006079184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 005757872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 005109760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 004858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 004624880 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 004565456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 004009472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003983360 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 003805696 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003747328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003655168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003587392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 003371416 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002769000 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002461696 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002259664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002255136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002147328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001943040 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001934824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001766400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001734144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001686016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001667600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001507328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 001413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 001393968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001178608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001077264 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 001023128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000999616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000979264 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000945192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000920576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000915208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000892488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000891544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000874312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000847168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000801832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000683848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000676072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000673488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000673296 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000639400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000637480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000631608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2020-05-02 00:38 - 2020-05-02 00:38 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000592944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000589400 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000568136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000543824 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000501200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll

sollussekundas · May 6, 2020

2020-05-02 00:38 - 2020-05-02 00:38 - 000466344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000460408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000375520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000325432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000250696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000211472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000147776 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000142760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000124504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000107616 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000089544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000069704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000066832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000060432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000058696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\plasrv.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-05-01 23:57 - 2020-05-01 23:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-05-01 23:57 - 2020-05-01 23:57 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 007849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 005910016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 004611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 003547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 003512320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 002951832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 002369576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001870408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-05-01 23:55 - 2020-05-01 23:55 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001665216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001659408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001646048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001603584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001545216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 001512832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001427456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001378528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 001261808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001243648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001013000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000775696 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000759272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000684560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000673464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000618296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-05-01 23:55 - 2020-05-01 23:55 - 000538160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000515600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000513576 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000487784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-05-01 23:55 - 2020-05-01 23:55 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-05-01 23:55 - 2020-05-01 23:55 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000339304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000147696 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumapi.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumapi.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iaspolcy.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000033080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ias.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wksprtPS.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsunattend.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 002131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 002114560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 001960448 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 001719808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 001263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2020-05-01 23:54 - 2020-05-01 23:54 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000437560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000297272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-05-01 23:54 - 2020-05-01 23:54 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000151352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys
2020-05-01 23:50 - 2020-03-17 05:57 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-05-01 23:50 - 2020-03-17 05:56 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-05-01 20:48 - 2020-05-03 21:10 - 000000000 ____D C:\Users\Admin\AppData\Roaming\obs-studio
2020-05-01 20:48 - 2020-05-01 20:48 - 000001052 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2020-05-01 20:48 - 2020-05-01 20:48 - 000001052 _____ C:\ProgramData\Desktop\OBS Studio.lnk
2020-05-01 20:48 - 2020-05-01 20:48 - 000000000 ____D C:\ProgramData\obs-studio-hook
2020-05-01 20:48 - 2020-05-01 20:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2020-05-01 20:48 - 2020-05-01 20:48 - 000000000 ____D C:\Program Files\obs-studio
2020-05-01 19:10 - 2020-05-01 19:10 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\HotGlue
2020-05-01 16:15 - 2020-05-01 16:15 - 000000793 _____ C:\Users\Public\Desktop\CWClient.lnk
2020-05-01 16:15 - 2020-05-01 16:15 - 000000793 _____ C:\ProgramData\Desktop\CWClient.lnk
2020-05-01 15:29 - 2020-05-01 15:29 - 000000219 _____ C:\Users\Admin\Desktop\Counter-Strike Global Offensive.url
2020-05-01 00:59 - 2020-05-01 00:59 - 000000000 ____D C:\Users\Admin\Documents\Call of Duty Modern Warfare
2020-05-01 00:25 - 2020-05-01 00:25 - 000001078 _____ C:\Users\Public\Desktop\Call of Duty Modern Warfare.lnk
2020-05-01 00:25 - 2020-05-01 00:25 - 000001078 _____ C:\ProgramData\Desktop\Call of Duty Modern Warfare.lnk
2020-05-01 00:25 - 2020-05-01 00:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Modern Warfare
2020-04-30 23:31 - 2020-04-30 23:31 - 000000222 _____ C:\Users\Admin\Desktop\Dead by Daylight.url
2020-04-30 20:50 - 2020-05-01 01:33 - 000000000 ____D C:\Program Files (x86)\Call of Duty Modern Warfare
2020-04-30 20:50 - 2020-04-30 20:50 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2020-04-30 20:47 - 2020-05-01 01:33 - 000000000 ____D C:\Users\Admin\AppData\Local\Battle.net
2020-04-30 20:47 - 2020-04-30 20:50 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Battle.net
2020-04-30 20:47 - 2020-04-30 20:47 - 000000962 _____ C:\Users\Public\Desktop\Battle.net.lnk
2020-04-30 20:47 - 2020-04-30 20:47 - 000000962 _____ C:\ProgramData\Desktop\Battle.net.lnk
2020-04-30 20:47 - 2020-04-30 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2020-04-30 20:46 - 2020-04-30 20:50 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-04-30 20:43 - 2020-04-30 20:47 - 000000000 ____D C:\Users\Admin\AppData\Local\Blizzard Entertainment
2020-04-30 20:42 - 2020-04-30 20:42 - 000000000 ____D C:\ProgramData\Battle.net
2020-04-30 20:42 - 2020-04-30 20:42 - 000000000 ____D C:\Program Files\NordVPN network TUN
2020-04-30 20:42 - 2020-04-30 20:42 - 000000000 ____D C:\Program Files (x86)\NordVPN
2020-04-27 10:48 - 2020-04-27 10:48 - 000000000 ____D C:\Users\Admin\AppData\Local\IsolatedStorage
2020-04-26 17:26 - 2020-04-26 17:26 - 000000000 ____D C:\Users\Admin\Documents\My Games
2020-04-26 17:26 - 2020-04-26 17:26 - 000000000 ____D C:\Users\Admin\AppData\Roaming\EasyAntiCheat
2020-04-26 17:26 - 2020-04-26 17:26 - 000000000 ____D C:\ProgramData\For Honor Data
2020-04-26 17:10 - 2020-04-26 17:10 - 000000000 ____D C:\ProgramData\Ubisoft
2020-04-26 17:09 - 2020-04-26 18:25 - 000000000 ____D C:\Users\Admin\AppData\Local\Ubisoft Game Launcher
2020-04-26 17:09 - 2020-04-26 17:09 - 000001278 _____ C:\Users\Admin\Desktop\Uplay.lnk
2020-04-26 17:09 - 2020-04-26 17:09 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2020-04-26 17:09 - 2020-04-26 17:09 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2020-04-26 12:05 - 2020-04-26 12:05 - 000000222 _____ C:\Users\Admin\Desktop\For Honor.url
2020-04-25 22:17 - 2020-04-25 22:17 - 000000830 _____ C:\Users\Public\Desktop\SKILLER MECH SGK3.lnk
2020-04-25 22:17 - 2020-04-25 22:17 - 000000830 _____ C:\ProgramData\Desktop\SKILLER MECH SGK3.lnk
2020-04-25 22:17 - 2020-04-25 22:17 - 000000000 ____D C:\Users\Admin\Documents\FwCustom_09A
2020-04-25 22:17 - 2020-04-25 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SKILLER MECH SGK3
2020-04-25 22:17 - 2020-04-25 22:17 - 000000000 ____D C:\Program Files (x86)\SKILLER MECH SGK3
2020-04-25 19:38 - 2020-04-25 19:38 - 000000222 _____ C:\Users\Admin\Desktop\Wallpaper Engine.url
2020-04-25 17:50 - 2020-04-25 17:50 - 000000000 ____D C:\Users\Admin\AppData\Local\UnrealEngine
2020-04-25 17:50 - 2020-04-25 17:50 - 000000000 ____D C:\Users\Admin\AppData\Local\TslGame
2020-04-25 17:49 - 2020-04-25 17:49 - 000000000 ____D C:\Users\Admin\AppData\Local\BattlEye
2020-04-25 17:11 - 2020-04-25 17:11 - 000001184 _____ C:\WINDOWS\system32\Drivers\etc\hosts.rollback
2020-04-25 17:11 - 2020-04-22 18:41 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.backup
2020-04-25 17:01 - 2020-04-25 17:09 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.minecraft
2020-04-25 17:01 - 2020-04-25 17:02 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
2020-04-25 17:01 - 2020-04-25 17:01 - 000001103 _____ C:\Users\Public\Desktop\Minecraft Launcher.lnk
2020-04-25 17:01 - 2020-04-25 17:01 - 000001103 _____ C:\ProgramData\Desktop\Minecraft Launcher.lnk
2020-04-25 17:01 - 2020-04-25 17:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher
2020-04-25 16:21 - 2020-04-25 16:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-Link
2020-04-25 16:21 - 2020-04-25 16:21 - 000000000 ____D C:\Program Files (x86)\TP-Link

sollussekundas · May 6, 2020

2020-04-25 16:20 - 2020-04-25 22:17 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-04-25 16:20 - 2020-04-25 16:21 - 000000000 ____D C:\Users\Admin\AppData\Local\TP-Link
2020-04-25 16:20 - 2020-04-25 16:20 - 000000000 ____D C:\ProgramData\TP-Link
2020-04-25 16:20 - 2018-04-10 03:51 - 007148864 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\rtwlanu.sys
2020-04-25 16:20 - 2018-04-10 03:51 - 007148864 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlanu.sys
2020-04-25 16:20 - 2018-04-10 03:51 - 001183040 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\Rtlihvs.dll
2020-04-25 16:20 - 2018-04-10 03:51 - 000115008 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\RtlExtUI.dll
2020-04-25 16:20 - 2018-04-10 03:51 - 000049472 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\system32\rtlCoInst.dll
2020-04-25 16:20 - 2018-04-10 03:51 - 000026475 _____ C:\WINDOWS\system32\netrtwlanu.cat
2020-04-25 16:20 - 2018-04-10 00:44 - 000013284 _____ C:\WINDOWS\system32\PwrTblRate_T4Uv3_US_Enc.txt
2020-04-25 16:20 - 2018-04-10 00:44 - 000013284 _____ C:\WINDOWS\system32\Drivers\PwrTblRate_T4Uv3_US_Enc.txt
2020-04-25 16:20 - 2018-04-10 00:44 - 000011347 _____ C:\WINDOWS\system32\rtlCoInst.dat
2020-04-25 16:20 - 2018-04-10 00:44 - 000011087 _____ C:\WINDOWS\system32\PwrTblLmt_T4Uv3_US_Enc.txt
2020-04-25 16:20 - 2018-04-10 00:44 - 000011087 _____ C:\WINDOWS\system32\Drivers\PwrTblLmt_T4Uv3_US_Enc.txt
2020-04-25 16:20 - 2018-02-07 19:06 - 000509792 _____ (Realtek) C:\WINDOWS\SwUSB.exe
2020-04-25 16:20 - 2018-02-07 19:06 - 000059232 _____ () C:\WINDOWS\runSW.exe
2020-04-25 15:36 - 2020-04-25 15:36 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-04-25 15:34 - 2020-04-25 15:34 - 000000569 _____ C:\Users\Public\Desktop\DOOM Eternal.lnk
2020-04-25 15:34 - 2020-04-25 15:34 - 000000569 _____ C:\ProgramData\Desktop\DOOM Eternal.lnk
2020-04-25 15:31 - 2020-04-25 15:36 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.hcs
2020-04-25 15:31 - 2020-04-25 15:31 - 000514502 _____ () C:\Users\Admin\Desktop\HCS.exe
2020-04-25 15:31 - 2020-04-25 15:31 - 000114344 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-04-25 15:31 - 2020-04-25 15:31 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Sun
2020-04-25 15:31 - 2020-04-25 15:31 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Sun
2020-04-25 15:31 - 2020-04-25 15:31 - 000000000 ____D C:\ProgramData\Oracle
2020-04-25 15:31 - 2020-04-25 15:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-04-25 15:31 - 2020-04-25 15:31 - 000000000 ____D C:\Program Files (x86)\Java
2020-04-25 15:29 - 2020-04-26 15:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2020-04-25 15:29 - 2020-04-25 15:29 - 000000907 _____ C:\Users\Admin\Desktop\qBittorrent.lnk
2020-04-25 15:29 - 2020-04-25 15:29 - 000000000 ____D C:\Program Files\qBittorrent
2020-04-25 13:45 - 2020-04-25 13:45 - 000000000 ____D C:\Users\Admin\AppData\Local\Electronic Arts
2020-04-25 13:36 - 2020-04-26 17:26 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2020-04-25 13:36 - 2020-04-25 13:36 - 000001199 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2020-04-25 13:36 - 2020-04-25 13:36 - 000001199 _____ C:\ProgramData\Desktop\Apex Legends.lnk
2020-04-25 13:36 - 2020-04-25 13:36 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2020-04-25 12:41 - 2020-04-25 12:41 - 000000222 _____ C:\Users\Admin\Desktop\PLAYERUNKNOWN'S BATTLEGROUNDS.url
2020-04-25 02:23 - 2020-04-25 02:23 - 000001339 _____ C:\Users\Admin\Desktop\FurMark.lnk
2020-04-24 23:32 - 2020-05-06 17:57 - 000003142 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2020-04-23 16:10 - 2020-04-23 16:10 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashRpt
2020-04-23 15:10 - 2020-04-23 15:20 - 000000000 ____D C:\Users\Admin\Documents\Mount and Blade II Bannerlord
2020-04-23 15:10 - 2020-04-23 15:10 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2020-04-23 14:29 - 2020-05-06 17:57 - 000000000 ____D C:\Users\Admin\AppData\Local\GameCenter
2020-04-23 14:29 - 2020-04-23 16:02 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mail.ru
2020-04-23 14:18 - 2020-04-23 14:18 - 000000222 _____ C:\Users\Admin\Desktop\This War of Mine.url
2020-04-22 22:36 - 2020-04-22 22:36 - 000001409 _____ C:\Users\Admin\Desktop\Launcher Mount & Blade II Bannerlord.lnk
2020-04-22 22:36 - 2020-04-22 22:36 - 000001037 _____ C:\Users\Admin\Desktop\Mount & Blade II Bannerlord.lnk
2020-04-22 22:23 - 2020-05-01 16:15 - 000000000 ____D C:\Games
2020-04-22 18:45 - 2020-04-30 20:42 - 000002039 _____ C:\Users\Public\Desktop\NordVPN.lnk
2020-04-22 18:45 - 2020-04-30 20:42 - 000002039 _____ C:\ProgramData\Desktop\NordVPN.lnk
2020-04-22 18:45 - 2020-04-30 20:42 - 000000000 ____D C:\Users\Admin\AppData\Local\NordVPN
2020-04-22 18:45 - 2020-04-22 18:45 - 000000034 _____ C:\Users\Admin\Desktop\nord.txt
2020-04-22 18:45 - 2020-04-22 18:45 - 000000000 ____D C:\ProgramData\NordVPN
2020-04-22 18:43 - 2020-04-22 18:43 - 000000000 ____D C:\Program Files (x86)\NordVPN network TAP
2020-04-22 18:19 - 2020-04-25 17:18 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-04-22 18:18 - 2020-05-01 00:12 - 000000000 ____D C:\Program Files (x86)\Origin
2020-04-22 18:18 - 2020-04-22 18:18 - 000001066 _____ C:\Users\Public\Desktop\Origin.lnk
2020-04-22 18:18 - 2020-04-22 18:18 - 000001066 _____ C:\ProgramData\Desktop\Origin.lnk
2020-04-22 18:18 - 2020-04-22 18:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2020-04-22 18:18 - 2020-04-22 18:18 - 000000000 ____D C:\ProgramData\Electronic Arts
2020-04-22 18:15 - 2020-04-25 17:49 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Origin
2020-04-22 18:15 - 2020-04-25 17:49 - 000000000 ____D C:\Users\Admin\AppData\Local\Origin
2020-04-22 18:15 - 2020-04-25 17:49 - 000000000 ____D C:\ProgramData\Origin
2020-04-22 18:15 - 2020-04-22 18:15 - 000000000 ____D C:\Users\Admin\.QtWebEngineProcess
2020-04-22 18:15 - 2020-04-22 18:15 - 000000000 ____D C:\Users\Admin\.Origin
2020-04-22 17:37 - 2020-04-22 17:37 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\AbsolutSoft
2020-04-22 14:21 - 2020-04-22 14:21 - 000000000 ____D C:\Users\Admin\ansel
2020-04-22 14:21 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2020-04-22 14:21 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2020-04-22 14:21 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2020-04-22 14:21 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2020-04-22 14:21 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2020-04-22 14:21 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2020-04-22 04:34 - 2020-04-30 18:45 - 000007594 _____ C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
2020-04-22 04:16 - 2020-04-22 04:16 - 000000222 _____ C:\Users\Admin\Desktop\Kingdom Come Deliverance.url
2020-04-22 04:00 - 2020-05-06 17:49 - 000000000 ____D C:\Users\Admin\AppData\Roaming\qBittorrent
2020-04-22 04:00 - 2020-04-22 04:00 - 000000000 ____D C:\Users\Admin\AppData\Local\qBittorrent
2020-04-22 03:57 - 2018-07-06 17:22 - 000054896 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tapwindscribe0901.sys
2020-04-21 19:46 - 2020-05-03 21:54 - 000000000 ____D C:\Users\Admin\AppData\Roaming\discord
2020-04-21 19:46 - 2020-04-21 19:47 - 000000000 ____D C:\Users\Admin\AppData\Local\SquirrelTemp
2020-04-21 19:46 - 2020-04-21 19:46 - 000002237 _____ C:\Users\Admin\Desktop\Discord.lnk
2020-04-21 19:46 - 2020-04-21 19:46 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-04-21 19:46 - 2020-04-21 19:46 - 000000000 ____D C:\Users\Admin\AppData\Local\Discord
2020-04-21 19:24 - 2020-04-21 19:24 - 000000622 _____ C:\Users\Admin\Desktop\osu!.lnk
2020-04-21 19:24 - 2020-04-21 19:24 - 000000622 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2020-04-21 18:36 - 2020-04-22 03:48 - 000002306 ____H C:\Users\Admin\Documents\Default.rdp
2020-04-21 18:11 - 2020-04-21 18:11 - 017601632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 015158384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 011945872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 010286480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 005855856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 005159520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 002241536 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\RstMwService.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 002074208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 001566304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001481112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001350768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001339360 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAC.sys
2020-04-21 18:11 - 2020-04-21 18:11 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 001162832 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2020-04-21 18:11 - 2020-04-21 18:11 - 001141992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001048504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001004960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000851040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 000816872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000811448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000679656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000676240 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000655288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000561776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 000546536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000542952 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000450280 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000443832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 000346856 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000106838 _____ C:\WINDOWS\system32\nvidia-smi.1.pdf
2020-04-21 18:11 - 2020-04-21 18:11 - 000077294 _____ C:\WINDOWS\system32\nvinfo.pb
2020-04-21 18:11 - 2020-04-21 18:11 - 000027104 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\RstMwEventLogMsg.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 072520600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2020-04-21 18:10 - 2020-04-21 18:10 - 033399859 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2020-04-21 18:10 - 2020-04-21 18:10 - 007178360 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 007101632 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 006463760 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV3apo.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 006270080 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 005938800 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 005593504 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 005347096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 003676960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2020-04-21 18:10 - 2020-04-21 18:10 - 003445632 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 003306704 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 003266984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 003168280 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 003159664 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 002930040 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 002444792 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 002197872 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001971472 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001965264 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001788064 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001611064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001598504 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001596296 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001544360 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001516376 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001435032 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001396840 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001386680 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001382128 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001372496 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001353208 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001337528 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001294184 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001287704 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001259832 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001180792 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001159072 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001110064 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001078576 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001061464 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001003744 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000964912 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000873352 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000852024 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000751408 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000734880 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000715752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000692056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000604688 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000541008 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000511776 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000487360 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPOUI64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000467048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000453168 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000452840 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000448712 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000447072 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000416400 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000406560 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000392760 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000381296 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000378272 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000367712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000366224 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000360448 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000343600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000333112 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000327160 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000327160 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000316080 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000278376 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000266440 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000261336 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000261304 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000260320 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000231808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000230592 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000220280 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000218160 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000203944 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000191040 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000191040 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000179728 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000174832 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000158584 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000157232 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000154256 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000139648 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000122208 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000118480 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000116432 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000105200 _____ C:\WINDOWS\system32\audioLibVc.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000093792 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000090808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000090064 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000088208 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000083512 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000075432 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000000000 _____ C:\WINDOWS\system32\fpfftResultsFile.txt
2020-04-21 18:09 - 2020-04-21 18:09 - 001730376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2020-04-21 18:09 - 2020-04-21 18:09 - 001011520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinUSBCoInstaller2.dll
2020-04-21 18:09 - 2020-04-21 18:09 - 000056840 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2020-04-21 18:02 - 2020-05-06 16:21 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2020-04-21 18:01 - 2020-05-06 17:53 - 000003644 _____ C:\WINDOWS\system32\Tasks\UninstallTool_SkipUAC_Admin
2020-04-21 18:01 - 2020-04-21 18:01 - 000000990 _____ C:\Users\Public\Desktop\Uninstall Tool.lnk
2020-04-21 18:01 - 2020-04-21 18:01 - 000000990 _____ C:\ProgramData\Desktop\Uninstall Tool.lnk
2020-04-21 18:01 - 2020-04-21 18:01 - 000000000 ____D C:\Users\Admin\AppData\Roaming\CrystalIdea Software
2020-04-21 18:01 - 2020-04-21 18:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Tool
2020-04-21 18:01 - 2020-04-21 18:01 - 000000000 ____D C:\Program Files\Uninstall Tool
2020-04-21 17:57 - 2020-04-21 17:57 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2020-04-21 17:57 - 2020-04-21 17:57 - 000002940 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Admin)
2020-04-21 17:57 - 2020-04-21 17:57 - 000001299 _____ C:\Users\Admin\Desktop\IObit Driver Booster.lnk
2020-04-21 17:57 - 2020-04-21 17:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\IObit
2020-04-21 17:57 - 2020-04-21 17:57 - 000000000 ____D C:\Users\Admin\AppData\Local\Steam
2020-04-21 17:57 - 2020-04-21 17:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit
2020-04-21 17:57 - 2020-04-21 17:57 - 000000000 ____D C:\ProgramData\IObit
2020-04-21 17:57 - 2020-04-21 17:57 - 000000000 ____D C:\Program Files (x86)\IObit
2020-04-21 17:56 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2020-04-21 17:56 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2020-04-21 17:56 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2020-04-21 17:56 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2020-04-21 17:56 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2020-04-21 17:56 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2020-04-21 17:56 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2020-04-21 17:56 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2020-04-21 17:56 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2020-04-21 17:56 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2020-04-21 17:56 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2020-04-21 17:56 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2020-04-21 17:56 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2020-04-21 17:56 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2020-04-21 17:56 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2020-04-21 17:56 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2020-04-21 17:56 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2020-04-21 17:56 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2020-04-21 17:56 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2020-04-21 17:56 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2020-04-21 17:56 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2020-04-21 17:56 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2020-04-21 17:56 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2020-04-21 17:56 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2020-04-21 17:56 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2020-04-21 17:56 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2020-04-21 17:56 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2020-04-21 17:56 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2020-04-21 17:56 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2020-04-21 17:56 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2020-04-21 17:56 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2020-04-21 17:56 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2020-04-21 17:56 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2020-04-21 17:56 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2020-04-21 17:56 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2020-04-21 17:56 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2020-04-21 17:56 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2020-04-21 17:56 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2020-04-21 17:56 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2020-04-21 17:56 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2020-04-21 17:56 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2020-04-21 17:56 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2020-04-21 17:56 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2020-04-21 17:56 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2020-04-21 17:56 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2020-04-21 17:56 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2020-04-21 17:56 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2020-04-21 17:56 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2020-04-21 17:56 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2020-04-21 17:56 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2020-04-21 17:56 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2020-04-21 17:56 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2020-04-21 17:56 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2020-04-21 17:56 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2020-04-21 17:56 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2020-04-21 17:56 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2020-04-21 17:56 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2020-04-21 17:56 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2020-04-21 17:56 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2020-04-21 17:56 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2020-04-21 17:56 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2020-04-21 17:56 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2020-04-21 17:56 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2020-04-21 17:56 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2020-04-21 17:56 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2020-04-21 17:56 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2020-04-21 17:56 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2020-04-21 17:56 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2020-04-21 17:56 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2020-04-21 17:56 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2020-04-21 17:56 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2020-04-21 17:56 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2020-04-21 17:56 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2020-04-21 17:56 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2020-04-21 17:56 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2020-04-21 17:56 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2020-04-21 17:56 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2020-04-21 17:56 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2020-04-21 17:56 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2020-04-21 17:56 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2020-04-21 17:56 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2020-04-21 17:56 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2020-04-21 17:56 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2020-04-21 17:56 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2020-04-21 17:56 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2020-04-21 17:56 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2020-04-21 17:56 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2020-04-21 17:56 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2020-04-21 17:56 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2020-04-21 17:56 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2020-04-21 17:56 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2020-04-21 17:56 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2020-04-21 17:56 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2020-04-21 17:56 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2020-04-21 17:56 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2020-04-21 17:56 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2020-04-21 17:56 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2020-04-21 17:56 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2020-04-21 17:56 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2020-04-21 17:56 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2020-04-21 17:56 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2020-04-21 17:56 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2020-04-21 17:56 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2020-04-21 17:56 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2020-04-21 17:55 - 2020-05-06 17:57 - 000000000 ____D C:\Program Files (x86)\Steam
2020-04-21 17:55 - 2020-04-30 12:01 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2020-04-21 17:55 - 2020-04-25 17:11 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-04-21 17:55 - 2020-04-21 17:55 - 000001036 _____ C:\Users\Public\Desktop\Steam.lnk
2020-04-21 17:55 - 2020-04-21 17:55 - 000001036 _____ C:\ProgramData\Desktop\Steam.lnk
2020-04-21 17:55 - 2020-04-21 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-04-21 17:54 - 2020-05-06 17:49 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-04-21 17:54 - 2020-04-21 17:54 - 000001159 _____ C:\Users\Admin\Desktop\MSI Afterburner.lnk
2020-04-21 17:48 - 2020-04-21 17:48 - 000001052 _____ C:\Users\Public\Desktop\AIDA64.lnk
2020-04-21 17:48 - 2020-04-21 17:48 - 000001052 _____ C:\ProgramData\Desktop\AIDA64.lnk
2020-04-21 17:48 - 2020-04-21 17:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIDA64
2020-04-21 17:48 - 2020-04-21 17:48 - 000000000 ____D C:\Program Files (x86)\AIDA64
2020-04-21 17:46 - 2020-04-21 17:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2020-04-21 17:46 - 2020-04-21 17:46 - 000000000 ____D C:\Program Files\7-Zip
2020-04-21 17:34 - 2020-05-06 17:25 - 000000510 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2020-04-21 17:31 - 2019-03-18 15:20 - 008628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0019.dll
2020-04-21 17:28 - 2020-05-02 11:04 - 000769972 _____ C:\WINDOWS\system32\perfh019.dat
2020-04-21 17:28 - 2020-05-02 11:04 - 000151432 _____ C:\WINDOWS\system32\perfc019.dat
2020-04-21 17:28 - 2020-04-21 17:28 - 000340720 _____ C:\WINDOWS\system32\perfi019.dat
2020-04-21 17:28 - 2020-04-21 17:28 - 000041686 _____ C:\WINDOWS\system32\perfd019.dat
2020-04-21 17:28 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\ru
2020-04-21 17:28 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\ru
2020-04-21 17:26 - 2020-04-21 17:26 - 000000000 ____D C:\ProgramData\Caphyon
2020-04-21 17:24 - 2019-03-18 15:20 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2020-04-21 17:24 - 2019-03-18 15:19 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2020-04-21 17:24 - 2019-03-18 15:07 - 006359552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2020-04-21 17:24 - 2019-03-18 15:01 - 005496832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2020-04-21 17:21 - 2020-05-02 00:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-21 17:21 - 2020-04-22 15:21 - 000003396 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-04-21 17:21 - 2020-04-21 17:27 - 000000000 ____D C:\Users\Admin\AppData\Local\Google
2020-04-21 17:21 - 2020-04-21 17:21 - 000003632 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-04-21 17:21 - 2020-04-21 17:21 - 000000000 ____D C:\Program Files (x86)\Google
2020-04-20 17:26 - 2020-04-20 17:26 - 000000000 ____D C:\Users\Admin\AppData\Local\CEF
2020-04-20 14:00 - 2020-04-20 14:00 - 000039360 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\nlwt.sys
2020-04-18 15:25 - 2020-04-18 15:25 - 000000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2020-04-10 16:18 - 2020-04-28 11:46 - 000011781 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2020-04-10 16:17 - 2020-05-01 00:59 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache
2020-04-10 16:17 - 2020-04-10 16:17 - 000000000 ____D C:\Users\Admin\AppData\Roaming\NVIDIA
2020-04-10 13:22 - 2020-04-27 13:02 - 000012887 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-04-10 12:48 - 2020-04-10 12:47 - 000744808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2020-04-10 11:32 - 2020-04-10 11:32 - 000000000 ____D C:\Users\Admin\AppData\Local\PeerDistRepub
2020-04-10 11:32 - 2020-04-10 11:32 - 000000000 ____D C:\Users\Admin\AppData\Local\NVIDIA

sollussekundas · May 6, 2020

2020-04-10 11:31 - 2020-04-10 11:31 - 000000000 ____D C:\Program Files (x86)\Geeks3D
2020-04-10 11:30 - 2020-04-10 11:30 - 000000000 ____D C:\Users\Admin\AppData\Local\Comms
2020-04-10 11:29 - 2020-04-25 15:36 - 000000000 ____D C:\Users\Admin\AppData\Local\NVIDIA Corporation
2020-04-10 11:27 - 2020-04-25 17:11 - 000000000 ____D C:\ProgramData\Package Cache
2020-04-10 11:27 - 2020-04-10 11:27 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-04-10 11:27 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-04-10 11:27 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-04-10 11:27 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-04-10 11:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-04-10 11:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-04-10 11:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-04-10 11:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-04-10 11:27 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2020-04-10 11:27 - 2020-04-10 11:27 - 000001447 _____ C:\ProgramData\Desktop\GeForce Experience.lnk
2020-04-10 11:27 - 2020-04-10 11:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-04-10 11:27 - 2020-03-18 11:39 - 002859872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2020-04-10 11:27 - 2020-03-18 11:39 - 002221064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2020-04-10 11:27 - 2020-03-18 11:39 - 001321496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-04-10 11:27 - 2020-03-18 11:39 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-04-10 11:27 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2020-04-10 11:27 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2020-04-10 11:27 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2020-04-10 11:27 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2020-04-10 11:26 - 2020-05-06 17:59 - 000000000 ____D C:\ProgramData\NVIDIA
2020-04-10 11:26 - 2020-04-10 11:27 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-04-10 11:26 - 2020-04-10 11:26 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:26 - 2020-04-10 11:26 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:26 - 2020-03-18 11:39 - 000174560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2020-04-10 11:26 - 2020-03-18 11:39 - 000149472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2020-04-10 11:25 - 2020-04-10 11:27 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-04-10 11:25 - 2020-03-18 11:39 - 000075600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-04-10 11:25 - 2020-03-18 11:39 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2020-04-10 11:25 - 2020-03-18 11:39 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2020-04-10 11:24 - 2020-04-21 18:11 - 004195488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-04-10 11:24 - 2020-04-21 18:03 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Mozilla
2020-04-10 11:24 - 2020-04-21 17:21 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2020-04-10 11:20 - 2020-04-21 17:58 - 000000000 ____D C:\Users\Admin\AppData\Local\PlaceholderTileLogoFolder
2020-04-10 11:20 - 2020-04-20 17:32 - 000000000 ___RD C:\Users\Admin\OneDrive
2020-04-10 11:18 - 2020-05-02 17:01 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2020-04-10 11:18 - 2020-05-02 11:04 - 002635824 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-04-10 11:18 - 2020-05-02 00:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-04-10 11:18 - 2020-05-02 00:42 - 000000000 ___RD C:\Users\Admin\3D Objects
2020-04-10 11:18 - 2020-05-02 00:27 - 000013984 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-04-10 11:18 - 2020-04-21 17:36 - 000000000 ____D C:\Users\Admin\AppData\Local\Publishers
2020-04-10 11:18 - 2020-04-10 11:18 - 000000000 ___HD C:\Users\Admin\MicrosoftEdgeBackups
2020-04-10 11:18 - 2020-04-10 11:18 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Adobe
2020-04-10 11:18 - 2020-04-10 11:18 - 000000000 ____D C:\Users\Admin\AppData\Local\VirtualStore
2020-04-10 11:18 - 2020-04-10 11:18 - 000000000 ____D C:\Users\Admin\AppData\Local\MicrosoftEdge
2020-04-10 11:18 - 2020-04-10 11:18 - 000000000 ____D C:\Users\Admin\AppData\Local\ConnectedDevicesPlatform
2020-04-10 11:17 - 2020-05-03 14:10 - 000000000 ____D C:\Users\Admin
2020-04-10 11:17 - 2020-04-10 11:17 - 000000020 ___SH C:\Users\Admin\ntuser.ini
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Vorlagen
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Startmenü
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Netzwerkumgebung
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Lokale Einstellungen
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Eigene Dateien
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Druckumgebung
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Documents\Eigene Videos
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Documents\Eigene Musik
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Documents\Eigene Bilder
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\AppData\Local\Verlauf
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\AppData\Local\Anwendungsdaten
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Anwendungsdaten
2020-04-10 11:15 - 2020-04-22 04:41 - 000000000 ____D C:\ProgramData\Packages
2020-04-10 11:14 - 2020-05-02 00:49 - 000011781 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Vorlagen
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Startmenü
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Netzwerkumgebung
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Lokale Einstellungen
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Eigene Dateien
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Druckumgebung
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Anwendungsdaten
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Vorlagen
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Startmenü
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Netzwerkumgebung
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Lokale Einstellungen
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Eigene Dateien
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Druckumgebung
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Anwendungsdaten
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\All Users
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Programme
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\ProgramData\Vorlagen
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\ProgramData\Startmenü
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\ProgramData\Dokumente
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\ProgramData\Anwendungsdaten
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Program Files\Gemeinsame Dateien
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Dokumente und Einstellungen
2020-04-10 11:12 - 2020-04-21 18:10 - 000000000 ____D C:\WINDOWS\system32\DAX3
2020-04-10 11:12 - 2020-04-21 18:10 - 000000000 ____D C:\WINDOWS\system32\DAX2
2020-04-10 11:12 - 2020-04-10 11:12 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2020-04-10 11:12 - 2019-09-29 19:12 - 002874368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-04-10 11:11 - 2020-05-06 17:56 - 000308669 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-04-10 11:11 - 2020-05-06 17:56 - 000033452 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-04-10 11:11 - 2020-05-02 00:42 - 000001209 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-04-10 11:11 - 2020-04-21 18:10 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-04-10 11:11 - 2020-04-10 11:29 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-04-10 11:11 - 2020-04-10 11:11 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-04-10 11:11 - 2020-04-10 11:11 - 000000000 ____D C:\Program Files\Realtek
2020-04-10 11:10 - 2020-05-06 17:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-04-10 11:10 - 2020-05-06 15:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-04-10 11:10 - 2020-05-02 00:42 - 000259376 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-04-10 11:10 - 2020-05-01 17:59 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-04-10 11:10 - 2020-04-10 11:10 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2020-04-10 11:10 - 2020-04-10 11:10 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2020-04-10 10:04 - 2020-04-10 11:10 - 000000000 ____D C:\WINDOWS\IAStorAfsService
2020-04-10 10:03 - 2020-05-02 11:04 - 000732302 _____ C:\WINDOWS\system32\perfh007.dat
2020-04-10 10:03 - 2020-05-02 11:04 - 000149604 _____ C:\WINDOWS\system32\perfc007.dat
2020-04-10 10:03 - 2020-04-21 17:31 - 000000000 ____D C:\WINDOWS\OCR
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\winrm
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\WCN
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\slmgr
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2020-04-10 10:03 - 2020-04-10 10:03 - 000306166 _____ C:\WINDOWS\system32\perfi007.dat
2020-04-10 10:03 - 2020-04-10 10:03 - 000040520 _____ C:\WINDOWS\system32\perfd007.dat
2020-04-10 10:03 - 2020-04-10 10:03 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\SysWOW64\de
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\system32\de
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\system32\0409
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\Setup
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\DigitalLocker
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\ProgramData\ssh
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\Program Files\Reference Assemblies
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\Program Files\MSBuild
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-04-10 10:02 - 2020-02-03 22:56 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-04-10 10:02 - 2020-02-03 22:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-04-10 10:01 - 2020-05-06 18:01 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-04-10 10:01 - 2020-05-06 17:56 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-04-10 10:01 - 2020-05-06 17:10 - 000000000 ___RD C:\Program Files (x86)
2020-04-10 10:01 - 2020-05-02 17:01 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-04-10 10:01 - 2020-05-02 00:42 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ___SD C:\WINDOWS\system32\AppV
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\TextInput
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\SystemResources
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\Provisioning
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-04-10 10:01 - 2020-05-02 00:27 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-04-10 10:01 - 2020-05-02 00:27 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-04-10 10:01 - 2020-05-02 00:27 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-04-10 10:01 - 2020-04-30 20:30 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-10 10:01 - 2020-04-21 17:55 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ___SD C:\WINDOWS\system32\dsc
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\MUI
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\Com
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\IME
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\Program Files\Windows Defender
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\Program Files\Common Files\System
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-04-10 10:01 - 2020-04-18 12:47 - 000000000 ____D C:\WINDOWS\appcompat
2020-04-10 10:01 - 2020-04-10 11:25 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2020-04-10 10:01 - 2020-04-10 11:14 - 000000000 ____D C:\WINDOWS\system32\spool
2020-04-10 10:01 - 2020-04-10 11:14 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2020-04-10 10:01 - 2020-04-10 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-04-10 10:01 - 2020-04-10 11:14 - 000000000 ____D C:\Program Files\Windows NT
2020-04-10 10:01 - 2020-04-10 11:13 - 000000000 ____D C:\WINDOWS\CSC
2020-04-10 10:01 - 2020-04-10 11:12 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-04-10 10:01 - 2020-04-10 11:11 - 000000000 ____D C:\ProgramData\USOPrivate
2020-04-10 10:01 - 2020-04-10 10:06 - 000000000 ____D C:\WINDOWS\Containers
2020-04-10 10:01 - 2020-04-10 10:05 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2020-04-10 10:01 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-04-10 10:01 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\system32\setup
2020-04-10 10:01 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\Help
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 __SHD C:\Program Files\Windows Sidebar
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 __RSD C:\WINDOWS\Media
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 __RHD C:\Users\Public\Libraries
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\system32\Nui
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Web
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\WaaS
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Vss
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\tracing
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\TAPI
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SystemApps
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\winevt
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ti-et
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ta-in
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\si-lk
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ras
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\osa-Osge-001
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\my-mm
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Keywords
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\IME
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\icsxml
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ias
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ff-Adlm-SN
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\DriverState
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\downlevel
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\DDFs
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\am-et
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\System
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SKB
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\security
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\schemas
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SchCache
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Resources
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\rescache
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\RemotePackages
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Registration
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\PLA
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Performance
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\ModemLogs
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\L2Schemas
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\InputMethod
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\IdentityCRL
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Globalization
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Cursors
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Branding
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\addins
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\ProgramData\USOShared
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files\Windows Security
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files\Windows Portable Devices
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files\Common Files\Services
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files (x86)\Windows NT
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2020-04-10 10:01 - 2020-04-10 10:00 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2020-04-10 10:01 - 2020-04-10 10:00 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2020-04-10 10:01 - 2020-04-10 10:00 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2020-04-10 10:01 - 2020-04-10 10:00 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2020-04-10 10:01 - 2020-04-10 10:00 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-04-10 10:01 - 2020-04-10 10:00 - 000018903 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-04-10 10:01 - 2020-04-10 10:00 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2020-04-10 10:01 - 2020-04-10 10:00 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2020-04-10 10:01 - 2020-04-10 10:00 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2020-04-10 10:01 - 2020-04-10 10:00 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2020-04-10 10:01 - 2020-04-10 10:00 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2020-04-10 10:01 - 2020-04-10 10:00 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2020-04-10 10:01 - 2020-04-10 10:00 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2020-04-10 10:01 - 2020-04-10 10:00 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2020-04-10 10:01 - 2020-04-10 10:00 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2020-04-10 10:01 - 2020-04-10 10:00 - 000000219 _____ C:\WINDOWS\system.ini
2020-04-10 10:01 - 2020-04-10 10:00 - 000000092 _____ C:\WINDOWS\win.ini
2020-04-10 10:00 - 2020-05-03 15:23 - 000000000 ____D C:\WINDOWS\INF
2020-04-10 09:58 - 2020-05-06 17:57 - 085458944 _____ C:\WINDOWS\system32\config\SOFTWARE
2020-04-10 09:58 - 2020-05-06 17:57 - 015990784 _____ C:\WINDOWS\system32\config\SYSTEM
2020-04-10 09:58 - 2020-05-06 17:57 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
2020-04-10 09:58 - 2020-05-06 17:57 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-04-10 09:58 - 2020-05-06 17:57 - 000065536 _____ C:\WINDOWS\system32\config\SECURITY
2020-04-10 09:58 - 2020-05-06 17:57 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2020-04-10 09:58 - 2020-05-06 17:10 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-04-10 09:58 - 2020-05-02 16:59 - 000000000 ____D C:\WINDOWS\Panther
2020-04-10 09:58 - 2020-05-02 00:40 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-04-10 09:58 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\servicing
2020-04-10 09:58 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\SMI
2020-04-10 08:54 - 2020-04-10 10:06 - 000000000 ___HD C:\$SysReset

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2020-04-21 18:11 - 2020-03-19 19:34 - 004927744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-04-21 18:10 - 2018-09-14 15:28 - 006886992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2020-04-21 18:10 - 2018-09-14 15:28 - 003753024 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2020-04-21 18:10 - 2018-09-14 15:28 - 003340296 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2020-04-21 18:10 - 2018-09-14 15:28 - 000192872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2020-04-21 18:10 - 2018-09-14 15:28 - 000023584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2020-04-22 04:34 - 2020-04-30 18:45 - 000007594 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================

sollussekundas · May 6, 2020

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 03-05-2020
durchgeführt von Admin (06-05-2020 18:02:37)
Gestartet von C:\Users\Admin\Downloads
Windows 10 Pro Version 1909 18363.815 (X64) (2020-04-10 09:14:06)
Start-Modus: Normal
==========================================================

==================== Konten: =============================

Admin (S-1-5-21-3854084222-4285785828-2850556555-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-3854084222-4285785828-2850556555-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3854084222-4285785828-2850556555-503 - Limited - Disabled)
Gast (S-1-5-21-3854084222-4285785828-2850556555-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3854084222-4285785828-2850556555-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 20.00 alpha (x64) (HKLM\...\7-Zip) (Version: 20.00 alpha - Igor Pavlov)
AIDA64 (HKLM-x32\...\AIDA64) (Version: 6.25.5400 - FinalWire Ltd.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.3.5 - Electronic Arts, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.3.2405 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
CWClient, версия 1.0 (HKLM-x32\...\{4D64BA0F-CF7B-4A53-AA81-6E5F33510B04}_is1) (Version: 1.0 - AbsolutSoft)
Discord (HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
DOOM Eternal (HKLM-x32\...\DOOM Eternal_is1) (Version: - )
Geeks3D FurMark 1.21.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.129 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
IObit Driver Booster 7.4.0.721 (HKLM-x32\...\IObit Driver Booster_is1) (Version: 7.4.0.721 - lrepacks.ru)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{E15F69FA-660D-45CC-B28F-6CBC4CAD2091}) (Version: 1.0.0.0 - Mojang)
Mount & Blade II Bannerlord v. e1.2.0 hotfix 2 BETA (HKLM-x32\...\Mount & Blade II Bannerlord_is1) (Version: - )
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
NordVPN (HKLM-x32\...\{A87972CF-28AE-43DD-ACB5-16EBD1ED70C3}) (Version: 6.29.7 - NordVPN) Hidden
NordVPN (HKLM-x32\...\NordVPN 6.29.7) (Version: 6.29.7 - NordVPN)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{77DA107A-7AE4-497D-A84A-B143C3A21676}) (Version: 1.0.0 - NordVPN)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.6 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Grafiktreiber 445.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 445.75 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.26 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project)
Origin (HKLM-x32\...\Origin) (Version: 10.5.69.40136 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{ae36b9b5-4ce6-4b1d-a515-55fadefde91d}) (Version: latest - ppy Pty Ltd)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
SKILLER MECH SGK3 (HKLM-x32\...\{12F382E1-63D4-4B94-BD32-5F845E74FC79}) (Version: 1.01.17.01 - Sharkoon Technologies)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TP-Link Archer T4U Driver (HKLM-x32\...\{4805DC86-DEBF-4A5C-B9C4-291FA6441548}) (Version: 2.1.0 - TP-Link)
Uninstall Tool (HKLM-x32\...\Uninstall Tool 3.5.10 Build 5670) (Version: - )
Uplay (HKLM-x32\...\Uplay) (Version: 29.0 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.10 - VideoLAN)
Warface (HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\Warface) (Version: 1.349 - Mail.ru)
WindowsWord 2020.5 (HKLM-x32\...\{CA7FE095-E7CF-40FF-9F2C-69AF3C7342BF}}_is1) (Version: - ScandinavianByte OU)
Игровой центр (HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\GameCenter) (Version: 4.1567 - ООО Мэйл.Ру)

Packages:
=========
NVIDIA Control Panel -> C:\Program Files\WindowsApps\nvidiacorp.nvidiacontrolpanel_8.1.956.0_x64__56jybvy8sckqj [2020-04-10] (NVIDIA Corp.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-05-06] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Keine Datei
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2020-04-21] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-05-06] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-05-06] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Keine Datei
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Keine Datei
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\nvshext.dll [2020-04-21] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-05-06] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Datei ist nicht signiert]

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

Shortcut: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mail.ru\Игровой центр.lnk -> C:\Users\Admin\AppData\Local\GameCenter\GameCenter.exe () <==== Cyrillic

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2020-04-21 17:46 - 2020-02-06 15:00 - 000076800 _____ (Igor Pavlov) [Datei ist nicht signiert] C:\Program Files\7-Zip\7-zip.dll
2020-04-22 18:18 - 2020-04-22 18:17 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2020-04-22 18:18 - 2020-04-22 18:17 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2020-04-22 18:18 - 2020-04-22 18:17 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Admin\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Admin\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2020-04-22 18:41 - 2020-05-06 17:10 - 000001310 _____ C:\WINDOWS\system32\drivers\etc\hosts
109.94.209.70 fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 fitgirl-repack.com # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site
0.0.0.0 serius.mwbsys.com
0.0.0.0 keystone.mwbsys.com

2020-04-21 17:34 - 2020-05-06 17:25 - 000000510 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 DESKTOP-G75MQVV.mshome.net # 2025 5 1 5 15 25 36 225
192.168.137.112 Galaxy-A40.mshome.net # 2020 5 3 13 15 25 36 225

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{FA19F039-8C6A-4EB5-BA43-38EFE700E821}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BBDDE383-A224-47F6-A159-2FFDD7DBA919}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{790F4E06-FB69-4E36-89D9-7C14F70046C5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5FAF37A0-2532-4462-98E8-E48AB8CED2DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F1EEA439-CF76-43E6-BE66-CCB4F10A97A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{87CC3EEA-1C3B-4247-888C-F7594AD929C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3760490E-704C-43CC-94CE-D13B64A9E0BA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{FA55750A-F72A-4EB4-B48C-1BA2D4C56B78}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9C8E395C-79F1-4379-A74F-9ADFAADFD682}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe (Warhorse Studios sro) [Datei ist nicht signiert]
FirewallRules: [{89CF1951-71E5-43F3-9E91-42DC254E8AA7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe (Warhorse Studios sro) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{22A575DE-477D-4930-9FA2-78488DA3636E}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{D5F1F507-EE41-448D-A7E2-E4D653D2F3D0}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{390EC865-3BE3-43BE-B383-1BAF0BDB6A2F}D:\gamesmailru\warface\bin64release\game.exe] => (Allow) D:\gamesmailru\warface\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [UDP Query User{97ECE459-F72B-4787-8D9D-836B57BB7010}D:\gamesmailru\warface\bin64release\game.exe] => (Allow) D:\gamesmailru\warface\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [{77E2032A-7DBE-43F0-8AB8-5053C92FBD54}] => (Allow) D:\Games\SteamLibrary\steamapps\common\This War of Mine\This War of Mine.exe () [Datei ist nicht signiert]
FirewallRules: [{EAE297A8-3730-415D-92B2-A09E2305038D}] => (Allow) D:\Games\SteamLibrary\steamapps\common\This War of Mine\This War of Mine.exe () [Datei ist nicht signiert]
FirewallRules: [{652D9262-4AB7-40EF-B323-A0224EC6525C}] => (Allow) D:\Games\SteamLibrary\steamapps\common\This War of Mine\Storyteller.exe () [Datei ist nicht signiert]
FirewallRules: [{C44F31DD-D2F3-4246-A145-E25B32809864}] => (Allow) D:\Games\SteamLibrary\steamapps\common\This War of Mine\Storyteller.exe () [Datei ist nicht signiert]
FirewallRules: [{E4B0421B-D7DB-4F87-98CB-F037CC32CA9D}] => (Allow) D:\Games\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation )
FirewallRules: [{2395CFA0-9F43-4A43-ACA3-B60DE12F763E}] => (Allow) D:\Games\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation )
FirewallRules: [{CEE8957A-90B5-4DE6-A2AC-9B69C8ED76F1}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{C1DBEE05-6F63-454B-A90E-093A6DBAF2BE}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{0332500D-CE33-4EF9-8791-BB5C093F8883}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Datei ist nicht signiert]
FirewallRules: [{2282BA96-08BD-4BF0-BA69-3655BD806EF5}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{D687B34A-B69E-4C79-BF89-E0A4894E0933}D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{9063C817-4882-4E65-B72C-5F75C85F4FB6}D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [{DB6811C1-0695-4DD0-BB22-60204708868D}] => (Block) D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [{30E55D8D-919B-4BDA-A2E0-86F741050892}] => (Block) D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [{4E05DFA6-1F8B-41A9-BEB6-F4036DFE6BB8}] => (Allow) D:\Games\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{8F25A68F-B47D-42C4-87F2-8938F02F4C3A}] => (Allow) D:\Games\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [TCP Query User{78B9654A-762A-49FA-830C-7923E390F46F}D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe] => (Allow) D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [UDP Query User{30C7401C-BF07-4432-B393-F277340B9746}D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe] => (Allow) D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{0D0C1F81-996B-45ED-8830-E50E48E5AD7B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C514D70D-4AAB-41B1-AE91-442FB908F6CC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{336F146B-2C52-4DB0-B71D-69B141425502}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{95EE8EF2-A9E6-4D7E-80D8-9E1971F2A01B}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{AA14715E-C32D-480D-8D2F-81A3FF5E22FD}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{8EF1AF9C-19DC-4A6C-B1E4-2BD482D7A6AD}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{D88F892E-3B3A-4D8C-95C8-8629F8E78936}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{8D493627-0469-45DA-A85F-8E161920DEBA}] => (Block) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{9AFCB0D9-5BE0-4120-BCBE-2FCA59182F64}] => (Block) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{64C8A394-6F64-4EC1-8D82-FC2A4FB88334}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{57BF3273-171C-41BD-A48A-65DF83E79F82}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{6BF6EF78-13F3-470E-89AD-8A0531E63281}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{9A2E641E-061C-4B0E-9221-142C48FE8883}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{1B45CC67-9313-4405-8479-87A93CEF5EB7}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{05188034-BE20-47FC-A04E-D279FBAA4EE2}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{ACEFEA74-D7B0-48B0-B8F4-B40FD6C85390}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{B698A87D-E680-4C73-90BE-6FB38FF51D4C}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{7800CAB4-6F79-45A1-9E50-2CCDBC541C69}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{4B9AA015-E9BF-43A2-875F-F6850B862F42}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{10B743B9-9AA1-4D77-A86F-14A1DADC518A}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{F7445967-2B80-4067-A974-815EEFD4B676}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{D34584AE-7856-43A3-9DB0-EA6434130E2D}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{353D6AF5-1DDD-40B7-9D2B-08C891FDE78A}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{BC0D96AF-86C6-41D4-9433-8A5497BF5773}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{853C7914-F884-4693-89C9-8986A185101B}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{2F8BF16C-D975-43CE-BAC5-906DF88ADD40}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{019B8B57-DE74-44A2-95F1-180F38B6C281}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{0AB3EE82-AE71-44FD-9A10-C89EE5257C70}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [TCP Query User{E0475F88-FAB7-44B0-867F-DE19CAF7D9A9}C:\users\admin\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\admin\appdata\local\gamecenter\gamecenter.exe (Mail.Ru LLC -> )
FirewallRules: [UDP Query User{E3F22230-C470-4AA7-867C-4CC980C02FFC}C:\users\admin\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\admin\appdata\local\gamecenter\gamecenter.exe (Mail.Ru LLC -> )
FirewallRules: [{CF53696B-A0C2-490B-B97E-B9ADAEF4A44D}] => (Block) C:\users\admin\appdata\local\gamecenter\gamecenter.exe (Mail.Ru LLC -> )
FirewallRules: [{CB95075B-DEEF-43E6-8356-2C98E9AB3E5C}] => (Block) C:\users\admin\appdata\local\gamecenter\gamecenter.exe (Mail.Ru LLC -> )

==================== Wiederherstellungspunkte =========================

25-04-2020 13:35:42 Installed DirectX
25-04-2020 16:18:51 Driver Booster : Microsoft Visual C++ 2013 Redistributable (x64)
01-05-2020 15:54:54 Installed DirectX
04-05-2020 21:27:39 Installed DirectX

==================== Fehlerhafte Geräte im Gerätemanager ============

==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (05/06/2020 05:54:47 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (05/06/2020 04:21:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CWClient.exe, version: 4.1.5.1944, time stamp: 0x51b0ce73
Faulting module name: CWClient.exe, version: 4.1.5.1944, time stamp: 0x51b0ce73
Exception code: 0xc0000005
Fault offset: 0x0031a2eb
Faulting process id: 0x1214
Faulting application start time: 0x01d623af89e61298
Faulting application path: C:\Games\CWClient\CWClient.exe
Faulting module path: C:\Games\CWClient\CWClient.exe
Report Id: 4ac03fc6-2890-4d06-98c0-a8db3d924812
Faulting package full name:
Faulting package-relative application ID:

Error: (05/06/2020 02:16:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Pascal ABC.exe, version: 3.0.1.35, time stamp: 0x2a425e19
Faulting module name: Pascal ABC.exe, version: 3.0.1.35, time stamp: 0x2a425e19
Exception code: 0xc0000005
Fault offset: 0x00004c9a
Faulting process id: 0x1be8
Faulting application start time: 0x01d6239febd09ba4
Faulting application path: C:\Users\Admin\Desktop\Pascal ABC 3.0.1 Rus Portable\Pascal ABC.exe
Faulting module path: C:\Users\Admin\Desktop\Pascal ABC 3.0.1 Rus Portable\Pascal ABC.exe
Report Id: 431899de-602c-4f0d-9caa-dc16d0ee63df
Faulting package full name:
Faulting package-relative application ID:

Error: (05/06/2020 02:16:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Pascal ABC.exe, version: 3.0.1.35, time stamp: 0x2a425e19
Faulting module name: Pascal ABC.exe, version: 3.0.1.35, time stamp: 0x2a425e19
Exception code: 0xc0000005
Fault offset: 0x00004c9a
Faulting process id: 0x2dac
Faulting application start time: 0x01d6239ffc1a75b1
Faulting application path: C:\Users\Admin\Desktop\Pascal ABC 3.0.1 Rus Portable\Pascal ABC.exe
Faulting module path: C:\Users\Admin\Desktop\Pascal ABC 3.0.1 Rus Portable\Pascal ABC.exe
Report Id: a561748d-d925-4fe4-bf95-4c69c6775370
Faulting package full name:
Faulting package-relative application ID:

Error: (05/05/2020 07:09:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program WinWord.exe version 2020.5.0.2428 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 994

Start Time: 01d622cebaa201b9

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\WindowsWord\WinWord.exe

Report Id: 40117725-38e3-44f7-b417-27652387d870

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (05/04/2020 09:27:42 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary WinQuic.

System Error:
Das Ressourcenladeprogramm konnte die MUI-Datei nicht finden.
.

Error: (05/03/2020 07:17:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CWClientLauncher.exe, version: 1.0.0.0, time stamp: 0x5952289c
Faulting module name: KERNELBASE.dll, version: 10.0.18362.815, time stamp: 0x67005c2a
Exception code: 0xe0434352
Fault offset: 0x00114402
Faulting process id: 0x1e40
Faulting application start time: 0x01d6216eab19c686
Faulting application path: C:\Games\CWClient\CWClientLauncher.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 7d1f083a-cf68-43ca-943e-9e2b033bba32
Faulting package full name:
Faulting package-relative application ID:

Error: (05/03/2020 07:17:56 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: CWClientLauncher.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ComponentModel.Win32Exception
at System.Diagnostics.Process.StartWithShellExecuteEx(System.Diagnostics.ProcessStartInfo)
at System.Diagnostics.Process.Start()
at CWClientLauncher.StartGameControl.StartGame()
at CWClientLauncher.StartGameControl.<.ctor>b__0_0(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
at System.Windows.Controls.Primitives.ButtonBase.OnClick()
at System.Windows.Controls.Button.OnClick()
at System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
at System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
at System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
at System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
at System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
at System.Windows.Input.InputManager.ProcessStagingArea()
at System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
at System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
at System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
at System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
at System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
at System.Windows.Application.RunDispatcher(System.Object)
at System.Windows.Application.RunInternal(System.Windows.Window)
at System.Windows.Application.Run(System.Windows.Window)
at CWClientLauncher.App.Main()

Systemfehler:
=============
Error: (05/06/2020 05:57:29 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "%2" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.

Error: (05/06/2020 05:57:29 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "%2" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.

Error: (05/06/2020 05:56:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The nordvpn-service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (05/06/2020 02:13:55 PM) (Source: Tcpip) (EventID: 4207) (User: )
Description: The IPv6 TCP/IP interface with index 11 failed to bind to its provider.

Error: (05/04/2020 11:05:53 PM) (Source: Tcpip) (EventID: 4207) (User: )
Description: The IPv6 TCP/IP interface with index 11 failed to bind to its provider.

Error: (05/03/2020 07:30:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The eapihdrv service failed to start due to the following error:
This driver has been blocked from loading

Error: (05/03/2020 07:30:36 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Admin\AppData\Local\Temp\ehdrv.sys

Error: (05/03/2020 07:30:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The eapihdrv service failed to start due to the following error:
This driver has been blocked from loading

Windows Defender:
===================================
Date: 2020-05-06 16:06:41.690
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

Trojan:Win32/Occamy.C threat description - Microsoft Security Intelligence

Name: Trojan:Win32/Occamy.C
ID: 2147726780
Severity: Severe
Category: Trojan
Path: file:_C:\HO_UJPLHPJ9.dll
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Games\CWClient\CWClient.exe
Security intelligence Version: AV: 1.315.83.0, AS: 1.315.83.0, NIS: 1.315.83.0
Engine Version: AM: 1.1.17000.7, NIS: 1.1.17000.7

Date: 2020-05-05 18:38:05.000
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {07076EDA-04A1-4472-9B29-7B48CC209698}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-05-04 14:45:22.764
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

Trojan:Win32/Occamy.C threat description - Microsoft Security Intelligence

Name: Trojan:Win32/Occamy.C
ID: 2147726780
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Admin\Desktop\cl_storm3.dll
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: System
Process Name: Unknown
Security intelligence Version: AV: 1.313.2880.0, AS: 1.313.2880.0, NIS: 1.313.2880.0
Engine Version: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-05-04 14:27:19.962
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

Trojan:Win32/Wacatac.D!ml threat description - Microsoft Security Intelligence

Name: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Severity: Severe
Category: Trojan
Path: containerfile:_C:\Users\Admin\Downloads\setup_new cw hack v16_9288094810.iso; file:_C:\Users\Admin\Downloads\setup_new cw hack v16_9288094810.iso->setup_new cw hack v16_9288094810.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: User
Process Name: Unknown
Security intelligence Version: AV: 1.313.2826.0, AS: 1.313.2826.0, NIS: 1.313.2826.0
Engine Version: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-05-03 19:31:10.118
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

Trojan:Win32/Wacatac.D!ml threat description - Microsoft Security Intelligence

Name: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Severity: Severe
Category: Trojan
Path: file:_C:\$Recycle.Bin\S-1-5-21-3854084222-4285785828-2850556555-1001\$RFROR12.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Users\Admin\Downloads\esetonlinescanner.exe
Security intelligence Version: AV: 1.313.2826.0, AS: 1.313.2826.0, NIS: 1.313.2826.0
Engine Version: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-30 11:06:42.313
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.313.2486.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16900.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2020-04-30 11:06:42.313
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.313.2486.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16900.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2020-04-30 11:06:42.313
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.313.2486.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16900.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2020-04-30 11:06:42.308
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.313.2486.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16900.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2020-04-30 11:06:42.308
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.313.2486.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16900.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

CodeIntegrity:
===================================

Date: 2020-05-06 18:02:12.021
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-06 18:02:11.878
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-06 18:02:11.539
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-06 18:02:11.528
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-06 18:01:44.002
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-06 18:01:42.040
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-06 18:01:42.036
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-06 18:01:35.873
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Speicherinformationen ===========================

BIOS: American Megatrends Inc. 0402 04/18/2018
Hauptplatine: ASUSTeK COMPUTER INC. PRIME H310M-A
Prozessor: Intel(R) Core(TM) i7-8700K CPU @ 3.70GHz
Prozentuale Nutzung des RAM: 20%
Installierter physikalischer RAM: 16300.84 MB
Verfügbarer physikalischer RAM: 12922.41 MB
Summe virtueller Speicher: 19884.84 MB
Verfügbarer virtueller Speicher: 14962.14 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:446.06 GB) (Free:146.36 GB) NTFS
Drive d: (Volume) (Fixed) (Total:1862.89 GB) (Free:1662.82 GB) NTFS

\\?\Volume{5adff2c2-78e7-4720-80ee-9786f7d6f035}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{094bc5fd-adee-45de-9c09-b6b8d473954f}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{c201314e-f734-463b-af26-5a65acc5448a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Ende von Addition.txt =======================

Broni · May 6, 2020

Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2

Close all the running programs
Double click on downloaded setup.exe file to install the program.
Click on Start Scan button.
Click on another Start Scan button.
Wait until the Status box shows Scan Finished
Click on Remove Selected.
Wait until the Status box shows Deleting Finished.
Click on Report and copy/paste the content of the Notepad into your next reply.
RKreport.txt could also be found on your desktop.
If more than one log is produced post all logs.

Please download Malwarebytes to your desktop.

Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
Then click Finish.
Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
Restart your computer when prompted to do so.
The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.

Please download AdwCleaner by Xplode and save to your Desktop.

Double click on AdwCleaner.exe to run the tool.
Vista/Windows 7/8/10 users right-click and select Run As Administrator
The tool will start to update the database if one is required.
Click on the Scan button.
AdwCleaner will begin...be patient as the scan may take some time to complete.
After the scan has finished, click on the Logfile button.
A window will open which lists the logs of your scans.
Click on the Scan tab.
Double-click the most recent scan which will be at the top of the list....the log will appear.
Review the results...see note below
After reviewing the log, click on the Clean button.
Press OK when asked to close all programs and follow the onscreen prompts.
Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.
Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
A copy of all logfiles are saved to C:\AdwCleaner.

-- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.

sollussekundas · May 7, 2020

During scanning, windows defender found something:

logs:
RogueKiller Anti-Malware V14.4.2.0 (x64) [Apr 30 2020] (Premium) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 10 (10.0.18363) 64 bits
Started in : Normal mode
User : Admin [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20200507_122014, Driver : Loaded
Mode : Standard Scan, Scan -- Date : 2020/05/07 14:59:01 (Duration : 00:05:21)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

sollussekundas · May 7, 2020

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 5/7/20
Scan Time: 3:22 PM
Log File: d582375c-9065-11ea-8e8c-4cedfb79d8f5.json

-Software Information-
Version: 4.1.0.56
Components Version: 1.0.896
Update Package Version: 1.0.23570
License: Trial

-System Information-
OS: Windows 10 (Build 18362.815)
CPU: x64
File System: NTFS
User: DESKTOP-G75MQVV\Admin

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 275055
Threats Detected: 7
Threats Quarantined: 7
Time Elapsed: 0 min, 32 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 4
PUP.Optional.Conduit, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, 194, 236865, , , ,
PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, 194, 236865, , , ,
PUP.Optional.Conduit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, 194, 236865, , , ,
PUP.Optional.Conduit, HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, Quarantined, 194, 236865, 1.0.23570, , ame,

Registry Value: 2
PUP.Optional.Conduit, HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, Quarantined, 194, 236865, 1.0.23570, , ame,
PUP.Optional.Conduit, HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TOPRESULTURL, Quarantined, 194, 236865, 1.0.23570, , ame,

Registry Data: 1
PUP.Optional.Conduit, HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Replaced, 194, 293058, 1.0.23570, , ame,

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 0
(No malicious items detected)

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)

(end)

sollussekundas · May 7, 2020

# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-07-2020
# Duration: 00:00:00
# OS: Windows 10 Pro
# Cleaned: 2
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1557 octets] - [07/05/2020 15:29:14]
AdwCleaner[S01].txt - [1618 octets] - [07/05/2020 15:30:00]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

Broni · May 7, 2020

Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.

Double click to run it.
Press Scan button.
Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.

sollussekundas · May 8, 2020

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020
durchgeführt von Admin (Administrator) auf DESKTOP-G75MQVV (08-05-2020 14:21:48)
Gestartet von C:\Users\Admin\Downloads
Geladene Profile: Admin (Verfügbare Profile: Admin)
Platform: Windows 10 Pro Version 1909 18363.815 (X64) Sprache: German (Germany)
Standard-Browser: Chrome
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_48973fc6c96c696a\RstMwService.exe
(Kristjan Skutta -> ) D:\Games\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> ) C:\Windows\runSW.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp. -> Realtek) C:\Windows\SwUSB.exe
(TEFINCOM S.A. -> ) C:\Program Files (x86)\NordVPN\nordvpn-service.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9277520 2020-04-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Launch 0 FwCustom] => C:\Program Files (x86)\SKILLER MECH SGK3\SKILLER MECH SGK3.exe [3324416 2017-08-08] (0) [Datei ist nicht signiert]
HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3372832 2020-04-28] (Valve -> Valve Corporation)
HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\Run: [NordVPN] => C:\Program Files (x86)\NordVPN\NordVPN.exe [1825744 2020-04-21] (TEFINCOM S.A. -> NordVPN)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.138\Installer\chrmstp.exe [2020-05-08] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0CAA90B5-AA16-4438-A186-E6F92EA94B34} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1425E1E6-8729-4C01-803E-5D5B8FC1C986} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22A5F8FA-A3C3-4E94-9D19-59995C768ADB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {26EFDCDF-C065-475E-A350-E9399CCF66DC} - System32\Tasks\Driver Booster SkipUAC (Admin) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [7929104 2020-04-07] (IObit) [Datei ist nicht signiert]
Task: {42D0E9E6-837D-4DB1-9A21-C704CCFDF75F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-21] (Google LLC -> Google LLC)
Task: {4F98F62C-B639-4960-B0C8-87CA08840908} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {54001854-66A4-4EC1-B24D-13C9B9989F3D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5B7425E5-1AB0-4994-868C-BE3AC94EDE1D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6D672643-94BB-4662-B3C9-2B73FFE99F3F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7D60CDD7-6933-419E-AA22-B805792E92A7} - System32\Tasks\UninstallTool_SkipUAC_Admin => C:\Program Files\Uninstall Tool\UninstallTool.exe [4924576 2020-04-16] (CrystalBit Solutions -> CrystalIDEA Software) [Datei ist nicht signiert]
Task: {99F31557-482A-48B7-9D7F-394F8E95F640} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B8FFDF9E-A947-48C4-BBC5-62DD263E8AAE} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CAE89F89-166A-4BAC-90E4-07F872E020B9} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {D3A43A9E-0412-4654-A497-D271385A0B0A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D88275BC-877F-4E7B-9557-F7C62A50E35B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DB16C10B-DA1D-48EA-88AA-9A9141C43226} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DEADA28D-D1F9-4820-B79C-F278D2FEF05B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-21] (Google LLC -> Google LLC)
Task: {E3CF0C44-D570-45CA-B5CC-4DC7EE1F9D04} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F2E82A3E-01AF-4AB7-962D-1C0210D546AB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {FFB1B2FB-E26B-4BD5-8EE9-A4B6F1835634} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9165677b-a520-4cde-b217-ef17fb4a3e0d}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{cda9a4af-60d4-472a-8182-207e42f5813d}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{f9741b27-973a-429e-96b6-bec8aa7a6b65}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-25] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-25] (Oracle America, Inc. -> Oracle Corporation)

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2020-05-08]
CHR Extension: (Slides) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-21]
CHR Extension: (Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-21]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-04-21]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-21]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-05-06]
CHR Extension: (Sheets) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-21]
CHR Extension: (Google Docs Offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-21]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-21]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-05-05]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-21]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-04-21]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-21]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-03]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-04-25] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-04-26] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2406576 2017-03-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-07] (Malwarebytes Inc -> Malwarebytes)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\System32\MixedRealityRuntime.dll [139952 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll [105840 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [20119200 2020-05-02] (Mail.Ru LLC -> LLC Mail.Ru)
R2 nordvpn-service; C:\Program Files (x86)\NordVPN\nordvpn-service.exe [237520 2020-04-21] (TEFINCOM S.A. -> )
S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2495280 2020-04-29] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3446576 2020-04-29] (Electronic Arts, Inc. -> Electronic Arts)
S2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13048888 2020-04-30] (Adlice -> )
R2 RstMwService; C:\WINDOWS\System32\DriverStore\FileRepository\iaahcic.inf_amd64_48973fc6c96c696a\RstMwService.exe [2241536 2020-04-21] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 RunSwUSB; C:\Windows\runSW.exe [59232 2018-02-07] (Realtek Semiconductor Corp. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wallpaper Engine Service; D:\Games\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [350712 2020-04-25] (Kristjan Skutta -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 CisUtMonitor; C:\WINDOWS\System32\DRIVERS\CisUtMonitor.sys [54800 2018-11-24] (Software Security Systems ChTUP -> CrystalIdea Software)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-04-21] (Martin Malik - REALiX -> REALiX(tm))
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [1339360 2020-04-21] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [69632 2017-03-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S0 IFCoEVB; C:\WINDOWS\System32\drivers\ifp63x64.sys [198632 2016-10-08] (Intel(R) INTELND1617 -> Intel(R) Corporation)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [266128 2020-04-21] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MonectMiniportDriver; C:\WINDOWS\System32\drivers\MonectMiniportDriver.sys [27992 2020-04-04] (广州凝思科技有限公司 -> )
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv.sys [19351048 2020-05-02] (Mail.Ru LLC -> LLC Mail.Ru)
R3 nlwt; C:\WINDOWS\system32\DRIVERS\nlwt.sys [39360 2020-04-20] (TEFINCOM S.A. -> WireGuard LLC)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\nvlddmkm.sys [23446760 2020-04-21] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1162832 2020-04-21] (Realtek Semiconductor Corp. -> Realtek )
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [7148864 2018-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [56840 2020-04-21] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssbthid; C:\WINDOWS\System32\drivers\ssbthid.sys [43824 2019-12-23] (SteelSeries ApS -> )
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-12-23] (SteelSeries ApS -> )
S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [47824 2019-12-23] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 STTub30; C:\WINDOWS\System32\Drivers\STTub30.sys [54104 2019-12-23] (STMicroelectronics -> STMicroelectronics)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-06] (Windscribe Limited -> The OpenVPN Project)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2019-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-05-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [394680 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [51536 2018-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

==================== Ein Monat (erstellte) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2020-05-07 15:28 - 2020-05-07 15:30 - 000000000 ____D C:\AdwCleaner
2020-05-07 15:28 - 2020-05-07 15:28 - 000002423 _____ C:\Users\Admin\Desktop\awfawf.txt
2020-05-07 15:19 - 2020-05-07 15:19 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-05-07 15:19 - 2020-05-07 15:19 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-05-07 15:19 - 2020-05-07 15:19 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-05-07 15:19 - 2020-05-07 15:19 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-05-07 15:19 - 2020-05-07 15:19 - 000002021 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-05-07 15:19 - 2020-05-07 15:19 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-05-07 15:19 - 2020-05-07 15:19 - 000000000 ____D C:\Program Files\Malwarebytes
2020-05-07 14:58 - 2020-05-07 14:58 - 000296076 _____ C:\Users\Admin\Desktop\ррррррррр.txt
2020-05-07 14:37 - 2020-05-07 14:37 - 000000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2020-05-07 14:37 - 2020-05-07 14:37 - 000000899 _____ C:\ProgramData\Desktop\RogueKiller.lnk
2020-05-07 14:37 - 2020-05-07 14:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2020-05-07 14:37 - 2020-05-07 14:37 - 000000000 ____D C:\Program Files\RogueKiller
2020-05-07 14:34 - 2020-05-07 14:34 - 039851944 _____ (Adlice Software ) C:\Users\Admin\Downloads\RogueKiller_setup (1).exe
2020-05-07 14:29 - 2020-05-07 14:56 - 000000000 ____D C:\ProgramData\RogueKiller
2020-05-07 14:28 - 2020-05-07 14:28 - 046355952 _____ (Adlice Software ) C:\Users\Admin\Downloads\RogueKiller_setup.exe
2020-05-07 14:23 - 2020-05-07 14:23 - 008196784 _____ (Malwarebytes) C:\Users\Admin\Downloads\AdwCleaner.exe
2020-05-07 14:22 - 2020-05-07 14:22 - 001980016 _____ (Malwarebytes) C:\Users\Admin\Downloads\MBSetup.exe
2020-05-06 19:58 - 2020-05-06 19:58 - 000000000 _____ C:\WINDOWS\system32\last.dump
2020-05-06 18:02 - 2020-05-06 18:03 - 000047035 _____ C:\Users\Admin\Downloads\Addition.txt
2020-05-06 18:01 - 2020-05-08 14:22 - 000021522 _____ C:\Users\Admin\Downloads\FRST.txt
2020-05-06 18:01 - 2020-05-06 18:01 - 002283520 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2020-05-06 18:01 - 2020-05-06 18:01 - 000000000 ____D C:\Users\Admin\Downloads\FRST-OlderVersion
2020-05-06 17:59 - 2020-05-06 17:59 - 000000000 ___HD C:\$AV_ASW
2020-05-06 17:53 - 2020-05-07 14:26 - 000000000 ____D C:\Users\Admin\AppData\Roaming\AVAST Software
2020-05-06 17:51 - 2020-05-07 14:26 - 000000000 ____D C:\ProgramData\AVAST Software
2020-05-06 17:44 - 2020-05-08 14:22 - 000000000 ____D C:\FRST
2020-05-06 17:11 - 2020-05-06 17:11 - 000000000 ____D C:\Users\Admin\AppData\Local\mbam
2020-05-06 17:10 - 2020-05-06 17:54 - 000000000 ____D C:\Program Files (x86)\Malwarebytes
2020-05-06 17:10 - 2020-05-06 17:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\etc\BACKUP
2020-05-06 17:10 - 2020-05-06 17:10 - 000000000 ____D C:\Users\Admin\AppData\Local\mbamtray
2020-05-06 17:08 - 2020-05-06 17:08 - 000000000 ____D C:\KVRT_Data
2020-05-06 14:16 - 2020-05-06 16:05 - 000000000 ____D C:\PABCWork.NET
2020-05-06 14:14 - 2012-11-02 02:11 - 000000000 ____D C:\Users\Admin\Desktop\Pascal ABC 3.0.1 Rus Portable
2020-05-04 23:32 - 2020-05-05 19:08 - 000013022 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
2020-05-03 19:29 - 2020-05-03 19:29 - 000000749 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-05-03 19:29 - 2020-05-03 19:29 - 000000000 ____D C:\Users\Admin\AppData\Local\ESET
2020-05-03 19:16 - 2020-05-03 19:16 - 000000000 ____D C:\Users\Admin\Desktop\x64
2020-05-03 19:16 - 2020-05-03 19:16 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Process Hacker 2
2020-05-03 18:57 - 2020-05-03 18:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\dnSpy
2020-05-03 18:48 - 2020-05-06 18:06 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Notepad++
2020-05-03 18:48 - 2020-05-03 18:48 - 000001104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2020-05-03 18:48 - 2020-05-03 18:48 - 000000000 ____D C:\Program Files (x86)\Notepad++
2020-05-03 18:45 - 2020-05-03 18:45 - 000000000 ____D C:\Users\Admin\AppData\Local\dnSpy
2020-05-03 18:33 - 2020-05-03 18:40 - 000000000 _____ C:\Users\Admin\Documents\New CW Hack v16.rar
2020-05-03 15:29 - 2020-05-03 15:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WindowsWord
2020-05-03 15:29 - 2020-05-03 15:29 - 000000000 ____D C:\Program Files (x86)\WindowsWord
2020-05-02 20:46 - 2020-05-02 20:46 - 000000022 _____ C:\Users\Admin\Desktop\New Text Document.txt
2020-05-02 20:43 - 2020-05-02 20:43 - 020119200 _____ (LLC Mail.Ru) C:\WINDOWS\system32\mracsvc.exe
2020-05-02 20:43 - 2020-05-02 20:43 - 019351048 _____ (LLC Mail.Ru) C:\WINDOWS\system32\Drivers\mracdrv.sys
2020-05-02 20:42 - 2020-05-02 20:42 - 000000268 _____ C:\Users\Admin\Desktop\Warface.url
2020-05-02 20:06 - 2020-05-03 22:22 - 000000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2020-05-02 20:06 - 2020-05-02 20:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-05-02 20:06 - 2020-05-02 20:06 - 000000000 ____D C:\Program Files (x86)\VideoLAN
2020-05-02 20:03 - 2020-05-02 20:05 - 1467234981 _____ C:\Users\Admin\Desktop\[JAM_CLUB]_Kami_no_Tou_05_[1080p][RUS][DUB].mp4
2020-05-02 17:01 - 2020-05-02 17:01 - 000000420 _____ C:\Users\Admin\Desktop\This PC - Shortcut.lnk
2020-05-02 16:58 - 2020-05-06 20:35 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-05-02 16:51 - 2020-05-02 16:51 - 000000000 ____D C:\Users\Admin\Doctor Web
2020-05-02 16:51 - 2020-05-02 16:51 - 000000000 ____D C:\ProgramData\Doctor Web
2020-05-02 00:39 - 2020-05-02 00:39 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 007011840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 006291968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 003822080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 002190648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001719336 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001616912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001559040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001497416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001386296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000959800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\assignedaccessmanagersvc.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000827192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000816952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000666424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000649016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000643072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessManager.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000502784 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000494904 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000396088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000259384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2020-05-02 00:39 - 2020-05-02 00:39 - 000230416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000181560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2020-05-02 00:39 - 2020-05-02 00:39 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2020-05-02 00:39 - 2020-05-02 00:39 - 000139952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityRuntime.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwclientres.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000105840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-05-02 00:39 - 2020-05-02 00:39 - 000037688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2020-05-02 00:39 - 2020-05-02 00:39 - 000022032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScriptRunner.exe
2020-05-02 00:39 - 2020-05-02 00:39 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwstreamingux.dll
2020-05-02 00:38 - 2020-05-02 00:39 - 018028032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 022637056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 017791488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 014819328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 007899528 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 007267328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 007257816 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 006522840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 006434304 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 006079184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 005757872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 005109760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 004858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 004624880 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 004565456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 004009472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003983360 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 003805696 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003747328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003655168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 003587392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 003371416 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002769000 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002461696 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002259664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002255136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002147328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001943040 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001934824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001766400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001734144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001686016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001667600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001507328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 001413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 001393968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001178608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001077264 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 001023128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000999616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000979264 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000945192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000920576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000915208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000892488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000891544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000874312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000847168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000801832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000683848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000676072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000673488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000673296 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000639400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000637480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000631608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2020-05-02 00:38 - 2020-05-02 00:38 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000592944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000589400 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000568136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000543824 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000501200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000466344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000460408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000375520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000325432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys

sollussekundas · May 8, 2020

2020-05-02 00:38 - 2020-05-02 00:38 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000250696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000211472 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000147776 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000142760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000124504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000107616 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000089544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000069704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000066832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000060432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000058696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-05-02 00:38 - 2020-05-02 00:38 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\plasrv.exe
2020-05-02 00:38 - 2020-05-02 00:38 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-02 00:38 - 2020-05-02 00:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-05-01 23:57 - 2020-05-01 23:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-05-01 23:57 - 2020-05-01 23:57 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 007849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 005910016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 004611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 003547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 003512320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 002951832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 002369576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001870408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-05-01 23:55 - 2020-05-01 23:55 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001665216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001659408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001646048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001603584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001545216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 001512832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001427456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001378528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 001261808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001243648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001013000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000775696 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000759272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000684560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000673464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000618296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-05-01 23:55 - 2020-05-01 23:55 - 000538160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000515600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000513576 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000487784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-05-01 23:55 - 2020-05-01 23:55 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-05-01 23:55 - 2020-05-01 23:55 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000339304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000147696 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumapi.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumapi.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iaspolcy.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000033080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys
2020-05-01 23:55 - 2020-05-01 23:55 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ias.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wksprtPS.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsunattend.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-05-01 23:55 - 2020-05-01 23:55 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-05-01 23:55 - 2020-05-01 23:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 002131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 002114560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 001960448 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 001719808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 001263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2020-05-01 23:54 - 2020-05-01 23:54 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000437560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000297272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-05-01 23:54 - 2020-05-01 23:54 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000151352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll
2020-05-01 23:54 - 2020-05-01 23:54 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys
2020-05-01 23:54 - 2020-05-01 23:54 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys
2020-05-01 23:50 - 2020-03-17 05:57 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-05-01 23:50 - 2020-03-17 05:56 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-05-01 20:48 - 2020-05-03 21:10 - 000000000 ____D C:\Users\Admin\AppData\Roaming\obs-studio
2020-05-01 20:48 - 2020-05-01 20:48 - 000001052 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2020-05-01 20:48 - 2020-05-01 20:48 - 000001052 _____ C:\ProgramData\Desktop\OBS Studio.lnk
2020-05-01 20:48 - 2020-05-01 20:48 - 000000000 ____D C:\ProgramData\obs-studio-hook
2020-05-01 20:48 - 2020-05-01 20:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2020-05-01 20:48 - 2020-05-01 20:48 - 000000000 ____D C:\Program Files\obs-studio
2020-05-01 19:10 - 2020-05-01 19:10 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\HotGlue
2020-05-01 16:15 - 2020-05-01 16:15 - 000000793 _____ C:\Users\Public\Desktop\CWClient.lnk
2020-05-01 16:15 - 2020-05-01 16:15 - 000000793 _____ C:\ProgramData\Desktop\CWClient.lnk
2020-05-01 15:29 - 2020-05-01 15:29 - 000000219 _____ C:\Users\Admin\Desktop\Counter-Strike Global Offensive.url
2020-05-01 00:59 - 2020-05-01 00:59 - 000000000 ____D C:\Users\Admin\Documents\Call of Duty Modern Warfare
2020-05-01 00:25 - 2020-05-01 00:25 - 000001078 _____ C:\Users\Public\Desktop\Call of Duty Modern Warfare.lnk
2020-05-01 00:25 - 2020-05-01 00:25 - 000001078 _____ C:\ProgramData\Desktop\Call of Duty Modern Warfare.lnk
2020-05-01 00:25 - 2020-05-01 00:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Modern Warfare
2020-04-30 23:31 - 2020-04-30 23:31 - 000000222 _____ C:\Users\Admin\Desktop\Dead by Daylight.url
2020-04-30 20:50 - 2020-05-01 01:33 - 000000000 ____D C:\Program Files (x86)\Call of Duty Modern Warfare
2020-04-30 20:50 - 2020-04-30 20:50 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2020-04-30 20:47 - 2020-05-01 01:33 - 000000000 ____D C:\Users\Admin\AppData\Local\Battle.net
2020-04-30 20:47 - 2020-04-30 20:50 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Battle.net
2020-04-30 20:47 - 2020-04-30 20:47 - 000000962 _____ C:\Users\Public\Desktop\Battle.net.lnk
2020-04-30 20:47 - 2020-04-30 20:47 - 000000962 _____ C:\ProgramData\Desktop\Battle.net.lnk
2020-04-30 20:47 - 2020-04-30 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2020-04-30 20:46 - 2020-04-30 20:50 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-04-30 20:43 - 2020-04-30 20:47 - 000000000 ____D C:\Users\Admin\AppData\Local\Blizzard Entertainment
2020-04-30 20:42 - 2020-04-30 20:42 - 000000000 ____D C:\ProgramData\Battle.net
2020-04-30 20:42 - 2020-04-30 20:42 - 000000000 ____D C:\Program Files\NordVPN network TUN
2020-04-30 20:42 - 2020-04-30 20:42 - 000000000 ____D C:\Program Files (x86)\NordVPN
2020-04-27 10:48 - 2020-04-27 10:48 - 000000000 ____D C:\Users\Admin\AppData\Local\IsolatedStorage
2020-04-26 17:26 - 2020-04-26 17:26 - 000000000 ____D C:\Users\Admin\Documents\My Games
2020-04-26 17:26 - 2020-04-26 17:26 - 000000000 ____D C:\Users\Admin\AppData\Roaming\EasyAntiCheat
2020-04-26 17:26 - 2020-04-26 17:26 - 000000000 ____D C:\ProgramData\For Honor Data
2020-04-26 17:10 - 2020-04-26 17:10 - 000000000 ____D C:\ProgramData\Ubisoft
2020-04-26 17:09 - 2020-04-26 18:25 - 000000000 ____D C:\Users\Admin\AppData\Local\Ubisoft Game Launcher
2020-04-26 17:09 - 2020-04-26 17:09 - 000001278 _____ C:\Users\Admin\Desktop\Uplay.lnk
2020-04-26 17:09 - 2020-04-26 17:09 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2020-04-26 17:09 - 2020-04-26 17:09 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2020-04-26 12:05 - 2020-04-26 12:05 - 000000222 _____ C:\Users\Admin\Desktop\For Honor.url
2020-04-25 22:17 - 2020-04-25 22:17 - 000000830 _____ C:\Users\Public\Desktop\SKILLER MECH SGK3.lnk
2020-04-25 22:17 - 2020-04-25 22:17 - 000000830 _____ C:\ProgramData\Desktop\SKILLER MECH SGK3.lnk
2020-04-25 22:17 - 2020-04-25 22:17 - 000000000 ____D C:\Users\Admin\Documents\FwCustom_09A
2020-04-25 22:17 - 2020-04-25 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SKILLER MECH SGK3
2020-04-25 22:17 - 2020-04-25 22:17 - 000000000 ____D C:\Program Files (x86)\SKILLER MECH SGK3
2020-04-25 19:38 - 2020-04-25 19:38 - 000000222 _____ C:\Users\Admin\Desktop\Wallpaper Engine.url
2020-04-25 17:50 - 2020-04-25 17:50 - 000000000 ____D C:\Users\Admin\AppData\Local\UnrealEngine
2020-04-25 17:50 - 2020-04-25 17:50 - 000000000 ____D C:\Users\Admin\AppData\Local\TslGame
2020-04-25 17:49 - 2020-04-25 17:49 - 000000000 ____D C:\Users\Admin\AppData\Local\BattlEye
2020-04-25 17:11 - 2020-04-25 17:11 - 000001184 _____ C:\WINDOWS\system32\Drivers\etc\hosts.rollback
2020-04-25 17:11 - 2020-04-22 18:41 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.backup
2020-04-25 17:01 - 2020-04-25 17:09 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.minecraft
2020-04-25 17:01 - 2020-04-25 17:02 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
2020-04-25 17:01 - 2020-04-25 17:01 - 000001103 _____ C:\Users\Public\Desktop\Minecraft Launcher.lnk
2020-04-25 17:01 - 2020-04-25 17:01 - 000001103 _____ C:\ProgramData\Desktop\Minecraft Launcher.lnk
2020-04-25 17:01 - 2020-04-25 17:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher
2020-04-25 16:21 - 2020-04-25 16:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-Link
2020-04-25 16:21 - 2020-04-25 16:21 - 000000000 ____D C:\Program Files (x86)\TP-Link
2020-04-25 16:20 - 2020-04-25 22:17 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-04-25 16:20 - 2020-04-25 16:21 - 000000000 ____D C:\Users\Admin\AppData\Local\TP-Link
2020-04-25 16:20 - 2020-04-25 16:20 - 000000000 ____D C:\ProgramData\TP-Link
2020-04-25 16:20 - 2018-04-10 03:51 - 007148864 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\rtwlanu.sys
2020-04-25 16:20 - 2018-04-10 03:51 - 007148864 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlanu.sys
2020-04-25 16:20 - 2018-04-10 03:51 - 001183040 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\Rtlihvs.dll
2020-04-25 16:20 - 2018-04-10 03:51 - 000115008 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\RtlExtUI.dll
2020-04-25 16:20 - 2018-04-10 03:51 - 000049472 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\system32\rtlCoInst.dll
2020-04-25 16:20 - 2018-04-10 03:51 - 000026475 _____ C:\WINDOWS\system32\netrtwlanu.cat
2020-04-25 16:20 - 2018-04-10 00:44 - 000013284 _____ C:\WINDOWS\system32\PwrTblRate_T4Uv3_US_Enc.txt
2020-04-25 16:20 - 2018-04-10 00:44 - 000013284 _____ C:\WINDOWS\system32\Drivers\PwrTblRate_T4Uv3_US_Enc.txt
2020-04-25 16:20 - 2018-04-10 00:44 - 000011347 _____ C:\WINDOWS\system32\rtlCoInst.dat
2020-04-25 16:20 - 2018-04-10 00:44 - 000011087 _____ C:\WINDOWS\system32\PwrTblLmt_T4Uv3_US_Enc.txt
2020-04-25 16:20 - 2018-04-10 00:44 - 000011087 _____ C:\WINDOWS\system32\Drivers\PwrTblLmt_T4Uv3_US_Enc.txt
2020-04-25 16:20 - 2018-02-07 19:06 - 000509792 _____ (Realtek) C:\WINDOWS\SwUSB.exe
2020-04-25 16:20 - 2018-02-07 19:06 - 000059232 _____ () C:\WINDOWS\runSW.exe
2020-04-25 15:36 - 2020-04-25 15:36 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-04-25 15:34 - 2020-04-25 15:34 - 000000569 _____ C:\Users\Public\Desktop\DOOM Eternal.lnk
2020-04-25 15:34 - 2020-04-25 15:34 - 000000569 _____ C:\ProgramData\Desktop\DOOM Eternal.lnk
2020-04-25 15:31 - 2020-04-25 15:36 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.hcs
2020-04-25 15:31 - 2020-04-25 15:31 - 000514502 _____ () C:\Users\Admin\Desktop\HCS.exe
2020-04-25 15:31 - 2020-04-25 15:31 - 000114344 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-04-25 15:31 - 2020-04-25 15:31 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Sun
2020-04-25 15:31 - 2020-04-25 15:31 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Sun

sollussekundas · May 8, 2020

2020-04-25 15:31 - 2020-04-25 15:31 - 000000000 ____D C:\ProgramData\Oracle
2020-04-25 15:31 - 2020-04-25 15:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-04-25 15:31 - 2020-04-25 15:31 - 000000000 ____D C:\Program Files (x86)\Java
2020-04-25 15:29 - 2020-04-26 15:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2020-04-25 15:29 - 2020-04-25 15:29 - 000000907 _____ C:\Users\Admin\Desktop\qBittorrent.lnk
2020-04-25 15:29 - 2020-04-25 15:29 - 000000000 ____D C:\Program Files\qBittorrent
2020-04-25 13:45 - 2020-04-25 13:45 - 000000000 ____D C:\Users\Admin\AppData\Local\Electronic Arts
2020-04-25 13:36 - 2020-04-26 17:26 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2020-04-25 13:36 - 2020-04-25 13:36 - 000001199 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2020-04-25 13:36 - 2020-04-25 13:36 - 000001199 _____ C:\ProgramData\Desktop\Apex Legends.lnk
2020-04-25 13:36 - 2020-04-25 13:36 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2020-04-25 12:41 - 2020-04-25 12:41 - 000000222 _____ C:\Users\Admin\Desktop\PLAYERUNKNOWN'S BATTLEGROUNDS.url
2020-04-25 02:23 - 2020-04-25 02:23 - 000001339 _____ C:\Users\Admin\Desktop\FurMark.lnk
2020-04-24 23:32 - 2020-05-08 14:20 - 000003142 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2020-04-23 16:10 - 2020-04-23 16:10 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashRpt
2020-04-23 15:10 - 2020-04-23 15:20 - 000000000 ____D C:\Users\Admin\Documents\Mount and Blade II Bannerlord
2020-04-23 15:10 - 2020-04-23 15:10 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2020-04-23 14:29 - 2020-05-07 14:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mail.ru
2020-04-23 14:18 - 2020-04-23 14:18 - 000000222 _____ C:\Users\Admin\Desktop\This War of Mine.url
2020-04-22 22:36 - 2020-04-22 22:36 - 000001409 _____ C:\Users\Admin\Desktop\Launcher Mount & Blade II Bannerlord.lnk
2020-04-22 22:36 - 2020-04-22 22:36 - 000001037 _____ C:\Users\Admin\Desktop\Mount & Blade II Bannerlord.lnk
2020-04-22 22:23 - 2020-05-01 16:15 - 000000000 ____D C:\Games
2020-04-22 18:45 - 2020-04-30 20:42 - 000002039 _____ C:\Users\Public\Desktop\NordVPN.lnk
2020-04-22 18:45 - 2020-04-30 20:42 - 000002039 _____ C:\ProgramData\Desktop\NordVPN.lnk
2020-04-22 18:45 - 2020-04-30 20:42 - 000000000 ____D C:\Users\Admin\AppData\Local\NordVPN
2020-04-22 18:45 - 2020-04-22 18:45 - 000000034 _____ C:\Users\Admin\Desktop\nord.txt
2020-04-22 18:45 - 2020-04-22 18:45 - 000000000 ____D C:\ProgramData\NordVPN
2020-04-22 18:43 - 2020-04-22 18:43 - 000000000 ____D C:\Program Files (x86)\NordVPN network TAP
2020-04-22 18:19 - 2020-04-25 17:18 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-04-22 18:18 - 2020-05-01 00:12 - 000000000 ____D C:\Program Files (x86)\Origin
2020-04-22 18:18 - 2020-04-22 18:18 - 000001066 _____ C:\Users\Public\Desktop\Origin.lnk
2020-04-22 18:18 - 2020-04-22 18:18 - 000001066 _____ C:\ProgramData\Desktop\Origin.lnk
2020-04-22 18:18 - 2020-04-22 18:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2020-04-22 18:18 - 2020-04-22 18:18 - 000000000 ____D C:\ProgramData\Electronic Arts
2020-04-22 18:15 - 2020-04-25 17:49 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Origin
2020-04-22 18:15 - 2020-04-25 17:49 - 000000000 ____D C:\Users\Admin\AppData\Local\Origin
2020-04-22 18:15 - 2020-04-25 17:49 - 000000000 ____D C:\ProgramData\Origin
2020-04-22 18:15 - 2020-04-22 18:15 - 000000000 ____D C:\Users\Admin\.QtWebEngineProcess
2020-04-22 18:15 - 2020-04-22 18:15 - 000000000 ____D C:\Users\Admin\.Origin
2020-04-22 17:37 - 2020-04-22 17:37 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\AbsolutSoft
2020-04-22 14:21 - 2020-04-22 14:21 - 000000000 ____D C:\Users\Admin\ansel
2020-04-22 14:21 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2020-04-22 14:21 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2020-04-22 14:21 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2020-04-22 14:21 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2020-04-22 14:21 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2020-04-22 14:21 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2020-04-22 04:34 - 2020-04-30 18:45 - 000007594 _____ C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
2020-04-22 04:16 - 2020-04-22 04:16 - 000000222 _____ C:\Users\Admin\Desktop\Kingdom Come Deliverance.url
2020-04-22 04:00 - 2020-05-06 17:49 - 000000000 ____D C:\Users\Admin\AppData\Roaming\qBittorrent
2020-04-22 04:00 - 2020-04-22 04:00 - 000000000 ____D C:\Users\Admin\AppData\Local\qBittorrent
2020-04-22 03:57 - 2018-07-06 17:22 - 000054896 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tapwindscribe0901.sys
2020-04-21 19:46 - 2020-05-03 21:54 - 000000000 ____D C:\Users\Admin\AppData\Roaming\discord
2020-04-21 19:46 - 2020-04-21 19:47 - 000000000 ____D C:\Users\Admin\AppData\Local\SquirrelTemp
2020-04-21 19:46 - 2020-04-21 19:46 - 000002237 _____ C:\Users\Admin\Desktop\Discord.lnk
2020-04-21 19:46 - 2020-04-21 19:46 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-04-21 19:46 - 2020-04-21 19:46 - 000000000 ____D C:\Users\Admin\AppData\Local\Discord
2020-04-21 19:24 - 2020-04-21 19:24 - 000000622 _____ C:\Users\Admin\Desktop\osu!.lnk
2020-04-21 19:24 - 2020-04-21 19:24 - 000000622 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2020-04-21 18:36 - 2020-04-22 03:48 - 000002306 ____H C:\Users\Admin\Documents\Default.rdp
2020-04-21 18:11 - 2020-04-21 18:11 - 017601632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 015158384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 011945872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 010286480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 005855856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 005159520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 002241536 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\RstMwService.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 002074208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 001566304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001481112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001350768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001339360 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAC.sys
2020-04-21 18:11 - 2020-04-21 18:11 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 001162832 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2020-04-21 18:11 - 2020-04-21 18:11 - 001141992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001048504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 001004960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000851040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 000816872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000811448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000679656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000676240 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000655288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000561776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 000546536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000542952 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000450280 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000443832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-04-21 18:11 - 2020-04-21 18:11 - 000346856 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-04-21 18:11 - 2020-04-21 18:11 - 000106838 _____ C:\WINDOWS\system32\nvidia-smi.1.pdf
2020-04-21 18:11 - 2020-04-21 18:11 - 000077294 _____ C:\WINDOWS\system32\nvinfo.pb
2020-04-21 18:11 - 2020-04-21 18:11 - 000027104 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\RstMwEventLogMsg.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 072520600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2020-04-21 18:10 - 2020-04-21 18:10 - 033399859 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2020-04-21 18:10 - 2020-04-21 18:10 - 007178360 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 007101632 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 006463760 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV3apo.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 006270080 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 005938800 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 005593504 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 005347096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 003676960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2020-04-21 18:10 - 2020-04-21 18:10 - 003445632 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 003306704 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 003266984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 003168280 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 003159664 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 002930040 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 002444792 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 002197872 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001971472 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001965264 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001788064 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001611064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001598504 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001596296 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001544360 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001516376 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001435032 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001396840 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001386680 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001382128 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001372496 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001353208 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001337528 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001294184 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001287704 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001259832 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001180792 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001159072 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001110064 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001078576 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001061464 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 001003744 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000964912 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000873352 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000852024 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000751408 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000734880 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000715752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000692056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000604688 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000541008 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000511776 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000487360 _____ (Harman International Industries, Incorporated.) C:\WINDOWS\system32\HarmanAPOUI64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000467048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000453168 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000452840 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000448712 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000447072 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000416400 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000406560 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000392760 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000381296 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000378272 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000367712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000366224 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000360448 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000343600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000341040 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000333112 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000327160 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000327160 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000316080 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000278376 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000266440 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000261336 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000261304 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000260320 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000231808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000230592 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000220280 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000218160 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000203944 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000191040 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000191040 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000179728 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000174832 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000158584 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000157232 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000154256 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000139648 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000122208 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000118480 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000116432 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000105200 _____ C:\WINDOWS\system32\audioLibVc.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000093792 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000090808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000090064 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000088208 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000083512 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000075432 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2020-04-21 18:10 - 2020-04-21 18:10 - 000000000 _____ C:\WINDOWS\system32\fpfftResultsFile.txt
2020-04-21 18:09 - 2020-04-21 18:09 - 001730376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2020-04-21 18:09 - 2020-04-21 18:09 - 001011520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinUSBCoInstaller2.dll
2020-04-21 18:09 - 2020-04-21 18:09 - 000056840 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2020-04-21 18:02 - 2020-05-06 16:21 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2020-04-21 18:01 - 2020-05-07 14:34 - 000003644 _____ C:\WINDOWS\system32\Tasks\UninstallTool_SkipUAC_Admin
2020-04-21 18:01 - 2020-04-21 18:01 - 000000990 _____ C:\Users\Public\Desktop\Uninstall Tool.lnk
2020-04-21 18:01 - 2020-04-21 18:01 - 000000990 _____ C:\ProgramData\Desktop\Uninstall Tool.lnk
2020-04-21 18:01 - 2020-04-21 18:01 - 000000000 ____D C:\Users\Admin\AppData\Roaming\CrystalIdea Software
2020-04-21 18:01 - 2020-04-21 18:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Tool
2020-04-21 18:01 - 2020-04-21 18:01 - 000000000 ____D C:\Program Files\Uninstall Tool
2020-04-21 17:57 - 2020-05-06 20:35 - 000002386 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Admin)
2020-04-21 17:57 - 2020-04-21 17:57 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2020-04-21 17:57 - 2020-04-21 17:57 - 000001299 _____ C:\Users\Admin\Desktop\IObit Driver Booster.lnk
2020-04-21 17:57 - 2020-04-21 17:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\IObit
2020-04-21 17:57 - 2020-04-21 17:57 - 000000000 ____D C:\Users\Admin\AppData\Local\Steam
2020-04-21 17:57 - 2020-04-21 17:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit
2020-04-21 17:57 - 2020-04-21 17:57 - 000000000 ____D C:\ProgramData\IObit
2020-04-21 17:57 - 2020-04-21 17:57 - 000000000 ____D C:\Program Files (x86)\IObit
2020-04-21 17:56 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2020-04-21 17:56 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2020-04-21 17:56 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2020-04-21 17:56 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2020-04-21 17:56 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2020-04-21 17:56 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2020-04-21 17:56 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2020-04-21 17:56 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2020-04-21 17:56 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2020-04-21 17:56 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2020-04-21 17:56 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2020-04-21 17:56 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2020-04-21 17:56 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2020-04-21 17:56 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2020-04-21 17:56 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2020-04-21 17:56 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2020-04-21 17:56 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2020-04-21 17:56 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2020-04-21 17:56 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2020-04-21 17:56 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2020-04-21 17:56 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2020-04-21 17:56 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2020-04-21 17:56 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2020-04-21 17:56 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2020-04-21 17:56 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2020-04-21 17:56 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2020-04-21 17:56 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2020-04-21 17:56 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2020-04-21 17:56 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2020-04-21 17:56 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2020-04-21 17:56 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2020-04-21 17:56 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2020-04-21 17:56 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2020-04-21 17:56 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2020-04-21 17:56 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2020-04-21 17:56 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2020-04-21 17:56 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2020-04-21 17:56 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2020-04-21 17:56 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2020-04-21 17:56 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2020-04-21 17:56 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2020-04-21 17:56 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2020-04-21 17:56 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2020-04-21 17:56 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2020-04-21 17:56 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2020-04-21 17:56 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2020-04-21 17:56 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2020-04-21 17:56 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2020-04-21 17:56 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2020-04-21 17:56 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2020-04-21 17:56 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2020-04-21 17:56 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2020-04-21 17:56 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2020-04-21 17:56 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2020-04-21 17:56 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2020-04-21 17:56 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2020-04-21 17:56 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2020-04-21 17:56 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2020-04-21 17:56 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2020-04-21 17:56 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2020-04-21 17:56 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2020-04-21 17:56 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2020-04-21 17:56 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2020-04-21 17:56 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2020-04-21 17:56 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2020-04-21 17:56 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2020-04-21 17:56 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2020-04-21 17:56 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2020-04-21 17:56 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2020-04-21 17:56 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2020-04-21 17:56 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2020-04-21 17:56 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2020-04-21 17:56 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2020-04-21 17:56 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2020-04-21 17:56 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2020-04-21 17:56 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2020-04-21 17:56 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2020-04-21 17:56 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2020-04-21 17:56 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2020-04-21 17:56 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2020-04-21 17:56 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2020-04-21 17:56 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2020-04-21 17:56 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2020-04-21 17:56 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2020-04-21 17:56 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2020-04-21 17:56 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2020-04-21 17:56 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2020-04-21 17:56 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2020-04-21 17:56 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2020-04-21 17:56 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2020-04-21 17:56 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2020-04-21 17:56 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2020-04-21 17:56 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2020-04-21 17:56 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2020-04-21 17:56 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2020-04-21 17:56 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2020-04-21 17:56 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2020-04-21 17:56 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2020-04-21 17:56 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2020-04-21 17:56 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2020-04-21 17:56 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2020-04-21 17:56 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2020-04-21 17:56 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2020-04-21 17:56 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2020-04-21 17:56 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2020-04-21 17:56 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2020-04-21 17:56 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2020-04-21 17:56 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2020-04-21 17:56 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2020-04-21 17:56 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2020-04-21 17:56 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2020-04-21 17:56 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2020-04-21 17:56 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2020-04-21 17:56 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2020-04-21 17:55 - 2020-05-08 14:21 - 000000000 ____D C:\Program Files (x86)\Steam
2020-04-21 17:55 - 2020-04-30 12:01 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2020-04-21 17:55 - 2020-04-25 17:11 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-04-21 17:55 - 2020-04-21 17:55 - 000001036 _____ C:\Users\Public\Desktop\Steam.lnk
2020-04-21 17:55 - 2020-04-21 17:55 - 000001036 _____ C:\ProgramData\Desktop\Steam.lnk
2020-04-21 17:55 - 2020-04-21 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-04-21 17:54 - 2020-05-06 17:49 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-04-21 17:54 - 2020-04-21 17:54 - 000001159 _____ C:\Users\Admin\Desktop\MSI Afterburner.lnk
2020-04-21 17:48 - 2020-04-21 17:48 - 000001052 _____ C:\Users\Public\Desktop\AIDA64.lnk
2020-04-21 17:48 - 2020-04-21 17:48 - 000001052 _____ C:\ProgramData\Desktop\AIDA64.lnk
2020-04-21 17:48 - 2020-04-21 17:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIDA64
2020-04-21 17:48 - 2020-04-21 17:48 - 000000000 ____D C:\Program Files (x86)\AIDA64
2020-04-21 17:46 - 2020-04-21 17:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2020-04-21 17:46 - 2020-04-21 17:46 - 000000000 ____D C:\Program Files\7-Zip
2020-04-21 17:34 - 2020-05-07 14:36 - 000000510 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2020-04-21 17:31 - 2019-03-18 15:20 - 008628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0019.dll
2020-04-21 17:28 - 2020-05-07 15:36 - 000769972 _____ C:\WINDOWS\system32\perfh019.dat
2020-04-21 17:28 - 2020-05-07 15:36 - 000151432 _____ C:\WINDOWS\system32\perfc019.dat
2020-04-21 17:28 - 2020-04-21 17:28 - 000340720 _____ C:\WINDOWS\system32\perfi019.dat
2020-04-21 17:28 - 2020-04-21 17:28 - 000041686 _____ C:\WINDOWS\system32\perfd019.dat
2020-04-21 17:28 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\ru
2020-04-21 17:28 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\ru
2020-04-21 17:26 - 2020-04-21 17:26 - 000000000 ____D C:\ProgramData\Caphyon
2020-04-21 17:24 - 2019-03-18 15:20 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2020-04-21 17:24 - 2019-03-18 15:19 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2020-04-21 17:24 - 2019-03-18 15:07 - 006359552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2020-04-21 17:24 - 2019-03-18 15:01 - 005496832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2020-04-21 17:21 - 2020-05-08 14:21 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-21 17:21 - 2020-05-06 20:35 - 000003560 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-04-21 17:21 - 2020-04-22 15:21 - 000003396 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-04-21 17:21 - 2020-04-21 17:27 - 000000000 ____D C:\Users\Admin\AppData\Local\Google
2020-04-21 17:21 - 2020-04-21 17:21 - 000000000 ____D C:\Program Files (x86)\Google
2020-04-20 17:26 - 2020-04-20 17:26 - 000000000 ____D C:\Users\Admin\AppData\Local\CEF
2020-04-20 14:00 - 2020-04-20 14:00 - 000039360 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\nlwt.sys
2020-04-18 15:25 - 2020-04-18 15:25 - 000000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2020-04-10 16:18 - 2020-04-28 11:46 - 000011781 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2020-04-10 16:17 - 2020-05-01 00:59 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache
2020-04-10 16:17 - 2020-04-10 16:17 - 000000000 ____D C:\Users\Admin\AppData\Roaming\NVIDIA
2020-04-10 13:22 - 2020-04-27 13:02 - 000012887 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-04-10 12:48 - 2020-04-10 12:47 - 000744808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2020-04-10 11:32 - 2020-04-10 11:32 - 000000000 ____D C:\Users\Admin\AppData\Local\PeerDistRepub
2020-04-10 11:32 - 2020-04-10 11:32 - 000000000 ____D C:\Users\Admin\AppData\Local\NVIDIA
2020-04-10 11:31 - 2020-04-10 11:31 - 000000000 ____D C:\Program Files (x86)\Geeks3D
2020-04-10 11:30 - 2020-04-10 11:30 - 000000000 ____D C:\Users\Admin\AppData\Local\Comms
2020-04-10 11:29 - 2020-04-25 15:36 - 000000000 ____D C:\Users\Admin\AppData\Local\NVIDIA Corporation
2020-04-10 11:27 - 2020-05-06 20:35 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-05-06 20:35 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-05-06 20:35 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-05-06 20:35 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-05-06 20:35 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-05-06 20:35 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-05-06 20:35 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-05-06 20:35 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:27 - 2020-04-25 17:11 - 000000000 ____D C:\ProgramData\Package Cache
2020-04-10 11:27 - 2020-04-10 11:27 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2020-04-10 11:27 - 2020-04-10 11:27 - 000001447 _____ C:\ProgramData\Desktop\GeForce Experience.lnk
2020-04-10 11:27 - 2020-04-10 11:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-04-10 11:27 - 2020-03-18 11:39 - 002859872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll

sollussekundas · May 8, 2020

2020-04-10 11:27 - 2020-03-18 11:39 - 002221064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2020-04-10 11:27 - 2020-03-18 11:39 - 001321496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-04-10 11:27 - 2020-03-18 11:39 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-04-10 11:27 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2020-04-10 11:27 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2020-04-10 11:27 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2020-04-10 11:27 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2020-04-10 11:26 - 2020-05-08 14:22 - 000000000 ____D C:\ProgramData\NVIDIA
2020-04-10 11:26 - 2020-05-06 20:35 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:26 - 2020-05-06 20:35 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-10 11:26 - 2020-04-10 11:27 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-04-10 11:26 - 2020-03-18 11:39 - 000174560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2020-04-10 11:26 - 2020-03-18 11:39 - 000149472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2020-04-10 11:25 - 2020-04-10 11:27 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-04-10 11:25 - 2020-03-18 11:39 - 000075600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-04-10 11:25 - 2020-03-18 11:39 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2020-04-10 11:25 - 2020-03-18 11:39 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2020-04-10 11:24 - 2020-04-21 18:11 - 004195488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-04-10 11:24 - 2020-04-21 18:03 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Mozilla
2020-04-10 11:24 - 2020-04-21 17:21 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2020-04-10 11:20 - 2020-04-21 17:58 - 000000000 ____D C:\Users\Admin\AppData\Local\PlaceholderTileLogoFolder
2020-04-10 11:20 - 2020-04-20 17:32 - 000000000 ___RD C:\Users\Admin\OneDrive
2020-04-10 11:18 - 2020-05-07 15:36 - 002635824 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-04-10 11:18 - 2020-05-07 14:25 - 000013581 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-04-10 11:18 - 2020-05-02 17:01 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2020-04-10 11:18 - 2020-05-02 00:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-04-10 11:18 - 2020-05-02 00:42 - 000000000 ___RD C:\Users\Admin\3D Objects
2020-04-10 11:18 - 2020-04-21 17:36 - 000000000 ____D C:\Users\Admin\AppData\Local\Publishers
2020-04-10 11:18 - 2020-04-10 11:18 - 000000000 ___HD C:\Users\Admin\MicrosoftEdgeBackups
2020-04-10 11:18 - 2020-04-10 11:18 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Adobe
2020-04-10 11:18 - 2020-04-10 11:18 - 000000000 ____D C:\Users\Admin\AppData\Local\VirtualStore
2020-04-10 11:18 - 2020-04-10 11:18 - 000000000 ____D C:\Users\Admin\AppData\Local\MicrosoftEdge
2020-04-10 11:18 - 2020-04-10 11:18 - 000000000 ____D C:\Users\Admin\AppData\Local\ConnectedDevicesPlatform
2020-04-10 11:17 - 2020-05-03 14:10 - 000000000 ____D C:\Users\Admin
2020-04-10 11:17 - 2020-04-10 11:17 - 000000020 ___SH C:\Users\Admin\ntuser.ini
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Vorlagen
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Startmenü
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Netzwerkumgebung
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Lokale Einstellungen
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Eigene Dateien
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Druckumgebung
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Documents\Eigene Videos
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Documents\Eigene Musik
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Documents\Eigene Bilder
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\AppData\Local\Verlauf
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\AppData\Local\Anwendungsdaten
2020-04-10 11:17 - 2020-04-10 11:17 - 000000000 _SHDL C:\Users\Admin\Anwendungsdaten
2020-04-10 11:15 - 2020-04-22 04:41 - 000000000 ____D C:\ProgramData\Packages
2020-04-10 11:14 - 2020-05-07 14:35 - 000010426 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Vorlagen
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Startmenü
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Netzwerkumgebung
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Lokale Einstellungen
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Eigene Dateien
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Druckumgebung
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default\Anwendungsdaten
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Vorlagen
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Startmenü
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Netzwerkumgebung
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Lokale Einstellungen
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Eigene Dateien
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Druckumgebung
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User\Anwendungsdaten
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\Default User
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Users\All Users
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Programme
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\ProgramData\Vorlagen
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\ProgramData\Startmenü
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\ProgramData\Dokumente
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\ProgramData\Anwendungsdaten
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Program Files\Gemeinsame Dateien
2020-04-10 11:14 - 2020-04-10 11:14 - 000000000 _SHDL C:\Dokumente und Einstellungen
2020-04-10 11:12 - 2020-04-21 18:10 - 000000000 ____D C:\WINDOWS\system32\DAX3
2020-04-10 11:12 - 2020-04-21 18:10 - 000000000 ____D C:\WINDOWS\system32\DAX2
2020-04-10 11:12 - 2020-04-10 11:12 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2020-04-10 11:12 - 2019-09-29 19:12 - 002874368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-04-10 11:11 - 2020-05-07 14:35 - 000013983 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-04-10 11:11 - 2020-05-07 14:35 - 000012459 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-04-10 11:11 - 2020-05-07 14:35 - 000001209 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-04-10 11:11 - 2020-04-21 20:19 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-04-10 11:11 - 2020-04-21 18:10 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-04-10 11:11 - 2020-04-10 11:11 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-04-10 11:11 - 2020-04-10 11:11 - 000000000 ____D C:\Program Files\Realtek
2020-04-10 11:10 - 2020-05-07 15:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-04-10 11:10 - 2020-05-07 15:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-04-10 11:10 - 2020-05-02 00:42 - 000259376 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-04-10 11:10 - 2020-05-01 17:59 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-04-10 11:10 - 2020-04-10 11:10 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2020-04-10 11:10 - 2020-04-10 11:10 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2020-04-10 10:04 - 2020-04-10 11:10 - 000000000 ____D C:\WINDOWS\IAStorAfsService
2020-04-10 10:03 - 2020-05-07 15:36 - 000732302 _____ C:\WINDOWS\system32\perfh007.dat
2020-04-10 10:03 - 2020-05-07 15:36 - 000149604 _____ C:\WINDOWS\system32\perfc007.dat
2020-04-10 10:03 - 2020-04-21 17:31 - 000000000 ____D C:\WINDOWS\OCR
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\winrm
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\WCN
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\slmgr
2020-04-10 10:03 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2020-04-10 10:03 - 2020-04-10 10:03 - 000306166 _____ C:\WINDOWS\system32\perfi007.dat
2020-04-10 10:03 - 2020-04-10 10:03 - 000040520 _____ C:\WINDOWS\system32\perfd007.dat
2020-04-10 10:03 - 2020-04-10 10:03 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\SysWOW64\de
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\system32\de
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\system32\0409
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\Setup
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\DigitalLocker
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\ProgramData\ssh
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\Program Files\Reference Assemblies
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\Program Files\MSBuild
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-04-10 10:03 - 2020-04-10 10:03 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-04-10 10:02 - 2020-02-03 22:56 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-04-10 10:02 - 2020-02-03 22:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-04-10 10:01 - 2020-05-07 15:34 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-04-10 10:01 - 2020-05-07 15:19 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-04-10 10:01 - 2020-05-07 14:26 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2020-04-10 10:01 - 2020-05-06 17:10 - 000000000 ___RD C:\Program Files (x86)
2020-04-10 10:01 - 2020-05-02 17:01 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ___SD C:\WINDOWS\system32\AppV
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\TextInput
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\SystemResources
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\Provisioning
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-04-10 10:01 - 2020-05-02 00:41 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-04-10 10:01 - 2020-05-02 00:27 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-04-10 10:01 - 2020-05-02 00:27 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-04-10 10:01 - 2020-05-02 00:27 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-04-10 10:01 - 2020-04-30 20:30 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-10 10:01 - 2020-04-21 17:55 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ___SD C:\WINDOWS\system32\dsc
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\MUI
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\system32\Com
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\IME
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\Program Files\Windows Defender
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\Program Files\Common Files\System
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-04-10 10:01 - 2020-04-21 17:28 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-04-10 10:01 - 2020-04-18 12:47 - 000000000 ____D C:\WINDOWS\appcompat
2020-04-10 10:01 - 2020-04-10 11:30 - 000000000 ____D C:\WINDOWS\ServiceState
2020-04-10 10:01 - 2020-04-10 11:25 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2020-04-10 10:01 - 2020-04-10 11:14 - 000000000 ____D C:\WINDOWS\system32\spool
2020-04-10 10:01 - 2020-04-10 11:14 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2020-04-10 10:01 - 2020-04-10 11:14 - 000000000 ____D C:\Program Files\Windows NT
2020-04-10 10:01 - 2020-04-10 11:13 - 000000000 ____D C:\WINDOWS\CSC
2020-04-10 10:01 - 2020-04-10 11:12 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-04-10 10:01 - 2020-04-10 11:11 - 000000000 ____D C:\ProgramData\USOPrivate
2020-04-10 10:01 - 2020-04-10 10:06 - 000000000 ____D C:\WINDOWS\Containers
2020-04-10 10:01 - 2020-04-10 10:05 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2020-04-10 10:01 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-04-10 10:01 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\system32\setup
2020-04-10 10:01 - 2020-04-10 10:03 - 000000000 ____D C:\WINDOWS\Help
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 __SHD C:\Program Files\Windows Sidebar
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 __RSD C:\WINDOWS\Media
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 __RHD C:\Users\Public\Libraries
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\system32\Nui
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Web
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\WaaS
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Vss
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\tracing
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\TAPI
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SystemApps
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\winevt
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ti-et
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ta-in
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\si-lk
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ras
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\osa-Osge-001
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\my-mm
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Keywords
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\IME
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\icsxml
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ias
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\ff-Adlm-SN
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\DriverState
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\downlevel
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\DDFs
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\am-et
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\System
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SKB
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\security
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\schemas
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\SchCache
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Resources
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\rescache
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\RemotePackages
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Registration
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\PLA
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Performance
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\ModemLogs
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\L2Schemas
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\InputMethod
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\IdentityCRL
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Globalization
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Cursors
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\Branding
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\addins
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\ProgramData\USOShared
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files\Windows Security
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files\Windows Portable Devices
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files\Common Files\Services
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files (x86)\Windows NT
2020-04-10 10:01 - 2020-04-10 10:01 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2020-04-10 10:01 - 2020-04-10 10:00 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2020-04-10 10:01 - 2020-04-10 10:00 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2020-04-10 10:01 - 2020-04-10 10:00 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2020-04-10 10:01 - 2020-04-10 10:00 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2020-04-10 10:01 - 2020-04-10 10:00 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-04-10 10:01 - 2020-04-10 10:00 - 000018903 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-04-10 10:01 - 2020-04-10 10:00 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2020-04-10 10:01 - 2020-04-10 10:00 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2020-04-10 10:01 - 2020-04-10 10:00 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2020-04-10 10:01 - 2020-04-10 10:00 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2020-04-10 10:01 - 2020-04-10 10:00 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2020-04-10 10:01 - 2020-04-10 10:00 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2020-04-10 10:01 - 2020-04-10 10:00 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2020-04-10 10:01 - 2020-04-10 10:00 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2020-04-10 10:01 - 2020-04-10 10:00 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2020-04-10 10:01 - 2020-04-10 10:00 - 000000219 _____ C:\WINDOWS\system.ini
2020-04-10 10:01 - 2020-04-10 10:00 - 000000092 _____ C:\WINDOWS\win.ini
2020-04-10 10:00 - 2020-05-07 15:36 - 000000000 ____D C:\WINDOWS\INF
2020-04-10 09:58 - 2020-05-07 15:30 - 082051072 _____ C:\WINDOWS\system32\config\SOFTWARE
2020-04-10 09:58 - 2020-05-07 15:30 - 017301504 _____ C:\WINDOWS\system32\config\SYSTEM
2020-04-10 09:58 - 2020-05-07 15:30 - 000786432 _____ C:\WINDOWS\system32\config\DEFAULT
2020-04-10 09:58 - 2020-05-07 15:30 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-04-10 09:58 - 2020-05-07 15:30 - 000065536 _____ C:\WINDOWS\system32\config\SECURITY
2020-04-10 09:58 - 2020-05-07 15:30 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2020-04-10 09:58 - 2020-05-06 17:10 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-04-10 09:58 - 2020-05-02 16:59 - 000000000 ____D C:\WINDOWS\Panther
2020-04-10 09:58 - 2020-05-02 00:40 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-04-10 09:58 - 2020-04-21 17:28 - 000000000 ____D C:\WINDOWS\servicing
2020-04-10 09:58 - 2020-04-10 10:01 - 000000000 ____D C:\WINDOWS\system32\SMI
2020-04-10 08:54 - 2020-04-10 10:06 - 000000000 ___HD C:\$SysReset

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2020-04-21 18:11 - 2020-03-19 19:34 - 004927744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-04-21 18:10 - 2018-09-14 15:28 - 006886992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2020-04-21 18:10 - 2018-09-14 15:28 - 003753024 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2020-04-21 18:10 - 2018-09-14 15:28 - 003340296 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2020-04-21 18:10 - 2018-09-14 15:28 - 000192872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2020-04-21 18:10 - 2018-09-14 15:28 - 000023584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2020-04-22 04:34 - 2020-04-30 18:45 - 000007594 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================

sollussekundas · May 8, 2020

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 03-05-2020
durchgeführt von Admin (08-05-2020 14:22:31)
Gestartet von C:\Users\Admin\Downloads
Windows 10 Pro Version 1909 18363.815 (X64) (2020-04-10 09:14:06)
Start-Modus: Normal
==========================================================

==================== Konten: =============================

Admin (S-1-5-21-3854084222-4285785828-2850556555-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-3854084222-4285785828-2850556555-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3854084222-4285785828-2850556555-503 - Limited - Disabled)
Gast (S-1-5-21-3854084222-4285785828-2850556555-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3854084222-4285785828-2850556555-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 20.00 alpha (x64) (HKLM\...\7-Zip) (Version: 20.00 alpha - Igor Pavlov)
AIDA64 (HKLM-x32\...\AIDA64) (Version: 6.25.5400 - FinalWire Ltd.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.3.5 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
CWClient, версия 1.0 (HKLM-x32\...\{4D64BA0F-CF7B-4A53-AA81-6E5F33510B04}_is1) (Version: 1.0 - AbsolutSoft)
Discord (HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
DOOM Eternal (HKLM-x32\...\DOOM Eternal_is1) (Version: - )
Geeks3D FurMark 1.21.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.138 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
IObit Driver Booster 7.4.0.721 (HKLM-x32\...\IObit Driver Booster_is1) (Version: 7.4.0.721 - lrepacks.ru)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{E15F69FA-660D-45CC-B28F-6CBC4CAD2091}) (Version: 1.0.0.0 - Mojang)
Mount & Blade II Bannerlord v. e1.2.0 hotfix 2 BETA (HKLM-x32\...\Mount & Blade II Bannerlord_is1) (Version: - )
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
NordVPN (HKLM-x32\...\{A87972CF-28AE-43DD-ACB5-16EBD1ED70C3}) (Version: 6.29.7 - NordVPN) Hidden
NordVPN (HKLM-x32\...\NordVPN 6.29.7) (Version: 6.29.7 - NordVPN)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{77DA107A-7AE4-497D-A84A-B143C3A21676}) (Version: 1.0.0 - NordVPN)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.6 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Grafiktreiber 445.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 445.75 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.26 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project)
Origin (HKLM-x32\...\Origin) (Version: 10.5.69.40136 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{ae36b9b5-4ce6-4b1d-a515-55fadefde91d}) (Version: latest - ppy Pty Ltd)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
RogueKiller version 14.4.2.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.4.2.0 - Adlice Software)
SKILLER MECH SGK3 (HKLM-x32\...\{12F382E1-63D4-4B94-BD32-5F845E74FC79}) (Version: 1.01.17.01 - Sharkoon Technologies)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TP-Link Archer T4U Driver (HKLM-x32\...\{4805DC86-DEBF-4A5C-B9C4-291FA6441548}) (Version: 2.1.0 - TP-Link)
Uninstall Tool (HKLM-x32\...\Uninstall Tool 3.5.10 Build 5670) (Version: - )
Uplay (HKLM-x32\...\Uplay) (Version: 29.0 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.10 - VideoLAN)
Warface (HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\Warface) (Version: 1.349 - Mail.ru)
WindowsWord 2020.5 (HKLM-x32\...\{CA7FE095-E7CF-40FF-9F2C-69AF3C7342BF}}_is1) (Version: - ScandinavianByte OU)

Packages:
=========
NVIDIA Control Panel -> C:\Program Files\WindowsApps\nvidiacorp.nvidiacontrolpanel_8.1.956.0_x64__56jybvy8sckqj [2020-04-10] (NVIDIA Corp.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Keine Datei
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2020-04-21] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Keine Datei
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Keine Datei
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\nvshext.dll [2020-04-21] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-07] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Datei ist nicht signiert]

==================== Verknüpfungen & WMI ========================

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2020-04-22 18:18 - 2020-04-22 18:17 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2020-04-22 18:18 - 2020-04-22 18:17 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2020-04-22 18:18 - 2020-04-22 18:17 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-05-01 00:12 - 2020-04-22 18:17 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Admin\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Admin\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\...\localhost -> localhost

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2020-04-22 18:41 - 2020-05-07 15:21 - 000001254 _____ C:\WINDOWS\system32\drivers\etc\hosts
109.94.209.70 fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 fitgirl-repack.com # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site

2020-04-21 17:34 - 2020-05-07 14:36 - 000000510 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 DESKTOP-G75MQVV.mshome.net # 2025 5 2 6 12 36 3 274
92.168.137.112 Galaxy-A40.mshome.net # 2020 5 3 13 15 25 36 225

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-3854084222-4285785828-2850556555-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{FA19F039-8C6A-4EB5-BA43-38EFE700E821}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BBDDE383-A224-47F6-A159-2FFDD7DBA919}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{790F4E06-FB69-4E36-89D9-7C14F70046C5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5FAF37A0-2532-4462-98E8-E48AB8CED2DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F1EEA439-CF76-43E6-BE66-CCB4F10A97A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{87CC3EEA-1C3B-4247-888C-F7594AD929C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3760490E-704C-43CC-94CE-D13B64A9E0BA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{FA55750A-F72A-4EB4-B48C-1BA2D4C56B78}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9C8E395C-79F1-4379-A74F-9ADFAADFD682}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe (Warhorse Studios sro) [Datei ist nicht signiert]
FirewallRules: [{89CF1951-71E5-43F3-9E91-42DC254E8AA7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe (Warhorse Studios sro) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{22A575DE-477D-4930-9FA2-78488DA3636E}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{D5F1F507-EE41-448D-A7E2-E4D653D2F3D0}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{390EC865-3BE3-43BE-B383-1BAF0BDB6A2F}D:\gamesmailru\warface\bin64release\game.exe] => (Allow) D:\gamesmailru\warface\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [UDP Query User{97ECE459-F72B-4787-8D9D-836B57BB7010}D:\gamesmailru\warface\bin64release\game.exe] => (Allow) D:\gamesmailru\warface\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [{77E2032A-7DBE-43F0-8AB8-5053C92FBD54}] => (Allow) D:\Games\SteamLibrary\steamapps\common\This War of Mine\This War of Mine.exe () [Datei ist nicht signiert]
FirewallRules: [{EAE297A8-3730-415D-92B2-A09E2305038D}] => (Allow) D:\Games\SteamLibrary\steamapps\common\This War of Mine\This War of Mine.exe () [Datei ist nicht signiert]
FirewallRules: [{652D9262-4AB7-40EF-B323-A0224EC6525C}] => (Allow) D:\Games\SteamLibrary\steamapps\common\This War of Mine\Storyteller.exe () [Datei ist nicht signiert]
FirewallRules: [{C44F31DD-D2F3-4246-A145-E25B32809864}] => (Allow) D:\Games\SteamLibrary\steamapps\common\This War of Mine\Storyteller.exe () [Datei ist nicht signiert]
FirewallRules: [{E4B0421B-D7DB-4F87-98CB-F037CC32CA9D}] => (Allow) D:\Games\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation )
FirewallRules: [{2395CFA0-9F43-4A43-ACA3-B60DE12F763E}] => (Allow) D:\Games\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation )
FirewallRules: [{CEE8957A-90B5-4DE6-A2AC-9B69C8ED76F1}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{C1DBEE05-6F63-454B-A90E-093A6DBAF2BE}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{0332500D-CE33-4EF9-8791-BB5C093F8883}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Datei ist nicht signiert]
FirewallRules: [{2282BA96-08BD-4BF0-BA69-3655BD806EF5}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{D687B34A-B69E-4C79-BF89-E0A4894E0933}D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{9063C817-4882-4E65-B72C-5F75C85F4FB6}D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [{DB6811C1-0695-4DD0-BB22-60204708868D}] => (Block) D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [{30E55D8D-919B-4BDA-A2E0-86F741050892}] => (Block) D:\games\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [{4E05DFA6-1F8B-41A9-BEB6-F4036DFE6BB8}] => (Allow) D:\Games\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{8F25A68F-B47D-42C4-87F2-8938F02F4C3A}] => (Allow) D:\Games\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [TCP Query User{78B9654A-762A-49FA-830C-7923E390F46F}D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe] => (Allow) D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [UDP Query User{30C7401C-BF07-4432-B393-F277340B9746}D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe] => (Allow) D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{C514D70D-4AAB-41B1-AE91-442FB908F6CC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{336F146B-2C52-4DB0-B71D-69B141425502}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{95EE8EF2-A9E6-4D7E-80D8-9E1971F2A01B}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{AA14715E-C32D-480D-8D2F-81A3FF5E22FD}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{8EF1AF9C-19DC-4A6C-B1E4-2BD482D7A6AD}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{D88F892E-3B3A-4D8C-95C8-8629F8E78936}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{8D493627-0469-45DA-A85F-8E161920DEBA}] => (Block) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{9AFCB0D9-5BE0-4120-BCBE-2FCA59182F64}] => (Block) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{64C8A394-6F64-4EC1-8D82-FC2A4FB88334}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{57BF3273-171C-41BD-A48A-65DF83E79F82}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{CF53696B-A0C2-490B-B97E-B9ADAEF4A44D}] => (Block) C:\users\admin\appdata\local\gamecenter\gamecenter.exe Keine Datei
FirewallRules: [{CB95075B-DEEF-43E6-8356-2C98E9AB3E5C}] => (Block) C:\users\admin\appdata\local\gamecenter\gamecenter.exe Keine Datei
FirewallRules: [{4E4E29D7-F3BD-42AD-9A42-5720199A67A4}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{3153445C-6A46-46EC-99D4-4765F9C3E039}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{B8BEE621-07CB-4D89-93B9-BE330D5AAF64}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{AE7B67D7-33C3-404D-B9BA-3EA36193E9F5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Wiederherstellungspunkte =========================

01-05-2020 15:54:54 Installed DirectX
04-05-2020 21:27:39 Installed DirectX

==================== Fehlerhafte Geräte im Gerätemanager ============

==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (05/06/2020 05:54:47 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (05/06/2020 04:21:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CWClient.exe, version: 4.1.5.1944, time stamp: 0x51b0ce73
Faulting module name: CWClient.exe, version: 4.1.5.1944, time stamp: 0x51b0ce73
Exception code: 0xc0000005
Fault offset: 0x0031a2eb
Faulting process id: 0x1214
Faulting application start time: 0x01d623af89e61298
Faulting application path: C:\Games\CWClient\CWClient.exe
Faulting module path: C:\Games\CWClient\CWClient.exe
Report Id: 4ac03fc6-2890-4d06-98c0-a8db3d924812
Faulting package full name:
Faulting package-relative application ID:

Error: (05/06/2020 02:16:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Pascal ABC.exe, version: 3.0.1.35, time stamp: 0x2a425e19
Faulting module name: Pascal ABC.exe, version: 3.0.1.35, time stamp: 0x2a425e19
Exception code: 0xc0000005
Fault offset: 0x00004c9a
Faulting process id: 0x1be8
Faulting application start time: 0x01d6239febd09ba4
Faulting application path: C:\Users\Admin\Desktop\Pascal ABC 3.0.1 Rus Portable\Pascal ABC.exe
Faulting module path: C:\Users\Admin\Desktop\Pascal ABC 3.0.1 Rus Portable\Pascal ABC.exe
Report Id: 431899de-602c-4f0d-9caa-dc16d0ee63df
Faulting package full name:
Faulting package-relative application ID:

Error: (05/06/2020 02:16:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Pascal ABC.exe, version: 3.0.1.35, time stamp: 0x2a425e19
Faulting module name: Pascal ABC.exe, version: 3.0.1.35, time stamp: 0x2a425e19
Exception code: 0xc0000005
Fault offset: 0x00004c9a
Faulting process id: 0x2dac
Faulting application start time: 0x01d6239ffc1a75b1
Faulting application path: C:\Users\Admin\Desktop\Pascal ABC 3.0.1 Rus Portable\Pascal ABC.exe
Faulting module path: C:\Users\Admin\Desktop\Pascal ABC 3.0.1 Rus Portable\Pascal ABC.exe
Report Id: a561748d-d925-4fe4-bf95-4c69c6775370
Faulting package full name:
Faulting package-relative application ID:

Error: (05/05/2020 07:09:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program WinWord.exe version 2020.5.0.2428 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 994

Start Time: 01d622cebaa201b9

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\WindowsWord\WinWord.exe

Report Id: 40117725-38e3-44f7-b417-27652387d870

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (05/04/2020 09:27:42 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary WinQuic.

System Error:
Das Ressourcenladeprogramm konnte die MUI-Datei nicht finden.
.

Error: (05/03/2020 07:17:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CWClientLauncher.exe, version: 1.0.0.0, time stamp: 0x5952289c
Faulting module name: KERNELBASE.dll, version: 10.0.18362.815, time stamp: 0x67005c2a
Exception code: 0xe0434352
Fault offset: 0x00114402
Faulting process id: 0x1e40
Faulting application start time: 0x01d6216eab19c686
Faulting application path: C:\Games\CWClient\CWClientLauncher.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 7d1f083a-cf68-43ca-943e-9e2b033bba32
Faulting package full name:
Faulting package-relative application ID:

Error: (05/03/2020 07:17:56 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: CWClientLauncher.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ComponentModel.Win32Exception
at System.Diagnostics.Process.StartWithShellExecuteEx(System.Diagnostics.ProcessStartInfo)
at System.Diagnostics.Process.Start()
at CWClientLauncher.StartGameControl.StartGame()
at CWClientLauncher.StartGameControl.<.ctor>b__0_0(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
at System.Windows.Controls.Primitives.ButtonBase.OnClick()
at System.Windows.Controls.Button.OnClick()
at System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
at System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
at System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
at System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
at System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
at System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
at System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
at System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
at System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
at System.Windows.Input.InputManager.ProcessStagingArea()
at System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
at System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
at System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
at System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
at System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
at System.Windows.Application.RunDispatcher(System.Object)
at System.Windows.Application.RunInternal(System.Windows.Window)
at System.Windows.Application.Run(System.Windows.Window)
at CWClientLauncher.App.Main()

Systemfehler:
=============
Error: (05/08/2020 02:20:57 PM) (Source: Tcpip) (EventID: 4207) (User: )
Description: The IPv6 TCP/IP interface with index 11 failed to bind to its provider.

Error: (05/07/2020 03:31:23 PM) (Source: Tcpip) (EventID: 4207) (User: )
Description: The IPv6 TCP/IP interface with index 11 failed to bind to its provider.

Error: (05/07/2020 03:30:38 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "%2" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.

Error: (05/07/2020 03:30:38 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "%2" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.

Error: (05/07/2020 03:30:12 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\WINDOWS\system32\Rtlihvs.dll

Error: (05/07/2020 03:30:12 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\WINDOWS\system32\Rtlihvs.dll

Error: (05/07/2020 03:30:11 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\WINDOWS\system32\Rtlihvs.dll

Error: (05/07/2020 03:30:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Origin Web Helper Service service terminated unexpectedly. It has done this 1 time(s).

Windows Defender:
===================================
Date: 2020-05-07 14:54:26.756
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

Trojan:Script/Oneeva.A!ml threat description - Microsoft Security Intelligence

Name: Trojan:Script/Oneeva.A!ml
ID: 2147729349
Severity: Severe
Category: Trojan
Path: file:_C:\$Recycle.Bin\S-1-5-21-3854084222-4285785828-2850556555-1001\$RKBGVS4.rar
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Program Files\RogueKiller\RogueKiller64.exe
Security intelligence Version: AV: 1.315.187.0, AS: 1.315.187.0, NIS: 1.315.187.0
Engine Version: AM: 1.1.17000.7, NIS: 1.1.17000.7

Date: 2020-05-06 16:06:41.690
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

Trojan:Win32/Occamy.C threat description - Microsoft Security Intelligence

Name: Trojan:Win32/Occamy.C
ID: 2147726780
Severity: Severe
Category: Trojan
Path: file:_C:\HO_UJPLHPJ9.dll
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Games\CWClient\CWClient.exe
Security intelligence Version: AV: 1.315.83.0, AS: 1.315.83.0, NIS: 1.315.83.0
Engine Version: AM: 1.1.17000.7, NIS: 1.1.17000.7

Date: 2020-05-05 18:38:05.000
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {07076EDA-04A1-4472-9B29-7B48CC209698}
Scan Type: Antimalware
Scan Parameters: Quick Scan

CodeIntegrity:
===================================

Date: 2020-05-07 14:25:10.132
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-07 14:25:04.136
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-07 14:24:59.963
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-07 14:24:16.442
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-07 14:24:16.440
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-07 14:24:16.328
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-07 14:24:16.326
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-07 14:24:16.301
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

==================== Speicherinformationen ===========================

BIOS: American Megatrends Inc. 0402 04/18/2018
Hauptplatine: ASUSTeK COMPUTER INC. PRIME H310M-A
Prozessor: Intel(R) Core(TM) i7-8700K CPU @ 3.70GHz
Prozentuale Nutzung des RAM: 22%
Installierter physikalischer RAM: 16300.84 MB
Verfügbarer physikalischer RAM: 12629.68 MB
Summe virtueller Speicher: 19884.84 MB
Verfügbarer virtueller Speicher: 14689.23 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:446.06 GB) (Free:146.55 GB) NTFS
Drive d: (Volume) (Fixed) (Total:1862.89 GB) (Free:1662.82 GB) NTFS

\\?\Volume{5adff2c2-78e7-4720-80ee-9786f7d6f035}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{094bc5fd-adee-45de-9c09-b6b8d473954f}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{c201314e-f734-463b-af26-5a65acc5448a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Ende von Addition.txt =======================

Broni · May 8, 2020

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

sollussekundas · May 8, 2020

Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 03-05-2020
durchgeführt von Admin (08-05-2020 16:55:13) Run:1
Gestartet von C:\Users\Admin\Downloads
Geladene Profile: Admin (Verfügbare Profile: Admin)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
2020-04-22 04:34 - 2020-04-30 18:45 - 000007594 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Keine Datei
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Keine Datei
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Keine Datei
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
AlternateDataStreams: C:\Users\Admin\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Admin\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
FirewallRules: [{CF53696B-A0C2-490B-B97E-B9ADAEF4A44D}] => (Block) C:\users\admin\appdata\local\gamecenter\gamecenter.exe Keine Datei
FirewallRules: [{CB95075B-DEEF-43E6-8356-2C98E9AB3E5C}] => (Block) C:\users\admin\appdata\local\gamecenter\gamecenter.exe Keine Datei
FirewallRules: [{4E4E29D7-F3BD-42AD-9A42-5720199A67A4}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{3153445C-6A46-46EC-99D4-4765F9C3E039}] => (Allow) %systemroot%\system32\alg.exe Keine Datei
FirewallRules: [{B8BEE621-07CB-4D89-93B9-BE330D5AAF64}] => (Allow) %systemroot%\system32\alg.exe Keine Datei

*****************

HKLM\SOFTWARE\Policies\Mozilla => erfolgreich entfernt
HKLM\SOFTWARE\Policies\Google => erfolgreich entfernt
C:\Users\Admin\AppData\Local\Resmon.ResmonCfg => erfolgreich verschoben
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => erfolgreich entfernt
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx => erfolgreich entfernt
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => erfolgreich entfernt
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => erfolgreich entfernt
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => erfolgreich entfernt
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx => erfolgreich entfernt
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => erfolgreich entfernt
C:\Users\Admin\Anwendungsdaten => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS erfolgreich entfernt
"C:\Users\Admin\AppData\Roaming" => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS nicht gefunden.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CF53696B-A0C2-490B-B97E-B9ADAEF4A44D}" => erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CB95075B-DEEF-43E6-8356-2C98E9AB3E5C}" => erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E4E29D7-F3BD-42AD-9A42-5720199A67A4}" => erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3153445C-6A46-46EC-99D4-4765F9C3E039}" => erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8BEE621-07CB-4D89-93B9-BE330D5AAF64}" => erfolgreich entfernt

==== Ende von Fixlog 16:55:13 ====

sollussekundas · May 8, 2020

Yea, sorry about deutch language, I just don't know how to change it to english

Broni · May 8, 2020

No worries

Last scans...

Download Security Check from here or here and save it to your Desktop.

Double-click SecurityCheck.exe
Follow the onscreen instructions inside of the black box.
A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run

Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
Make sure the following options are checked:

Internet Services
Windows Firewall
System Restore
Security Center
Windows Update
Windows Defender
Other Services

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe

Double click on TFC.exe to run the program.
Click on Start button to begin cleaning process.
TFC will close all running programs, and it may ask you to restart computer.

Download Sophos Free Virus Removal Tool and save it to your desktop.

Double click the icon and select Run
Click Next
Select I accept the terms in this license agreement, then click Next twice
Click Install
Click Finish to launch the program
Once the virus database has been updated click Start Scanning
If any threats are found click Details, then View log file... (bottom left hand corner)
Copy and paste the results in your reply
Close the Notepad document, close the Threat Details screen, then click Start cleanup
Click Exit to close the program

sollussekundas · May 8, 2020

I found where he was hiding, the virus starts at the same time as the game "contract wars", which my son downloaded

sollussekundas · May 8, 2020

Anyway, let's see

Results of screen317's Security Check version 1.014 --- 12/23/15
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Windows Defender
Malwarebytes
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Java 8 Update 251
Java version 32-bit out of Date!
Google Chrome (81.0.4044.138)
Google Chrome (SetupMetrics...)
````````Process Check: objlist.exe by Laurent````````
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````

Farbar Service Scanner Version: 14-12-2019
Ran by Admin (administrator) on 08-05-2020 at 19:48:45
Running from "C:\Users\Admin\Downloads"
Microsoft Windows 10 Pro (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Destination is unreachable
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================

System Restore:
============

System Restore Policy:
========================

Security Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv: "%systemroot%\system32\svchost.exe -k netsvcs -p".
The ServiceDll of wuauserv service is OK.

Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend: ""C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe"".

Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1

Other Services:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed

**** End of log ****

Sophos is still in progress

sollussekundas · May 8, 2020

Broni · May 8, 2020

"I found where he was hiding, the virus starts at the same time as the game "contract wars", which my son downloaded"
That may be the reason the file doesn't show in any of our scans.
It may be false positive as well, since no other scans detects the file but it may be safer to uninstall that game.

Other than that...

Your computer is clean

1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
[COLOR=#ff0000][B]This is a very crucial step so make sure you don't skip it.[/B][/COLOR]
Download [IMG]http://www.imgdumper.nl/uploads6/51a5ce45267c1/51a5ce45263de-delfix.pngDelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.

Double-click Delfix.exe to start the tool.
Make sure the following items are checked:

Activate UAC (optional; some users prefer to keep it off)
Remove disinfection tools
Create registry backup
Purge System Restore
Reset system settings

Now click "Run" and wait patiently.
Once finished a logfile will be created. You don't have to attach it to your next reply.

2. Make sure Windows Updates are current.

3. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Scan without installing plugin" and then on "Scan now")

5. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

6. Run Temporary File Cleaner (TFC) and AdwCleaner weekly (you need to redownload these tools since they were removed by DelFix).

7. (optional) If you want to keep all your programs up to date, download and install FileHippo App Manager.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

8. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.

9. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/for...curity-questions-best-practices/#entry3187642

10. Please, let me know, how your computer is doing.

Solved I can't remove the "Occamy.C" trojan

Posts: 20 +0

Attachments

Posts: 56,041 +516

Posts: 20 +0

Posts: 20 +0

Posts: 20 +0

Posts: 20 +0

Posts: 20 +0

Posts: 56,041 +516

Posts: 20 +0

Posts: 20 +0

Posts: 20 +0

Posts: 56,041 +516

Posts: 20 +0

Posts: 20 +0

Posts: 20 +0

Posts: 20 +0

Posts: 20 +0

Posts: 56,041 +516

Attachments

Posts: 20 +0

Posts: 20 +0

Posts: 56,041 +516

Posts: 20 +0

Posts: 20 +0

Posts: 20 +0

Posts: 56,041 +516

Similar threads