Unerlaubte Microsoft Konto Anmeldung

10.11.2016, 11:52

Gernot1

...neu hier

Beiträge: 5

#1 Hallo,
ich war vorgestern in einigen live streams für die US Wahl unterwegs und vermute, dass ich mir was eingefangen habe. Hatte heute eine unerlaubte Anmeldung auf meinem MS Konto und mein Steam Account ist auch ohne mein Zutun auf einmal aufgepoppt. (Passwörter habe ich bereits geändert)
Habe mit Windows Defender gescannt -> nichts gefunden
Kaspersky free scan -> nichts gefunden
Malwarebytes -> einige gelbe (keine roten) Einträge entfernt
Bitdefender online -> nichts gefunden

Ist da was Verdächtiges zu sehen?
MFG

Code

 
OTL logfile created on: 10.11.2016 11:30:03 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Empedokles\Desktop
64bit- Professional  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.14393.0)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
63,90 Gb Total Physical Memory | 59,86 Gb Available Physical Memory | 93,67% Memory free
91,40 Gb Paging File | 87,09 Gb Available in Paging File | 95,28% Paging File free
Paging file location(s): c:\pagefile.sys 0 0k:\pagefile.sy [Binary data over 200 bytes]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 446,35 Gb Total Space | 257,00 Gb Free Space | 57,58% Space Free | Partition Type: NTFS
Drive H: | 350,00 Mb Total Space | 61,63 Mb Free Space | 17,61% Space Free | Partition Type: NTFS
Drive I: | 3,92 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive J: | 222,79 Gb Total Space | 187,40 Gb Free Space | 84,12% Space Free | Partition Type: NTFS
Drive K: | 3725,90 Gb Total Space | 2231,32 Gb Free Space | 59,89% Space Free | Partition Type: NTFS
Drive L: | 3725,90 Gb Total Space | 3095,29 Gb Free Space | 83,08% Space Free | Partition Type: NTFS
Drive M: | 3726,01 Gb Total Space | 2027,32 Gb Free Space | 54,41% Space Free | Partition Type: NTFS
Drive O: | 2794,49 Gb Total Space | 714,99 Gb Free Space | 25,59% Space Free | Partition Type: NTFS
Drive P: | 1862,98 Gb Total Space | 919,20 Gb Free Space | 49,34% Space Free | Partition Type: NTFS
 
Computer Name: HYPERION | User Name: Empedokles | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC -  File not found
PRC - C:\Users\Empedokles\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems, Incorporated)
PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe (Autodesk Inc.)
PRC - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe (Autodesk, Inc.)
PRC - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe ()
PRC - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe ()
PRC - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe ()
PRC - C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis International GmbH)
PRC - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe ()
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe (Autodesk)
PRC - C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis)
PRC - C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe (Autodesk, Inc.)
PRC - C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG)
PRC - C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files (x86)\ASUS\AI Suite III\ASUSMiniBar.exe ()
PRC - C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe ()
PRC - C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.13\AsusFanControlService.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe ()
PRC - C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe ()
PRC - C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (ASUSTeK Computer Inc.)
PRC - C:\Programme\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Programme\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe ()
PRC - C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe (X-Rite Inc.)
PRC - C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe ()
PRC - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe ()
PRC - C:\Program Files (x86)\Secunia\PSI\PSIA.exe (Secunia)
PRC - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
PRC - C:\Program Files (x86)\ASUS\Dr. Power\AsusDrPowerService.exe ()
PRC - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel Corporation)
PRC - C:\Programme\Tablet\Pen\WacomHost.exe (Wacom Technology)
PRC - C:\Windows\SysWOW64\ASGT.exe ()
PRC - C:\Program Files (x86)\Lexmark 1200 Series\LXCZbmgr.exe (Lexmark International, Inc.)
PRC - C:\Program Files (x86)\Lexmark 1200 Series\lxczbmon.exe (Lexmark International, Inc.)
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - C:\Users\Empedokles\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll ()
MOD - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\de-DE\AdWingManRes.dll ()
MOD - C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll ()
MOD - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe ()
MOD - C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers.dll ()
MOD - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe ()
MOD - C:\Program Files (x86)\Common Files\Acronis\Home\resource.dll ()
MOD - C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll ()
MOD - C:\Program Files (x86)\Common Files\Acronis\Home\rpc_client.dll ()
MOD - C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll ()
MOD - C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll ()
MOD - C:\Program Files (x86)\Common Files\Acronis\Home\sync_agent_api.dll ()
MOD - C:\Program Files (x86)\Acronis\TrueImageHome\afcdpapi.dll ()
MOD - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qca_Ad_2.dll ()
MOD - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson_Ad_0.dll ()
MOD - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qoauth_Ad_1.dll ()
MOD - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libcef.dll ()
MOD - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libglesv2.dll ()
MOD - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libegl.dll ()
MOD - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\ffmpegsumo.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\dip4.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\UsbPowerManager.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\Version\Version.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\pngio.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\ImageHelper.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\Log4cxxWrapper.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\ASUSMiniBar.exe ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll ()
MOD - C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMLib.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll ()
MOD - C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\FAN.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\EPU.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\Log4cxxWrapper.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\IccHelper.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4cTDPAction.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\IccHelper.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\AI Charger+\AIChargerPlus.dll ()
MOD - C:\Program Files (x86)\ASUS\VGA COM\1.00.20\Vender.dll ()
MOD - C:\Program Files (x86)\ASUS\VGA COM\1.00.20\Exeio.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMiniMsg.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\aaHMLib.dll ()
MOD - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_MFCMigrationFramework_Ad_2.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\pngio.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\PEInfo.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\AsIdxParser.dll ()
MOD - C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\Aszip.dll ()
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - (wisvc) -- C:\Windows\SysNative\FlightSettings.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (FrameServer) -- C:\Windows\SysNative\FrameServer.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NetSetupSvc) -- C:\Windows\SysNative\NetSetupSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DbxSvc) -- C:\Windows\SysNative\DbxSvc.exe (Dropbox, Inc.)
SRV:[b]64bit:[/b] - (CDPUserSvc) -- C:\Windows\SysNative\cdpusersvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (CDPSvc) -- C:\Windows\SysNative\cdpsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UsoSvc) -- C:\Windows\SysNative\usocore.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NgcSvc) -- C:\Windows\SysNative\ngcsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (StateRepository) -- C:\Windows\SysNative\Windows.StateRepository.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (SensorDataService) -- C:\Windows\SysNative\SensorDataService.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DoSvc) -- C:\Windows\SysNative\dosvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PhoneSvc) -- C:\Windows\SysNative\PhoneService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (LicenseManager) -- C:\Windows\SysNative\LicenseManagerSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (tzautoupdate) -- C:\Windows\SysNative\tzautoupdate.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (MapsBroker) -- C:\Windows\SysNative\moshost.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AppVClient) -- C:\Windows\SysNative\AppVClient.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (CoreMessagingRegistrar) -- C:\Windows\SysNative\CoreMessaging.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (RmSvc) -- C:\Windows\SysNative\RMapi.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PimIndexMaintenanceSvc) -- C:\Windows\SysNative\PimIndexMaintenance.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicvss) -- C:\Windows\SysNative\icsvcext.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicrdv) -- C:\Windows\SysNative\icsvcext.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DmEnrollmentSvc) -- C:\Windows\SysNative\Windows.Internal.Management.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (SensorService) -- C:\Windows\SysNative\SensorService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicvmsession) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (XblAuthManager) -- C:\Windows\SysNative\XblAuthManager.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UserManager) -- C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (RetailDemo) -- C:\Windows\SysNative\RDXService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UevAgentService) -- C:\Windows\SysNative\AgentService.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WalletService) -- C:\Windows\SysNative\WalletService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (EntAppSvc) -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (shpamsvc) -- C:\Windows\SysNative\Windows.SharedPC.AccountManager.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (XboxNetApiSvc) -- C:\Windows\SysNative\XboxNetApiSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (dmwappushservice) -- C:\Windows\SysNative\dmwappushsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DcpSvc) -- C:\Windows\SysNative\dcpsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (diagnosticshub.standardcollector.service) -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WpnUserService_4b975) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UserDataSvc_4b975) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UnistoreSvc_4b975) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PimIndexMaintenanceSvc_4b975) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (OneSyncSvc_4b975) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (MessagingService_4b975) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (CDPUserSvc_4b975) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (OneSyncSvc) -- C:\Windows\SysNative\APHostService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (TieringEngineService) -- C:\Windows\SysNative\TieringEngineService.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (SmsRouter) -- C:\Windows\SysNative\SmsRouterSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (MessagingService) -- C:\Windows\SysNative\MessagingService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UserDataSvc) -- C:\Windows\SysNative\UserDataService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (UnistoreSvc) -- C:\Windows\SysNative\Unistore.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (tiledatamodelsvc) -- C:\Windows\SysNative\tileobjserver.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (NgcCtnrSvc) -- C:\Windows\SysNative\NgcCtnrSvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WpnService) -- C:\Windows\SysNative\wpnservice.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (icssvc) -- C:\Windows\SysNative\tetheringservice.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (TimeBrokerSvc) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (WpnUserService) -- C:\Windows\SysNative\WpnUserService.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (lfsvc) -- C:\Windows\SysNative\lfsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DevQueryBroker) -- C:\Windows\SysNative\DevQueryBroker.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (XblGameSave) -- C:\Windows\SysNative\XblGameSave.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (ClipSVC) -- C:\Windows\SysNative\ClipSVC.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (AJRouter) -- C:\Windows\SysNative\AJRouter.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (DsSvc) -- C:\Windows\SysNative\dssvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (embeddedmode) -- C:\Windows\SysNative\embeddedmodesvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (HvHost) -- C:\Windows\SysNative\hvhostsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (BthHFSrv) -- C:\Windows\SysNative\BthHFSrv.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (BcmBtRSupport) -- C:\Windows\SysNative\BtwRSupportService.exe (Broadcom Corporation.)
SRV:[b]64bit:[/b] - (hasplms) -- C:\Windows\SysNative\hasplms.exe (SafeNet Inc.)
SRV:[b]64bit:[/b] - (Intel(R) -- C:\Windows\SysNative\IPROSetMonitor.exe (Intel Corporation)
SRV:[b]64bit:[/b] - (lxcz_device) -- C:\Windows\SysNative\lxczcoms.exe ( )
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (chip1click) -- C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe (Chip Digital GmbH)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (StateRepository) -- C:\Windows\SysWOW64\Windows.StateRepository.dll (Microsoft Corporation)
SRV - (AGSService) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems, Incorporated)
SRV - (DmEnrollmentSvc) -- C:\Windows\SysWOW64\Windows.Internal.Management.dll (Microsoft Corporation)
SRV - (CoreMessagingRegistrar) -- C:\Windows\SysWOW64\CoreMessaging.dll (Microsoft Corporation)
SRV - (VRLService) -- C:\Programme\Chaos Group\V-Ray\3dsmax 2017 for x64\startvrlservice.exe ()
SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe (NVIDIA Corporation)
SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation)
SRV - (HDRExpose3Service) -- C:\Programme\Pinnacle Imaging Systems\HDR Expose 3\HDRExpose3Service.exe ()
SRV - (32Float3Service) -- C:\Programme\Pinnacle Imaging Systems\32 Float v3\32float3Service.exe ()
SRV - (UnistoreSvc) -- C:\Windows\SysWOW64\Unistore.dll (Microsoft Corporation)
SRV - (PrintNotify) -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV - (AdAppMgrSvc) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe (Autodesk Inc.)
SRV - (NvNetworkService) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation)
SRV - (NvStreamSvc) -- C:\Programme\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (NVIDIA Corporation)
SRV - (NvStreamNetworkSvc) -- C:\Programme\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation)
SRV - (afcdpsrv) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe ()
SRV - (FlexNet Licensing Service 64) -- C:\Programme\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (Flexera Software LLC)
SRV - (AcrSch2Svc) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ()
SRV - (syncagentsrv) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe ()
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (Origin Client Service) -- L:\Games\Origin\OriginClientService.exe (Electronic Arts)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (VSStandardCollectorService140) -- C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe (Microsoft Corporation)
SRV - (SQLWriter) -- c:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation)
SRV - (dbupdatem) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.)
SRV - (dbupdate) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.)
SRV - (AdobeActiveFileMonitor14.0) -- K:\Programme\Adobe\Premiere Elements\Elements 14 Organizer\PhotoshopElementsFileAgent.exe (Adobe Systems Incorporated)
SRV - (mmsminisrv) -- C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (WTabletServiceCon) -- C:\Programme\Tablet\Pen\WTabletServiceCon.exe (Wacom Technology, Corp.)
SRV - (asHmComSvc) -- C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe (ASUSTeK Computer Inc.)
SRV - (AsusFanControlService) -- C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.13\AsusFanControlService.exe (ASUSTeK Computer Inc.)
SRV - (IAStorDataMgrSvc) -- C:\Programme\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (cFosSpeedS) -- C:\Programme\ASUS\Turbo LAN\spd.exe (cFos Software GmbH)
SRV - (AsSysCtrlService) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe ()
SRV - (xrdd.exe) -- C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe (X-Rite Inc.)
SRV - (fussvc) -- C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe (Microsoft Corporation)
SRV - (asComSvc) -- C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe ()
SRV - (DTSAudioSvc) -- C:\Programme\Realtek\Audio\HDA\DTSU2PAuSrv64.exe (DTS, Inc)
SRV - (Te.Service) -- C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe (Microsoft Corporation)
SRV - (KinectManagement) -- C:\Programme\Microsoft Kinect Drivers\Service\KinectManagementService.exe (Microsoft Corporation)
SRV - (Secunia PSI Agent) -- C:\Program Files (x86)\Secunia\PSI\PSIA.exe (Secunia)
SRV - (Secunia Update Agent) -- C:\Program Files (x86)\Secunia\PSI\sua.exe (Secunia)
SRV - (Asus WebStorage Windows Service) -- C:\Program Files (x86)\ASUS\WebStorage\2.0.1.213\AsusWSWinService.exe ()
SRV - (AsusDrPowerMonitor) -- C:\Program Files (x86)\ASUS\Dr. Power\AsusDrPowerService.exe ()
SRV - (ICCS) -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel Corporation)
SRV - (ASGT) -- C:\Windows\SysWOW64\ASGT.exe ()
SRV - (mi-raysat_3dsmax2017_64) -- K:\Programme\Autodesk\3ds Max 2017\raysat_3dsmax2017_64server.exe ()
SRV - (mi-raysat_3dsmax2015_64) -- J:\Programme\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe ()
SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (DAUpdaterSvc) -- L:\Games\Dragon Age\bin_ship\daupdatersvc.service.exe (BioWare)
SRV - (lxcz_device) -- C:\Windows\SysWOW64\lxczcoms.exe ( )
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (iorate) -- C:\Windows\SysNative\drivers\iorate.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (xboxgip) -- C:\Windows\SysNative\drivers\xboxgip.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (megasas2i) -- C:\Windows\SysNative\drivers\MegaSas2i.sys (Avago Technologies)
DRV:[b]64bit:[/b] - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (hvservice) -- C:\Windows\SysNative\drivers\hvservice.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (xinputhid) -- C:\Windows\SysNative\drivers\xinputhid.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Wof) -- C:\WINDOWS\SysNative\drivers\wof.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (AppvStrm) -- C:\Windows\SysNative\drivers\AppVStrm.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (wcifs) -- C:\Windows\SysNative\drivers\wcifs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BthA2DP) -- C:\Windows\SysNative\drivers\BthA2DP.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BthLEEnum) -- C:\Windows\SysNative\drivers\BthLEEnum.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (wdiwifi) -- C:\Windows\SysNative\drivers\WdiWiFi.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (CapImg) -- C:\Windows\SysNative\drivers\capimg.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:[b]64bit:[/b] - (nvlddmkm) -- C:\Windows\SysNative\DriverStore\FileRepository\nv_dispi.inf_amd64_72b89f8d71abda5d\nvlddmkm.sys (NVIDIA Corporation)
DRV:[b]64bit:[/b] - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (MsSecFlt) -- C:\Windows\SysNative\drivers\mssecflt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UevAgentDriver) -- C:\Windows\SysNative\drivers\UevAgentDriver.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (tsusbhub) -- C:\Windows\SysNative\drivers\tsusbhub.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (AppvVemgr) -- C:\Windows\SysNative\drivers\AppvVemgr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (AppvVfs) -- C:\Windows\SysNative\drivers\AppvVfs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WdNisDrv) -- C:\Windows\SysNative\drivers\WdNisDrv.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WdFilter) -- C:\Windows\SysNative\drivers\WdFilter.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WdBoot) -- C:\Windows\SysNative\drivers\WdBoot.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (applockerfltr) -- C:\Windows\SysNative\drivers\applockerfltr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ReFSv1) -- C:\WINDOWS\SysNative\drivers\refsv1.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WindowsTrustedRT) -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (GpuEnergyDrv) -- C:\Windows\SysNative\drivers\gpuenergydrv.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Ufx01000) -- C:\Windows\SysNative\drivers\ufx01000.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UcmTcpciCx0101) -- C:\Windows\SysNative\drivers\UcmTcpciCx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UcmCx0101) -- C:\Windows\SysNative\drivers\UcmCx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (storqosflt) -- C:\Windows\SysNative\drivers\storqosflt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UrsCx01000) -- C:\Windows\SysNative\drivers\urscx01000.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (IndirectKmd) -- C:\Windows\SysNative\drivers\IndirectKmd.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (cnghwassist) -- C:\Windows\SysNative\drivers\cnghwassist.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (MMCSS) -- C:\Windows\SysNative\drivers\mmcss.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (irda) -- C:\Windows\SysNative\drivers\irda.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (clreg) -- C:\Windows\SysNative\drivers\registry.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (wcnfs) -- C:\Windows\SysNative\drivers\wcnfs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Ucx01000) -- C:\Windows\SysNative\drivers\Ucx01000.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (NetAdapterCx) -- C:\Windows\SysNative\drivers\NetAdapterCx.sys ()
DRV:[b]64bit:[/b] - (FileCrypt) -- C:\Windows\SysNative\drivers\filecrypt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (tsusbflt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UdeCx) -- C:\Windows\SysNative\drivers\Udecx.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (vhf) -- C:\Windows\SysNative\drivers\vhf.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation)
DRV:[b]64bit:[/b] - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ufxsynopsys) -- C:\Windows\SysNative\drivers\ufxsynopsys.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UfxChipidea) -- C:\Windows\SysNative\drivers\UfxChipidea.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UcmUcsi) -- C:\Windows\SysNative\drivers\UcmUcsi.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UrsChipidea) -- C:\Windows\SysNative\drivers\urschipidea.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (UrsSynopsys) -- C:\Windows\SysNative\drivers\urssynopsys.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (genericusbfn) -- C:\Windows\SysNative\drivers\genericusbfn.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WindowsTrustedRTProxy) -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (e1iexpress) -- C:\Windows\SysNative\drivers\e1i63x64.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (iaLPSS2i_I2C) -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (iai2c) -- C:\Windows\SysNative\drivers\iai2c.sys (Intel(R) Corporation)
DRV:[b]64bit:[/b] - (iaLPSS2i_GPIO2) -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (hidinterrupt) -- C:\Windows\SysNative\drivers\hidinterrupt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (buttonconverter) -- C:\Windows\SysNative\drivers\buttonconverter.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BthHFAud) -- C:\Windows\SysNative\drivers\BthHfAud.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (iagpio) -- C:\Windows\SysNative\drivers\iagpio.sys (Intel(R) Corporation)
DRV:[b]64bit:[/b] - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (cht4vbd) -- C:\Windows\SysNative\drivers\cht4vx64.sys (Chelsio Communications)
DRV:[b]64bit:[/b] - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra)
DRV:[b]64bit:[/b] - (mlx4_bus) -- C:\Windows\SysNative\drivers\mlx4_bus.sys (Mellanox)
DRV:[b]64bit:[/b] - (iaStorAV) -- C:\Windows\SysNative\drivers\iaStorAV.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (ibbus) -- C:\Windows\SysNative\drivers\ibbus.sys (Mellanox)
DRV:[b]64bit:[/b] - (cht4iscsi) -- C:\Windows\SysNative\drivers\cht4sx64.sys (Chelsio Communications)
DRV:[b]64bit:[/b] - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation)
DRV:[b]64bit:[/b] - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:[b]64bit:[/b] - (scmdisk0101) -- C:\Windows\SysNative\drivers\scmdisk0101.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (ndfltr) -- C:\Windows\SysNative\drivers\ndfltr.sys (Mellanox)
DRV:[b]64bit:[/b] - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI)
DRV:[b]64bit:[/b] - (LSI_SAS2i) -- C:\Windows\SysNative\drivers\lsi_sas2i.sys (LSI Corporation)
DRV:[b]64bit:[/b] - (LSI_SAS3i) -- C:\Windows\SysNative\drivers\lsi_sas3i.sys (Avago Technologies)
DRV:[b]64bit:[/b] - (scmbus) -- C:\Windows\SysNative\drivers\scmbus.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation)
DRV:[b]64bit:[/b] - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WinVerbs) -- C:\Windows\SysNative\drivers\winverbs.sys (Mellanox)
DRV:[b]64bit:[/b] - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:[b]64bit:[/b] - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.)
DRV:[b]64bit:[/b] - (percsas3i) -- C:\Windows\SysNative\drivers\percsas3i.sys (Avago Technologies)
DRV:[b]64bit:[/b] - (percsas2i) -- C:\Windows\SysNative\drivers\percsas2i.sys (Avago Technologies)
DRV:[b]64bit:[/b] - (BasicDisplay) -- C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BasicRender) -- C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (storufs) -- C:\Windows\SysNative\drivers\storufs.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (WinMad) -- C:\Windows\SysNative\drivers\winmad.sys (Mellanox)
DRV:[b]64bit:[/b] - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.)
DRV:[b]64bit:[/b] - (UEFI) -- C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (AcpiDev) -- C:\Windows\SysNative\drivers\AcpiDev.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (volume) -- C:\Windows\SysNative\drivers\volume.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider)
DRV:[b]64bit:[/b] - (bcmfn) -- C:\Windows\SysNative\drivers\bcmfn.sys (Windows (R) Win 7 DDK provider)
DRV:[b]64bit:[/b] - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (QLogic Corporation)
DRV:[b]64bit:[/b] - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (QLogic Corporation)
DRV:[b]64bit:[/b] - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (BthHFEnum) -- C:\Windows\SysNative\drivers\bthhfenum.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Synth3dVsc) -- C:\Windows\SysNative\drivers\Synth3dVsc.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (BthAvrcpTg) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (CompositeBus) -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (bthhfhid) -- C:\Windows\SysNative\drivers\BthhfHid.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (vmgid) -- C:\Windows\SysNative\drivers\vmgid.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (file_tracker) -- C:\Windows\SysNative\drivers\file_tracker.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (tib) -- C:\Windows\SysNative\drivers\tib.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (tnd) -- C:\Windows\SysNative\drivers\tnd.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (virtual_file) -- C:\Windows\SysNative\drivers\virtual_file.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (tib_mounter) -- C:\Windows\SysNative\drivers\tib_mounter.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (snapman) -- C:\Windows\SysNative\drivers\snapman.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (fltsrv) -- C:\Windows\SysNative\drivers\fltsrv.sys (Acronis International GmbH)
DRV:[b]64bit:[/b] - (nvvad_WaveExtensible) -- C:\Windows\SysNative\drivers\nvvad64v.sys (NVIDIA Corporation)
DRV:[b]64bit:[/b] - (WDC_SAM) -- C:\Windows\SysNative\drivers\wdcsam64.sys (Western Digital Technologies, Inc.)
DRV:[b]64bit:[/b] - (A38CCID) -- C:\Windows\SysNative\drivers\a38ccid.sys (Advanced Card Systems Ltd.)
DRV:[b]64bit:[/b] - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (atrfiltr) -- C:\Windows\SysNative\drivers\atrfiltr.sys (Windows (R) Win 7 DDK provider)
DRV:[b]64bit:[/b] - (WIBUKEY) -- C:\Windows\SysNative\drivers\WibuKey64.sys (WIBU-SYSTEMS AG)
DRV:[b]64bit:[/b] - (btwampfl) -- C:\Windows\SysNative\drivers\btwampfl.sys (Broadcom Corporation.)
DRV:[b]64bit:[/b] - (bcbtums) -- C:\Windows\SysNative\drivers\bcbtums.sys (Broadcom Corporation.)
DRV:[b]64bit:[/b] - (hardlock) -- C:\Windows\SysNative\drivers\hardlock.sys (SafeNet Inc.)
DRV:[b]64bit:[/b] - (aksfridge) -- C:\Windows\SysNative\drivers\aksfridge.sys (SafeNet Inc.)
DRV:[b]64bit:[/b] - (aksdf) -- C:\Windows\SysNative\drivers\aksdf.sys (SafeNet Inc.)
DRV:[b]64bit:[/b] - (Wibukey2_64) -- C:\Windows\SysNative\drivers\wibukey2_64.sys (WIBU-SYSTEMS AG)
DRV:[b]64bit:[/b] - (MEIx64) -- C:\Windows\SysNative\drivers\TeeDriverx64.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (WacHidRouter) -- C:\Windows\SysNative\drivers\wachidrouter.sys (Wacom Technology)
DRV:[b]64bit:[/b] - (wacomrouterfilter) -- C:\Windows\SysNative\drivers\wacomrouterfilter.sys (Wacom Technology)
DRV:[b]64bit:[/b] - (hidkmdf) -- C:\Windows\SysNative\drivers\hidkmdf.sys (Windows (R) Win 7 DDK provider)
DRV:[b]64bit:[/b] - (IOMap) -- C:\Windows\SysNative\drivers\IOMap64.sys (ASUSTeK Computer Inc.)
DRV:[b]64bit:[/b] - (iaStorA) -- C:\Windows\SysNative\drivers\iaStorA.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (cfosspeed) -- C:\Windows\SysNative\drivers\cfosspeed6.sys (cFos Software GmbH)
DRV:[b]64bit:[/b] - (asstor64) -- C:\Windows\SysNative\drivers\asstor64.sys (Asmedia Technology)
DRV:[b]64bit:[/b] - (cbfs5) -- C:\Windows\SysNative\drivers\cbfs5.sys (EldoS Corporation)
DRV:[b]64bit:[/b] - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Corel Corporation)
DRV:[b]64bit:[/b] - (KinectCamera) -- C:\Windows\SysNative\drivers\kinectcamera.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (PSI) -- C:\Windows\SysNative\drivers\psi_mf_amd64.sys (Secunia)
DRV:[b]64bit:[/b] - (WinI2C-DDC) -- C:\Windows\SysNative\drivers\DDCDrv.sys (Nicomsoft Ltd.)
DRV - (nvlddmkm) -- C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_72b89f8d71abda5d\nvlddmkm.sys (NVIDIA Corporation)
DRV - (CompositeBus) -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys (Microsoft Corporation)
DRV - (NvStreamKms) -- C:\Programme\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys (NVIDIA Corporation)
DRV - (WinI2C-DDC) -- C:\Windows\SysWOW64\drivers\DDCDrv.sys (Nicomsoft Ltd.)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/de-at/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 90 BD DE 7C 39 B4 D1 01  [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 3C F7 9F BC D2 A3 D1 01  [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.countryCode: "AT"
FF - prefs.js..browser.search.defaultenginename: "Startpage HTTPS - Deutsch"
FF - prefs.js..browser.search.region: "AT"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "https://startpage.com/deu/?"
FF - prefs.js..extensions.enabledAddons: %7B19503e42-ca3c-4c27-b1e2-9cdb2170ee34%7D:1.5.6.13
FF - prefs.js..extensions.enabledAddons: anticontainer%40downthemall.net:1.5
FF - prefs.js..extensions.enabledAddons: %7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.9.0.14
FF - prefs.js..extensions.enabledAddons: %7Baa84ce40-4253-a00a-8cd6-0800200f9a67%7D:3.12.0
FF - prefs.js..extensions.enabledAddons: zoompage%40DW-dev:15.5
FF - prefs.js..extensions.enabledAddons: %7Be001c731-5e37-4538-a5cb-8168736a2360%7D:0.9.9.152
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:49.0.2
FF - user.js - File not found
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.111.2: C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.111.2: C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll ( Microsoft Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.7: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_205.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.111.2: C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.111.2: C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@RIA/esteid-firefox-plugin: C:\Program Files (x86)\Open-EID\npesteid-firefox-plugin.dll (RIA)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.7: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF - HKCU\Software\MozillaPlugins\@citrixonline.com/appdetectorplugin: C:\Users\Empedokles\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Empedokles\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Empedokles\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Empedokles\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Empedokles\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Empedokles\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
 
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{aa84ce40-4253-a00a-8cd6-0800200f9a67}: C:\PROGRAM FILES\OPEN-EID\\{AA84CE40-4253-A00A-8CD6-0800200F9A67}.XPI [2016.06.30 21:34:12 | 000,011,448 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{aa84ce40-4253-a00a-8cd6-0800200f9a67}: C:\Program Files\Open-EID\\{aa84ce40-4253-a00a-8cd6-0800200f9a67}.xpi [2016.06.30 21:34:12 | 000,011,448 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 49.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 49.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 45.4.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 45.4.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 49.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 49.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 45.4.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 45.4.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
 
[2015.05.21 22:36:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\Extensions
[2016.11.10 10:33:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\Firefox\Profiles\downk60c.default\extensions
[2015.12.09 21:13:10 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Empedokles\AppData\Roaming\mozilla\Firefox\Profiles\downk60c.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2016.11.10 10:33:00 | 000,000,000 | ---D | M] (Bitdefender QuickScan) -- C:\Users\Empedokles\AppData\Roaming\mozilla\Firefox\Profiles\downk60c.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
[2016.04.15 07:09:39 | 000,097,401 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\anticontainer@downthemall.net.xpi
[2016.01.12 08:59:08 | 000,442,311 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\jid0-jJRRRBMgoShUhb07IvnxTBAl29w@jetpack.xpi
[2016.01.16 18:12:15 | 000,091,198 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\jid1-pB5ioZmxabB2BA@jetpack.xpi
[2016.04.28 06:12:44 | 000,273,825 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\safepreview@everhelper.me.xpi
[2016.11.05 08:27:12 | 000,104,369 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\zoompage@DW-dev.xpi
[2016.10.12 16:08:43 | 000,588,089 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi
[2016.03.18 11:20:46 | 000,401,190 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
[2016.08.09 15:14:01 | 000,564,604 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
[2016.08.10 12:26:27 | 000,436,289 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}.xpi
[2016.10.28 17:01:37 | 001,054,986 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2016.04.17 05:29:48 | 000,776,642 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1}.xpi
[2016.09.30 19:47:30 | 001,295,123 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
[2016.10.09 16:06:43 | 000,032,504 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi
[2016.10.27 17:01:37 | 000,005,389 | ---- | M] () (No name found) -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\features\{329f03bd-6454-463b-8337-0ebdfd0cdd11}\asyncrendering@mozilla.org.xpi
[2016.03.18 11:24:46 | 000,005,569 | ---- | M] () -- C:\Users\Empedokles\AppData\Roaming\mozilla\firefox\profiles\downk60c.default\searchplugins\startpage-https---deutsch.xml
[2016.10.25 20:30:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
[2016.06.30 21:34:12 | 000,011,448 | ---- | M] () (No name found) -- C:\PROGRAM FILES\OPEN-EID\\{AA84CE40-4253-A00A-8CD6-0800200F9A67}.XPI
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Empedokles\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\Empedokles\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Empedokles\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\Empedokles\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\Empedokles\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckjefchnfjhjfedoccjbhjpbncimppeg\0.0.21_0\
CHR - Extension: No name found = C:\Users\Empedokles\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\Empedokles\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\
CHR - Extension: No name found = C:\Users\Empedokles\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\
CHR - Extension: No name found = C:\Users\Empedokles\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
CHR - Extension: No name found = C:\Users\Empedokles\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5416.905.0.6_0\
 
O1 HOSTS File: ([2016.11.02 17:27:28 | 000,452,616 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1    www.007guard.com
O1 - Hosts: 127.0.0.1    007guard.com
O1 - Hosts: 127.0.0.1    008i.com
O1 - Hosts: 127.0.0.1    www.008k.com
O1 - Hosts: 127.0.0.1    008k.com
O1 - Hosts: 127.0.0.1    www.00hq.com
O1 - Hosts: 127.0.0.1    00hq.com
O1 - Hosts: 127.0.0.1    010402.com
O1 - Hosts: 127.0.0.1    www.032439.com
O1 - Hosts: 127.0.0.1    032439.com
O1 - Hosts: 127.0.0.1    www.0scan.com
O1 - Hosts: 127.0.0.1    0scan.com
O1 - Hosts: 127.0.0.1    1000gratisproben.com
O1 - Hosts: 127.0.0.1    www.1000gratisproben.com
O1 - Hosts: 127.0.0.1    1001namen.com
O1 - Hosts: 127.0.0.1    www.1001namen.com
O1 - Hosts: 127.0.0.1    100888290cs.com
O1 - Hosts: 127.0.0.1    www.100888290cs.com
O1 - Hosts: 127.0.0.1    www.100sexlinks.com
O1 - Hosts: 127.0.0.1    100sexlinks.com
O1 - Hosts: 127.0.0.1    10sek.com
O1 - Hosts: 127.0.0.1    www.10sek.com
O1 - Hosts: 127.0.0.1    www.1-2005-search.com
O1 - Hosts: 127.0.0.1    1-2005-search.com
O1 - Hosts: 127.0.0.1    123fporn.info
O1 - Hosts: 15536 more lines...
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.8.0_111\bin\ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre1.8.0_111\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (IE Token Signing Plugin) - {2A4E94A4-B275-491A-9E32-CD7A26FC7C3B} - C:\Programme\Open-EID\esteid-plugin-ie.dll (RIA)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll (Oracle Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:[b]64bit:[/b] - HKLM..\Run: [ASUS Dr. Power] C:\Program Files (x86)\ASUS\Dr. Power\DrPowerTaskbarApplication.exe (ASUSTek)
O4:[b]64bit:[/b] - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [lxczbmgr.exe] C:\Program Files (x86)\Lexmark 1200 Series\lxczbmgr.exe (Lexmark International, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg_DTS] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [Turbo LAN] C:\Programme\ASUS\Turbo LAN\cfosspeed.exe (cFos Software GmbH)
O4:[b]64bit:[/b] - HKLM..\Run: [WindowsDefender] C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Corporation)
O4 - HKLM..\Run: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis International GmbH)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe (Autodesk, Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ASUS AiChargerPlus Execute] C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [ASUS Media Streamer DMS] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe ()
O4 - HKLM..\Run: [ASUS Media Streamer ShareEdit] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ShareEdit.exe ()
O4 - HKLM..\Run: [ASUS Media Streamer WSAgent] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe ()
O4 - HKLM..\Run: [Autodesk Desktop App] C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe (Autodesk, Inc.)
O4 - HKLM..\Run: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe ()
O4 - HKLM..\Run: [Dropbox] C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.)
O4 - HKLM..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe (Nikon Corporation)
O4 - HKLM..\Run: [PDFPrint] K:\Programme\PDF24\pdf24.exe (Geek Software GmbH)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe ()
O4 - HKLM..\Run: [WebStorage] C:\Program Files (x86)\ASUS\WebStorage\2.2.1.513\ASUSWSLoader.exe ()
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\Empedokles\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKCU..\Run: [OneDrive] C:\Users\Empedokles\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Speech Recognition] C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Steam] L:\Games\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: samsungsetup.com ([www] http in Vertrauenswürdige Sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.35.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{615fade6-917b-4358-b8fc-306f8eaf38f6}: DhcpNameServer = 192.168.35.1
O18:[b]64bit:[/b] - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: EldosMountNotificator-cbfs5 - {42FC2364-154B-40B8-89D5-6246CB69C2AE} - C:\Windows\SysNative\cbfsMntNtf5.dll (EldoS Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: EldosMountNotificator-cbfs5 - {42FC2364-154B-40B8-89D5-6246CB69C2AE} - C:\Windows\SysWOW64\cbfsMntNtf5.dll (EldoS Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O22:[b]64bit:[/b] - SharedTaskScheduler: {42FC2364-154B-40B8-89D5-6246CB69C2AE} - Virtual Storage Mount Notification - C:\Windows\SysNative\cbfsMntNtf5.dll (EldoS Corporation)
O22 - SharedTaskScheduler: {42FC2364-154B-40B8-89D5-6246CB69C2AE} - Virtual Storage Mount Notification - C:\Windows\SysWOW64\cbfsMntNtf5.dll (EldoS Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2016.09.04 09:39:12 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2005.02.25 17:24:44 | 000,000,051 | R--- | M] () - I:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2016.09.04 09:54:53 | 000,000,000 | ---D | M] - K:\Autodesk -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2016.11.10 11:28:05 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Empedokles\Desktop\OTL.exe
[2016.11.10 10:59:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Chip Digital GmbH
[2016.11.10 10:36:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab Setup Files
[2016.11.10 10:34:03 | 000,000,000 | ---D | C] -- C:\Users\Empedokles\AppData\Roaming\QuickScan
[2016.11.09 07:31:47 | 000,909,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll
[2016.11.09 07:31:47 | 000,712,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Search.dll
[2016.11.09 07:31:47 | 000,432,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpAXHolder.dll
[2016.11.09 07:31:46 | 004,423,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll
[2016.11.09 07:31:46 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usercpl.dll
[2016.11.09 07:31:46 | 001,274,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll
[2016.11.09 07:31:46 | 000,773,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleaut32.dll
[2016.11.09 07:31:46 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionCenterCPL.dll
[2016.11.09 07:31:46 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\chartv.dll
[2016.11.09 07:31:45 | 000,836,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcRefreshTask.dll
[2016.11.09 07:31:45 | 000,682,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2016.11.09 07:31:45 | 000,576,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2016.11.09 07:31:45 | 000,545,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe
[2016.11.09 07:31:45 | 000,238,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\weretw.dll
[2016.11.09 07:31:45 | 000,186,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\weretw.dll
[2016.11.09 07:31:44 | 001,388,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Cred.dll
[2016.11.09 07:31:44 | 000,579,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ddraw.dll
[2016.11.09 07:31:44 | 000,415,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpshell.exe
[2016.11.09 07:31:44 | 000,376,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\clfs.sys
[2016.11.09 07:31:44 | 000,336,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkBindingEngineMigPlugin.dll
[2016.11.09 07:31:44 | 000,315,744 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll
[2016.11.09 07:31:44 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ubpm.dll
[2016.11.09 07:31:44 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcTok.exe
[2016.11.09 07:31:44 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NPSM.dll
[2016.11.09 07:31:44 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dab.dll
[2016.11.09 07:31:43 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionCenter.dll
[2016.11.09 07:31:43 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpinit.exe
[2016.11.09 07:31:43 | 000,278,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netplwiz.dll
[2016.11.09 07:31:43 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wininetlui.dll
[2016.11.09 07:31:43 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Shell.Search.UriHandler.dll
[2016.11.09 07:31:43 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Shell.Search.UriHandler.dll
[2016.11.09 07:31:43 | 000,037,376 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll
[2016.11.09 07:31:42 | 008,156,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll
[2016.11.09 07:31:42 | 003,892,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2016.11.09 07:31:42 | 003,307,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2016.11.09 07:31:42 | 000,951,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2016.11.09 07:31:42 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\chartv.dll
[2016.11.09 07:31:41 | 013,441,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll
[2016.11.09 07:31:41 | 012,349,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll
[2016.11.09 07:31:41 | 002,998,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32kfull.sys
[2016.11.09 07:31:40 | 002,484,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gameux.dll
[2016.11.09 07:31:40 | 002,458,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\themecpl.dll
[2016.11.09 07:31:40 | 001,726,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll
[2016.11.09 07:31:40 | 001,556,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll
[2016.11.09 07:31:40 | 000,896,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontext.dll
[2016.11.09 07:31:40 | 000,881,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2016.11.09 07:31:40 | 000,506,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DevicePairing.dll
[2016.11.09 07:31:40 | 000,483,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.dll
[2016.11.09 07:31:40 | 000,422,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.dll
[2016.11.09 07:31:39 | 007,626,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2016.11.09 07:31:39 | 000,632,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sud.dll
[2016.11.09 07:31:39 | 000,580,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\hgcpl.dll
[2016.11.09 07:31:38 | 004,312,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2016.11.09 07:31:38 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.LockScreen.dll
[2016.11.09 07:31:37 | 006,582,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d12warp.dll
[2016.11.09 07:31:37 | 003,133,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcore.dll
[2016.11.09 07:31:37 | 002,747,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdpcore.dll
[2016.11.09 07:31:37 | 000,991,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comdlg32.dll
[2016.11.09 07:31:37 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\efsext.dll
[2016.11.09 07:31:36 | 000,760,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\appwiz.cpl
[2016.11.09 07:31:36 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\timedate.cpl
[2016.11.09 07:31:36 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32k.sys
[2016.11.09 07:31:36 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AuthExt.dll
[2016.11.09 07:31:36 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VSD3DWARP12Debug.dll
[2016.11.09 07:31:36 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VSD3DWARPDebug.dll
[2016.11.09 07:31:36 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2016.11.09 07:31:33 | 006,657,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2016.11.09 07:31:33 | 002,512,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\themecpl.dll
[2016.11.09 07:31:33 | 001,228,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usercpl.dll
[2016.11.09 07:31:33 | 000,534,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2016.11.09 07:31:33 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stobject.dll
[2016.11.09 07:31:33 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browserbroker.dll
[2016.11.09 07:31:32 | 007,469,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2016.11.09 07:31:32 | 003,106,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstsc.exe
[2016.11.09 07:31:32 | 000,940,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontext.dll
[2016.11.09 07:31:32 | 000,655,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sud.dll
[2016.11.09 07:31:32 | 000,629,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hgcpl.dll
[2016.11.09 07:31:32 | 000,590,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2016.11.09 07:31:32 | 000,388,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\zipfldr.dll
[2016.11.09 07:31:32 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2016.11.09 07:31:31 | 009,131,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2016.11.09 07:31:31 | 004,673,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2016.11.09 07:31:31 | 002,611,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gameux.dll
[2016.11.09 07:31:31 | 000,828,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appwiz.cpl
[2016.11.09 07:31:31 | 000,567,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairing.dll
[2016.11.09 07:31:31 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.UserAccountsHandlers.dll
[2016.11.09 07:31:31 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IdCtrls.dll
[2016.11.09 07:31:30 | 004,749,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2016.11.09 07:31:28 | 003,400,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncCenter.dll
[2016.11.09 07:31:28 | 001,883,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2016.11.09 07:31:28 | 000,779,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cscui.dll
[2016.11.09 07:31:28 | 000,557,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll
[2016.11.09 07:31:28 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DataSenseHandlers.dll
[2016.11.09 07:31:28 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgentUserBroker.exe
[2016.11.09 07:31:28 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe
[2016.11.09 07:31:27 | 004,977,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d12warp.dll
[2016.11.09 07:31:27 | 002,104,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidsvc.dll
[2016.11.09 07:31:27 | 000,981,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.OnlineId.dll
[2016.11.09 07:31:27 | 000,631,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WlanMediaManager.dll
[2016.11.09 07:31:27 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkDesktopSettings.dll
[2016.11.09 07:31:27 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NPSM.dll
[2016.11.09 07:31:26 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCenter.dll
[2016.11.09 07:31:26 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VSD3DWARP12Debug.dll
[2016.11.09 07:31:26 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VSD3DWARPDebug.dll
[2016.11.09 07:31:26 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll
[2016.11.09 07:31:26 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe
[2016.11.09 07:31:25 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppBroker.dll
[2016.11.09 07:31:25 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2016.11.09 07:31:24 | 019,415,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2016.11.09 07:31:23 | 001,415,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gdi32full.dll
[2016.11.09 07:31:23 | 000,842,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntshrui.dll
[2016.11.09 07:31:23 | 000,549,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActionCenterCPL.dll
[2016.11.09 07:31:23 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsensorgroup.dll
[2016.11.09 07:31:23 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\indexeddbserver.dll
[2016.11.09 07:31:22 | 000,579,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppBroker.dll
[2016.11.09 07:31:22 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieproxy.dll
[2016.11.09 07:31:20 | 006,044,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2016.11.09 07:31:20 | 004,746,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2016.11.09 07:31:20 | 000,690,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieproxy.dll
[2016.11.09 07:31:19 | 004,708,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll
[2016.11.09 07:31:19 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shdocvw.dll
[2016.11.09 07:31:18 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2016.11.09 07:31:18 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FSClient.dll
[2016.11.09 07:31:17 | 008,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2016.11.09 07:31:17 | 001,513,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2016.11.09 07:31:17 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2016.11.09 07:31:16 | 003,196,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cdp.dll
[2016.11.09 07:31:16 | 001,247,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Globalization.dll
[2016.11.09 07:31:15 | 001,637,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2016.11.09 07:31:15 | 000,805,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FrameServer.dll
[2016.11.09 07:31:15 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PsmServiceExtHost.dll
[2016.11.09 07:31:15 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ACPBackgroundManagerPolicy.dll
[2016.11.09 07:31:14 | 008,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2016.11.09 07:31:14 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\indexeddbserver.dll
[2016.11.09 07:31:13 | 005,111,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdp.dll
[2016.11.09 07:31:13 | 001,586,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Globalization.dll
[2016.11.09 07:31:13 | 000,770,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2016.11.09 07:31:12 | 022,563,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2016.11.09 07:31:11 | 002,273,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2016.11.09 07:31:11 | 001,690,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.onecore.dll
[2016.11.09 07:31:10 | 000,956,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.desktop.dll
[2016.11.09 07:31:10 | 000,822,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakradiag.dll
[2016.11.09 07:31:09 | 001,348,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll
[2016.11.09 07:31:09 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.HumanInterfaceDevice.dll
[2016.11.09 07:31:09 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ErrorDetails.dll
[2016.11.09 07:31:08 | 003,299,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstsc.exe
[2016.11.09 07:31:08 | 000,807,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Security.Authentication.OnlineId.dll
[2016.11.09 07:31:08 | 000,602,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupEngine.dll
[2016.11.09 07:31:08 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.BioFeedback.dll
[2016.11.09 07:31:07 | 000,605,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe
[2016.11.09 07:31:07 | 000,423,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifitask.exe
[2016.11.09 07:31:07 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\input.dll
[2016.11.09 07:31:07 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAnimation.dll
[2016.11.09 07:31:07 | 000,111,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupApi.dll
[2016.11.09 07:31:06 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2016.11.09 07:31:06 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.BlockedShutdown.dll
[2016.11.09 07:31:06 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GlobCollationHost.dll
[2016.11.09 07:31:06 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2016.11.09 07:31:06 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GlobCollationHost.dll
[2016.11.09 07:31:06 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BcastDVRHelper.dll
[2016.11.09 07:31:06 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppCapture.dll
[2016.11.09 07:31:06 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iepeers.dll
[2016.11.09 07:31:06 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ErrorDetails.dll
[2016.11.09 07:31:06 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iepeers.dll
[2016.11.09 07:31:06 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ErrorDetailsUpdate.dll
[2016.11.09 07:31:06 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ErrorDetailsUpdate.dll
[2016.11.09 07:31:05 | 001,354,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2016.11.09 07:31:05 | 001,173,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2016.11.09 07:31:05 | 001,051,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2016.11.09 07:31:05 | 000,894,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2016.11.09 07:31:05 | 000,092,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpudd.dll
[2016.11.09 07:31:04 | 007,816,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2016.11.09 07:31:04 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msinfo32.exe
[2016.11.09 07:31:04 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FSClient.dll
[2016.11.09 07:31:04 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsensorgroup.dll
[2016.11.09 07:31:03 | 001,418,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2016.11.09 07:31:03 | 000,798,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2016.11.09 07:31:03 | 000,336,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msinfo32.exe
[2016.11.09 07:31:02 | 004,130,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2016.11.09 07:31:02 | 003,778,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2016.11.09 07:31:02 | 003,616,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2016.11.09 07:31:02 | 001,609,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d9.dll
[2016.11.09 07:31:02 | 001,490,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2016.11.09 07:31:02 | 001,061,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2016.11.09 07:31:01 | 001,572,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32full.dll
[2016.11.09 07:31:01 | 000,748,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll
[2016.11.09 07:31:01 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FlightSettings.dll
[2016.11.09 07:31:01 | 000,628,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe
[2016.11.09 07:31:01 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe
[2016.11.09 07:31:00 | 004,148,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll
[2016.11.09 07:31:00 | 002,678,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d10warp.dll
[2016.11.09 07:31:00 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe
[2016.11.09 07:31:00 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkUXBroker.dll
[2016.11.09 07:31:00 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.LockScreen.dll
[2016.11.09 07:31:00 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.HumanInterfaceDevice.dll
[2016.11.09 07:31:00 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BcastDVRHelper.dll
[2016.11.09 07:31:00 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\efsext.dll
[2016.11.09 07:30:59 | 000,848,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupEngine.dll
[2016.11.09 07:30:59 | 000,378,720 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll
[2016.11.09 07:30:59 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-system-events.dll
[2016.11.09 07:30:59 | 000,322,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\input.dll
[2016.11.09 07:30:59 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAnimation.dll
[2016.11.09 07:30:59 | 000,265,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll
[2016.11.09 07:30:59 | 000,260,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgentUserBroker.exe
[2016.11.09 07:30:59 | 000,048,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\iorate.sys
[2016.11.09 07:30:58 | 000,866,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Cred.dll
[2016.11.09 07:30:58 | 000,731,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d8.dll
[2016.11.09 07:30:58 | 000,148,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupApi.dll
[2016.11.09 07:30:58 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininetlui.dll
[2016.11.09 07:30:56 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.BlockedShutdown.dll
[2016.11.09 07:30:56 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.BioFeedback.dll
[2016.11.09 07:30:56 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppCapture.dll
[2016.11.09 07:30:56 | 000,045,056 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll
[2016.11.02 17:36:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intel
[2016.11.02 17:35:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee
[2016.11.02 17:35:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee
[2016.10.29 06:53:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
[2016.10.28 09:46:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\headus UVLayout v2 Professional
[2016.10.28 07:52:41 | 001,990,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2016.10.28 07:52:41 | 001,557,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll
[2016.10.28 07:52:41 | 001,472,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2016.10.28 07:52:41 | 000,498,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DolbyDecMFT.dll
[2016.10.28 07:52:39 | 006,285,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2016.10.28 07:52:39 | 000,244,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2016.10.28 07:52:38 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winsrv.dll
[2016.10.28 07:52:34 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Bluetooth.dll
[2016.10.28 07:52:32 | 000,747,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RemoteNaturalLanguage.dll
[2016.10.28 07:52:32 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.BackgroundMediaPlayback.dll
[2016.10.28 07:52:32 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Playback.BackgroundMediaPlayer.dll
[2016.10.28 07:52:32 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Playback.MediaPlayer.dll
[2016.10.28 07:52:31 | 002,290,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2016.10.28 07:52:31 | 000,691,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvproc.dll
[2016.10.28 07:52:31 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\energy.dll
[2016.10.28 07:52:30 | 001,461,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2016.10.28 07:52:30 | 000,811,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll
[2016.10.28 07:52:30 | 000,749,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drvstore.dll
[2016.10.28 07:52:30 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usocore.dll
[2016.10.28 07:52:30 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys
[2016.10.28 07:52:30 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe
[2016.10.28 07:52:30 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BluetoothApis.dll
[2016.10.28 07:52:30 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TpmTasks.dll
[2016.10.28 07:52:29 | 001,631,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Resources.dll
[2016.10.28 07:52:29 | 000,913,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.dll
[2016.10.28 07:52:29 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iscsiwmi.dll
[2016.10.28 07:52:27 | 001,643,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll
[2016.10.28 07:52:27 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2016.10.28 07:52:26 | 017,188,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2016.10.28 07:52:26 | 000,701,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll
[2016.10.28 07:52:24 | 001,113,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsp_health.dll
[2016.10.28 07:52:23 | 001,993,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2016.10.28 07:52:23 | 001,323,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsp_fs.dll
[2016.10.28 07:52:23 | 000,558,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnprv.dll
[2016.10.28 07:52:23 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Flights.dll
[2016.10.28 07:52:22 | 000,455,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DolbyDecMFT.dll
[2016.10.28 07:52:22 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuuhext.dll
[2016.10.28 07:52:22 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Display.dll
[2016.10.28 07:52:22 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\capimg.sys
[2016.10.28 07:52:22 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HttpsDataSource.dll
[2016.10.28 07:52:22 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cmifw.dll
[2016.10.28 07:52:22 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\updatepolicy.dll
[2016.10.28 07:52:22 | 000,063,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys
[2016.10.28 07:52:21 | 000,717,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskbarcpl.dll
[2016.10.28 07:52:21 | 000,338,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcpl.dll
[2016.10.28 07:52:21 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xboxgip.sys
[2016.10.28 07:52:21 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairingFolder.dll
[2016.10.28 07:52:21 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autoplay.dll
[2016.10.28 07:52:21 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\powercfg.exe
[2016.10.28 07:52:21 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OnDemandConnRouteHelper.dll
[2016.10.28 07:52:21 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\stdole2.tlb
[2016.10.28 07:52:20 | 000,272,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfksproxy.dll
[2016.10.28 07:52:20 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSManHTTPConfig.exe
[2016.10.28 07:52:19 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll
[2016.10.28 07:52:19 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Geolocation.dll
[2016.10.28 07:52:19 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfksproxy.dll
[2016.10.28 07:52:18 | 013,868,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2016.10.28 07:52:18 | 006,108,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll
[2016.10.28 07:52:18 | 001,631,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Resources.dll
[2016.10.28 07:52:17 | 003,287,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mispace.dll
[2016.10.28 07:52:17 | 002,748,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mispace.dll
[2016.10.28 07:52:17 | 001,980,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diagtrack.dll
[2016.10.28 07:52:17 | 001,235,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2016.10.28 07:52:17 | 000,595,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2016.10.28 07:52:17 | 000,584,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2016.10.28 07:52:17 | 000,137,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll
[2016.10.28 07:52:17 | 000,078,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CompatTelRunner.exe
[2016.10.28 07:52:16 | 002,186,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hevcdecoder.dll
[2016.10.28 07:52:16 | 001,913,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsp_fs.dll
[2016.10.28 07:52:16 | 001,637,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll
[2016.10.28 07:52:16 | 001,554,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsp_health.dll
[2016.10.28 07:52:16 | 000,675,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.dll
[2016.10.28 07:52:16 | 000,341,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll
[2016.10.28 07:52:16 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\splwow64.exe
[2016.10.28 07:52:15 | 005,376,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll
[2016.10.28 07:52:15 | 003,054,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\esent.dll
[2016.10.28 07:52:15 | 002,708,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\esent.dll
[2016.10.28 07:52:15 | 000,322,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\invagent.dll
[2016.10.28 07:52:15 | 000,232,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2016.10.28 07:52:14 | 000,908,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvstore.dll
[2016.10.28 07:52:14 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JpMapControl.dll
[2016.10.28 07:52:14 | 000,760,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NMAA.dll
[2016.10.28 07:52:14 | 000,715,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlCore.dll
[2016.10.28 07:52:14 | 000,509,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys
[2016.10.28 07:52:14 | 000,292,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpeffects.dll
[2016.10.28 07:52:14 | 000,254,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmpeffects.dll
[2016.10.28 07:52:14 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpdxm.dll
[2016.10.28 07:52:14 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cmifw.dll
[2016.10.28 07:52:14 | 000,079,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\crashdmp.sys
[2016.10.28 07:52:14 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iscsiwmi.dll
[2016.10.28 07:52:13 | 000,869,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2016.10.28 07:52:13 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\esentutl.exe
[2016.10.28 07:52:13 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\esentutl.exe
[2016.10.28 07:52:13 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmpdxm.dll
[2016.10.28 07:52:13 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpshell.dll
[2016.10.28 07:52:13 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmpshell.dll
[2016.10.28 07:52:13 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\updatepolicy.dll
[2016.10.28 07:52:13 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2016.10.28 07:52:11 | 001,600,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppobjs.dll
[2016.10.28 07:52:11 | 001,365,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2016.10.28 07:52:11 | 001,356,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipUp.exe
[2016.10.28 07:52:11 | 000,742,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppwinob.dll
[2016.10.28 07:52:11 | 000,429,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SndVolSSO.dll
[2016.10.28 07:52:10 | 000,882,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditionUpgradeManagerObj.dll
[2016.10.28 07:52:09 | 005,685,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Data.Pdf.dll
[2016.10.28 07:52:09 | 004,474,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_47.dll
[2016.10.28 07:52:08 | 007,654,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll
[2016.10.28 07:52:08 | 007,216,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Data.Pdf.dll
[2016.10.28 07:52:08 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSManHTTPConfig.exe
[2016.10.28 07:52:07 | 000,310,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2016.10.28 07:52:06 | 002,211,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d12SDKLayers.dll
[2016.10.28 07:52:06 | 001,267,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2016.10.28 07:52:06 | 000,886,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CPFilters.dll
[2016.10.28 07:52:06 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.BackgroundMediaPlayback.dll
[2016.10.28 07:52:06 | 000,718,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Playback.BackgroundMediaPlayer.dll
[2016.10.28 07:52:06 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Playback.MediaPlayer.dll
[2016.10.28 07:52:06 | 000,673,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe
[2016.10.28 07:52:05 | 007,792,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll
[2016.10.28 07:52:05 | 001,969,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\hevcdecoder.dll
[2016.10.28 07:52:05 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\daxexec.dll
[2016.10.28 07:52:05 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdpsvc.dll
[2016.10.28 07:52:05 | 000,339,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdpusersvc.dll
[2016.10.28 07:52:05 | 000,329,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wc_storage.dll
[2016.10.28 07:52:05 | 000,283,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCensus.exe
[2016.10.28 07:52:04 | 002,913,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2016.10.28 07:52:04 | 002,827,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2016.10.28 07:52:04 | 001,851,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\crypt32.dll
[2016.10.28 07:52:04 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JpMapControl.dll
[2016.10.28 07:52:04 | 001,029,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll
[2016.10.28 07:52:04 | 001,005,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3D12.dll
[2016.10.28 07:52:04 | 000,936,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NMAA.dll
[2016.10.28 07:52:04 | 000,905,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll
[2016.10.28 07:52:04 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.WiFi.dll
[2016.10.28 07:52:04 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.WiFi.dll
[2016.10.28 07:52:04 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BluetoothApis.dll
[2016.10.28 07:52:04 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BthRadioMedia.dll
[2016.10.28 07:52:03 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshostcore.dll
[2016.10.28 07:52:03 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2016.10.28 07:52:03 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAppInstaller.exe
[2016.10.28 07:52:03 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dtdump.exe
[2016.10.28 07:52:00 | 000,438,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDec.dll
[2016.10.28 07:52:00 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\systemcpl.dll
[2016.10.28 07:52:00 | 000,265,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcore6.dll
[2016.10.28 07:52:00 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditionUpgradeHelper.dll
[2016.10.28 07:52:00 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autoplay.dll
[2016.10.28 07:51:59 | 000,402,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2016.10.28 07:51:58 | 000,658,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys
[2016.10.28 07:51:57 | 000,467,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Geolocation.dll
[2016.10.28 07:51:56 | 002,476,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWrite.dll
[2016.10.28 07:51:56 | 001,694,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll
[2016.10.28 07:51:56 | 000,631,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationController.dll
[2016.10.28 07:51:56 | 000,557,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\spaceport.sys
[2016.10.28 07:51:55 | 001,123,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2016.10.28 07:51:55 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CPFilters.dll
[2016.10.28 07:51:54 | 004,612,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2016.10.28 07:51:54 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SndVolSSO.dll
[2016.10.28 07:51:54 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\daxexec.dll
[2016.10.28 07:51:53 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll
[2016.10.28 07:51:52 | 003,733,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_47.dll
[2016.10.28 07:51:51 | 002,781,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d12SDKLayers.dll
[2016.10.28 07:51:50 | 002,166,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2016.10.28 07:51:50 | 001,790,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationFramework.dll
[2016.10.28 07:51:50 | 000,983,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemoteNaturalLanguage.dll
[2016.10.28 07:51:50 | 000,846,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2016.10.28 07:51:50 | 000,806,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3D12.dll
[2016.10.28 07:51:50 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll
[2016.10.28 07:51:50 | 000,160,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostBroker.dll
[2016.10.28 07:51:49 | 002,276,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2016.10.28 07:51:49 | 001,853,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2016.10.28 07:51:49 | 000,687,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvproc.dll
[2016.10.28 07:51:49 | 000,409,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2016.10.28 07:51:49 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.pcshell.dll
[2016.10.28 07:51:49 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll
[2016.10.28 07:51:47 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dhcpcore6.dll
[2016.10.28 07:51:47 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSrvPolicyManager.dll
[2016.10.28 07:51:47 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidclass.sys
[2016.10.28 07:51:47 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\powercfg.exe
[2016.10.28 07:51:46 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stdole2.tlb
[2016.10.25 16:19:23 | 000,000,000 | ---D | C] -- C:\Users\Empedokles\AppData\Roaming\Electrum
[2016.10.25 16:18:58 | 000,000,000 | ---D | C] -- C:\Users\Empedokles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electrum
[2016.10.25 16:18:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Electrum
[2016.10.24 14:06:26 | 000,041,576 | ---- | C] (Dropbox, Inc.) -- C:\WINDOWS\SysNative\DbxSvc.exe
[2016.10.24 14:06:10 | 000,075,888 | ---- | C] (Dropbox, Inc.) -- C:\WINDOWS\SysNative\drivers\dbx-stable.sys
[2016.10.24 14:06:10 | 000,075,888 | ---- | C] (Dropbox, Inc.) -- C:\WINDOWS\SysNative\drivers\dbx-dev.sys
[2016.10.24 14:06:10 | 000,075,888 | ---- | C] (Dropbox, Inc.) -- C:\WINDOWS\SysNative\drivers\dbx-canary.sys
[2016.10.21 05:47:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2016.10.20 10:07:32 | 000,110,144 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-64.dll
[2016.10.20 10:07:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2016.10.12 09:27:13 | 006,474,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mspaint.exe
[2016.10.12 09:27:13 | 000,873,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aadtb.dll
[2016.10.12 09:27:13 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ShareHost.dll
[2016.10.12 09:27:13 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.AllJoyn.dll
[2016.10.12 09:27:13 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Wallet.dll
[2016.10.12 09:27:13 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDeviceRegistration.dll
[2016.10.12 09:27:13 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AuthBroker.dll
[2016.10.12 09:27:13 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDeviceRegistration.Ngc.dll
[2016.10.12 09:27:12 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2016.10.12 09:27:12 | 000,480,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dsreg.dll
[2016.10.12 09:27:12 | 000,404,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dsreg.dll
[2016.10.12 09:27:12 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll
[2016.10.12 09:27:12 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDeviceRegistration.dll
[2016.10.12 09:27:12 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll
[2016.10.12 09:27:12 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthBroker.dll
[2016.10.12 09:27:12 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.ServiceDiscovery.Dnssd.dll
[2016.10.12 09:27:12 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDeviceRegistration.Ngc.dll
[2016.10.12 09:27:11 | 002,914,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CertEnroll.dll
[2016.10.12 09:27:11 | 002,800,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netshell.dll
[2016.10.12 09:27:11 | 001,589,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdtctm.dll
[2016.10.12 09:27:09 | 001,322,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpx.dll
[2016.10.12 09:27:09 | 000,396,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncsi.dll
[2016.10.12 09:27:08 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdedit.exe
[2016.10.12 09:27:08 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\credprovs.dll
[2016.10.12 09:27:07 | 000,983,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ngcsvc.dll
[2016.10.12 09:27:05 | 000,431,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\efswrt.dll
[2016.10.12 09:27:05 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dialclient.dll
[2016.10.12 09:27:03 | 002,682,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netshell.dll
[2016.10.12 09:27:02 | 002,390,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\smartscreen.exe
[2016.10.12 09:27:02 | 001,107,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aadtb.dll
[2016.10.12 09:27:02 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\apprepsync.dll
[2016.10.12 09:27:02 | 000,237,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Diagnostics.dll
[2016.10.12 09:27:02 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\apprepapi.dll
[2016.10.12 09:27:01 | 001,456,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2016.10.12 09:27:01 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2016.10.12 09:27:01 | 000,064,352 | ---- | C] (Avago Technologies) -- C:\WINDOWS\SysNative\drivers\MegaSas2i.sys
[2016.10.12 09:27:00 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\credprovs.dll
[2016.10.12 09:27:00 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adsmsext.dll
[2016.10.12 09:27:00 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offreg.dll
[2016.10.12 09:26:59 | 000,858,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EmailApis.dll
[2016.10.12 09:26:59 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ContactApis.dll
[2016.10.12 09:26:59 | 000,765,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Sensors.dll
[2016.10.12 09:26:59 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppointmentApis.dll
[2016.10.12 09:26:59 | 000,661,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WpcWebFilter.dll
[2016.10.12 09:26:59 | 000,651,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.AllJoyn.dll
[2016.10.12 09:26:59 | 000,640,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MCRecvSrc.dll
[2016.10.12 09:26:59 | 000,590,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\efswrt.dll
[2016.10.12 09:26:59 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataAccountApis.dll
[2016.10.12 09:26:59 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dialclient.dll
[2016.10.12 09:26:59 | 000,146,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostCommon.dll
[2016.10.12 09:26:58 | 002,646,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CertEnroll.dll
[2016.10.12 09:26:58 | 001,859,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll
[2016.10.12 09:26:58 | 001,255,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AzureSettingSyncProvider.dll
[2016.10.12 09:26:58 | 000,567,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ChatApis.dll
[2016.10.12 09:26:58 | 000,360,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2016.10.12 09:26:57 | 001,430,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
[2016.10.12 09:26:55 | 000,945,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebFilter.dll
[2016.10.12 09:26:49 | 002,213,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KernelBase.dll
[2016.10.12 09:26:49 | 000,980,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll
[2016.10.12 09:26:47 | 000,774,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.dll
[2016.10.12 09:26:47 | 000,561,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Wallet.dll
[2016.10.12 09:26:46 | 003,369,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepository.dll
[2016.10.12 09:26:46 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Http.dll
[2016.10.12 09:26:46 | 000,924,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll
[2016.10.12 09:26:46 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2016.10.12 09:26:46 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryClient.dll
[2016.10.12 09:26:45 | 000,998,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWorkspace.dll
[2016.10.12 09:26:45 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIRibbonRes.dll
[2016.10.12 09:26:45 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIRibbonRes.dll
[2016.10.12 09:26:45 | 000,379,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apprepsync.dll
[2016.10.12 09:26:44 | 001,013,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.Http.dll
[2016.10.12 09:26:44 | 000,775,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GamePanel.exe
[2016.10.12 09:26:44 | 000,598,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.dll
[2016.10.12 09:26:44 | 000,241,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHost.dll
[2016.10.12 09:26:44 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.HostName.dll
[2016.10.12 09:26:44 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apprepapi.dll
[2016.10.12 09:26:44 | 000,116,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudExperienceHostCommon.dll
[2016.10.12 09:26:44 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.ServiceDiscovery.Dnssd.dll
[2016.10.12 09:26:43 | 001,360,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2016.10.12 09:26:43 | 001,112,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxPackaging.dll
[2016.10.12 09:26:43 | 001,022,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxPackaging.dll
[2016.10.12 09:26:43 | 000,128,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tm.sys
[2016.10.12 09:26:43 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offreg.dll
[2016.10.12 09:26:43 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ConfigureExpandedStorage.dll
[2016.10.12 09:26:42 | 003,059,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2016.10.12 09:26:42 | 001,145,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EmailApis.dll
[2016.10.12 09:26:42 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.HostName.dll
[2016.10.12 09:26:41 | 001,071,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll
[2016.10.12 09:26:41 | 001,013,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContactApis.dll
[2016.10.12 09:26:41 | 000,936,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MCRecvSrc.dll
[2016.10.12 09:26:41 | 000,771,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppointmentApis.dll
[2016.10.12 09:26:41 | 000,748,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChatApis.dll
[2016.10.12 09:26:41 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryBroker.dll
[2016.10.12 09:26:40 | 006,664,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mspaint.exe
[2016.10.12 09:26:40 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryClient.dll
[2016.10.12 09:26:39 | 004,136,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepository.dll
[2016.10.12 09:26:39 | 000,833,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2016.10.12 09:26:39 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ShareHost.dll
[2016.10.12 09:26:37 | 001,908,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AzureSettingSyncProvider.dll
[2016.10.12 09:26:35 | 000,589,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Sensors.dll
[2016.10.12 09:26:34 | 001,656,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2016.10.12 09:26:34 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cloudAP.dll
[2016.10.12 09:26:34 | 000,279,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys
[2016.10.12 09:26:34 | 000,187,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys
[2016.10.12 09:26:34 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adsmsext.dll
[2016.10.12 07:36:44 | 000,000,000 | ---D | C] -- C:\Users\Empedokles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2015 Tools for Unity
[2016.10.12 07:36:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity
[2016.10.12 07:26:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 5.4.1f1 (64-bit)
[2016.06.03 21:08:11 | 711,128,869 | ---- | C] (Quixel                                                      ) -- C:\Users\Empedokles\AppData\Roaming\Quixel_SUITE_2.2.0_Patch.exe
[2015.12.31 13:31:22 | 272,370,954 | ---- | C] (Quixel                                                      ) -- C:\Users\Empedokles\AppData\Roaming\setup.exe
[2 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ]
[1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2016.11.10 11:28:06 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Empedokles\Desktop\OTL.exe
[2016.11.10 10:34:28 | 003,122,050 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2016.11.10 10:34:28 | 001,316,286 | ---- | M] () -- C:\WINDOWS\SysNative\perfh007.dat
[2016.11.10 10:34:28 | 001,059,388 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2016.11.10 10:34:28 | 000,374,502 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2016.11.10 10:34:28 | 000,342,178 | ---- | M] () -- C:\WINDOWS\SysNative\perfc007.dat
[2016.11.10 10:34:20 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Path.idx
[2016.11.10 10:30:10 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2016.11.10 10:29:16 | 001,048,576 | ---- | M] () -- C:\WINDOWS\PE_Rom.dll
[2016.11.10 10:28:27 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2016.11.10 10:28:02 | 1676,754,938 | -HS- | M] () -- C:\hiberfil.sys
[2016.11.10 10:26:27 | 000,000,085 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2016.11.10 09:31:10 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2016.11.10 07:54:18 | 004,928,456 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2016.11.09 07:06:41 | 000,001,240 | ---- | M] () -- C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job
[2016.11.09 07:06:41 | 000,001,236 | ---- | M] () -- C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job
[2016.11.03 16:09:03 | 000,466,098 | ---- | M] () -- C:\Users\Empedokles\Documents\Mudbox_subscription.jpg
[2016.11.03 08:15:21 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2016.11.02 17:27:28 | 000,452,616 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts
[2016.11.02 17:26:49 | 000,000,030 | ---- | M] () -- C:\AVScanner.ini
[2016.11.02 13:01:41 | 000,315,744 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll
[2016.11.02 12:20:37 | 000,590,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2016.11.02 12:20:36 | 000,378,720 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll
[2016.11.02 12:15:35 | 001,051,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2016.11.02 12:15:33 | 000,894,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2016.11.02 12:14:00 | 007,816,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2016.11.02 12:13:51 | 001,354,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2016.11.02 12:13:51 | 001,173,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2016.11.02 12:13:47 | 001,883,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2016.11.02 12:13:43 | 000,773,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleaut32.dll
[2016.11.02 12:13:36 | 000,423,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifitask.exe
[2016.11.02 12:12:07 | 000,376,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\clfs.sys
[2016.11.02 12:08:52 | 000,576,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2016.11.02 12:08:43 | 000,186,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\weretw.dll
[2016.11.02 12:08:01 | 000,111,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupApi.dll
[2016.11.02 12:08:00 | 000,602,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupEngine.dll
[2016.11.02 12:05:53 | 006,657,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2016.11.02 12:05:50 | 003,892,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2016.11.02 12:05:40 | 000,951,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2016.11.02 12:04:36 | 004,312,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2016.11.02 12:04:08 | 002,678,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d10warp.dll
[2016.11.02 12:02:55 | 000,682,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2016.11.02 12:02:53 | 000,238,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\weretw.dll
[2016.11.02 12:02:31 | 000,848,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupEngine.dll
[2016.11.02 12:02:31 | 000,148,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupApi.dll
[2016.11.02 12:01:31 | 000,276,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\input.dll
[2016.11.02 12:01:30 | 001,415,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gdi32full.dll
[2016.11.02 12:01:28 | 000,545,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe
[2016.11.02 12:01:00 | 000,092,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpudd.dll
[2016.11.02 12:00:30 | 008,156,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll
[2016.11.02 12:00:22 | 004,130,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2016.11.02 12:00:17 | 001,061,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2016.11.02 12:00:17 | 000,534,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2016.11.02 12:00:06 | 001,274,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll
[2016.11.02 11:59:45 | 004,673,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2016.11.02 11:56:52 | 001,609,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d9.dll
[2016.11.02 11:56:50 | 000,322,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\input.dll
[2016.11.02 11:56:42 | 001,572,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32full.dll
[2016.11.02 11:56:39 | 000,628,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe
[2016.11.02 11:56:38 | 001,418,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2016.11.02 11:55:52 | 000,048,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\iorate.sys
[2016.11.02 11:50:35 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2016.11.02 11:49:47 | 000,037,376 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll
[2016.11.02 11:49:42 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32k.sys
[2016.11.02 11:49:10 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VSD3DWARP12Debug.dll
[2016.11.02 11:48:56 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\efsext.dll
[2016.11.02 11:48:03 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2016.11.02 11:47:36 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BcastDVRHelper.dll
[2016.11.02 11:47:26 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Shell.Search.UriHandler.dll
[2016.11.02 11:47:04 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.BlockedShutdown.dll
[2016.11.02 11:46:47 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wininetlui.dll
[2016.11.02 11:46:26 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppCapture.dll
[2016.11.02 11:46:10 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VSD3DWARPDebug.dll
[2016.11.02 11:45:49 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.BioFeedback.dll
[2016.11.02 11:45:17 | 000,492,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe
[2016.11.02 11:45:09 | 000,182,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsensorgroup.dll
[2016.11.02 11:44:50 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.LockScreen.dll
[2016.11.02 11:44:45 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe
[2016.11.02 11:44:34 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AuthExt.dll
[2016.11.02 11:43:53 | 000,557,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll
[2016.11.02 11:43:43 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FSClient.dll
[2016.11.02 11:43:42 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iepeers.dll
[2016.11.02 11:43:29 | 000,731,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d8.dll
[2016.11.02 11:42:55 | 000,549,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActionCenterCPL.dll
[2016.11.02 11:42:48 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgentUserBroker.exe
[2016.11.02 11:42:44 | 000,306,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieproxy.dll
[2016.11.02 11:42:35 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.HumanInterfaceDevice.dll
[2016.11.02 11:42:32 | 000,866,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Cred.dll
[2016.11.02 11:42:22 | 000,506,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DevicePairing.dll
[2016.11.02 11:42:19 | 000,632,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sud.dll
[2016.11.02 11:41:26 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2016.11.02 11:40:36 | 000,896,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontext.dll
[2016.11.02 11:40:34 | 000,198,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\indexeddbserver.dll
[2016.11.02 11:39:53 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAnimation.dll
[2016.11.02 11:39:06 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppBroker.dll
[2016.11.02 11:38:52 | 000,760,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\appwiz.cpl
[2016.11.02 11:38:35 | 022,563,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2016.11.02 11:37:46 | 019,415,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2016.11.02 11:37:08 | 000,299,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpinit.exe
[2016.11.02 11:36:53 | 000,415,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpshell.exe
[2016.11.02 11:36:34 | 007,626,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2016.11.02 11:36:05 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ErrorDetailsUpdate.dll
[2016.11.02 11:35:13 | 000,336,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msinfo32.exe
[2016.11.02 11:34:44 | 000,327,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-system-events.dll
[2016.11.02 11:34:23 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe
[2016.11.02 11:33:48 | 003,307,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2016.11.02 11:33:31 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VSD3DWARP12Debug.dll
[2016.11.02 11:33:04 | 012,349,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll
[2016.11.02 11:32:56 | 000,045,056 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll
[2016.11.02 11:32:53 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\efsext.dll
[2016.11.02 11:31:43 | 000,198,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BcastDVRHelper.dll
[2016.11.02 11:31:33 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininetlui.dll
[2016.11.02 11:31:24 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browserbroker.dll
[2016.11.02 11:31:21 | 000,170,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppCapture.dll
[2016.11.02 11:31:16 | 001,228,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usercpl.dll
[2016.11.02 11:31:14 | 003,196,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cdp.dll
[2016.11.02 11:31:13 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcTok.exe
[2016.11.02 11:31:09 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ACPBackgroundManagerPolicy.dll
[2016.11.02 11:30:59 | 000,134,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ErrorDetails.dll
[2016.11.02 11:30:54 | 000,363,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.BioFeedback.dll
[2016.11.02 11:30:51 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VSD3DWARPDebug.dll
[2016.11.02 11:30:47 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dab.dll
[2016.11.02 11:30:42 | 000,567,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairing.dll
[2016.11.02 11:30:35 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FlightSettings.dll
[2016.11.02 11:30:21 | 004,977,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d12warp.dll
[2016.11.02 11:30:16 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Shell.Search.UriHandler.dll
[2016.11.02 11:30:10 | 000,321,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PsmServiceExtHost.dll
[2016.11.02 11:30:06 | 009,131,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2016.11.02 11:29:58 | 000,211,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe
[2016.11.02 11:29:46 | 000,314,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FSClient.dll
[2016.11.02 11:29:41 | 001,247,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Globalization.dll
[2016.11.02 11:29:37 | 000,418,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.BlockedShutdown.dll
[2016.11.02 11:29:37 | 000,336,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkBindingEngineMigPlugin.dll
[2016.11.02 11:29:36 | 000,276,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2016.11.02 11:29:31 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsensorgroup.dll
[2016.11.02 11:29:29 | 007,469,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2016.11.02 11:29:16 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iepeers.dll
[2016.11.02 11:29:14 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NPSM.dll
[2016.11.02 11:28:56 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionCenterCPL.dll
[2016.11.02 11:28:56 | 000,240,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkDesktopSettings.dll
[2016.11.02 11:28:54 | 000,748,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll
[2016.11.02 11:28:51 | 000,321,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkUXBroker.dll
[2016.11.02 11:28:46 | 000,690,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieproxy.dll
[2016.11.02 11:28:44 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.HumanInterfaceDevice.dll
[2016.11.02 11:28:41 | 000,109,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\chartv.dll
[2016.11.02 11:28:39 | 000,807,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Security.Authentication.OnlineId.dll
[2016.11.02 11:28:38 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.LockScreen.dll
[2016.11.02 11:28:34 | 000,260,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgentUserBroker.exe
[2016.11.02 11:28:32 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2016.11.02 11:28:27 | 000,411,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCenter.dll
[2016.11.02 11:28:18 | 006,044,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2016.11.02 11:28:06 | 000,432,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpAXHolder.dll
[2016.11.02 11:28:02 | 000,252,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ubpm.dll
[2016.11.02 11:28:02 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IdCtrls.dll
[2016.11.02 11:28:01 | 004,423,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll
[2016.11.02 11:27:47 | 002,458,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\themecpl.dll
[2016.11.02 11:27:43 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\hgcpl.dll
[2016.11.02 11:27:26 | 000,631,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WlanMediaManager.dll
[2016.11.02 11:27:22 | 000,422,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.dll
[2016.11.02 11:27:19 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\indexeddbserver.dll
[2016.11.02 11:27:09 | 000,545,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\timedate.cpl
[2016.11.02 11:27:09 | 000,495,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DataSenseHandlers.dll
[2016.11.02 11:27:07 | 000,605,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe
[2016.11.02 11:27:01 | 001,388,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Cred.dll
[2016.11.02 11:26:59 | 000,278,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netplwiz.dll
[2016.11.02 11:26:54 | 000,388,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\zipfldr.dll
[2016.11.02 11:26:50 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll
[2016.11.02 11:26:49 | 000,579,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ddraw.dll
[2016.11.02 11:26:47 | 000,273,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAnimation.dll
[2016.11.02 11:26:42 | 002,484,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gameux.dll
[2016.11.02 11:26:26 | 000,712,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Search.dll
[2016.11.02 11:26:20 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2016.11.02 11:26:16 | 002,747,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdpcore.dll
[2016.11.02 11:26:01 | 000,798,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2016.11.02 11:25:54 | 000,956,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.desktop.dll
[2016.11.02 11:25:50 | 002,998,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32kfull.sys
[2016.11.02 11:25:34 | 001,556,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll
[2016.11.02 11:25:13 | 000,496,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.UserAccountsHandlers.dll
[2016.11.02 11:25:12 | 000,655,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sud.dll
[2016.11.02 11:24:59 | 000,940,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontext.dll
[2016.11.02 11:24:55 | 003,778,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2016.11.02 11:23:53 | 002,104,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidsvc.dll
[2016.11.02 11:23:43 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GlobCollationHost.dll
[2016.11.02 11:23:38 | 003,106,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstsc.exe
[2016.11.02 11:23:27 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ErrorDetailsUpdate.dll
[2016.11.02 11:22:53 | 000,369,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msinfo32.exe
[2016.11.02 11:22:51 | 013,441,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll
[2016.11.02 11:22:16 | 004,749,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2016.11.02 11:22:02 | 000,337,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2016.11.02 11:21:02 | 005,111,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdp.dll
[2016.11.02 11:20:27 | 000,167,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ErrorDetails.dll
[2016.11.02 11:20:05 | 002,273,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2016.11.02 11:19:46 | 006,582,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d12warp.dll
[2016.11.02 11:19:44 | 000,805,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FrameServer.dll
[2016.11.02 11:19:37 | 001,586,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Globalization.dll
[2016.11.02 11:19:37 | 000,981,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.OnlineId.dll
[2016.11.02 11:19:37 | 000,154,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NPSM.dll
[2016.11.02 11:19:27 | 008,127,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2016.11.02 11:19:20 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\chartv.dll
[2016.11.02 11:19:10 | 008,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2016.11.02 11:18:47 | 000,836,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcRefreshTask.dll
[2016.11.02 11:18:17 | 000,991,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comdlg32.dll
[2016.11.02 11:18:09 | 001,690,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.onecore.dll
[2016.11.02 11:18:08 | 000,779,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cscui.dll
[2016.11.02 11:18:03 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shdocvw.dll
[2016.11.02 11:17:44 | 000,909,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll
[2016.11.02 11:17:40 | 000,828,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appwiz.cpl
[2016.11.02 11:17:09 | 004,746,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2016.11.02 11:17:02 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stobject.dll
[2016.11.02 11:16:56 | 000,579,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppBroker.dll
[2016.11.02 11:16:52 | 003,133,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcore.dll
[2016.11.02 11:16:50 | 004,148,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll
[2016.11.02 11:16:47 | 000,265,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll
[2016.11.02 11:16:46 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hgcpl.dll
[2016.11.02 11:16:33 | 003,400,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncCenter.dll
[2016.11.02 11:16:27 | 000,770,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2016.11.02 11:16:26 | 001,490,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2016.11.02 11:16:25 | 002,512,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\themecpl.dll
[2016.11.02 11:16:24 | 001,359,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usercpl.dll
[2016.11.02 11:16:23 | 000,881,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2016.11.02 11:16:08 | 000,308,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionCenter.dll
[2016.11.02 11:16:07 | 001,637,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2016.11.02 11:15:59 | 001,348,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll
[2016.11.02 11:15:52 | 004,708,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll
[2016.11.02 11:15:43 | 000,842,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntshrui.dll
[2016.11.02 11:15:42 | 002,611,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gameux.dll
[2016.11.02 11:15:42 | 000,483,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.dll
[2016.11.02 11:15:21 | 003,616,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2016.11.02 11:15:00 | 001,513,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2016.11.02 11:14:58 | 001,726,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll
[2016.11.02 11:13:52 | 003,299,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstsc.exe
[2016.11.02 11:13:21 | 000,322,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GlobCollationHost.dll
[2016.11.02 09:20:41 | 000,446,896 | ---- | M] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2016.11.02 07:36:56 | 000,000,706 | ---- | M] () -- C:\WINDOWS\tasks\G2MUploadTask-S-1-5-21-3273162211-399058008-1779351911-1001.job
[2016.11.02 07:36:56 | 000,000,610 | ---- | M] () -- C:\WINDOWS\tasks\G2MUpdateTask-S-1-5-21-3273162211-399058008-1779351911-1001.job
[2016.10.30 08:37:20 | 000,028,479 | ---- | M] () -- C:\Users\Empedokles\Documents\zensuriert.odt
[2016.10.29 00:56:11 | 000,828,408 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2016.10.29 00:56:11 | 000,176,632 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2016.10.28 09:53:58 | 000,015,425 | ---- | M] () -- C:\WINDOWS\SysNative\OEMDefaultAssociations.xml
[2016.10.28 09:46:38 | 000,001,809 | ---- | M] () -- C:\Users\Public\Desktop\UVLayout v2 Pro.lnk
[2016.10.28 09:45:01 | 000,000,863 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016.10.25 16:18:58 | 000,001,076 | ---- | M] () -- C:\Users\Empedokles\Desktop\Electrum.lnk
[2016.10.25 07:54:34 | 000,002,324 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2016.10.24 14:06:26 | 000,041,576 | ---- | M] (Dropbox, Inc.) -- C:\WINDOWS\SysNative\DbxSvc.exe
[2016.10.24 14:06:10 | 000,075,888 | ---- | M] (Dropbox, Inc.) -- C:\WINDOWS\SysNative\drivers\dbx-stable.sys
[2016.10.24 14:06:10 | 000,075,888 | ---- | M] (Dropbox, Inc.) -- C:\WINDOWS\SysNative\drivers\dbx-dev.sys
[2016.10.24 14:06:10 | 000,075,888 | ---- | M] (Dropbox, Inc.) -- C:\WINDOWS\SysNative\drivers\dbx-canary.sys
[2016.10.20 10:07:12 | 000,110,144 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-64.dll
[2016.10.20 10:07:12 | 000,110,144 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysNative\WindowsAccessBridge-64.dll
[2016.10.20 10:06:54 | 000,097,856 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll
[2016.10.15 05:51:31 | 002,186,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hevcdecoder.dll
[2016.10.15 05:51:24 | 001,637,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll
[2016.10.15 05:51:24 | 001,235,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2016.10.15 05:51:23 | 000,595,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2016.10.15 05:51:23 | 000,584,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2016.10.15 05:51:23 | 000,322,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\invagent.dll
[2016.10.15 05:51:23 | 000,232,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2016.10.15 05:51:23 | 000,137,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll
[2016.10.15 05:51:23 | 000,078,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CompatTelRunner.exe
[2016.10.15 05:51:17 | 000,283,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCensus.exe
[2016.10.15 05:48:59 | 000,498,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DolbyDecMFT.dll
[2016.10.15 05:43:55 | 001,356,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipUp.exe
[2016.10.15 05:38:52 | 000,409,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2016.10.15 05:37:01 | 000,063,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys
[2016.10.15 05:34:46 | 001,969,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\hevcdecoder.dll
[2016.10.15 05:33:21 | 000,455,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DolbyDecMFT.dll
[2016.10.15 05:31:50 | 002,827,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2016.10.15 05:31:48 | 000,402,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2016.10.15 05:31:43 | 000,658,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys
[2016.10.15 05:30:17 | 000,509,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys
[2016.10.15 05:30:16 | 000,557,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\spaceport.sys
[2016.10.15 05:30:16 | 000,341,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll
[2016.10.15 05:30:06 | 001,851,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\crypt32.dll
[2016.10.15 05:29:46 | 002,913,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2016.10.15 05:29:45 | 000,079,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\crashdmp.sys
[2016.10.15 05:29:44 | 001,267,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2016.10.15 05:29:43 | 000,908,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvstore.dll
[2016.10.15 05:26:59 | 001,694,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll
[2016.10.15 05:26:56 | 001,472,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2016.10.15 05:26:56 | 000,691,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvproc.dll
[2016.10.15 05:26:52 | 001,990,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2016.10.15 05:26:52 | 000,811,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll
[2016.10.15 05:26:16 | 000,160,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostBroker.dll
[2016.10.15 05:26:03 | 001,600,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppobjs.dll
[2016.10.15 05:25:52 | 000,742,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppwinob.dll
[2016.10.15 05:25:51 | 000,882,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditionUpgradeManagerObj.dll
[2016.10.15 05:22:35 | 001,461,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2016.10.15 05:21:33 | 000,292,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpeffects.dll
[2016.10.15 05:20:49 | 002,276,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2016.10.15 05:18:09 | 000,846,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2016.10.15 05:18:06 | 000,749,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drvstore.dll
[2016.10.15 05:18:01 | 002,166,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2016.10.15 05:15:48 | 001,853,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2016.10.15 05:15:46 | 001,557,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll
[2016.10.15 05:15:46 | 000,687,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvproc.dll
[2016.10.15 05:15:45 | 001,123,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2016.10.15 05:10:07 | 000,254,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmpeffects.dll
[2016.10.15 05:06:09 | 005,685,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Data.Pdf.dll
[2016.10.15 05:05:48 | 007,216,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Data.Pdf.dll
[2016.10.15 05:01:00 | 001,631,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Resources.dll
[2016.10.15 05:00:40 | 001,631,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Resources.dll
[2016.10.15 05:00:30 | 000,323,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.pcshell.dll
[2016.10.15 05:00:11 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2016.10.15 05:00:03 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\stdole2.tlb
[2016.10.15 04:59:51 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stdole2.tlb
[2016.10.15 04:59:49 | 000,187,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfksproxy.dll
[2016.10.15 04:59:22 | 000,272,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfksproxy.dll
[2016.10.15 04:59:08 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\splwow64.exe
[2016.10.15 04:58:34 | 000,258,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xboxgip.sys
[2016.10.15 04:57:46 | 000,186,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe
[2016.10.15 04:57:40 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmpdxm.dll
[2016.10.15 04:57:40 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dtdump.exe
[2016.10.15 04:57:02 | 000,217,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpdxm.dll
[2016.10.15 04:56:51 | 000,306,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\esentutl.exe
[2016.10.15 04:56:49 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HttpsDataSource.dll
[2016.10.15 04:56:41 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OnDemandConnRouteHelper.dll
[2016.10.15 04:56:32 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSrvPolicyManager.dll
[2016.10.15 04:56:15 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.WiFi.dll
[2016.10.15 04:56:14 | 000,339,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\esentutl.exe
[2016.10.15 04:56:14 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll
[2016.10.15 04:56:07 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BthRadioMedia.dll
[2016.10.15 04:56:06 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BluetoothApis.dll
[2016.10.15 04:56:05 | 000,327,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\daxexec.dll
[2016.10.15 04:56:05 | 000,120,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BluetoothApis.dll
[2016.10.15 04:55:50 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidclass.sys
[2016.10.15 04:55:44 | 000,329,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wc_storage.dll
[2016.10.15 04:55:33 | 000,142,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.WiFi.dll
[2016.10.15 04:55:24 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpshell.dll
[2016.10.15 04:55:23 | 000,265,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcore6.dll
[2016.10.15 04:55:07 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Flights.dll
[2016.10.15 04:54:55 | 000,717,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskbarcpl.dll
[2016.10.15 04:54:51 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmpshell.dll
[2016.10.15 04:54:23 | 000,217,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairingFolder.dll
[2016.10.15 04:54:21 | 000,463,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\daxexec.dll
[2016.10.15 04:54:18 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autoplay.dll
[2016.10.15 04:54:17 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TpmTasks.dll
[2016.10.15 04:54:07 | 000,241,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2016.10.15 04:54:00 | 000,410,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SndVolSSO.dll
[2016.10.15 04:53:38 | 000,313,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshostcore.dll
[2016.10.15 04:53:01 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winsrv.dll
[2016.10.15 04:52:51 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\systemcpl.dll
[2016.10.15 04:52:40 | 000,339,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdpusersvc.dll
[2016.10.15 04:52:13 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll
[2016.10.15 04:52:12 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autoplay.dll
[2016.10.15 04:52:10 | 006,285,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2016.10.15 04:52:08 | 000,410,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdpsvc.dll
[2016.10.15 04:51:47 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dhcpcore6.dll
[2016.10.15 04:51:29 | 000,429,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SndVolSSO.dll
[2016.10.15 04:51:15 | 013,868,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2016.10.15 04:50:54 | 017,188,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2016.10.15 04:50:37 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\updatepolicy.dll
[2016.10.15 04:50:36 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\updatepolicy.dll
[2016.10.15 04:50:21 | 000,310,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2016.10.15 04:50:20 | 000,438,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDec.dll
[2016.10.15 04:50:12 | 000,509,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Bluetooth.dll
[2016.10.15 04:49:19 | 001,913,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsp_fs.dll
[2016.10.15 04:49:09 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSManHTTPConfig.exe
[2016.10.15 04:49:04 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSManHTTPConfig.exe
[2016.10.15 04:49:02 | 000,838,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JpMapControl.dll
[2016.10.15 04:49:01 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAppInstaller.exe
[2016.10.15 04:48:56 | 001,554,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsp_health.dll
[2016.10.15 04:48:01 | 001,323,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsp_fs.dll
[2016.10.15 04:47:56 | 004,612,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2016.10.15 04:47:52 | 000,720,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.BackgroundMediaPlayback.dll
[2016.10.15 04:47:49 | 001,113,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsp_health.dll
[2016.10.15 04:47:48 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnprv.dll
[2016.10.15 04:47:40 | 007,792,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll
[2016.10.15 04:47:39 | 002,211,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d12SDKLayers.dll
[2016.10.15 04:46:42 | 000,471,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.BackgroundMediaPlayback.dll
[2016.10.15 04:46:18 | 003,287,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mispace.dll
[2016.10.15 04:46:14 | 000,718,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Playback.BackgroundMediaPlayer.dll
[2016.10.15 04:45:53 | 001,790,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationFramework.dll
[2016.10.15 04:45:28 | 000,702,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Playback.MediaPlayer.dll
[2016.10.15 04:45:06 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2016.10.15 04:44:36 | 000,470,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Playback.BackgroundMediaPlayer.dll
[2016.10.15 04:44:20 | 000,747,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RemoteNaturalLanguage.dll
[2016.10.15 04:44:09 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\powercfg.exe
[2016.10.15 04:43:41 | 002,748,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mispace.dll
[2016.10.15 04:43:35 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iscsiwmi.dll
[2016.10.15 04:43:16 | 001,365,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2016.10.15 04:43:15 | 000,574,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\energy.dll
[2016.10.15 04:42:59 | 000,459,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Playback.MediaPlayer.dll
[2016.10.15 04:42:44 | 000,539,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usocore.dll
[2016.10.15 04:42:21 | 000,467,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Geolocation.dll
[2016.10.15 04:42:16 | 006,108,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll
[2016.10.15 04:42:02 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\powercfg.exe
[2016.10.15 04:41:58 | 005,376,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll
[2016.10.15 04:41:55 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditionUpgradeHelper.dll
[2016.10.15 04:41:29 | 007,654,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll
[2016.10.15 04:41:28 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iscsiwmi.dll
[2016.10.15 04:39:57 | 000,357,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Geolocation.dll
[2016.10.15 04:39:56 | 000,631,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationController.dll
[2016.10.15 04:39:45 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JpMapControl.dll
[2016.10.15 04:39:40 | 000,869,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2016.10.15 04:39:35 | 004,474,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_47.dll
[2016.10.15 04:39:26 | 001,005,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3D12.dll
[2016.10.15 04:39:08 | 000,806,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3D12.dll
[2016.10.15 04:38:59 | 002,781,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d12SDKLayers.dll
[2016.10.15 04:38:41 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.dll
[2016.10.15 04:38:10 | 000,913,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.dll
[2016.10.15 04:38:01 | 001,993,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2016.10.15 04:37:58 | 001,029,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll
[2016.10.15 04:37:52 | 001,643,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll
[2016.10.15 04:37:49 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cmifw.dll
[2016.10.15 04:37:47 | 003,733,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_47.dll
[2016.10.15 04:37:46 | 000,709,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CPFilters.dll
[2016.10.15 04:37:37 | 000,715,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlCore.dll
[2016.10.15 04:37:03 | 001,980,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diagtrack.dll
[2016.10.15 04:36:59 | 000,673,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe
[2016.10.15 04:36:56 | 002,290,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2016.10.15 04:36:55 | 001,170,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll
[2016.10.15 04:36:46 | 000,542,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll
[2016.10.15 04:36:46 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Display.dll
[2016.10.15 04:36:27 | 000,983,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemoteNaturalLanguage.dll
[2016.10.15 04:36:19 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cmifw.dll
[2016.10.15 04:36:14 | 000,338,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcpl.dll
[2016.10.15 04:35:59 | 000,760,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NMAA.dll
[2016.10.15 04:35:36 | 000,701,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll
[2016.10.15 04:35:18 | 002,708,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\esent.dll
[2016.10.15 04:35:15 | 003,054,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\esent.dll
[2016.10.15 04:35:08 | 000,905,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll
[2016.10.15 04:35:02 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuuhext.dll
[2016.10.15 04:34:54 | 002,476,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWrite.dll
[2016.10.15 04:34:49 | 000,936,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NMAA.dll
[2016.10.15 04:32:24 | 000,886,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CPFilters.dll
[2016.10.15 04:31:37 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys
[2016.10.12 09:13:45 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.Diagnostics.dll
[2016.10.12 09:13:41 | 000,783,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TSWorkspace.dll
[2016.10.12 07:26:32 | 000,000,785 | ---- | M] () -- C:\Users\Public\Desktop\Unity 5.4.1f1 (64-bit).lnk
[2016.10.11 12:18:55 | 000,001,136 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2016.10.11 12:18:55 | 000,001,132 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ]
[1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2016.11.09 07:31:45 | 000,446,896 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2016.11.03 16:08:58 | 000,466,098 | ---- | C] () -- C:\Users\Empedokles\Documents\Mudbox_subscription.jpg
[2016.10.28 09:46:38 | 000,001,809 | ---- | C] () -- C:\Users\Public\Desktop\UVLayout v2 Pro.lnk
[2016.10.25 16:18:58 | 000,001,076 | ---- | C] () -- C:\Users\Empedokles\Desktop\Electrum.lnk
[2016.10.18 07:13:20 | 000,000,030 | ---- | C] () -- C:\AVScanner.ini
[2016.10.12 07:26:32 | 000,000,785 | ---- | C] () -- C:\Users\Public\Desktop\Unity 5.4.1f1 (64-bit).lnk
[2016.10.09 08:00:19 | 000,065,536 | ---- | C] () -- C:\WINDOWS\SysWow64\eztw32.dll
[2016.10.04 16:01:41 | 000,265,728 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.Perception.Stub.dll
[2016.10.04 16:01:28 | 002,048,496 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2016.10.04 06:30:26 | 001,523,906 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2016.10.04 06:24:39 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2016.10.04 06:24:35 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2016.10.04 06:24:17 | 000,015,232 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\AsIO.sys
[2016.08.19 06:50:56 | 000,129,824 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkan-1.dll
[2016.08.19 06:50:56 | 000,040,224 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkaninfo.exe
[2016.08.19 06:49:29 | 035,182,648 | ---- | C] () -- C:\WINDOWS\SysWow64\nvcompiler.dll
[2016.08.19 06:49:29 | 008,644,456 | ---- | C] () -- C:\WINDOWS\SysWow64\nvptxJitCompiler.dll
[2016.08.19 06:49:29 | 000,584,712 | ---- | C] () -- C:\WINDOWS\SysWow64\nvfatbinaryLoader.dll
[2016.07.16 12:47:57 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2016.07.16 12:47:57 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2016.07.16 12:43:04 | 000,055,296 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2016.07.16 12:43:00 | 000,019,968 | ---- | C] () -- C:\WINDOWS\SysWow64\GamePanelExternalHook.dll
[2016.07.16 12:42:55 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2016.07.16 12:42:53 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2016.07.16 12:42:49 | 000,304,640 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll
[2016.07.16 12:42:48 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2016.07.16 12:42:43 | 000,002,307 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2016.07.16 12:42:12 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2016.06.04 14:46:45 | 000,002,754 | ---- | C] () -- C:\Users\Empedokles\coffeelint.json
[2016.06.04 14:46:45 | 000,001,803 | ---- | C] () -- C:\Users\Empedokles\tslint.json
[2016.06.04 14:46:45 | 000,001,506 | ---- | C] () -- C:\Users\Empedokles\.eslintrc
[2016.06.04 14:46:45 | 000,001,002 | ---- | C] () -- C:\Users\Empedokles\.csslintrc
[2016.06.04 14:27:22 | 008,388,608 | ---- | C] () -- C:\Users\Empedokles\AzureStorageEmulatorDb44_log.ldf
[2016.06.04 14:27:22 | 008,388,608 | ---- | C] () -- C:\Users\Empedokles\AzureStorageEmulatorDb44.mdf
[2016.05.04 03:23:30 | 000,129,824 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkan-1-1-0-11-1.dll
[2016.05.04 03:22:58 | 000,040,224 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkaninfo-1-1-0-11-1.exe
[2016.04.02 17:06:27 | 000,189,248 | ---- | C] () -- C:\WINDOWS\SysWow64\PnkBstrB.exe
[2016.04.02 17:06:27 | 000,075,136 | ---- | C] () -- C:\WINDOWS\SysWow64\PnkBstrA.exe
[2016.04.02 10:26:15 | 004,168,704 | ---- | C] () -- C:\WINDOWS\SysWow64\PhotoLooksRenderer.dll
[2016.03.08 14:45:50 | 001,336,144 | ---- | C] () -- C:\WINDOWS\SysWow64\esteidcm.dll
[2016.02.01 22:32:27 | 000,151,552 | ---- | C] () -- C:\WINDOWS\SysWow64\nvRegDev.dll
[2016.02.01 22:32:16 | 000,061,440 | ---- | C] () -- C:\WINDOWS\SysWow64\nvPhotoshopUtil.dll
[2016.02.01 22:32:16 | 000,040,960 | ---- | C] () -- C:\WINDOWS\SysWow64\nvISWOW64.dll
[2016.01.15 18:45:44 | 000,000,430 | ---- | C] () -- C:\Users\Empedokles\AppData\Roaming\DNGProfileManager
[2015.12.31 20:14:32 | 000,000,022 | ---- | C] () -- C:\WINDOWS\GPU-Z.INI
[2015.12.14 09:37:35 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Master
[2015.12.14 09:37:35 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Pedal Hard
[2015.12.14 09:37:16 | 000,000,268 | RH-- | C] () -- C:\ProgramData\MediaFolder
[2015.12.14 09:37:16 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Mallets
[2015.12.14 09:37:16 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Percussion Kit
[2015.12.14 09:36:56 | 000,000,268 | RH-- | C] () -- C:\Users\Empedokles\AppData\Roaming\Organic
[2015.12.14 09:36:56 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLeo.DAT
[2015.12.14 09:36:56 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Profiles
[2015.12.14 09:36:56 | 000,000,012 | RH-- | C] () -- C:\ProgramData\PPD Plugins
[2015.12.14 09:34:10 | 000,000,000 | ---- | C] () -- C:\ProgramData\Kernel Extension
[2015.12.14 09:33:55 | 000,000,000 | ---- | C] () -- C:\ProgramData\MIDI Patch Names
[2015.12.14 09:33:54 | 000,000,000 | ---- | C] () -- C:\ProgramData\MIDI Devices
[2015.12.12 06:55:26 | 000,007,607 | ---- | C] () -- C:\Users\Empedokles\AppData\Local\Resmon.ResmonCfg
[2015.12.09 09:57:59 | 000,000,268 | RH-- | C] () -- C:\Users\Empedokles\AppData\Roaming\MIDI Patch Names
[2015.12.09 09:57:59 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLes.DAT
[2015.12.09 09:57:47 | 000,000,268 | RH-- | C] () -- C:\Users\Empedokles\AppData\Roaming\MIDI Drivers
[2015.12.09 09:57:47 | 000,000,268 | RH-- | C] () -- C:\Users\Empedokles\AppData\Roaming\Machines
[2015.12.09 09:57:47 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLev.DAT
[2015.12.09 09:57:47 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLet.DAT
[2015.09.27 06:59:52 | 000,000,132 | ---- | C] () -- C:\Users\Empedokles\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2015.09.27 06:36:06 | 000,000,132 | ---- | C] () -- C:\Users\Empedokles\AppData\Roaming\Adobe OpenEXR Format CS6 Prefs
[2015.07.30 09:30:51 | 000,000,085 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2015.07.21 16:45:44 | 000,021,840 | ---- | C] () -- C:\WINDOWS\SysWow64\SIntfNT.dll
[2015.07.21 16:45:44 | 000,017,212 | ---- | C] () -- C:\WINDOWS\SysWow64\SIntf32.dll
[2015.07.21 16:45:44 | 000,012,067 | ---- | C] () -- C:\WINDOWS\SysWow64\SIntf16.dll
[2015.07.21 16:25:40 | 000,031,804 | ---- | C] () -- C:\WINDOWS\DIIUnin.dat
[2015.06.21 17:19:05 | 000,000,132 | ---- | C] () -- C:\Users\Empedokles\AppData\Roaming\Adobe Targa Format CS6 Prefs
[2015.06.20 20:38:37 | 000,007,168 | ---- | C] () -- C:\Users\Empedokles\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2015.06.20 20:28:52 | 000,000,147 | RHS- | C] () -- C:\WINDOWS\MDPSET10.BIN
[2015.06.20 19:56:56 | 000,000,147 | RHS- | C] () -- C:\WINDOWS\ICSET50.BIN
[2015.06.20 19:33:38 | 000,000,147 | RHS- | C] () -- C:\WINDOWS\3DX5PIPEET.BIN
[2015.05.28 15:50:30 | 000,000,082 | ---- | C] () -- C:\WINDOWS\SysWow64\winsevr.dat
[2015.05.27 09:34:00 | 000,000,184 | ---- | C] () -- C:\WINDOWS\Lexstat.ini
[2015.05.27 09:33:50 | 001,224,704 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczserv.dll
[2015.05.27 09:33:50 | 000,991,232 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczusb1.dll
[2015.05.27 09:33:50 | 000,696,320 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczhbn3.dll
[2015.05.27 09:33:50 | 000,684,032 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczcomc.dll
[2015.05.27 09:33:50 | 000,643,072 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczpmui.dll
[2015.05.27 09:33:50 | 000,585,728 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczlmpm.dll
[2015.05.27 09:33:50 | 000,537,520 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczcoms.exe
[2015.05.27 09:33:50 | 000,421,888 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczcomm.dll
[2015.05.27 09:33:50 | 000,413,696 | ---- | C] () -- C:\WINDOWS\SysWow64\lxczutil.dll
[2015.05.27 09:33:50 | 000,413,696 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczinpa.dll
[2015.05.27 09:33:50 | 000,397,312 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxcziesc.dll
[2015.05.27 09:33:50 | 000,385,968 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczih.exe
[2015.05.27 09:33:50 | 000,381,872 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczcfg.exe
[2015.05.27 09:33:50 | 000,274,432 | ---- | C] () -- C:\WINDOWS\SysWow64\LXCZinst.dll
[2015.05.27 09:33:50 | 000,181,168 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczppls.exe
[2015.05.27 09:33:50 | 000,163,840 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczprox.dll
[2015.05.27 09:33:50 | 000,094,208 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lxczpplc.dll
[2015.05.26 18:41:50 | 000,001,131 | ---- | C] () -- C:\Users\Empedokles\{0B58B8BE-ECA4-40FE-BC61-189F9B1A2330}.dat
[2015.05.26 09:37:18 | 000,638,976 | ---- | C] () -- C:\WINDOWS\SysWow64\xvidcore.dll
[2015.05.26 09:37:18 | 000,235,520 | ---- | C] () -- C:\WINDOWS\SysWow64\xvidvfw.dll
[2015.05.21 21:03:16 | 000,004,624 | ---- | C] () -- C:\WINDOWS\SysWow64\IntelRemoteWakeAgent.ini
[2015.05.21 20:48:42 | 000,011,832 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\AsInsHelp64.sys
[2015.05.21 20:48:42 | 000,010,216 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\AsInsHelp32.sys
[2015.05.21 20:47:18 | 001,048,576 | ---- | C] () -- C:\WINDOWS\PE_Rom.dll
[2015.05.21 20:44:24 | 000,014,464 | R--- | C] () -- C:\WINDOWS\SysWow64\drivers\AsUpIO.sys
[2015.05.21 20:28:26 | 000,060,163 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2015.05.21 20:28:26 | 000,000,557 | ---- | C] () -- C:\WINDOWS\scd.ini
[2015.05.21 20:28:26 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Ascd_err.ini
[2015.05.21 20:24:57 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2015.05.21 20:24:56 | 000,044,184 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2015.05.21 20:24:55 | 000,010,296 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\ASUSHWIO.SYS
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2016.09.15 18:16:13 | 007,219,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2016.09.15 18:22:40 | 005,722,320 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2016.07.16 12:42:31 | 000,977,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2016.07.16 12:42:56 | 000,779,776 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2016.07.16 12:42:31 | 000,518,656 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2016.06.02 19:59:58 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Acronis
[2016.01.01 16:31:00 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Agisoft
[2015.05.22 16:01:17 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\ASUS HomeCloud
[2015.05.28 06:35:46 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\ASUS WebStorage
[2016.06.04 08:12:18 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Autodesk
[2015.05.25 05:34:46 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\awsRun
[2016.05.30 20:00:30 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Bioshock
[2016.04.12 17:47:24 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Bioshock2Steam
[2015.05.26 07:34:30 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\DAEMON Tools Pro
[2015.11.09 10:25:26 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\digidocpp
[2016.01.30 23:30:30 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Dropbox
[2016.07.19 13:41:51 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\DslrDashboard
[2015.05.26 14:50:59 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\e-academy Inc
[2016.10.25 16:19:49 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Electrum
[2015.05.26 06:31:13 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Ephere
[2016.02.28 11:04:06 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Exif Viewer
[2016.10.10 10:23:32 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\FileZilla
[2016.09.15 15:54:02 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\GardenGnomeSoftware
[2016.06.09 16:25:28 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Garmin
[2016.01.29 09:39:08 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Geomagic
[2016.04.10 10:47:31 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\HDRLabs
[2016.03.04 15:34:22 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\HDRsoft
[2015.05.26 13:54:36 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\ImgBurn
[2016.09.08 20:19:14 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\IrfanView
[2015.05.21 20:56:00 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\localdrive
[2016.01.19 08:52:24 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\ManCTL
[2015.06.23 21:03:01 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\MonoDevelop-Unity-4.0
[2015.12.09 10:21:27 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Nikon
[2016.06.04 16:32:00 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\NuGet
[2015.05.26 08:49:08 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\OpenOffice
[2015.10.05 11:25:36 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Opera Software
[2016.04.02 16:33:31 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Origin
[2016.04.06 10:33:50 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\PDAppFlex
[2016.01.10 17:14:57 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\PDF Architect 4
[2016.03.27 09:37:58 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Picturenaut
[2016.06.03 08:03:26 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\previewer
[2016.10.09 10:50:18 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\PTGui
[2016.04.02 17:06:24 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\PunkBuster
[2016.11.10 10:34:06 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\QuickScan
[2016.06.03 21:20:02 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Quixel SUITE
[2016.04.02 10:26:28 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Red Giant
[2016.10.13 07:37:59 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\RIA
[2015.06.12 13:11:27 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2015.06.23 21:02:59 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\stetic
[2015.05.23 12:55:28 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Thunderbird
[2016.06.03 21:08:14 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\TopoGun64
[2016.04.02 17:31:04 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Ubisoft
[2016.10.12 08:34:32 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Unity
[2015.05.24 21:30:17 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Unreal Engine
[2015.05.28 06:28:07 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\Wacom
[2015.05.25 07:19:29 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\wacomid-desktop-launcher
[2015.05.28 06:28:07 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1
[2015.05.25 05:28:21 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\WebStorage
[2016.09.06 09:35:28 | 000,000,000 | ---D | M] -- C:\Users\Empedokles\AppData\Roaming\X-Rite
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 220 bytes -> C:\Users\Empedokles\OneDrive:ms-properties

< End of report >

10.11.2016, 11:55

Gernot1

...neu hier

Themenstarter

Beiträge: 5

#2 Und das "Extras.txt" -file separat, weil das nicht mehr ins 1. Posting ging:

Code


OTL Extras logfile created on: 10.11.2016 11:30:03 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Empedokles\Desktop
64bit- Professional  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.14393.0)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
63,90 Gb Total Physical Memory | 59,86 Gb Available Physical Memory | 93,67% Memory free
91,40 Gb Paging File | 87,09 Gb Available in Paging File | 95,28% Paging File free
Paging file location(s): c:\pagefile.sys 0 0k:\pagefile.sy [Binary data over 200 bytes]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 446,35 Gb Total Space | 257,00 Gb Free Space | 57,58% Space Free | Partition Type: NTFS
Drive H: | 350,00 Mb Total Space | 61,63 Mb Free Space | 17,61% Space Free | Partition Type: NTFS
Drive I: | 3,92 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive J: | 222,79 Gb Total Space | 187,40 Gb Free Space | 84,12% Space Free | Partition Type: NTFS
Drive K: | 3725,90 Gb Total Space | 2231,32 Gb Free Space | 59,89% Space Free | Partition Type: NTFS
Drive L: | 3725,90 Gb Total Space | 3095,29 Gb Free Space | 83,08% Space Free | Partition Type: NTFS
Drive M: | 3726,01 Gb Total Space | 2027,32 Gb Free Space | 54,41% Space Free | Partition Type: NTFS
Drive O: | 2794,49 Gb Total Space | 714,99 Gb Free Space | 25,59% Space Free | Partition Type: NTFS
Drive P: | 1862,98 Gb Total Space | 919,20 Gb Free Space | 49,34% Space Free | Partition Type: NTFS
 
Computer Name: HYPERION | User Name: Empedokles | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [Bridge] -- K:\Programme\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location '%V' (Microsoft Corporation)
Directory [View as Image Eye index] -- C:\Program Files\Image Eye\Image Eye.exe -index "%1" (FMJ-Software)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [Bridge] -- K:\Programme\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location '%V' (Microsoft Corporation)
Directory [View as Image Eye index] -- C:\Program Files\Image Eye\Image Eye.exe -index "%1" (FMJ-Software)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 2D 11 0B 13 03 1E D2 01  [binary data]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" =  [binary data]
"DontEnumerateCommonFilesUpgradeExe" = 1
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
 
 
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{003C7003-ECEB-4DCE-AEDE-52C142F33E70}" = lport=5353 | protocol=6 | dir=in | name=polar rndis tcp in | 
"{3A2330D5-AFB6-46CA-8E77-936CDC983D43}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe | 
"{4D5C6DDE-9E9B-4D40-9363-63375297E6BC}" = lport=5353 | protocol=17 | dir=out | name=polar rndis udp out | 
"{6D862960-5B50-44FB-8F0A-D99025B67497}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{6E71CBED-3C3D-4293-8E7C-961111429EE5}" = lport=5353 | protocol=17 | dir=in | name=polar rndis udp in | 
"{749967C7-D7E9-4E3E-9301-F908CCC3D4C6}" = lport=35043 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{7CE2912C-89AC-4C03-ACDB-6ECBC25990B2}" = lport=5454 | protocol=6 | dir=in | name=x-rite device services | 
"{82892051-021F-435C-97B9-FDFF2278EDFE}" = lport=47998 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamuseragent.exe | 
"{84256B8E-C1FA-48FC-9498-8F09FA5069B7}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe | 
"{C121D88F-5233-454B-8D2A-AE2444FC7DFC}" = lport=47995 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{C1979E8B-EBCF-451F-A4FD-F88557EB57B4}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe | 
"{CF5DF42C-6FB1-4B0D-BBD5-FC2FAFDF20C3}" = lport=3702 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft visual studio 14.0\common7\ide\devenv.exe | 
"{D05B36C4-A0B5-4736-ACF3-FCD8E3245253}" = lport=1487 | protocol=6 | dir=in | name=cfos http mini-server tcp 1487 | 
"{DF7F7C85-D041-47CA-BD4C-40C663A4ADE0}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{E429AB5A-5A6B-485F-8358-992186880FA2}" = lport=5353 | protocol=6 | dir=out | name=polar rndis tcp out | 
 
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0146ED5F-C26F-4C9E-A8DE-3AB477C935F7}" = dir=in | name=@{microsoft.bingsports_4.16.17.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} | 
"{0419E238-CF7E-497B-A4AA-132224DC88CA}" = protocol=17 | dir=in | app=c:\windows\system32\lxczcoms.exe | 
"{063EA744-DB70-4924-BEF1-E972E1419AA2}" = dir=in | name=onenote | 
"{069A2734-FFB7-433A-924B-7A4F7AB69098}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe | 
"{0899D79A-4D16-4ACA-87EB-E98A418A0A7B}" = protocol=6 | dir=in | app=c:\program files\chaos group\v-ray\3dsmax 2017 for x64\vrlservice.exe | 
"{097DF79B-AC0E-4074-9442-4346286622A2}" = dir=in | name=@{microsoft.zunemusic_10.16092.10311.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} | 
"{0A3679A5-672A-48A2-93EF-259DEF3CB9D1}" = protocol=6 | dir=in | app=l:\games\steam\bin\steamwebhelper.exe | 
"{0D20916C-37E0-4D5A-87D5-A85DD0F443FA}" = dir=in | app=j:\programme\unity\editor\unity.exe | 
"{0DFAB2FE-30B6-42A1-8F3A-C3A0822F2833}" = dir=out | name=@{microsoft.skypeapp_11.9.251.0_x64__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/skypevideo_productname} | 
"{0F26C537-6FBE-458D-A9D1-577F2CD8CBF1}" = dir=in | name=@{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} | 
"{138B94BB-C257-4EDF-8FAD-7ACE3B0E2865}" = dir=in | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} | 
"{16BF9FF8-E2BD-40CD-8BF0-3B5FE93489C8}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.4.315_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} | 
"{180A3CB2-D392-4F2F-A0CF-99135598E0C5}" = protocol=17 | dir=in | app=c:\program files\chaos group\v-ray\3dsmax 2017 for x64\vrlservice.exe | 
"{1DD37826-BC9E-46C1-B524-383D98DC46A6}" = protocol=17 | dir=in | app=j:\programme\autodesk\3ds max 2015\nvidia\satellite\raysat_3dsmax2015_64server.exe | 
"{21AA9335-76DB-40E8-985E-B5D5986AD0E1}" = dir=in | name=@{microsoft.zunevideo_10.16092.10311.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} | 
"{22FF6319-4C64-465E-83B6-8435A3C39BAC}" = dir=in | name=@{microsoft.microsoftofficehub_17.7420.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} | 
"{2440BF11-0F2C-47B1-9DBA-75A791AC0B93}" = dir=in | app=c:\windows\system32\hasplms.exe | 
"{25DD2CAB-CFC1-4006-9D04-FE02FB0F9CBA}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} | 
"{292024A8-F9B3-4B4E-B8DB-2321C8060199}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} | 
"{29369709-8F7D-4F55-858D-ABEC150480EC}" = dir=out | name=@{microsoft.lockapp_10.0.14393.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} | 
"{2A124FBB-2447-481C-8CFB-FA10F26D0942}" = dir=out | name=candy crush soda saga | 
"{2B09726A-C8A4-4EBB-B701-421563F3F098}" = protocol=17 | dir=in | app=l:\games\dragon age\bin_ship\daorigins.exe | 
"{2CF07117-6D82-4A94-A919-6F7F6AE776B2}" = dir=out | name=twitter | 
"{2CF1086D-33BD-488F-8BD2-99DA56ED76AE}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\homecloud\media streamer\asus media streamer\dlna\dms\aodms.exe | 
"{2F5F4040-BE36-4088-A440-3B7BCCF79BA6}" = dir=out | name=onenote | 
"{31B80846-F602-45FF-9F1D-CBE4AB8C48A5}" = dir=out | name=skype | 
"{3318D210-4D68-4229-BBE4-D491FBE6036F}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\homecloud\media streamer\asus media streamer\amsrelayhelpagent.exe | 
"{33A6ED6C-1237-4453-8097-EB00D56BDA6A}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\homecloud\media streamer\asus media streamer\amsrelayhelpagent.exe | 
"{347D982F-7BB5-470F-B399-626B34CA6DFC}" = dir=out | name=@{microsoft.bingtravel_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} | 
"{359A87B5-405F-42C6-8FD7-AA50E9A78404}" = dir=out | name=@{microsoft.bingfinance_3.0.4.315_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} | 
"{37D53904-F741-4BD8-B004-1FA086DA7A10}" = protocol=17 | dir=in | app=l:\games\origin\mass effect 2\binaries\masseffect2.exe | 
"{396E6D0F-D67F-49BB-9016-46A4B5661BB9}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\homecloud\media streamer\asus media streamer\dlna\dms\aorelaydms.exe | 
"{39810AC1-89BE-47A1-9EE7-CF754DBB11F7}" = protocol=17 | dir=in | app=l:\games\origin\mass effect 3\binaries\win32\masseffect3.exe | 
"{39FCCC8C-9DF1-45B0-9924-D9CD21713C1B}" = dir=out | name=@{microsoft.windowsphone_10.1609.2561.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} | 
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn | 
"{42F0FC30-208D-4DD5-8B2C-AC5C52504B18}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\homecloud\media streamer\asus media streamer\dlna\dms\aorelaydms.exe | 
"{44DE4188-EF7E-43EF-B976-32B03774B081}" = dir=out | name=@{microsoft.microsoftofficehub_17.7420.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} | 
"{462E0CBA-E31B-4578-B4DC-D22240701745}" = dir=out | name=xbox | 
"{4638BDE3-E26E-4A39-9B10-CD6837186FD2}" = dir=out | name=@{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} | 
"{4704ADE0-D88A-4A90-8635-6F4162CA1870}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\homecloud\media streamer\mediastreamer.exe | 
"{475FA2D9-88B3-4EF9-8010-FD20DC00DC9D}" = protocol=6 | dir=in | app=c:\windows\syswow64\lxczcoms.exe | 
"{47718E5E-2C40-4A7B-9721-1F5D04E71D54}" = dir=out | name=store purchase app | 
"{4938AD51-A139-4043-A05F-F3F2C912417F}" = dir=in | app=c:\program files (x86)\dropbox\client\dropbox.exe | 
"{4BDF38E1-D581-41CA-89DE-A1AE9A235C13}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} | 
"{4E08FD6B-971E-40E1-B0E1-B774FDE8FC81}" = dir=in | app=j:\programme\keyshot5\bin\keyshot_daemon.exe | 
"{4F640FD2-29BB-4A66-BA87-8070E30DB383}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\homecloud\media streamer\asus media streamer\dlna\dmr\aodmr.exe | 
"{50F44322-BC6D-4594-8898-8E09AB8F3E57}" = dir=out | name=@{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} | 
"{518A22DA-978A-4E40-98EE-8BDEB8168BD6}" = dir=out | name=windows_ie_ac_001 | 
"{52E76D7E-EC1D-4735-B889-C267793E1B5E}" = dir=out | name=@{microsoft.bingsports_4.16.17.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} | 
"{5318ECE9-B5DE-4B33-9701-67395B067CEF}" = dir=out | name=@{microsoft.messaging_3.19.1001.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} | 
"{53EBFF66-945D-465B-B18C-FB16E2FC7F55}" = protocol=58 | dir=in | name=cfosspeed icmpv6 responses | 
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | 
"{54FD241A-E44D-4405-8174-B61214D0EF85}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\ai suite iii\push notice\pushnotifyserver.exe | 
"{55C87682-96F2-44CF-99E5-CB1902361373}" = dir=out | name=@{microsoft.windows.secureassessmentbrowser_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.secureassessmentbrowser/resources/packagedisplayname} | 
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect | 
"{5775E5A1-0F4C-49F5-B4D5-712C4C5F27C2}" = dir=out | name=@{microsoft.bingweather_3.0.4.315_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} | 
"{5B16D1F8-6F8D-4553-9797-68D569A0FE54}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\homecloud\media streamer\asus media streamer\dlna\dms\aodms.exe | 
"{5B5FAEE2-55DE-4953-BA25-57E9CC2D4179}" = dir=out | name=@{microsoft.getstarted_4.1.15.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} | 
"{5C0FA455-856C-4642-95C8-A2527BA169DC}" = dir=in | name=xbox | 
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect | 
"{61E2BA0C-92CC-4BC0-94AD-F26DFA388285}" = dir=in | name=onenote | 
"{641D535D-3EFD-4949-8EF7-70B6EAED9DAC}" = dir=in | name=@{microsoft.windows.photos_16.722.10060.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} | 
"{65AC634D-FB09-49A6-B023-6DA4C940020F}" = protocol=6 | dir=in | app=l:\games\origin\mass effect\binaries\masseffect.exe | 
"{663D2768-439A-403E-BB30-75D7AB3ECC18}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\homecloud\media streamer\mediastreamer.exe | 
"{66D612CA-12DA-49ED-926C-27128F4BD23B}" = dir=out | name=@{microsoft.xboxidentityprovider_11.19.19003.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxidentityprovider/resources/displayname} | 
"{678132B4-F87E-46F4-B4DE-FECA428A3AD7}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxczpswx.exe | 
"{67AE1DDF-9DFA-492C-ABE1-5B2F0E573622}" = protocol=17 | dir=in | app=l:\games\steam\steamapps\common\skyrim\skyrimlauncher.exe | 
"{69690679-6F8C-495D-A7D8-57717BEAD260}" = dir=in | name=@{microsoft.skypeapp_11.9.251.0_x64__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/skypevideo_productname} | 
"{6AC9D7C6-4EE0-45A7-86E4-8893CCB49525}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\ai suite iii\push notice\pushnotifyserver.exe | 
"{6B0D4812-FF7B-47C4-9CF6-E8095E383BCE}" = dir=in | app=c:\windows\system32\hasplms.exe | 
"{6BA22787-C6C6-474A-84C7-E73C55941F0F}" = dir=out | name=@{microsoft.windowsfeedbackhub_1.1608.2441.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} | 
"{70A79A9D-0C03-4E2D-BD15-9DD6146CC094}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} | 
"{70EAD44A-EE73-4BE6-B9F6-55C0DABF5182}" = protocol=6 | dir=in | app=j:\programme\autodesk\3ds max 2015\nvidia\satellite\raysat_3dsmax2015_64server.exe | 
"{71DDA283-6528-44D8-ADE3-C9B02E283A4C}" = protocol=6 | dir=in | app=l:\games\origin\mass effect 2\binaries\masseffect2.exe | 
"{73DFB714-06B4-4060-8319-E6728A7FEBB6}" = dir=in | name=@{microsoft.bingnews_4.16.22.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} | 
"{74900EF8-2AA1-453F-B1B0-56ED1A6C9BA4}" = protocol=6 | dir=in | app=c:\windows\system32\lxczcoms.exe | 
"{7A5406F5-A10E-4778-BF79-54172FDC6940}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | 
"{7A81515E-2D69-402E-8BE4-CA933303099F}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\homecloud\media streamer\asus media streamer\dlna\dmr\aodmr.exe | 
"{7C1591B2-975C-4274-9419-C432C36149E8}" = dir=in | app=j:\programme\keyshot5\bin\keyshot5.exe | 
"{7C8C3B06-F44A-43F7-9F69-070634010687}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} | 
"{7CA96E2C-D3DD-4469-9B52-863CC87AB7A9}" = dir=in | name=@{microsoft.commsphone_2.17.27003.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.commsphone/resources/appstorename} | 
"{7CAD48BD-622F-49C9-9455-92D13C87D883}" = dir=out | name=@{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} | 
"{7FF7BEE0-34BB-4521-B89E-851DB5435233}" = dir=out | name=@{microsoft.windows.photos_16.722.10060.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} | 
"{80B3AA44-53A3-4513-B4AA-68CA61773936}" = dir=out | name=@{microsoft.connectivitystore_1.1604.4.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.connectivitystore/mswifiresources/appstorename} | 
"{82372D43-A1C1-4CBF-ACC4-09333B48E029}" = dir=out | name=@{microsoft.windows.apprep.chxapp_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} | 
"{82AF1785-B23C-468A-9D5E-0D18E6EDD105}" = dir=out | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} | 
"{87F679EC-53E3-494C-AA47-5AA053E37153}" = dir=in | name=@{microsoft.bingfinance_4.16.19.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} | 
"{87F7BD37-83A8-4A5A-AF02-465E71F37B6F}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe | 
"{8AB9971A-0139-4866-9552-4112CE1811A6}" = dir=in | app=c:\program files (x86)\microsoft visual studio 14.0\common7\ide\devenv.exe | 
"{8D831D9B-0976-4CEB-B426-E7903560DAF7}" = protocol=6 | dir=in | app=l:\games\origin\dragon age inquisition\dragonageinquisition.exe | 
"{8F00410B-AFB8-4DD7-B001-593574C3330E}" = dir=out | name=@{microsoft.3dbuilder_11.1.9.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} | 
"{8F138B28-FA08-4DC6-9820-817EF581039F}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{8F1830A0-7CD1-48F1-B73B-73891548F722}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | 
"{8F84CCF0-1C69-4703-9623-BBE406668371}" = dir=out | name=@{microsoft.bingnews_4.16.22.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} | 
"{900F92C4-9CB0-49D4-86E5-54F6451C4C4D}" = dir=out | name=@{microsoft.people_10.1.2850.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} | 
"{92181F5A-E9F1-4838-ACEA-15031B859417}" = dir=in | app=j:\programme\newtek\bin\hub.exe | 
"{94595FC2-F662-437B-BD21-A96C7EECA829}" = dir=in | name=@{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} | 
"{95001B97-7A00-4A62-B4E8-E192CA116713}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} | 
"{9CE08D1D-F2E6-4905-9F96-2F5B8AE498D0}" = protocol=17 | dir=in | app=l:\games\steam\bin\steamwebhelper.exe | 
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | 
"{A2061102-E18E-46C5-9C8E-C5752DC61BDF}" = dir=in | app=j:\programme\newtek\bin\layout.exe | 
"{A27EF11D-95F4-4BDA-A353-8B0E2209F4FE}" = dir=in | name=@{microsoft.oneconnect_1.1607.6.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} | 
"{A2A336F0-E7C8-4284-8264-74AC8CEEAF02}" = dir=in | app=j:\programme\keyshot5\bin\keyshot_daemon.exe | 
"{A7E074B0-A7F4-4733-9F09-C374C38BDD2E}" = protocol=6 | dir=in | app=j:\programme\autodesk\3ds max 2015\nvidia\satellite\raysat_3dsmax2015_64.exe | 
"{A84FD2F9-ED73-493A-8E1E-948A80BDAC19}" = dir=in | name=@{microsoft.messaging_3.19.1001.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} | 
"{A917D672-493A-4FC0-9B1F-32D1B0163E00}" = dir=in | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} | 
"{A918F038-D32B-4561-859B-791B6D8E370F}" = dir=in | name=skype | 
"{AA658AB6-726C-4B3D-BC36-1DDA23C2EAA0}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} | 
"{AC21173C-2E25-4942-80A2-E367AAFF1919}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe | 
"{AC838EA4-FF06-4EF3-BD75-BB4901788FE7}" = protocol=6 | dir=in | app=l:\games\origin\mass effect 3\binaries\win32\masseffect3.exe | 
"{AE1C355B-5756-4EB4-A22C-9B42C4AE69BE}" = protocol=6 | dir=in | app=l:\games\dragon age\bin_ship\daorigins.exe | 
"{B357C0A1-8AB0-4488-9F35-2F498B30313B}" = dir=out | name=@{microsoft.zunemusic_10.16092.10311.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} | 
"{B3AD11A8-3AC2-4A9E-AF05-1FB11765BE8A}" = dir=out | name=@{microsoft.bingsports_3.0.4.315_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} | 
"{B3EC92A7-F445-4D1E-B361-E109E74E36AB}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxczpswx.exe | 
"{B4158D7D-7425-4F7E-8AA9-BFEB30923095}" = dir=in | app=c:\program files (x86)\common files\acronis\syncagent\syncagentsrv.exe | 
"{B41C5CA6-1B22-48AC-9722-43A3A1DE9F07}" = dir=in | name=@{microsoft.bingweather_4.16.15.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} | 
"{B6B5F54A-C3A1-4F79-8D46-C1FB6E7D879C}" = dir=in | name=microsoft solitaire collection | 
"{B78848EF-E23A-4F10-8BB0-08DD55988C99}" = protocol=17 | dir=in | app=l:\games\steam\steam.exe | 
"{B7FE66ED-247A-460F-8B73-BFC7F99EA35B}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe | 
"{BB9A03B7-AB7D-4E64-9667-DA9D779F065C}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} | 
"{C213FF1C-7004-40B4-BE6F-C8AD5D5D1603}" = dir=in | app=j:\programme\keyshot5\bin\keyshot5.exe | 
"{C2ECB4AD-8F7B-4708-BDB1-3A57E06C4FDD}" = protocol=6 | dir=in | app=l:\games\dragon age\daoriginslauncher.exe | 
"{C51ED02D-90DB-4915-AED5-17BC0B891666}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{C640A54F-684E-4D9D-A045-75AEC4C76B2B}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} | 
"{C80A5775-1347-40FD-B319-35410465CDD2}" = dir=in | app=c:\program files (x86)\microsoft visual studio tools for unity\2015\unityvs.openfile.exe | 
"{C96A5D1A-0683-4677-A70B-1DAC167ABCA0}" = dir=in | name=@{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} | 
"{C9A9D4EA-C423-4A5F-8A7E-0894C3634550}" = protocol=17 | dir=in | app=c:\windows\system32\lxczcoms.exe | 
"{CABC55A4-4CAB-46E6-8DBA-092CDD012CA6}" = protocol=6 | dir=in | app=l:\games\steam\steamapps\common\skyrim\skyrimlauncher.exe | 
"{CC14680D-1099-4FC5-AE19-93FEA47D330E}" = dir=out | name=@{microsoft.zunemusic_2.6.672.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} | 
"{CC72DBFB-FD75-4064-96B1-53700A90ADB8}" = protocol=6 | dir=in | app=c:\windows\system32\lxczcoms.exe | 
"{CEB12473-A6CA-4609-8A31-4F439965EFC2}" = dir=in | app=c:\program files (x86)\common files\acronis\infrastructure\mms_mini.exe | 
"{CEE08922-0BAF-4EB7-ACC3-2694F3FDCA93}" = dir=out | name=asus welcome | 
"{D1120C1C-DA64-4953-8715-F4EE0213F436}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} | 
"{D18F428B-AD12-46EC-B1B2-CD5B7E529355}" = dir=out | name=@{microsoft.bingtravel_3.0.4.318_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} | 
"{D2656CE5-5E04-4A51-9F2E-583220412B04}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.4.315_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} | 
"{D3F90C3D-DA09-4E97-9DE2-F0E8ADA2F6FF}" = protocol=17 | dir=in | app=l:\games\origin\mass effect\binaries\masseffect.exe | 
"{D438586B-C5E4-47BE-9F47-F523F85F8CEC}" = dir=out | name=microsoft sticky notes | 
"{D5E8915B-9991-448F-8CD0-E544CD2D89F3}" = dir=in | name=@{microsoft.windowsstore_11610.1001.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} | 
"{D630F20D-CE5C-46AF-9A49-7F5C329AA431}" = dir=out | name=@{microsoft.oneconnect_1.1607.6.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} | 
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn | 
"{D7C95348-A9CC-4AB1-AD2C-1A3DC289AAAC}" = dir=out | name=@{microsoft.windowsmaps_5.1609.2651.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} | 
"{D98D3D88-64C7-4BF8-8B88-ECD8E0967C91}" = dir=out | name=@{microsoft.windowsstore_11610.1001.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} | 
"{D9EA2438-AE41-4A3E-9136-3455FBC15CD5}" = dir=out | name=@{microsoft.bingnews_3.0.4.315_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} | 
"{DA4AFC85-0B04-4942-999A-5A4CD56A06C1}" = dir=out | name=windows_ie_ac_001 | 
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn | 
"{DC393BF7-C71D-49F4-AC53-0F057282D240}" = dir=in | name=sway | 
"{DD7DA2E6-354E-4D20-8D67-ABE57736B54B}" = dir=out | name=microsoft solitaire collection | 
"{E42604D3-115A-4014-8A4A-2D6784E9E666}" = dir=out | name=@{microsoft.accountscontrol_10.0.14393.447_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} | 
"{E5699B26-F05E-4F0E-BD2A-89429D77CE75}" = dir=out | name=@{microsoft.zunevideo_10.16092.10311.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} | 
"{E704C6FF-E974-47D1-91EF-807A2D0A9EEB}" = dir=in | app=j:\programme\newtek\bin\modeler.exe | 
"{E71CF413-118B-437D-8E98-F29C57B763AD}" = dir=out | name=onenote | 
"{E7E2C4B2-4060-46AD-BD6A-AD151105BF98}" = dir=out | name=@{microsoft.bingfinance_4.16.19.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} | 
"{E885584F-7EA6-462C-AB4A-9CB62B4BB4F9}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.7369.40827.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} | 
"{E8EFC1DA-1926-4617-BAFD-669941F6B6A6}" = dir=out | name=@{microsoft.bingmaps_2.1.3230.2048_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} | 
"{E90C954C-38DB-4F3B-92E7-DC0CA5908F7C}" = protocol=17 | dir=in | app=j:\programme\autodesk\3ds max 2015\nvidia\satellite\raysat_3dsmax2015_64.exe | 
"{E9D6DB66-8FB4-4FA8-8265-D96928DA5432}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} | 
"{E9F58770-D00E-4312-BCA3-F0B42F9F315E}" = dir=in | name=@{microsoft.windowsfeedbackhub_1.1608.2441.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} | 
"{EAA7E501-EAA2-4B7C-92A0-A9BF60DA0A9B}" = protocol=17 | dir=in | app=c:\windows\syswow64\lxczcoms.exe | 
"{EBE8B5E4-6FA6-4FA1-9E11-5906483F4AE9}" = dir=in | name=microsoft sticky notes | 
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn | 
"{ED373959-3806-4543-8542-858EA228DC0D}" = dir=out | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} | 
"{F031D6D2-5D76-4D8B-BE28-4CEB80512834}" = dir=out | name=@{microsoft.zunevideo_2.6.440.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} | 
"{F14AE262-6964-412D-BFB4-793D5A62E6B3}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.7369.40827.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} | 
"{F3FAB2DB-5A8C-4BEA-9793-2B1A6A51FCAD}" = dir=out | name=sway | 
"{F406DBF9-BE7B-40CA-BFBC-C1DD04EF42C6}" = dir=out | name=@{microsoft.bingweather_4.16.15.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} | 
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client | 
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client | 
"{F78337D7-C7A5-42B4-90B9-7CA515C88DC4}" = dir=out | name=@{microsoft.commsphone_2.17.27003.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.commsphone/resources/appstorename} | 
"{F795345C-F389-4B99-8CD5-3B5F48626FAD}" = protocol=17 | dir=in | app=l:\games\origin\dragon age inquisition\dragonageinquisition.exe | 
"{FCDCB2A2-D228-472B-9880-33510AF1D28E}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | 
"{FDC9C21C-C11F-4A36-8F8D-319527E4A2B9}" = dir=out | name=@{microsoft.windows.shellexperiencehost_10.0.14393.447_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} | 
"{FFE52561-1F95-4712-87CC-7960F219EE23}" = protocol=6 | dir=in | app=l:\games\steam\steam.exe | 
"TCP Query User{0079AA1A-5587-4AEA-A335-3EADE5CBAE63}C:\users\empedokles\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\empedokles\appdata\local\akamai\netsession_win.exe | 
"TCP Query User{15081423-A68F-4861-A7A7-16E503EBF9D8}L:\games\origin\mass effect 2\binaries\me2game.exe" = protocol=6 | dir=in | app=l:\games\origin\mass effect 2\binaries\me2game.exe | 
"TCP Query User{34A14F3C-1675-44F6-BA9C-9E25211DC572}J:\programme\epic games\epic games\4.12\engine\binaries\win64\ue4editor.exe" = protocol=6 | dir=in | app=j:\programme\epic games\epic games\4.12\engine\binaries\win64\ue4editor.exe | 
"TCP Query User{40EE7D37-A805-481E-BEAF-4C48A85B1C27}K:\programme\sibl_gui 4\sibl_gui.exe" = protocol=6 | dir=in | app=k:\programme\sibl_gui 4\sibl_gui.exe | 
"TCP Query User{4A7632A5-B980-49AE-9203-0378D38D4997}C:\users\empedokles\downloads\qdslrdashboard_v3.5.1_windows_x64\qdslrdashboard_v3.5.1_windows_x64\qdslrdashboard.exe" = protocol=6 | dir=in | app=c:\users\empedokles\downloads\qdslrdashboard_v3.5.1_windows_x64\qdslrdashboard_v3.5.1_windows_x64\qdslrdashboard.exe | 
"TCP Query User{58805003-CA3B-4772-B062-A151D970236B}C:\program files (x86)\asus\ai suite iii\aisuite3.exe" = protocol=6 | dir=in | app=c:\program files (x86)\asus\ai suite iii\aisuite3.exe | 
"TCP Query User{796DC4E1-E9F2-4341-A974-417740E4BDB7}C:\program files\chaos group\v-ray\rt for 3ds max 2015 for x64\bin\vray.exe" = protocol=6 | dir=in | app=c:\program files\chaos group\v-ray\rt for 3ds max 2015 for x64\bin\vray.exe | 
"TCP Query User{7C8F6F5E-0E86-4ACF-B90C-39AEAB5D1B47}J:\programme\epic games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" = protocol=6 | dir=in | app=j:\programme\epic games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe | 
"TCP Query User{7F64ABDA-A592-40A4-8865-DEDCE59D8B68}J:\programme\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" = protocol=6 | dir=in | app=j:\programme\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe | 
"TCP Query User{8B3A3328-37D0-4A7F-BF1F-CE986A0BA8FF}J:\programme\autodesk\3ds max 2015\3dsmax.exe" = protocol=6 | dir=in | app=j:\programme\autodesk\3ds max 2015\3dsmax.exe | 
"TCP Query User{97521847-FF2C-4B95-8CFB-E70280F74833}L:\projects\unreal projects\unreal learning projects\cornell_box\saved\stagedbuilds\windowsnoeditor\engine\binaries\win64\ue4game.exe" = protocol=6 | dir=in | app=l:\projects\unreal projects\unreal learning projects\cornell_box\saved\stagedbuilds\windowsnoeditor\engine\binaries\win64\ue4game.exe | 
"TCP Query User{B8F5A91C-048F-4A16-B300-2957B83BE220}C:\program files\filezilla ftp client\filezilla.exe" = protocol=6 | dir=in | app=c:\program files\filezilla ftp client\filezilla.exe | 
"TCP Query User{BB19F4BD-09A7-4ED9-AA1D-5B646D001EE3}K:\programme\adobe\adobe photoshop cs6 (64 bit)\photoshop.exe" = protocol=6 | dir=in | app=k:\programme\adobe\adobe photoshop cs6 (64 bit)\photoshop.exe | 
"TCP Query User{C1E52BC2-1FE4-40C9-996B-882DBC0C479B}K:\programme\skanect 1.8\bin\skanect.exe" = protocol=6 | dir=in | app=k:\programme\skanect 1.8\bin\skanect.exe | 
"UDP Query User{06469D73-51D5-4F81-9C84-BE0485A2B771}K:\programme\sibl_gui 4\sibl_gui.exe" = protocol=17 | dir=in | app=k:\programme\sibl_gui 4\sibl_gui.exe | 
"UDP Query User{2A28AB09-DAC0-43C5-BDFB-EEBD1E876092}J:\programme\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" = protocol=17 | dir=in | app=j:\programme\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe | 
"UDP Query User{326F2208-170C-4015-822B-9C140CF4EE72}C:\program files (x86)\asus\ai suite iii\aisuite3.exe" = protocol=17 | dir=in | app=c:\program files (x86)\asus\ai suite iii\aisuite3.exe | 
"UDP Query User{59788CF5-BC00-4414-B39B-C287442A36DA}C:\users\empedokles\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\empedokles\appdata\local\akamai\netsession_win.exe | 
"UDP Query User{78FA5C9F-6DE1-4E12-BC64-CDA96C6A7A18}C:\program files\chaos group\v-ray\rt for 3ds max 2015 for x64\bin\vray.exe" = protocol=17 | dir=in | app=c:\program files\chaos group\v-ray\rt for 3ds max 2015 for x64\bin\vray.exe | 
"UDP Query User{83BCAB64-DB47-4F21-8569-DFFC4E0529B7}J:\programme\epic games\epic games\4.12\engine\binaries\win64\ue4editor.exe" = protocol=17 | dir=in | app=j:\programme\epic games\epic games\4.12\engine\binaries\win64\ue4editor.exe | 
"UDP Query User{8D214641-D09E-4A99-8B6D-482368D42D80}J:\programme\autodesk\3ds max 2015\3dsmax.exe" = protocol=17 | dir=in | app=j:\programme\autodesk\3ds max 2015\3dsmax.exe | 
"UDP Query User{9F241DAE-F672-4256-95CB-F810FF32B910}C:\users\empedokles\downloads\qdslrdashboard_v3.5.1_windows_x64\qdslrdashboard_v3.5.1_windows_x64\qdslrdashboard.exe" = protocol=17 | dir=in | app=c:\users\empedokles\downloads\qdslrdashboard_v3.5.1_windows_x64\qdslrdashboard_v3.5.1_windows_x64\qdslrdashboard.exe | 
"UDP Query User{BFABF17E-B237-413D-95B5-9616293B2BA6}J:\programme\epic games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" = protocol=17 | dir=in | app=j:\programme\epic games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe | 
"UDP Query User{C2CF5C3A-6516-4E5B-BE77-7E02AA7C87B8}K:\programme\skanect 1.8\bin\skanect.exe" = protocol=17 | dir=in | app=k:\programme\skanect 1.8\bin\skanect.exe | 
"UDP Query User{C5432141-F2C0-4FAD-91C9-7E9D788B0265}K:\programme\adobe\adobe photoshop cs6 (64 bit)\photoshop.exe" = protocol=17 | dir=in | app=k:\programme\adobe\adobe photoshop cs6 (64 bit)\photoshop.exe | 
"UDP Query User{D75E59CA-BEBA-438E-B182-EE4FEC75C30D}L:\games\origin\mass effect 2\binaries\me2game.exe" = protocol=17 | dir=in | app=l:\games\origin\mass effect 2\binaries\me2game.exe | 
"UDP Query User{D89E45EC-0A13-4608-83C4-AEBFC9CFD894}C:\program files\filezilla ftp client\filezilla.exe" = protocol=17 | dir=in | app=c:\program files\filezilla ftp client\filezilla.exe | 
"UDP Query User{E972AC22-C438-4037-BCAF-8DC27B18E768}L:\projects\unreal projects\unreal learning projects\cornell_box\saved\stagedbuilds\windowsnoeditor\engine\binaries\win64\ue4game.exe" = protocol=17 | dir=in | app=l:\projects\unreal projects\unreal learning projects\cornell_box\saved\stagedbuilds\windowsnoeditor\engine\binaries\win64\ue4game.exe | 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00060000-0000-1004-8002-0000C06B5161}" = WibuKey Setup (WibuKey Remove)
"{020CDFE0-C127-4047-B571-37C82396B662}" = Microsoft SQL Server 2014 Transact-SQL ScriptDom 
"{041FD3D8-612C-3CB2-AB44-1E7B79990C37}" = Microsoft Visual Studio Team Foundation Server 2015 Update 2 Office Integration (x64)
"{05FF8209-C4F1-4C77-BC28-791653156D20}" = Microsoft System CLR Types for SQL Server 2012 (x64)
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{08274920-8908-45c2-9258-8ad67ff77b09}.sdb" = IIS Express Application Compatibility Database for x64
"{098A6F36-894B-490D-92FE-742994AA7251}" = Microsoft Visual Studio 2015 Update 2 Diagnostic Tools - amd64
"{09EDC035-8632-4865-ACC7-F46B40FD95C6}" = Open-EID Updater
"{0af01a07-ccb7-3765-b479-31f6588c7982}" = Microsoft .NET Execution Environment (DNX) 1-rc1 (x64) for .NET Framework 4.6
"{0BB716E0-1500-0610-0000-097DC2F354DF}" = Autodesk Revit Interoperability for 3ds Max 2015
"{0BB716E0-1700-0610-0000-097DC2F354DF}" = Autodesk Revit Interoperability for 3ds Max 2017
"{0C5911DB-32D5-4638-B271-FBD5D10C7A73}_is1" = FSPViewer version 2.1.0
"{11953C65-BB4E-4CA4-B0F0-2600A4B20040}" = Picture Control Utility x64
"{1850F701-7CCE-3AE9-9FC2-D4D75837A39E}" = Microsoft Visual Studio Team Foundation Server 2015 Update 2 Storyboarding (x64)
"{1C4FFAF0-7DBB-4F7A-A386-46747D060826}" = Autodesk Civil View for 3ds Max 2017 64-bit
"{1D2CEC61-C3F0-C27E-7280-F9D6B10378BE}" = Windows App Certification Kit Native Components
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
"{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}" = Microsoft SQL Server 2014 Management Objects  (x64)
"{206BDE02-8D3C-4954-90BF-90A0A30F26F6}" = Microsoft .NET Core 1.0.0 RC2 - Runtime (x64)
"{23C9ED7C-CB64-45FE-A7EA-1BA666F5589D}" = Autodesk DirectConnect 2015 64-bit
"{250C8D22-1757-11E3-818E-1803734DBB4F}" = OpenRL Runtime 1.3.1000.14 x64
"{26A24AE4-039D-4CA4-87B4-2F64180111F0}" = Java 8 Update 111 (64-bit)
"{2700FAD3-F82C-4ED1-862C-5F425B2A88E6}" = Kinect for Windows Runtime v1.8
"{288D79EE-A2D1-42AF-9597-B0ADCC23A8ED}" = Microsoft SQL Server VSS Writer
"{2926DDFE-5022-4176-A363-6300E21A980C}" = Ornatrix for 3ds Max 64 bits
"{2B07E17E-A072-43BD-9DCC-369B56C16698}" = Autodesk 3ds Max 2017 Populate Data
"{313D083B-DEAB-4ED6-9BE9-7720344509A3}" = DigiDoc3 Client
"{33952D66-D503-10CA-DD8E-E365C15EB4E0}" = Universal CRT Tools x64
"{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}" = UE4 Prerequisites (x64)
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{37D41A97-6B02-4C30-8753-85107BE1D674}" = Intel® RealSense™ SDK 2014 Runtime  (x64): Core
"{388D7468-1CCA-40C8-9F08-4C20E972E922}" = Microsoft Build Tools Language Resources 14.0 (amd64)
"{3AE40040-2F48-4617-9228-49E999738BDB}" = Microsoft Visual Studio 2015 Performance Collection Tools - ENU
"{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}" = Microsoft Server Speech Platform Runtime (x64)
"{3E62C619-F43D-396C-B266-FA472CFE0B4B}" = Visual C++ IDE x64 Package
"{409CB30E-E457-4008-9B1A-ED1B9EA21140}" = Intel(R) Rapid Storage Technology
"{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}" = Microsoft SQL Server 2012 Management Objects  (x64)
"{46C478DE-C381-4200-9627-0DA025B555EB}" = Intel(R) Chipset Device Software
"{4701DEDE-1888-49E0-BAE5-857875924CA2}" = Microsoft SQL Server System CLR Types (x64)
"{495CC0B4-D4C3-4D87-8317-F66BA48C5552}" = Microsoft System CLR Types for SQL Server 2016 RC0
"{49860BCD-24D6-44C1-922E-AC12FE32234E}" = Microsoft SQL Server 2008 R2 Native Client
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4B889650-52DC-49E0-AB9C-F501B91002E3}" = NVIDIA mental ray and IRay rendering plugins for 3ds Max 2017
"{4C44C947-F38D-42FB-A5A9-23BED7AE1EC9}" = Autodesk Mudbox 2016 Ext 1
"{4D84C195-86F0-4B34-8FDE-4A17EB41306A}" = Microsoft Web Platform Installer 5.0
"{4ec36977-42b9-3c18-a692-b9dee7404484}" = Microsoft .NET Version Manager (x64) 1.0.0-rc1
"{5247E16E-BCF8-95AB-1653-B3F8FBF8B3F1}" = Windows Software Development Kit DirectX x64 Remote
"{52B37EC7-D836-0410-0264-3C24BCED2010}" = Autodesk 3ds Max 2015
"{52B37EC7-D836-0410-0664-3C24BCED2010}" = Autodesk 3ds Max 2017
"{54C5041B-0E91-4E92-8417-AAA12493C790}" = Microsoft SQL Server 2012 Transact-SQL ScriptDom 
"{57E92DED-DC6C-41E5-B9E1-76D83BD2EABE}" = Autodesk 3ds Max 2015 Populate Data
"{58FED865-4F13-408D-A5BF-996019C4B936}" = Microsoft SQL Server 2012 Command Line Utilities 
"{599702AA-91EB-38C1-B994-CDE35C57E007}" = Microsoft Visual Studio 2015 VsGraphics Helper Dependencies
"{59DE4D1C-690E-4397-8A44-B684934E863C}" = Microsoft SQL Server 2014 Transact-SQL Compiler Service 
"{5B7D3F8B-BDA8-382D-9581-18AA7F1E1358}" = Microsoft Visual Studio Team Foundation Server 2015 Office Integration Language Pack (x64) - ENU
"{5DFEB60C-501E-375A-9967-99BBCB6150C5}" = Microsoft Visual C++ 2015 x64 Debug Runtime - 14.0.23918
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6025D82F-381D-4DBA-B62F-34E46FA148D7}" = Microsoft Azure Compute Emulator - v2.9.1
"{62D2E847-606F-49FB-A38B-F9D5AA936331}" = Microsoft Visual Studio 2015 Diagnostic Tools - amd64
"{635BE602-BB9C-4C59-8CC5-93F9366E8A21}" = ViewNX 2
"{68BA34E8-9B9D-4A74-83F0-7D366B532D75}" = Microsoft System CLR Types for SQL Server 2014
"{6ABEC32F-B90F-4499-B3A3-FF8A00948178}" = NVIDIA mental ray and IRay feature plugins for 3ds Max 2017
"{6C026A91-640F-4A23-8B68-05D589CC6F18}" = Microsoft SQL Server 2012 Express LocalDB 
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{70FF76E1-4F3F-3475-A501-4F1E87D5A938}" = Microsoft Visual Studio Team Foundation Server 2015 Storyboarding Language Pack (x64) - ENU
"{732C5708-B3D0-3A93-B4F2-6BA5FCFC5BA1}" = Microsoft Visual Studio Team Foundation Server 2015 Office Integration (x64)
"{78909610-D229-459C-A936-25D92283D3FD}" = Microsoft SQL Server Compact 4.0 SP1 x64 ENU
"{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}" = IIS 10.0 Express
"{7B50D081-E670-3B43-A460-0E2CDB5CE984}" = Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23918
"{7BB85DFB-F509-476F-95FF-F75457C60214}}_is1" = netfabb Basic version 6.4
"{7F017105-282F-4091-B16A-F8B8A69B0325}" = Microsoft Build Tools 14.0 (amd64)
"{7FE9A69F-6D91-4E2E-86B5-E2EB27AE6041}" = Microsoft SQL Server 2014 T-SQL Language Service 
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{83B181F2-20B8-4F00-8E71-C66E951A8D4F}" = Visual Studio 2015 Prerequisites - ENU Language Pack
"{83DBE1B7-4CA2-4F21-9FEE-3FF2C70942D4}" = Microsoft Azure Libraries for .NET – v2.9
"{884c9296-7b31-3db0-87d8-5571d0bfce64}" = Microsoft .NET Execution Environment (DNX) 1-rc1 (x64) for .NET Core
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8CD79EA1-36D8-4370-81AF-06E5CBC9955B}" = Microsoft .NET Core 1.0.0 RC2 - Host (x64)
"{8F59FEA4-DB31-47EF-1064-7E7954437F21}" = Autodesk 3ds Max 2015 Ext 1
"{9167CA34-4E48-49E3-8892-3C439739D2D3}" = Autodesk Inventor Server Engine for 3ds Max 2015
"{9167CA34-4E68-49E3-8892-3C439739D2D3}" = Autodesk Inventor Server Engine for 3ds Max 2017
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{95150002-1163-0409-1000-0000000FF1CE}" = SharePoint Client Components
"{95160001-1163-0409-1000-0000000FF1CE}" = SharePoint Client Components
"{965B81C8-C45E-39B6-997A-CD43D6EA787D}" = Microsoft Visual Studio Team Foundation Server 2015 Update 2 Storyboarding Language Pack (x64) - ENU
"{96F4525A-470D-F15C-796E-58D9988C3E5F}" = Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
"{993F6DDC-63F8-4BCD-9B28-D941971A9CAC}" = Windows XP Targeting with C++
"{998DE0E6-0845-4D78-AB22-554897E14CA0}" = EstEID Shell Extension
"{9CED5D08-5664-4668-A927-CD6C60C4175D}" = Microsoft SQL Server 2016 LocalDB RC0
"{A696D7AE-526D-49CE-85D4-6725BABCBD40}" = Microsoft Azure Authoring Tools - v2.9.1
"{A6BA243E-85A3-4635-A269-32949C98AC7F}" = Microsoft SQL Server 2012 Data-Tier App Framework  (x64)
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{A9AC48BD-836E-4478-9792-9C3965ED4736}" = ID-card utility
"{AA62B868-5D5C-46CF-BA88-386BE71D4F87}" = Kinect for Windows Drivers v1.8
"{AB8DE9BA-19E1-446A-BCFA-6B3DA9751E21}" = Microsoft SQL Server 2014 Express LocalDB 
"{AC9970E8-7F55-4F50-A6D3-2BC041589904}" = Microsoft Hive ODBC Driver
"{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb" = IIS Express Application Compatibility Database for x86
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel" = Ansel
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 372.54
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 372.54
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 372.54
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 369.04
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus Update 2.11.4.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.16.0318
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 2.11.4.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.3.34.15
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.40
"{B81EF87B-C892-4324-BE13-81C76F16C29B}" = Microsoft .NET Core 1.0.0 RC2 - SDK Preview 1 (x64)
"{B827D6B7-7731-43BA-92EC-916C89C88964}" = Autodesk License Service (x64) - 4.1
"{BC86B82C-8C0E-4408-9AC1-6B0F2D636963}" = Adobe Photoshop Lightroom 5.7.1 64-bit
"{C062952C-014E-43EE-8573-86A33686F9BC}" = Agisoft PhotoScan
"{C5915BD0-93BC-408D-B47E-71371E715AAD}" = Autodesk Mudbox 2017
"{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}" = ASUS Bluetooth Software
"{CB7C5C3E-B628-4AA0-A3DF-FEBCDCEB5ECB}" = Microsoft Visual Studio 2015 Update 2 Diagnostic Tools - amd64
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240DD}" = WinZip 17.5
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}" = Microsoft SQL Server 2012 Native Client 
"{D4893C47-704F-4B84-8486-9DE4974ACA6F}" = Picture Control Utility 2
"{D59EAE46-00A3-38EB-BC47-E02D09725E4A}" = Microsoft Visual Studio Team Foundation Server 2015 Update 2 Office Integration Language Pack (x64) - ENU
"{D9F55D00-A8AB-4518-A56E-D9D5E615542A}" = Microsoft SQL Server 2016 T-SQL ScriptDom RC0
"{DE38EBD8-25AC-3026-BE14-6F829F7050A6}" = Microsoft Visual Studio Team Foundation Server 2015 Storyboarding (x64)
"{DF32E41C-24AD-4A87-B43A-B38553B1806E}" = Visual Studio 2015 Prerequisites
"{DFFEB619-5455-3697-B145-243D936DB95B}" = Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23918
"{E38F6D3C-D756-4D0C-B70C-611A8484B6D0}" = IE Token Signing Plugin
"{E390AECE-5998-493A-B072-E16843270424}" = EstEID Minidriver
"{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}" = Bonjour
"{E646D196-A17B-4F14-BE7B-F774527FE5E0}" = Active Directory Authentication Library for SQL Server
"{EAF826C0-245E-4D02-9D51-BA4C98717EAE}" = Intel(R) Rapid Storage Technology
"{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}" = Autodesk License Service (x64) - 3.1
"{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}" = Microsoft Web Deploy 3.6
"{F59F352C-BDD1-42F2-B64A-0027CB767EA1}" = Firefox PKCS11 Loader
"{F6305232-7952-4CCE-BDCD-9B2E66591C4A}" = Visual Studio 2010 SP1 Runtime x64
"{F6F8053F-D328-4ACA-93A1-A49E495899F2}" = Microsoft SQL Server 2016 Management Objects RC0 (x64)
"{F99F24BF-0B90-463E-9658-3FD2EFC3C992}" = Microsoft Identity Extensions
"{FA945868-397C-44F2-A1A4-53244A1D64B3}" = Microsoft-Maus- und Tastatur-Center
"{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}" = Microsoft System CLR Types for SQL Server 2014
"{FCC6E820-B5DB-454E-96E3-B6182DDEEC8D}" = Microsoft Visual Studio 2015 Performance Collection Tools
"{FD42EE05-18F9-459F-935D-770E75B3BEE5}" = Intel(R) Network Connections 19.1.51.0
"6af12c54-643b-4752-87d0-8335503010de_is1" = Nexus Mod Manager
"Autodesk 3ds Max 2015" = Autodesk 3ds Max 2015
"Autodesk 3ds Max 2015 SP1" = Autodesk 3ds Max 2015 SP1
"Autodesk 3ds Max 2015 SP2" = Autodesk 3ds Max 2015 SP2
"Autodesk 3ds Max 2017" = Autodesk 3ds Max 2017
"Autodesk 3ds Max 2017 SP1" = Autodesk 3ds Max 2017 SP1
"Autodesk 3ds Max 2017 SP2" = Autodesk 3ds Max 2017 SP2
"Autodesk 3ds Max 2017 SP3" = Autodesk 3ds Max 2017 SP3
"Autodesk DirectConnect 2015 64-bit" = Autodesk DirectConnect 2015 64-bit
"Autodesk DirectConnect 2015 64-bit_9001" = Autodesk DirectConnect 2015 64-bit Hotfix1
"Autodesk Maya 2016" = Autodesk Maya 2016
"Autodesk Maya 2016 SP1" = Autodesk Maya 2016 SP1
"Autodesk Maya 2016 SP2" = Autodesk Maya 2016 SP2
"Autodesk Maya 2016 SP3" = Autodesk Maya 2016 SP3
"Autodesk Maya 2016 SP3P02" = Autodesk Maya 2016 SP3P02
"Autodesk Maya 2016 SP4" = Autodesk Maya 2016 SP4
"Autodesk Maya 2016 SP4P04" = Autodesk Maya 2016 SP4P04
"Autodesk Maya 2016 SP4P05" = Autodesk Maya 2016 SP4P05
"Autodesk Maya 2016 SP5" = Autodesk Maya 2016 SP5
"Autodesk Maya 2016 SP5P06" = Autodesk Maya 2016 SP5P06
"Autodesk Maya 2016 SP5P07" = Autodesk Maya 2016 SP5P07
"Autodesk Maya 2016 SP5P08" = Autodesk Maya 2016 SP5P08
"Autodesk Maya 2016 SP6" = Autodesk Maya 2016 SP6
"Autodesk Mudbox 2016 Ext 1" = Autodesk Mudbox 2016 Ext 1
"Autodesk Mudbox 2016 Ext 1 SP1" = Autodesk Mudbox 2016 Ext 1 SP1
"Autodesk Mudbox 2017" = Autodesk Mudbox 2017
"Autodesk Revit Interoperability for 3ds Max 2015" = Autodesk Revit Interoperability for 3ds Max 2015
"Autodesk Revit Interoperability for 3ds Max 2017" = Autodesk Revit Interoperability for 3ds Max 2017
"AutoHotkey" = AutoHotkey 1.1.22.07
"Bulk Rename Utility_is1" = Bulk Rename Utility 2.7.1.3
"C478C8A35A0A297F2FADF155E889D402655E894E" = Windows-Treiberpaket - RIA (Estonian National ID Card) (UMPass) SmartCard  (05/13/2015 3.11.0.1175)
"CCleaner" = CCleaner
"CPUID ASUS CPU-Z_is1" = CPUID ASUS CPU-Z 1.70
"Git_is1" = Git version 2.8.1
"HDRsoftMerge32x64_is1" = Lightroom Plugin Merge to 32-bit 1.2
"Image Eye_is1" = Image Eye v9.1 x64
"Lexmark 1200 Series" = Lexmark 1200 Series
"Microsoft Azure Compute Emulator - v2.9.1" = Microsoft Azure Compute Emulator - v2.9.1
"Microsoft Mouse and Keyboard Center" = Microsoft-Maus- und Tastatur-Center
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Pen Tablet Driver" = Wacom
"PhotomatixPro5x64_is1" = Photomatix Pro version 5.1.2
"PotPlayer64" = Potplayer-64 Bits
"PROSetDX" = Intel(R) Network Connections 19.1.51.0
"sIBL_GUI" = sIBL_GUI 4.0.8
"Steam App 8850" = BioShock 2
"ToneMappingx64-3b3e4c5087e39a49e8c428b786689969_is1" = Tone Mapping Plug-In 64-bit
"Turbo LAN" = Turbo LAN v9.05
"V-Ray for 3dsmax 2015 for x64" = V-Ray for 3dsmax 2015 for x64
"V-Ray for 3dsmax 2017 for x64" = V-Ray for 3dsmax 2017 for x64
"VulkanRT1.0.11.1" = Vulkan Run Time Libraries 1.0.11.1
"Wacom WebTabletPlugin for Internet Explorer and Netscape" = WebTablet FB Plugin 64 bit
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0000C224-8949-3AFE-A2D5-BE392DD04546}" = Microsoft Blend for Visual Studio 2015 - ENU
"{0038F5AA-8482-4BB2-8A28-3FEA1D58D780}" = Autodesk Backburner 2017.0
"{00CEB951-8363-32FB-859A-EA2CFAFCCB19}" = Visual C++ Compiler/Tools X64 Base Resource Package
"{02138196-59F1-3672-9FB9-BF868075952E}" = Microsoft Visual Studio 2015 Team Explorer Language Pack - ENU
"{030702BF-6F52-356B-A223-F9CA15B465DA}" = Visual C++ MSBuild ARM Package
"{030A6785-C3A9-37DA-8530-444C320629FA}" = Microsoft Visual Studio 2015 Shell (Minimum)
"{033DD73B-2EC2-4EA0-B08F-15C44DC634DD}" = Microsoft Visual Studio 2015 Update 2 Diagnostic Tools - x86
"{034547E9-D8FA-49E7-8B9C-4C9861FB9146}" = Microsoft .NET Framework 4.6 Targeting Pack (ENU)
"{0398BFBC-991B-3275-9463-D2BF91B3C80B}" = Microsoft Help Viewer 2.1
"{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}" = Universal CRT Redistributable
"{04B64281-83AC-3027-A295-2129DDA11F73}" = Visual C++ Compiler/Tools Premium X86 X64 Cross Package
"{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}" = Microsoft SQL Server 2012 T-SQL Language Service 
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{0610DFB0-CCEA-6EC0-E3C3-A0160AD7FD98}" = Windows Runtime Intellisense Content - en-us
"{070C38AC-05CE-43DF-9A20-141332F6AB2B}" = Microsoft System CLR Types for SQL Server 2012
"{0780A1F4-A089-3156-9996-6A1DC1342A96}" = Microsoft Visual C++ 2015 x86 Debug Runtime - 14.0.23918
"{086BADF8-9B1F-4E89-B207-2EDA520972D6}" = Grand Theft Auto San Andreas
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{091CE6AA-2753-4F6E-AD1C-0E875744EB54}" = Microsoft System CLR Types for SQL Server 2014
"{099218A5-A723-43DC-8DB5-6173656A1E94}" = Dropbox Update Helper
"{0A3B508E-5638-4471-BCC9-954E1868CB86}" = WCF Data Services Tools for Microsoft Visual Studio 2015
"{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}" = OpenOffice 4.0.1
"{0C03A66F-1FF0-45F9-8D67-0D806EBFFBA1}" = Blend for Visual Studio SDK for Silverlight 5
"{0D6EB2DA-5F4C-3F57-B467-72CA86E144D2}" = Visual C++ IDE Windows Express Plus Package
"{0ED9D9BB-7C6D-33BF-9E05-FD5A9BC8538C}" = Visual C++ Compiler/Tools X86 ARM Cross Package
"{0F6D6D87-6E7D-33E9-BE0B-90075E74A60B}" = Visual C++ Compiler/Tools X64 Native Package
"{10F82E5B-B611-4C65-8F29-666A9EC5680A}_is1" = Red Giant Link
"{11A2552E-9520-3547-A8F8-E8F439DE2B53}" = Visual C++ Library MFC Headers Package
"{12677F15-82CF-396E-BE4D-697901CD8702}" = Visual C++ IDE Professional Plus Package
"{12D99739-FFD3-3761-8AA6-F929E0FE407E}" = Multi-Device Hybrid Apps using C# - Templates - ENU
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{13FE8B50-B340-4FDA-BB6E-AA1F5FAB8205}" = MSBuild/NuGet Integration 14.0 (x86)
"{14A30BB4-D565-41EA-9D9E-974ADC0CF1BF}" = Microsoft Visual Studio Connected Services
"{1634C655-2398-35C0-89BE-291449A72F88}" = Microsoft Portable Library Multi-Targeting Pack
"{1690CE56-2231-4E59-9006-A0876D949EA8}" =  Tools for .Net 3.5
"{173D2989-6B09-3A90-8819-A53E43F99818}" = Microsoft Visual Studio 2015 Devenv Resources
"{1784177A-10DD-4E9A-B58F-B6320D85CF06}" = Microsoft Azure Mobile App SDK V2.0
"{18073ADD-8C90-3AB7-8B87-BD3B10F3232B}" = Microsoft Blend for Visual Studio 2015
"{1852BD30-570B-4E47-8752-461448E8E250}" = Microsoft SQL Server 2016 T-SQL Language Service RC0
"{18EF738B-56F0-4370-8FEA-93FC9EC51DFA}" = Adobe Premiere Elements 14
"{19055D06-F01E-3BF2-987B-DF9BC14C69FC}" = Visual C++ IDE Core Professional Plus Resource Package
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{19A5926D-66E1-46FC-854D-163AA10A52D3}" = Microsoft .NET Framework 4.5.1 SDK
"{19AB7728-8CCA-3569-A862-B4A37129DDBE}" = Microsoft Azure App Service Tools v2.9.1 - Visual Studio 2015
"{19E8AE59-4D4A-3534-B567-6CC08FA4102E}" = Microsoft .NET Framework 4.5.2 Multi-Targeting Pack
"{1B7D3336-E234-44CB-ACAB-EB16B0FC4CEE}" = Microsoft VisualStudio JavaScript Project System
"{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}" = Microsoft SQL Server 2012 Data-Tier App Framework 
"{1C7FC0D1-2386-4A0D-A5D3-C3F8C1517846}" = Picturenaut 3.2
"{1E315887-E33F-3726-A9AC-A3A56B0DF4B3}" = Visual C++ IDE Core Professional Plus Resource Package
"{1E9E76AC-4BA7-362F-BF0F-A4F07524FA60}" = Visual C++ Library ATL Source Package
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F275091-F18D-37F3-8A70-8E6CE66BB1A8}" = Microsoft ASP.NET and Web Tools 2015.1 - Visual Studio 2015
"{1FBCBC17-4527-2340-0832-B1D49C41FF67}" = Universal CRT Extension SDK
"{1FD1D625-D31F-35BB-97C8-65C11DFAFE0D}" = Visual C++ Professional Templates Resource Package
"{21373064-AD95-48DB-A32E-0D9E08EF7355}" = Prerequisites for SSDT 
"{22041006-8484-4b8d-a13c-40189695de2f}" = Microsoft .NET Core 1.0.0 RC2 - VS 2015 Tooling Preview 1
"{2278B8CD-84E0-3265-A60D-A434089B4A28}" = Microsoft Visual Studio 2015 SDK Language Pack - ENU
"{2292D980-F05F-39CB-814B-007D80169281}" = Visual C++ Compiler/Tools Premium X64 Base Resource Package
"{229F5802-20C7-41B4-8ACB-EA832C57B604}" = Microsoft SQL Server Data Tools - enu (12.0.50512.0)
"{22CB8ED7-DF57-4864-BD04-F63B9CE4B494}" = Microsoft Server Speech Platform Runtime (x86)
"{24CA683D-8174-4EBF-AD4D-3F2DD7814716}" = Microsoft Exchange Web Services Managed API 2.1
"{2691BABA-EACC-3B4A-8B2A-2A941FCE5AAE}" = Visual C++ Library ATL X86 Package
"{26A24AE4-039D-4CA4-87B4-2F32180111F0}" = Java 8 Update 111
"{27731B18-CF21-37EF-8F83-71AD0CEB69D7}" = Visual C++ Compiler/Tools X86 X64 Cross Resource Package
"{2774595F-BC2A-4B12-A25B-0C37A37049B0}" = Microsoft SQL Server 2014 Management Objects 
"{28292CA9-8D65-4E37-95A3-753EEB38F122}" = Microsoft SQL Server Data Tools - enu (14.0.60311.1)
"{284FA9A0-CEDD-81D3-5A19-5858E95FD0C4}" = Universal CRT Extension SDK
"{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}" = UE4 Prerequisites (x64)
"{290FC320-2F5A-329E-8840-C4193BD7A9EE}" = Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU)
"{2927B938-7A0D-4ACB-9740-431B12F2A745}" = Microsoft Visual Studio 2015 Update 2 Diagnostic Tools - x86
"{2A56910C-69C8-495D-8ED8-9080F0A14E58}" = Entity Framework 6.1.3 Tools  for Visual Studio 2015 Update 1
"{2A7F99F6-88A4-4B44-B350-41C0B147A39C}" = Dotfuscator and Analytics Community Edition 5.19.1
"{2AA9034E-6735-30BD-92A4-A18791D1616F}" = Visual C++ MSBuild X64 Package
"{2adee9e7-1f53-47dc-8e30-49ff0dec528e}" = Microsoft .NET Core 1.0.0 RC2 - SDK Preview 1 (x64)
"{2B0558EA-15B0-3F0F-9F3A-5BAB288CD8C1}" = Visual C++ IDE Base Resource Package
"{2B90E781-E1FE-3053-AFFC-53F5393DD2F3}" = Visual C++ Compiler/Tools X64 X86 Cross Resource Package
"{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}" = Microsoft .NET Framework 4.6 Targeting Pack
"{2D401903-40AC-447D-B7EB-6B6047E9B213}" = Mocap Device Plug-in
"{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}" = Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918
"{2E6C63B5-A075-3591-96CA-F7FEA8226482}" = Visual C++ Library PGO X86 Package
"{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}" = Microsoft .NET Framework 4.6.1 SDK
"{2f25fdd8-63d3-4ddb-99b6-9977192020ab}" = Microsoft Azure Tools for Microsoft Visual Studio 2015 - v2.9
"{2F7DBBE6-8EBC-495C-9041-46A772F4E311}" = Microsoft SQL Server 2012 Management Objects 
"{3101E866-DD09-3926-8929-C6B580B951C5}" = Visual C++ IDE Professional Core Package
"{3196EC29-B75D-4EE3-8AB0-46418BC31483}" = Microsoft.VisualStudio.Office365
"{33A22B2D-55BA-4508-B767-BF2E9C21A73F}" = Assassin's Creed Revelations 1.03
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{358AD966-5D2F-390C-B4F3-E93852CD8EAD}" = Microsoft Help Viewer 2.2
"{359ADF3A-F727-40F1-9D8A-6699EE355287}" = Gothic 3
"{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}" = Prerequisites for SSDT 
"{37464E70-B0B9-9DFF-649A-CBE169BAD657}" = Windows Software Development Kit for Windows Store Apps
"{37E53780-3944-4A6A-842F-727128E8616E}" = Blend for Visual Studio SDK for .NET 4.5
"{37E9EB40-7FF0-39B9-AEDF-722995BC02FB}" = Visual C++ Compiler/Tools Premium X86 Native Resource Package
"{38C58287-3116-446F-99CF-55DB64F47D81}" = Cloud Explorer - v1.0
"{3931602C-1FDF-3EA9-870F-827190A9E68D}" = Visual C++ Professional Items Package
"{3A87F9F2-D65D-4BA9-8459-E5BBE31EA64D}" = Microsoft System CLR Types for SQL Server 2016 RC0
"{3B8EE8D3-053D-4CCE-BEEC-FD4D0C49242B}" = Firefox Token Signing Plugin
"{3CAA7C8A-EF8D-3F7B-9710-197F5C606255}" = Visual C++ IDE Core Professional Plus Resource Package
"{3D2C0656-6534-343C-B608-3C895E5CB36E}" = Visual C++ Library ATL Headers Package
"{3DCCF375-3903-35C7-967A-9EFEE9ED9A77}" = Visual Studio 2012 Verification SDK
"{3E112DE9-C9C2-31B5-A642-2A4336CB96CC}" = Visual C++ Library CRT ARM Store Package
"{3EA16E23-14D2-466A-8268-D7CD40DC46B6}" = Open XML SDK 2.5 for Microsoft Office
"{3FBFBC43-9882-43FA-B979-2D53896747B3}" = Autodesk Material Library Base Resolution Image Library 2017
"{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}" = Microsoft ASP.NET MVC 4 Runtime
"{3FEAC561-1CF6-41D6-B0F3-BECDD9C88A1B}" = Azure AD Authentication Connected Service
"{401704EA-057A-3811-B0E2-3AB4D79A2DAE}" = Visual C++ Library CRT X86 Store Package
"{41AAFF4C-BCC4-3A78-BF98-4414CBEE84E6}" = Visual C++ Compiler/Tools Premium X86 X64 Cross Resource Package
"{427F733F-4D6C-45BC-9324-EB743104C321}" = Autodesk Material Library 2015
"{42AF2A8C-6EBB-3D2E-9BF1-6135379FBABC}" = Windows Espc Package
"{42B41396-C5C7-4A2B-9F8C-B7711989D26C}" = Microsoft Azure PowerShell - June 2016
"{431D8A5C-C7D8-46F1-AA46-2581C59C7530}" = Microsoft Visual Studio 2015 XAML Visual Diagnostics
"{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}" = PreEmptive Analytics Visual Studio Components
"{43AC1990-68E0-48DF-9842-50878D4E1E43}" = Open-EID Metapackage
"{43B1530B-FC52-35BE-BD92-4CE133DBC123}" = Visual C++ Library CRT X64 Store Package
"{43B5FB0A-9900-43B0-BD46-9E7F89C88A98}" = Acronis True Image
"{43B5FB0A-9900-43B0-BD46-9E7F89C88A98}Visible" = Acronis True Image
"{4443D3F4-A231-35CC-8471-CB60F8A3FE3B}" = Microsoft Visual Studio 2015 Shell (Minimum) Interop Assemblies
"{44A100D0-C1AE-4BB7-A0CC-AA60B7566681}" = Microsoft ASP.NET MVC 4 - Visual Studio 2015 - ENU
"{44A570EE-FD93-4086-8997-2C38DFDE0019}" = Mass Effect™
"{44D4D32B-FF2A-4C00-9D3A-83732A16B1F2}" = Becker’s ACCA Software
"{44DC843A-C591-4064-BE1F-2BDC177AF50C}" = Active Directory Authentication Library for SQL Server (x86)
"{44EBA1D7-C167-346B-959B-0293DD68D131}" = Microsoft ASP.NET Core 1.0.0 RC2 Local Feed
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{46F95FA3-FEEA-3C4E-94EC-5D4A23CA5142}" = Visual C++ Library PGO Headers Package
"{47D08E7A-92A1-489B-B0BF-415516497BCE}" = Microsoft SQL Server 2014 T-SQL Language Service 
"{4860C1E5-CE58-4D32-89DE-37951333B4C9}" = Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6.1 (Deutsch)
"{48612579-A014-33FB-BB2F-C040910BF448}" = Visual F# 4.0 VS
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A5EA909-5488-4FD4-A04F-184EEA039C46}" = Microsoft Azure Shared Components for Visual Studio 2015 - v1.7
"{4a87bd28-a855-4a8d-b133-60ca8ccffd30}" = Intel® Chipsatz-Gerätesoftware
"{4AC64C61-A7EC-4E4E-8F28-F57EB3430334}" = TypeScript Tools for Microsoft Visual Studio 2015
"{4AD3777F-D26B-4FCD-8823-B1D9784141C6}" = Microsoft Visual Studio 2015 Profiling Tools
"{4AE57014-05C4-4864-A13D-86517A7E1BA4}" = Microsoft .NET Framework 4.5 SDK
"{4C9D82EB-9001-4E59-8F64-0BEEE5F4A30A}" = SQL Server 2008 R2 SP2 Database Engine Shared
"{4CE130ED-0CA1-4BA5-9293-41509E4C8885}" = Microsoft VisualStudio JavaScript Language Service
"{4f075c79-8ee3-4c85-9408-828736d1f7f3}" = Microsoft Visual Studio Community 2015
"{4FAC730A-BD1A-36D0-B0D3-0FCD546C1AE1}" = Visual C++ Compiler/Tools Premium X86 Native Package
"{503CA94E-0834-4CEE-AD92-BA17AF4E809A}" = chip 1-click download service
"{50AE1828-0333-3FC9-8E26-A82E3DF5CE51}" = Visual C++ Professional Items Resource Package
"{50D76CB3-B08A-4F30-A25D-B2A055C8ACD7}" = Dr. Power
"{50FC1CE8-FF32-4F3B-B654-050DD6ECD474}" = EXIFeditor
"{529EFF09-750D-48B9-A47A-34A3B6248C3F}" = Microsoft .NET Framework 4.6.1 SDK (Deutsch)
"{532F6E8A-AF97-41C3-915F-39F718EC07D1}" = ASUS GPU Tweak
"{534A31BD-20F4-46b0-85CE-09778379663C}" = Mass Effect™ 3
"{53501F8C-FA5F-3746-84BC-D071A12076F5}" = Visual C++ Library CRT X64 Redist Package
"{5359C5C6-F83D-4E74-9170-F9A68BE1C57F}" = Microsoft Visual Studio 2015 Tools for Unity
"{542C9655-C8F8-4FA7-928F-E6009438F088}" = Microsoft Visual Studio 2015 Windows Diagnostic Tools - ENU
"{54753C68-A354-3104-BBDC-354D45E52B8A}" = Visual C++ Library ATL ARM Package
"{5536AAD4-740A-4577-843D-4281D3F30726}" = Microsoft Azure Mobile Services Tools for Visual Studio - v1.4
"{559C7AA8-E526-8C65-88FC-FD7A9C366E38}" = Adobe Lens Profile Downloader
"{56AD3004-0B49-967F-F682-B05650B61A78}" = Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
"{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}" = Microsoft .NET Framework 4.5 Multi-Targeting Pack
"{56EC47AA-5813-4FF6-8E75-544026FBEA83}" = Apple Software Update
"{56FCBA2A-90E5-3D4B-8254-67684E869852}" = Visual C++ Compiler/Tools X86 Base Resource Package
"{57382D03-54CC-4DEA-840A-9EA82B47BE61}" = Microsoft Visual Studio 2015 XAML Application Timeline - ENU
"{586E7D40-498C-37C5-BF9A-ED07C9D0BD4B}" = Visual C++ Compiler/Tools Premium X64 Base Package
"{58721EC3-8D4E-4B79-BC51-1054E2DDCD10}" = SQL Server 2008 R2 SP2 Database Engine Services
"{599293D0-B457-3AD5-B2F8-C147AC47B4AF}" = Microsoft Visual Studio 2015 XAML Designer
"{5C4DD346-D2B9-3B7B-9320-A90049D5E48B}" = Microsoft Visual Studio Community 2015 - ENU
"{5C7F5B72-5675-3668-925E-664E4AFC52CD}" = Visual C++ IDE Optional MFC Support Package
"{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}" = Nikon Movie Editor
"{5CE491E2-7409-3A56-9BC9-9A86AA2625D6}" = Visual C++ Library ATL X64 Package
"{5D07F2FD-8D37-39CA-B8F0-EC9C8CA529C1}" = Visual C++ Library MFC MBCS Package
"{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}" = WCF RIA Services V1.0 SP2
"{5E386C5B-CDE7-435A-B5C9-EC73A1B0553A}" = NVIDIA Photoshop Plug-ins 64 bit
"{5FB0969B-B10D-346B-B66D-E8595B23B854}" = Microsoft Visual Studio 2015 Update 2 Team Explorer Language Pack - ENU
"{60890089-588B-4362-B9C5-A9C11D6E5DD1}" = TypeScript Power Tool
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}" = Asmedia ASM106x SATA Host Controller Driver
"{63D62DEF-F22A-3CC9-BD24-08CD1C6E8CF3}" = Visual C++ Library MFC X64 Package
"{64B461D5-ABCA-4394-9336-848F7C283B1C}" = X-Rite Device Services Manager
"{65A12DD3-9992-47D2-8BA2-510CA59F893F}" = Microsoft ASP.NET Web Pages 2 - Visual Studio 2015 - ENU
"{65B43D6A-6B8F-46F1-8362-7985822F3A80}_is1" = D2SE V2.2.0
"{65FFE121-03FA-345D-8149-50AC21A4F985}" = Visual C++ IDE Core Professional Plus Resource Package
"{6781FF9B-E87D-4A03-9373-A55A288B83FA}" = Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1)
"{67A74EC1-A89D-3553-B38D-D17D4991CD2F}" = Microsoft Visual Studio 2015 SDK - ENU
"{6A0C6700-EA93-372C-8871-DCCF13D160A4}" = Microsoft .NET Framework 4.5.1 Multi-Targeting Pack
"{6A878817-D626-305A-BE8D-94C93F70E27A}" = VS Update core components
"{6B3F93BC-7716-4D97-8B80-1334DA37DDE1}" = Microsoft Azure Storage Connected Service
"{6BDAD106-13C8-3EA8-9683-1DD6E89C8179}" = Visual C++ MSBuild Base Resource Package
"{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}" = Roslyn Language Services - x86
"{6E14C209-0F3E-36B6-90C0-A9264787B448}" = Visual C++ Library MFC X86 Package
"{705D1F4A-2E06-3C3C-A1C6-B7572D650418}" = Visual C++ IDE Core Professional Plus Resource Package
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71250ead-7171-4158-a1b9-162b0c9eba1e}" = Microsoft Visual Studio 2015 SDK - ENU
"{718FFB65-F6E4-4D62-861F-ED10ED32C936}" = Microsoft System CLR Types for SQL Server 2014
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72E6C251-9A0D-3B69-851C-95825FD30155}" = Visual C++ Compiler/Tools Premium X86 ARM Cross Package
"{74809CC7-503C-41A7-BC6E-F3A187A61D13}" = Chrome Token Signing
"{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" = Adobe Photoshop CS6
"{769EF2AA-ECB5-3686-A387-8980102F79B8}" = Microsoft NuGet - Visual Studio 2015
"{77745491-4907-458D-B02C-B58D99EE5957}" = Microsoft Visual Studio 2015 XAML Application Timeline
"{782d25e1-8377-4417-a491-3013700fe300}" = Microsoft ASP.NET 5 RC1 Update 1
"{78601603-DE1C-317D-B961-6A3A0C0A6243}" = Visual C++ Compiler/Tools X64 ARM Cross Resource Package
"{78768181-0C6B-3703-9228-C8D5B12B4D68}" = Visual C++ IDE Common Resource Package
"{7932CD6F-86D3-3EE4-8A02-B954404D1FFC}" = Team Explorer for Microsoft Visual Studio 2015 Update 2
"{7A2694C5-A62F-3458-9C6C-4E3341DD0C0A}" = Visual C++ IDE Desktop Plus Resource Package
"{7A580208-9E61-47FD-9AEB-DDDAA67CF0F6}" = Microsoft Hive ODBC Driver
"{7AAE9187-C24F-4073-A951-36C370E7A3A5}" = ASUS Boot Setting
"{7C4FE969-3457-4F8A-9748-5882C52226A5}" = Microsoft Visual Studio 2015 XAML Visual Diagnostics - ENU
"{7FF53256-7BAF-3EFA-91B4-DB65F37EB5E9}" = Microsoft Visual Studio 2015 Shell (Minimum) Resources
"{803CBFA1-EF27-3E84-8A7D-6109392623A4}" = Visual C++ Compiler/Tools X86 Base Resource Package
"{8151E77D-8E35-3481-B91C-A44796891013}" = Visual C++ MFC Items Package
"{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1" = PDF24 Creator 7.9.0
"{82C39067-34CD-37B0-AFCC-F85CAAB44EE5}" = Visual C++ MFC Items Resource Package
"{836314b9-f4f7-49e4-a170-57015ae82237}" = Microsoft SQL Server Data Tools 2013
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{839566A3-B9A0-30D6-A7A1-AB8D8EA27894}" = Visual C++ Library CRT ARM Desktop Package
"{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II
"{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}" = Skype Click to Call
"{8751C079-B293-3033-B8A4-E49A1B46ACD7}" = Visual C++ Compiler/Tools Premium X86 Base Package
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{8A8F7C2B-115E-44B2-86CE-ED4644628BFE}" = Microsoft Visual Studio 2015 Update 2 Diagnostic Tools - ENU
"{8A9AA17A-EF34-331C-8FB0-134269533C1B}" = Microsoft Visual Studio 2015 Shell (Minimum) Interop Assemblies
"{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}" = Kinect for Windows Speech Recognition Language Pack (en-US)
"{8AEFC800-28E0-4B27-9FCC-6F9CDA24A5E7}" = iClone 3DXchange v5.52 Pipeline
"{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}" = Microsoft .NET Framework 4.6.1 Targeting Pack
"{8BFBEC30-33CC-13B4-849F-3B036F27466A}" = Universal CRT Headers Libraries and Sources
"{8CCE6D36-635D-3208-97C0-4E348FA67B6C}" = Visual C++ IDE Debugger Package
"{8CE767E5-878E-47F9-87C2-813D72D06BAE}" = Microsoft Visual Studio Services Hub
"{8D012326-5F1B-30A9-8687-F9398C67E869}" = Visual C++ Library PGO ARM Package
"{8DABF4DE-DC94-4436-90D4-0D39DCB42ABE}" = Microsoft SQL Server 2008 R2 RsFx Driver
"{8E484670-06E5-401F-9D92-468ED5DB87A1}" = Microsoft Visual Studio 2015 Windows Diagnostic Tools
"{8E51C96B-FAAD-462F-9FFF-2349B5EC7894}_is1" = Codeblocks-Simplecpp
"{8ED2ED41-4455-449D-993C-751C039089B9}" = Autodesk Advanced Material Library Image Library 2017
"{8EEB28EE-5141-411C-9CF0-9952264FE4AF}" = Microsoft .NET Framework 4.6.1 Targeting Pack (ENU)
"{8F4C4E27-B47A-371E-B169-478AF9CFD62D}" = Visual C++ Library CRT X86 Desktop Package
"{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}" = Autodesk Material Library 2017
"{902807EA-3C84-46AD-904D-8C209DDEF9E5}" = Microsoft Azure Tools for Microsoft Visual Studio 2015 Core
"{90DFD61B-8224-00C6-3D69-A983B60A394E}" = Bamboo Dock
"{919C67A9-2DE8-4929-A910-CB85E009B5CB}" = Microsoft Visual Studio 2015 Preparation
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{9386EBBF-C3A3-348F-8E92-DCD333F0D48B}" = Visual C++ Compiler/Tools X64 Base Package
"{93998800-1608-403F-9A51-420A77D23C25}" = Sql Server Customer Experience Improvement Program
"{93A31A4A-197C-43F0-9687-7FFC47C33D44}" = Microsoft Visual Studio 2015 Preparation
"{93BAE8F6-4D5A-30EA-9BAF-B04C1EF69D9A}" = Visual C++ Compiler/Tools Premium X86 Base Resource Package
"{948B5F49-A57E-46B4-9F1E-145D7A9E66D7}" = Microsoft SQL Server 2016 Management Objects RC0
"{9491DE6E-F04C-36D6-A6B2-61ED1A0E5396}" = Visual C++ Compiler/Tools X86 Native Package
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95457FAA-9C22-30A9-AFDF-BAEF6C6F6E6E}" = Visual C++ Compiler/Tools Premium X64 X86 Cross Package
"{9720C029-0C2C-4D1E-9DE0-E89971C4C8C7}" = Silent Hunter III
"{976C3D92-0DEC-37A6-A870-FF4FC18CD029}" = Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps
"{98104FDB-0913-3C9D-BD43-A4304DC0C297}" = Microsoft Visual Studio 2015 XAML Designer - ENU
"{981F324E-98F4-4784-B76F-04E92039F3F6}" = Application Insights Tools for Visual Studio 2015
"{984022F2-9BCA-A41D-6A38-1AE658F01415}" = Windows Software Development Kit
"{9909F3F0-D638-3943-BF46-EB0AF9179676}" = Visual C++ Library CRT Redist Resource Package
"{99487911-8011-42BC-B594-8B02BFD32B1D}_is1" = Color Suite v11.1.4
"{99C9FABF-C085-38C9-B2DA-7E4943471D31}" = Visual C++ Compiler/Tools X86 Base Package
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B3A1C97-A361-463E-8817-444F9F88CDFE}" = Microsoft Expression Blend SDK for .NET 4
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D013794-1E76-3557-8791-9873FD41942F}" = Visual C++ Compiler/Tools X86 X64 Cross Package
"{9E2C6393-062F-4CE0-B178-54778A0A5990}" = Install Finalizer
"{9E99CC49-D305-4D42-AC34-6C732062B142}" = Microsoft Visual Studio 2015 Preparation
"{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}" = Test Tools for Microsoft Visual Studio 2015
"{9EE4213F-C30A-316A-9DF0-9781D6695837}" = Visual C++ Library PGO X64 Package
"{9F6466D9-6EFC-4A10-B931-C72D1A3F1763}" = Autodesk Material Library Medium Resolution Image Library 2015
"{9FAF5CD1-7954-4712-BC7E-67FA8645DF58}" = Cloud Deployment Project for Microsoft Visual Studio 2015 - v2.9
"{A00EC54A-CE16-4CF6-A14A-5CF81A1FE03F}" = Microsoft Azure Mobile Services SDK V2.0
"{A1086DA0-903E-4DEA-A83F-6317923CC63D}" = headus UVLayout v2 Professional
"{A1CB8286-CFB3-A985-D799-721A0F2A27F3}" = Windows Software Development Kit DirectX x86 Remote
"{A223B446-EC3D-3031-828D-5188800AB782}" = Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (ENU)
"{A36A21B8-2D63-35C0-8CFB-83385A5BC201}" = Visual C++ Library MFC Source Package
"{A4495E4F-5218-48FB-8AD2-F3076011B9E1}" = Microsoft Azure Mobile Services Connected Service
"{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}" = Microsoft SQL Server System CLR Types
"{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}" = Adobe Dreamweaver CS6
"{A563F0A7-CF99-37E6-A917-CD6A2509F79C}" = Visual C++ MSBuild Base Package
"{A5E71A84-9BAB-3A96-A5F8-62AD16E09E56}" = Visual C++ Compiler/Tools X86 Base Package
"{A6ACA586-9C39-3F57-82B6-9345FF1672F9}" = Microsoft Azure Quickstarts
"{A80684E0-21BA-3B57-B590-C57EF248B9AB}" = Visual C++ CRT Headers Package
"{A8C402D5-7FFE-43BB-9522-4374119A05EB}" = Microsoft Report Viewer Add-On for Visual Studio 2015
"{AAB41896-269C-4634-984D-20682BF8D415}" = Open-EID Uninstaller
"{AACBC901-8753-3FAE-86A0-177EF5052974}" = Visual C++ Compiler/Tools Premium X64 ARM Cross Package
"{AB3903D7-8CC4-3708-9558-93F68CED88C5}" = Visual C++ IDE Core Package
"{AB72EB1C-9CF4-4274-984D-5EDA8BF37A08}" = Prerequisites for SSDT RC0
"{ABD37F71-FC3F-F525-C7B3-BDD95F684C51}" = Universal CRT Headers Libraries and Sources
"{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}" = Autodesk Material Library Base Resolution Image Library 2015
"{AC76BA86-0804-1033-1959-001824205020}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1031-7B44-AC0F074E4100}" = Adobe Acrobat Reader DC - Deutsch
"{ADB88179-BECB-3FA3-AB20-9362E8A2626C}" = Visual C++ MSBuild X86 Package
"{AEA163A5-BA2F-4E63-9529-DE8606AC82A4}" = Visual Studio 2010 SP1 Runtime x86
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Origins
"{AEF02017-0B07-32AC-B79C-07CC913159B2}" = Visual C++ Professional Templates Package
"{AF08A038-7EFD-4852-B4C9-29D8DD708CDF}" = Microsoft Azure HDInsight Tools for Visual Studio 2015
"{AF37176A-78CA-545B-34EF-8B6A21514DD1}" = Adobe Help Manager
"{B014EE44-9197-4513-9613-71E6EB1B514E}" = Nikon Message Center 2
"{B048B812-32DE-3474-FA64-223B6A63AD47}" = Universal CRT Tools x86
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B1C38F27-D377-8C98-D98D-29B67C0B978D}" = LocalESPCui for en-us Dev12
"{B2BA21D5-8973-3AA6-936D-F2C51BF6D764}" = Visual C++ IDE Core Professional Plus Resource Package
"{B377A5F4-BF25-3DC8-8105-D8DBCE0437CD}" = Visual C++ Compiler/Tools X86 ARM Cross Resource Package
"{B3D6A0CC-159D-3EB6-B331-5CB17F1A0513}" = Visual C++ Compiler/Tools Premium ARM Base Resource Package
"{B457E718-00CA-45C8-9F75-45D66F8DAFF6}" = Media Streamer
"{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}" = SQL Server 2008 R2 SP2 Database Engine Services
"{B57097EF-5F38-348C-8081-4D0F0B78757E}" = Microsoft Agents for Visual Studio 2015 Preview - ENU
"{B574FFD4-0AC4-3AAA-87CF-A84885CCC763}" = Visual C++ Compiler/Tools Premium X64 ARM Cross Resource Package
"{B5915D37-0637-4A26-A3AA-C5DC9F856370}" = Microsoft .NET Framework 4.6 SDK
"{B5D68EFB-1191-38F2-A1FD-632AE853AE89}" = Visual C++ Compiler/Tools Premium X64 Native Resource Package
"{B5FC62F5-A367-37A5-9FD2-A6E137C0096F}" = Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23918
"{B604BD66-D31A-38F5-9562-F05E6B5E3E0A}" = Visual C++ Library CRT Source Package
"{B70DCF97-C591-31C9-9E46-6BC14D1F8295}" = Visual C++ Compiler/Tools Premium X86 ARM Cross Resource Package
"{BAAC4157-7CD5-3E70-BE9E-D4C78463CD61}" = Visual C++ IDE Optional Desktop Support Package
"{BC0FB8BF-E57B-30AB-8B77-DC11C75B4212}" = Visual C++ IDE Core Professional Plus Resource Package
"{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}" = Gtk# for .Net 2.12.26
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{BD9CFD69-EB91-354E-9C98-D439E6091932}" = Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23918
"{BE4BA698-8533-4F77-9559-C7F3F78C0B05}" = Assassin's Creed Brotherhood
"{BEB1097E-3A87-4406-AD9D-E8E569D3FADE}" = Image Trends' ShineOff Plug-In 2.1.5
"{BF9BF038-FE03-429D-9B26-2FA0FD756052}" = Microsoft SQL Server Browser
"{BFE6FB12-8839-33BD-A64A-C9DD2A74C187}" = Visual C++ Compiler/Tools X86 Native Resource Package
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C0626FD4-C98A-33C9-97A8-5FF35AC92F34}" = Microsoft Portable Library Multi-Targeting Pack Language Pack - enu
"{C0719D2C-5CA9-3824-903F-74F2CB9257D3}" = vs_update2notification
"{C11C0C98-6A50-4E72-BD3A-C2980C0DD9A8}" = Microsoft Azure Storage Emulator - v4.4
"{C26829A1-4763-3A23-9522-5B9F16221712}" = Visual C++ IDE Debugger Resource Package
"{C3897C8D-0D28-417B-910A-0532B6D4C4E9}" = Microsoft Azure Tools for Microsoft Visual Studio 2015 - v2.9
"{c6772660-0b37-42dc-86e7-10b57b1141f7}" = eID software
"{c6c5a357-c7ca-4a5f-9789-3bb1af579253}" = Launcher Prerequisites (x64)
"{C70EC402-4FAA-3B06-9BE6-77C52DBCD9B3}" = Visual Studio Graphics Analyzer
"{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}" = ASUS Product Register Program
"{C8AC11BB-B680-44A2-ACE4-2D88D6A711CE}" = Microsoft .NET Core 5.0 SDK
"{C915EA4E-24C9-3398-983C-CB9B9220B1EE}" = Visual C++ IDE Core Professional Plus Resource Package
"{CA4F7840-CC89-451D-8453-392F2EDAA605}" = Epic Games Launcher
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{CA916A4C-52F7-5055-975F-9B4AD4204007}" = Microsoft ASP.NET Web Frameworks and Tools - Visual Studio 2015 - ENU
"{CAC666AC-1986-3B50-9670-552432D5B88A}" = Visual C++ IDE Core Professional Plus Resource Package
"{CACEA8C8-3D38-4F51-953D-1E6FC3346FEF}" = SQL Server 2008 R2 SP2 Common Files
"{CAF660D4-4F76-45BD-BCDE-B3E30245E83D}" = Microsoft Azure Data Lake Tools for Visual Studio 2015
"{cb2c12b3-4bbd-487c-8a02-2af811a76cba}" = Microsoft .NET Framework 4.6.1 Developer Pack
"{CB6E007E-701D-42CD-AF0E-4BE9C36C7F7C}" = Autodesk Material Library Medium Resolution Image Library 2017
"{CB9ACB62-F1F4-3111-A1C8-AC88A646FB65}" = Visual C++ Compiler/Tools X64 ARM Cross Package
"{cba532d0-1425-41b1-85eb-4221ac2d63e7}" = Microsoft .NET Framework 4.6.1 Developer Pack (DEU)
"{CBD38CFB-96C4-4C80-802A-C6145A689395}" = Uninstall Finalizer
"{CBE7F62C-646C-46C3-9AB4-A3F71E5A68CC}" = Microsoft Build Tools Language Resources 14.0 (x86)
"{cc50dd74-d143-4aba-bb65-caf2953d4302}" = Microsoft Azure App Service Tools v2.9.1 - Visual Studio 2015
"{ccac9f21-ebd8-47e8-b566-de87b1f69e42}" = Microsoft .NET Framework 4.6.1 Developer Pack (DEU)
"{CE37CE67-2660-30EE-805B-78829CC3554B}" = Microsoft Agents for Visual Studio 2015 Preview
"{CE858D2A-E28B-30F1-A3FE-7EA8A2F305E0}" = Visual C++ Library CRT X64 Desktop Package
"{CF3BBDD5-810D-42CC-A1B0-CA4CF0C4B721}" = Acronis True Image 2016 Media Add-on
"{CF436B98-B0FE-447F-8E46-68E0B14FDDE0}" = TypeScript Power Tool
"{CFA7370A-25CD-3A61-AE54-4B8A3C946C63}" = Visual C++ IDE Optional XP Support Package
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D030F767-7DE1-3EC0-A2C5-1BE8D73B12AD}" = Microsoft .NET Core Tools 2015 (Preview 1) - Visual Studio 2015
"{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}" = GPUTweakStreaming
"{D3517C62-68A5-37CF-92F7-93C029A89681}" = Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU)
"{D441BD04-E548-4F8E-97A4-1B66135BAAA8}" = Microsoft SQL Server 2008 Setup Support Files 
"{D46DA5F0-25AD-4B77-98DA-6DD6AF39FBD9}" = AI Suite 3
"{D4F08C63-6B55-4EB4-AD92-6B3FAB8908C5}" = Azure Resource Manager Tools (VS 2015) - v2.9
"{D527C5EC-05FA-3F8F-86E4-A0FDC5460E2B}" = Visual C++ Library PGO X86 Package
"{D7F166B4-0CB7-4CB4-AED7-60B7CDCF2B18}" = AzureTools.Notifications
"{D84B1C7A-7C28-3133-AA25-2D36763182AD}" = Visual C++ IDE Core Professional Plus Resource Package
"{D87401B8-75AB-3346-A0F2-7A09CBE89275}" = Visual C++ Compiler/Tools Premium X64 Native Package
"{D98C9637-93DA-44DB-B73A-B11A1192AB26}" = GameShadow
"{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}" = Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918
"{DAFC22CE-C50B-375F-8FCD-75C047DB04D8}" = Visual C++ Compiler/Tools Premium X64 X86 Cross Resource Package
"{DB014C85-A264-4BCA-A66F-6DD1FCF8EC36}" = Citrix Online Launcher
"{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}" = WCF Data Services 5.6.4 Runtime
"{DC4C36DC-4E5B-4262-B0C7-157DF534B969}" = Dragon Age™: Inquisition
"{DC85F385-AF03-33F3-A173-F696CCEBFD87}" = Visual C++ Compiler/Tools X64 Native Resource Package
"{DC8D5D15-955A-36CF-B161-BBC9F8F4FBBB}" = Visual C++ Compiler/Tools X64 X86 Cross Package
"{DDC53ADA-1D37-4038-82CA-C296C8C0027F}" = Microsoft Visual Studio 2015 Update 2 Diagnostic Tools - x86
"{DE064F60-6522-3310-9665-B5E3E78B3638}" = Microsoft Visual Studio Community 2015
"{DF27D91D-516E-4DA1-92AC-7D7D59B2D99E}" = Microsoft Build Tools 14.0 (x86)
"{E040B65B-8683-4228-8C33-D44A141E40EA}" = Secure Download Manager
"{E09C0066-EC99-3386-A252-ED7C4F729682}" = Visual F# 4.0 SDK
"{E0A2B26A-D005-35DE-B6EF-B36D51CE066D}" = Visual C++ Compiler/Tools Premium ARM Base Package
"{E19B628D-A9BC-4519-B1D4-4C8C09074F7F}" = Mass Effect™ 2
"{E1FBB3D4-ADB0-4949-B101-855DA061C735}" = Microsoft Silverlight 5 SDK
"{E280923D-C5D9-4728-8C79-AC9A0DC75875}" = BioShock
"{E413256C-F028-3C5E-B9B2-728ED1F544C6}" = Visual C++ IDE Core Professional Plus Resource Package
"{E41854EE-D8A6-4E03-B42D-E0006C24A306}" = Microsoft Visual Studio 2015 Test Tools Language Pack - ENU
"{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}" = Asmedia ASM104x USB 3.0 Host Controller Driver
"{E57E4E87-61B6-3FDC-A4D3-BAE317678B74}" = Visual C++ IDE Common Package
"{E6597C44-DF3C-3BE6-A5A1-28E6DAECBA30}" = Visual C++ IDE Core Professional Plus Resource Package
"{E6CAD8B3-5682-31CA-A05E-79F6DBF81066}" = Roslyn Language Services - x86
"{E6D09370-D4B1-3421-A0F6-45DF6999EBED}" = Visual C++ IDE Base Resource Package
"{E7F1053C-5E3B-3AD0-B012-42FFC0B48C87}" = Visual C++ Library CRT ARM Redist Package
"{E8EB9130-8C34-4DCE-A6C4-B1C5A399F616}" = iClone v5.51 PRO
"{E94A8331-990D-39F5-881E-C12FB1BA0766}" = Visual C++ Library CRT X86 Redist Package
"{E9C0B8EB-B111-3627-A20C-5AFD1D6BD235}" = Microsoft Visual Studio 2015 SDK - ENU
"{EB4B3254-5483-3C7B-AC56-D49231C3B51A}" = Visual C++ IDE Core Professional Plus Resource Package
"{EC92633C-8F08-470A-BCDF-3FE5FD778C8D}" = Autodesk Download Manager
"{ECC8F805-E519-3314-8C79-DC6CAC3E64DC}" = Visual C++ IDE Base Package
"{EDD2E5B3-A0B2-38A0-B781-B1D21AA51600}" = Visual C++ IDE Desktop Plus Package
"{EF3EE0BB-DDB9-32F0-98CA-32C4B6C47D7E}" = Visual C++ IDE Core Professional Plus Resource Package
"{EFBE6DD5-B224-96E5-72B9-68D328CB12A6}" = Adobe Widget Browser
"{EFECC55D-7B0A-4D05-8487-CC2FD7C618A3}" = Microsoft SQL Server 2008 R2 Setup (English)
"{F021CC0C-21C3-4038-AA4A-6E3CBC669CE8}" = SQL Server 2008 R2 SP2 Database Engine Shared
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2E04A40-3EA7-42F8-B7CC-B6E7A39DC150}" = Adobe AIR
"{F34C2A31-A57C-43F9-BEA4-F3E4F59AF3F3}" = Microsoft Azure Storage Tools - v5.0.0
"{F361FE04-789E-42F3-BBAB-E7B380AA5E06}" = Windows XP Targeting with C++
"{F395FD4F-40E5-7B56-2BCB-B3CF52B3B52C}" = Windows App Certification Kit x64
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{F944F1F7-77A9-394A-A500-FB3BFA69EBDC}" = Visual C++ IDE Professional Plus Resource Package
"{F9B579C2-D854-300A-BE62-A09EB9D722E4}" = Google Talk Plugin
"{FA32C998-12C6-49B8-9DA6-F5F058E505AB}" = Microsoft Visual Studio 2015 Update 2 Performance Debugger Web Views
"{FC1F3422-0C94-3178-AD95-3EA889DF55AF}" = Microsoft Visual Studio 2015 Devenv
"{FC835376-FF3B-4CAA-83E0-2148B3FB7C98}" = SQL Server 2008 R2 SP2 Common Files
"{FC94D188-1E08-3707-9D23-F41178D44664}" = Windows Espc Resource Package
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.18
"{FDCEC41C-35DA-421C-A520-53D185BC43FA}" = Python Tools 2.2.3 for Visual Studio 2015
"{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}" = QuickTime 7
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"1207658722_is1" = Capitalism 2
"32 Float v3" = 32 Float v3
"4ff11ffb-5880-4338-90e0-1502e835b184" = ASUS HomeCloud Launcher
"Adobe AIR" = Adobe AIR
"Adobe Flash Player NPAPI" = Adobe Flash Player 23 NPAPI
"AdobeLensProfileDownloader" = Adobe Lens Profile Downloader
"AnalogExif" = AnalogExif
"Autodesk Desktop App" = Autodesk Desktop-App
"Bamboo Dock" = Bamboo Dock
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Help Manager
"ColorChecker Passport_is1" = ColorChecker Passport 1.1.0
"ColorMunki Display_is1" = ColorMunki Display 1.1.1
"com.adobe.WidgetBrowser" = Adobe Widget Browser
"ContentMod_2.6.3" = ContentMod2.6.3
"ControlMyNikon 5.2" = ControlMyNikon 5.2
"Diablo II" = Diablo II
"DNG ProfileManager_is1" = DNG ProfileManager 1.0.3
"Dropbox" = Dropbox
"Exif-Viewer" = Exif-Viewer 2.51 
"FileZilla Client" = FileZilla Client 3.22.1
"G3QP231012008_is1" = Questpaket 4 Update 2 Deinstallation
"Google Chrome" = Google Chrome
"HDR Expose 3" = HDR Expose 3
"ImgBurn" = ImgBurn
"InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}" = ASUS GPU Tweak
"InstallShield_{9720C029-0C2C-4D1E-9DE0-E89971C4C8C7}" = Silent Hunter III
"InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}" = GPUTweakStreaming
"Jagged Alliance 2" = Jagged Alliance 2
"KeyShot 5_64" = KeyShot 5 64 bit
"Lazy Nezumi Pro_is1" = Lazy Nezumi Pro 16.7.30.1859
"LightWave 11.6.3 64-bit 11.6.3" = LightWave 11.6.3 64-bit
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.2.1.1043
"MeshLab_64b" = MeshLab_64b 1.3.3
"Microsoft Azure Storage Emulator - v4.4" = Microsoft Azure Storage Emulator - v4.4
"Microsoft Help Viewer 2.1" = Microsoft Help Viewer 2.1
"Microsoft Help Viewer 2.2" = Microsoft Help Viewer 2.2
"Microsoft SQL Server 10" = Microsoft SQL Server 2008 R2
"Microsoft SQL Server 2008 R2" = Microsoft SQL Server 2008 R2
"Mozilla Firefox 49.0.2 (x86 de)" = Mozilla Firefox 49.0.2 (x86 de)
"Mozilla Thunderbird 45.4.0 (x86 de)" = Mozilla Thunderbird 45.4.0 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSET_Toolbag" = Marmoset Toolbag 2
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Opera 41.0.2353.56" = Opera Stable 41.0.2353.56
"Origin" = Origin
"Pano2VR" = Pano2VR - Garden Gnome Software
"PhotoME Beta-Release_is1" = PhotoME Beta-Release
"PTGui" = PTGui Pro 10.0.15
"PunkBusterSvc" = PunkBuster Services
"Secunia PSI" = Secunia PSI (3.0.0.7011)
"Skanect 1.8 (Win64)" = Skanect 1.8
"Steam" = Steam
"Steam App 72850" = The Elder Scrolls V: Skyrim
"TopoGun2 W64" = TopoGun 2 W64
"Unity" = Unity
"Wacom WebTabletPlugin for Internet Explorer and Netscape" = WebTablet FB Plugin 32 bit
"wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1" = Bamboo Dock
"WebStorage" = WebStorage
"WinRAR archiver" = WinRAR 5.21 (32-bit)
"x264vfw" = x264vfw - H.264/MPEG-4 AVC codec (remove only)
"Xvid Video Codec 1.3.3" = Xvid Video Codec
"ZBrush 4R7 4R7" = ZBrush 4R7
 
[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"Amazon Kindle" = Amazon Kindle
"Electrum" = Electrum
"GoToMeeting" = GoToMeeting 7.26.0.5808
"UnityWebPlayer" = Unity Web Player
 
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 10.11.2016 02:58:37 | Computer Name = Hyperion | Source = DbxSvc | ID = 131392
Description = Failed to connect to the driver: (-2147024894) Das System kann die
 angegebene Datei nicht finden. 
 
Error - 10.11.2016 02:58:45 | Computer Name = Hyperion | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: DipAwayMode.exe, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.14393.321,
 Zeitstempel: 0x57f4c291  Ausnahmecode: 0xc0000409  Fehleroffset: 0x000da6f2  ID des fehlerhaften
 Prozesses: 0x1b78  Startzeit der fehlerhaften Anwendung: 0x01d23b1fde5f0d11  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
Pfad
 des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll  Berichtskennung: 70314c9c-5d1b-49a6-87fb-ce00d058ee49
Vollständiger
 Name des fehlerhaften Pakets:   Anwendungs-ID, die relativ zum fehlerhaften Paket
 ist: 
 
Error - 10.11.2016 04:44:50 | Computer Name = Hyperion | Source = DbxSvc | ID = 131392
Description = Failed to connect to the driver: (-2147024894) Das System kann die
 angegebene Datei nicht finden. 
 
Error - 10.11.2016 04:45:06 | Computer Name = Hyperion | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: DipAwayMode.exe, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.14393.321,
 Zeitstempel: 0x57f4c291  Ausnahmecode: 0xc0000409  Fehleroffset: 0x000da6f2  ID des fehlerhaften
 Prozesses: 0x1b8c  Startzeit der fehlerhaften Anwendung: 0x01d23b2eb7dfa4ba  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
Pfad
 des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll  Berichtskennung: 6ad149fd-84ed-4631-9ab7-70821598809f
Vollständiger
 Name des fehlerhaften Pakets:   Anwendungs-ID, die relativ zum fehlerhaften Paket
 ist: 
 
Error - 10.11.2016 04:50:39 | Computer Name = Hyperion | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files
 (x86)\Microsoft Visual Studio 14.0\VC\redist\1033\vcredist_arm.exe".  Die abhängige
 Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 10.11.2016 04:51:24 | Computer Name = Hyperion | Source = SideBySide | ID = 16842761
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\WinZip\adxloader.dll.Manifest".
 Fehler in Manifest- oder Richtliniendatei "C:\Program Files\WinZip\adxloader.dll.Manifest"
 in Zeile 2.  Das Stammelement der Manifestdatei muss assembliert sein.
 
Error - 10.11.2016 04:51:44 | Computer Name = Hyperion | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "k:\programme\adobe\premiere
 elements\adobe premiere elements 14\MPEGHDVExport.exe".  Die abhängige Assemblierung
 "Plug-ins\Common\TSStrider,type="win32",version="1.0.0.0"" konnte nicht
 gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
 
Error - 10.11.2016 05:26:35 | Computer Name = Hyperion | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files
 (x86)\Microsoft Visual Studio 14.0\VC\redist\1033\vcredist_arm.exe".  Die abhängige
 Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 10.11.2016 05:28:27 | Computer Name = Hyperion | Source = DbxSvc | ID = 131392
Description = Failed to connect to the driver: (-2147024894) Das System kann die
 angegebene Datei nicht finden. 
 
Error - 10.11.2016 05:28:33 | Computer Name = Hyperion | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: DipAwayMode.exe, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.14393.321,
 Zeitstempel: 0x57f4c291  Ausnahmecode: 0xc0000409  Fehleroffset: 0x000da6f2  ID des fehlerhaften
 Prozesses: 0x1954  Startzeit der fehlerhaften Anwendung: 0x01d23b34cb90417c  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
Pfad
 des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll  Berichtskennung: 4d2b1830-0906-4370-99c4-c3eee91b1d31
Vollständiger
 Name des fehlerhaften Pakets:   Anwendungs-ID, die relativ zum fehlerhaften Paket
 ist: 
 
[ System Events ]
Error - 10.11.2016 05:01:02 | Computer Name = Hyperion | Source = DCOM | ID = 10016
Description = 
 
Error - 10.11.2016 05:01:02 | Computer Name = Hyperion | Source = DCOM | ID = 10016
Description = 
 
Error - 10.11.2016 05:28:27 | Computer Name = Hyperion | Source = DCOM | ID = 10016
Description = 
 
Error - 10.11.2016 05:28:27 | Computer Name = Hyperion | Source = DCOM | ID = 10016
Description = 
 
Error - 10.11.2016 05:28:28 | Computer Name = Hyperion | Source = DCOM | ID = 10016
Description = 
 
Error - 10.11.2016 05:56:16 | Computer Name = Hyperion | Source = DCOM | ID = 10016
Description = 
 
Error - 10.11.2016 05:56:16 | Computer Name = Hyperion | Source = DCOM | ID = 10016
Description = 
 
Error - 10.11.2016 05:56:16 | Computer Name = Hyperion | Source = DCOM | ID = 10016
Description = 
 
Error - 10.11.2016 05:56:16 | Computer Name = Hyperion | Source = DCOM | ID = 10016
Description = 
 
Error - 10.11.2016 05:59:22 | Computer Name = Hyperion | Source = Service Control Manager | ID = 7016
Description = Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen
 Status gemeldet: 0
 
 
< End of report >

10.11.2016, 13:03

MaTo

Gesperrt

Beiträge: 15

#3 bitte auch mal AdwCleaner (https://toolslib.net/downloads/viewdownload/1-adwcleaner/) probieren, da die Startseite des Browser verändert ist? "https://startpage.com/deu/?"
ADW wird bestimmt etwas finden.

Wenn Java nicht gebraucht wird runter damit oder dann updaten und alte Version deinstallieren.

Die ganze ASUS vorinstallierte Software, wenn nicht genutzt, runter damit (online Speicher etc.)

ggf. auch nochmal PandaCloudCleaner durchlaufen lassen http://pandacloudcleaner.pandasecurity.com/facebook/

Dieser Beitrag wurde am 10.11.2016 um 14:14 Uhr von MaTo editiert.

10.11.2016, 16:58

Gernot1

...neu hier

Themenstarter

Beiträge: 5

#4 Danke für die Antwort,
AdwCleaner hat das gefunden:

Code


# AdwCleaner v6.030 - Bericht erstellt am 10/11/2016 um 14:50:18
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-11-10.1 [Server]
# Betriebssystem : Windows 10 Pro  (X64)
# Benutzername : Empedokles - HYPERION
# Gestartet von : C:\Users\Empedokles\Downloads\adwcleaner_6.030.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****

Keine schädlichen Dienste gefunden.


***** [ Ordner ] *****

Keine schädlichen Ordner gefunden.


***** [ Dateien ] *****

Keine schädlichen Dateien gefunden.


***** [ DLL ] *****

Keine infizierten DLLs gefunden.


***** [ WMI ] *****

Keine schädlichen Schlüssel gefunden.


***** [ Verknüpfungen ] *****

Keine infizierten Verknüpfungen gefunden.


***** [ Aufgabenplanung ] *****

Keine schädlichen Aufgaben gefunden.


***** [ Registrierungsdatenbank ] *****

Schlüssel Gefunden: [x64] HKLM\SOFTWARE\Tarma Installer
Schlüssel Gefunden: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Schlüssel Gefunden: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Schlüssel Gefunden: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Schlüssel Gefunden: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com


***** [ Internetbrowser ] *****

Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Keine schädlichen Elemente in Chrome basierten Browsern gefunden.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [1562 Bytes] - [10/11/2016 14:50:18]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1635 Bytes] ##########

Von PandaCloudCleaner hab ich kein logfile, aber es hat ein paar Schlüssel entfernt im Zusammenhang mit "Suspicious Operating System Policy change to hide file extension in explorer". (Genauen Wortlaut weiß ich nicht mehr)

Hilft das weiter? Sollte ich noch weitere Scans machen?

Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!

Folgende Themen könnten Dich auch interessieren:

Seite(n): 1