cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 10/01/2016 19:40:57 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\jerem\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10586.0)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

7,92 Gb Total Physical Memory | 4,49 Gb Available Physical Memory | 56,78% Memory free
9,17 Gb Paging File | 5,62 Gb Available in Paging File | 61,29% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 921,23 Gb Total Space | 857,22 Gb Free Space | 93,05% Space Free | Partition Type: NTFS

Computer Name: LAPTOP-3MLB6DV0 | User Name: jerem | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - File not found --
PRC - [2016/01/10 19:38:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jerem\Downloads\OTL.exe
PRC - [2015/12/21 22:29:34 | 000,144,384 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
PRC - [2015/12/21 21:46:36 | 000,551,112 | ---- | M] (Microsoft Corporation) -- C:\Users\jerem\AppData\Local\Microsoft\OneDrive\OneDrive.exe
PRC - [2015/12/11 04:54:14 | 000,741,704 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2015/12/04 15:53:44 | 000,554,288 | ---- | M] () -- C:\Users\jerem\AppData\Roaming\cacaoweb\cacaoweb.exe
PRC - [2015/11/24 18:38:30 | 001,561,344 | ---- | M] (Bitdefender) -- C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
PRC - [2015/10/12 08:28:44 | 001,433,216 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
PRC - [2015/10/12 08:28:42 | 001,773,696 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
PRC - [2015/09/15 16:31:50 | 000,283,024 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe
PRC - [2015/06/24 00:08:22 | 000,223,008 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2015/01/16 23:41:12 | 002,585,744 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2015/01/16 23:41:10 | 001,706,128 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2015/12/24 07:46:02 | 016,792,256 | ---- | M] () -- C:\Users\jerem\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll
MOD - [2015/12/21 22:29:34 | 021,845,504 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll
MOD - [2015/12/21 22:29:34 | 000,144,384 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
MOD - [2015/12/21 22:29:34 | 000,141,312 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
MOD - [2015/12/11 04:54:11 | 001,583,432 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
MOD - [2015/12/11 04:54:09 | 000,081,224 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
MOD - [2015/12/04 15:53:44 | 000,554,288 | ---- | M] () -- C:\Users\jerem\AppData\Roaming\cacaoweb\cacaoweb.exe


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2015/12/21 20:58:09 | 000,275,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2015/12/21 20:58:09 | 000,203,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc)
SRV:[b]64bit:[/b] - [2015/12/21 20:58:02 | 001,223,168 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc)
SRV:[b]64bit:[/b] - [2015/12/21 20:58:02 | 001,035,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc)
SRV:[b]64bit:[/b] - [2015/12/21 20:58:02 | 000,912,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager)
SRV:[b]64bit:[/b] - [2015/12/21 20:58:02 | 000,607,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2015/12/21 20:58:00 | 000,948,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager)
SRV:[b]64bit:[/b] - [2015/12/21 20:58:00 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SensorService.dll -- (SensorService)
SRV:[b]64bit:[/b] - [2015/12/21 20:58:00 | 000,162,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc)
SRV:[b]64bit:[/b] - [2015/12/21 20:58:00 | 000,087,040 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate)
SRV:[b]64bit:[/b] - [2015/12/21 20:58:00 | 000,066,560 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker)
SRV:[b]64bit:[/b] - [2015/11/24 18:39:01 | 000,078,144 | ---- | M] (Bitdefender) [On_Demand | Stopped] -- C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe -- (BdDesktopParental)
SRV:[b]64bit:[/b] - [2015/11/24 18:38:30 | 001,561,344 | ---- | M] (Bitdefender) [Auto | Running] -- C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe -- (VSSERV)
SRV:[b]64bit:[/b] - [2015/11/24 18:38:27 | 000,100,816 | ---- | M] (Bitdefender) [Auto | Running] -- C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe -- (UPDATESRV)
SRV:[b]64bit:[/b] - [2015/11/24 04:52:16 | 002,802,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe -- (ClickToRunSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:19:28 | 001,073,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo)
SRV:[b]64bit:[/b] - [2015/10/30 08:19:28 | 000,075,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2015/10/30 08:19:26 | 000,504,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2015/10/30 08:19:26 | 000,497,664 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:46 | 000,168,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:43 | 001,872,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:41 | 000,117,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:19 | 001,297,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:18 | 000,729,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:14 | 000,081,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:03 | 001,613,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 001,491,456 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 001,130,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 000,649,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 000,587,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 000,490,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\tileobjserver.dll -- (tiledatamodelsvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 000,339,968 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 000,252,928 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 000,034,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:59 | 002,745,856 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:59 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:59 | 000,023,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:58 | 000,764,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:58 | 000,287,744 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:54 | 003,449,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:54 | 001,090,048 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:54 | 000,360,960 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\usocore.dll -- (UsoSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:53 | 002,058,240 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:53 | 000,846,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:53 | 000,625,000 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:53 | 000,361,984 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:53 | 000,097,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:53 | 000,060,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:52 | 000,181,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:51 | 000,031,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:50 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:50 | 000,145,408 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_8033978)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_20d433)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_8033978)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_20d433)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_8033978)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_20d433)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_8033978)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_20d433)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_8033978)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_20d433)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:48 | 000,444,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:48 | 000,205,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:47 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:46 | 000,290,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:46 | 000,186,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dcpsvc.dll -- (DcpSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:46 | 000,118,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:46 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:45 | 000,313,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:43 | 002,156,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:43 | 000,278,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:43 | 000,057,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:41 | 000,052,736 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:40 | 000,590,336 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:39 | 000,547,840 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,747,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,380,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,364,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,164,864 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,024,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:21 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,326,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
SRV:[b]64bit:[/b] - [2015/10/29 09:19:30 | 000,246,472 | ---- | M] (Synaptics Incorporated) [Auto | Running] -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe -- (SynTPEnhService)
SRV:[b]64bit:[/b] - [2015/09/15 16:31:46 | 000,351,120 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\igfxCUIService.exe -- (igfxCUIService2.0.0.0)
SRV:[b]64bit:[/b] - [2015/08/13 05:02:13 | 002,278,152 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Windows\SysNative\BtwRSupportService.exe -- (BcmBtRSupport)
SRV:[b]64bit:[/b] - [2015/07/10 13:59:16 | 000,972,080 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe -- (TPCHSrv)
SRV:[b]64bit:[/b] - [2015/07/06 09:53:20 | 000,331,056 | ---- | M] (Toshiba Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Teco\TecoService.exe -- (TOSHIBA eco Utility Service)
SRV:[b]64bit:[/b] - [2015/05/22 00:24:00 | 000,881,152 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2015/02/06 01:04:28 | 000,225,496 | ---- | M] (Conexant Systems Inc.) [Auto | Running] -- C:\Windows\SysNative\CxAudMsg64.exe -- (CxAudMsg)
SRV:[b]64bit:[/b] - [2015/01/16 23:41:10 | 001,148,560 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV:[b]64bit:[/b] - [2015/01/16 23:41:08 | 021,833,360 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:[b]64bit:[/b] - [2014/04/03 12:34:28 | 000,053,896 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
SRV - [2015/12/21 20:58:02 | 000,948,224 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc)
SRV - [2015/11/17 12:05:32 | 000,120,392 | ---- | M] (Toshiba Europe GmbH) [On_Demand | Running] -- C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe -- (TemproMonitoringService)
SRV - [2015/10/30 08:18:31 | 002,179,584 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository)
SRV - [2015/10/30 08:18:31 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\lfsvc.dll -- (lfsvc)
SRV - [2015/10/30 08:18:29 | 000,461,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2015/10/30 08:18:23 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2015/10/30 08:18:21 | 000,200,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2015/10/30 08:17:21 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2015/10/12 08:28:44 | 001,433,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc)
SRV - [2015/10/12 08:28:42 | 001,773,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc)
SRV - [2015/10/09 12:15:00 | 000,236,816 | ---- | M] (MustangService) [Auto | Stopped] -- C:\ProgramData\TempMoudleSet\MustangSer1840.exe -- (MustangService_2015_10_10)
SRV - [2015/09/15 16:31:50 | 000,283,024 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2015/07/09 12:14:04 | 000,327,296 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015/06/24 12:57:40 | 000,326,960 | ---- | M] (TOSHIBA) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\TOSHIBA System Driver\RMService.exe -- (TOSRMService)
SRV - [2015/06/24 00:08:22 | 000,223,008 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2015/01/16 23:41:10 | 001,706,128 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2012/04/24 13:37:56 | 000,169,752 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2015/12/21 22:08:19 | 000,282,000 | ---- | M] (BitDefender) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\avchv.sys -- (avchv)
DRV:[b]64bit:[/b] - [2015/12/21 20:57:59 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\capimg.sys -- (CapImg)
DRV:[b]64bit:[/b] - [2015/12/21 20:57:59 | 000,095,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2015/11/24 18:39:07 | 000,160,032 | ---- | M] (BitDefender LLC) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\gzflt.sys -- (gzflt)
DRV:[b]64bit:[/b] - [2015/11/24 18:38:29 | 000,477,272 | ---- | M] (BitDefender S.R.L.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\trufos.sys -- (trufos)
DRV:[b]64bit:[/b] - [2015/11/24 18:38:23 | 000,775,424 | ---- | M] (BitDefender) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\avckf.sys -- (avckf)
DRV:[b]64bit:[/b] - [2015/11/24 18:38:00 | 001,600,512 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avc3.sys -- (avc3)
DRV:[b]64bit:[/b] - [2015/11/12 22:50:10 | 000,026,880 | ---- | M] (Western Digital Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV:[b]64bit:[/b] - [2015/10/30 20:02:59 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2015/10/30 20:02:53 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2015/10/30 08:19:39 | 000,030,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:42 | 000,052,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:09 | 000,930,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refsv1.sys -- (ReFSv1)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:09 | 000,385,376 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:08 | 000,218,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:03 | 000,200,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:03 | 000,106,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:03 | 000,078,848 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:03 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:03 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:03 | 000,031,584 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:03 | 000,026,624 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ioqos.sys -- (IoQos)
DRV:[b]64bit:[/b] - [2015/10/30 08:18:01 | 000,154,464 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:57 | 000,047,616 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:52 | 000,254,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:52 | 000,163,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:52 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:52 | 000,039,264 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:51 | 000,155,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:51 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:51 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:51 | 000,074,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:51 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:50 | 000,199,008 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:46 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:46 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:42 | 000,126,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:42 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:40 | 000,694,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:39 | 000,081,920 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,293,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,209,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,127,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,118,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,099,680 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,087,040 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (tsusbflt)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,044,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:37 | 000,031,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:26 | 000,017,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:25 | 000,046,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:25 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:25 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:25 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:25 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,705,376 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,534,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,532,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,424,800 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,378,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,133,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,131,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,104,800 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,099,168 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,094,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,079,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,076,128 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,059,232 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,058,720 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,058,208 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,055,808 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,034,144 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:23 | 000,026,976 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 003,436,896 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 001,135,456 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,673,120 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,238,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,209,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,107,360 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,083,296 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,037,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,026,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:22 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn.sys -- (bcmfn)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 007,585,280 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL63a.SYS -- (BCM43XX)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,277,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,245,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,165,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,117,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,081,408 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iai2c.sys -- (iai2c)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,064,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,046,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys -- (CompositeBus)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2015/10/30 08:17:18 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2015/10/29 09:19:08 | 000,619,208 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2015/10/29 09:18:52 | 000,042,696 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:[b]64bit:[/b] - [2015/09/15 16:31:42 | 006,389,688 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2015/08/13 05:02:13 | 000,214,320 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwampfl.sys -- (btwampfl)
DRV:[b]64bit:[/b] - [2015/08/13 05:02:13 | 000,199,472 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcbtums.sys -- (bcbtums)
DRV:[b]64bit:[/b] - [2015/07/16 17:04:28 | 000,472,872 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2015/06/23 14:58:58 | 001,455,552 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2015/06/17 02:10:56 | 000,895,256 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rt640x64.sys -- (rt640x64)
DRV:[b]64bit:[/b] - [2015/06/13 11:51:38 | 000,045,720 | ---- | M] (Toshiba Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Thotkey.sys -- (Thotkey)
DRV:[b]64bit:[/b] - [2015/06/12 03:54:56 | 000,183,584 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverW8x64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2015/06/11 01:00:44 | 001,538,904 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:[b]64bit:[/b] - [2015/06/02 02:44:54 | 000,301,784 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsP2Stor.sys -- (RSP2STOR)
DRV:[b]64bit:[/b] - [2015/05/28 10:23:40 | 000,041,568 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ_O.SYS -- (TVALZ)
DRV:[b]64bit:[/b] - [2015/05/28 10:23:40 | 000,035,768 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tosrfec.sys -- (tosrfec)
DRV:[b]64bit:[/b] - [2015/05/21 02:45:52 | 000,115,800 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys -- (bdfwfpf)
DRV:[b]64bit:[/b] - [2015/05/05 22:40:36 | 000,014,000 | ---- | M] (TOSHIBA) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\QIOMem.sys -- (QIOMem)
DRV:[b]64bit:[/b] - [2015/01/16 23:41:08 | 000,019,600 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:[b]64bit:[/b] - [2014/12/22 20:22:13 | 000,042,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:[b]64bit:[/b] - [2014/12/22 20:22:13 | 000,030,512 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:[b]64bit:[/b] - [2014/12/15 17:04:17 | 000,098,768 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\netlwf.inf_amd64_47566fa3371097e5\bdfndisf6.sys -- (BdfNdisf)
DRV:[b]64bit:[/b] - [2014/11/23 03:46:30 | 000,038,032 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:[b]64bit:[/b] - [2013/07/02 13:04:11 | 000,121,928 | ---- | M] (Bitdefender SRL) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys -- (bdfwfpf_pc)
DRV - [2015/10/30 08:17:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys -- (CompositeBus)
DRV - [2014/12/15 17:04:17 | 000,098,768 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Windows\System32\DriverStore\FileRepository\netlwf.inf_amd64_47566fa3371097e5\bdfndisf6.sys -- (BdfNdisf)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.istartsurf.com/web/?type=ds&ts=1442394268&z=fac1a44f1694b32e3c39849853927e7dgzzoctzoqb&from=tugs&uid=hgstxhts541010a9e680_150309jd100acc2x2khkx&q={searchTerms}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6DA8C97D-F8B6-47F7-9BFB-CD9478AD9987}: "URL" = http://www.bing.com/search?q={searchTerms}&form=PRTOS1&src=IE11TR&pc=TBTE
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.istartsurf.com/web/?type=ds&ts=1442394268&z=fac1a44f1694b32e3c39849853927e7dgzzoctzoqb&from=tugs&uid=hgstxhts541010a9e680_150309jd100acc2x2khkx&q={searchTerms}
IE - HKLM\..\SearchScopes\{6DA8C97D-F8B6-47F7-9BFB-CD9478AD9987}: "URL" = http://www.bing.com/search?q={searchTerms}&form=PRTOS1&src=IE11TR&pc=TBTE

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://toshiba.eu/symbaloo_10c1 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://toshiba.eu/symbaloo_10c1 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://homepage-web.com/?s=toshibaupd&m=start
IE - HKCU\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bdwteffv19@bitdefender.com: C:\PROGRAM FILES\BITDEFENDER\BITDEFENDER 2015\\ANTISPAM32\BDWTEFF [2015/12/02 18:06:53 | 000,000,000 | ---D | M]
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\PROGRAM FILES\BITDEFENDER\BITDEFENDER 2015\BDTBEXT [2015/07/10 14:34:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bdwteffv19@bitdefender.com: C:\Program Files\Bitdefender\Bitdefender 2015\\antispam32\bdwteff [2015/12/02 18:06:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015/07/10 14:34:53 | 000,000,000 | ---D | M]


[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\jerem\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\jerem\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\jerem\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\jerem\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\jerem\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\
CHR - Extension: No name found = C:\Users\jerem\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabcmochhfpldjekobfaaggijgohadih\18.21.5_0\
CHR - Extension: No name found = C:\Users\jerem\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\jerem\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\
CHR - Extension: No name found = C:\Users\jerem\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncadhpiimldiaggdmgilboibgpkamcdf\0.0.2.50_0\
CHR - Extension: No name found = C:\Users\jerem\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
CHR - Extension: No name found = C:\Users\jerem\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\

O1 HOSTS File: ([2015/07/10 12:02:42 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Bitdefender Wallet ) - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
O2:[b]64bit:[/b] - BHO: (Skype for Business Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Bitdefender Wallet) - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender)
O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Bitdefender Wallet ) - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
O3 - HKLM\..\Toolbar: (Bitdefender Wallet) - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender)
O4:[b]64bit:[/b] - HKLM..\Run: [Bdagent] C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe (Bitdefender)
O4:[b]64bit:[/b] - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe (Conexant Systems, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [ShadowPlay] C:\WINDOWS\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SACpl.exe (Conexant Systems, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [TCrdMain] C:\Program Files\Toshiba\System Setting\TCrdMain_Win8.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TecoResident] C:\Program Files\TOSHIBA\Teco\TecoResident.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TosWaitSrv] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TSVU] c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe (TOSHIBA)
O4 - HKCU..\Run: [Bitdefender Agent Wallet] C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe (Bitdefender)
O4 - HKCU..\Run: [cacaoweb] C:\Users\jerem\AppData\Roaming\cacaoweb\cacaoweb.exe ()
O4 - HKCU..\Run: [OneDrive] C:\Users\jerem\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O8:[b]64bit:[/b] - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8:[b]64bit:[/b] - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0d1653ea-3c3f-4c4c-9ce8-e06f2017886f}: DhcpNameServer = 192.168.1.254
O18:[b]64bit:[/b] - Protocol\Handler\osf - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs:[b]64bit:[/b] dosvc - C:\Windows\SysNative\dosvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] DcpSvc - C:\Windows\SysNative\dcpsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] NetSetupSvc - C:\Windows\SysNative\NetSetupSvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] RetailDemo - C:\Windows\SysNative\RDXService.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] lfsvc - C:\Windows\SysNative\lfsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] dmwappushservice - C:\Windows\SysNative\dmwappushsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] XboxNetApiSvc - C:\Windows\SysNative\XboxNetApiSvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] UsoSvc - C:\Windows\SysNative\usocore.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] XblGameSave - C:\Windows\SysNative\XblGameSave.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] DmEnrollmentSvc - C:\Windows\SysNative\Windows.Internal.Management.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] UserManager - C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] XblAuthManager - C:\Windows\SysNative\XblAuthManager.dll (Microsoft Corporation)


SafeBootMin:[b]64bit:[/b] Ahcache.sys - C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] AppMgmt - Service
SafeBootMin:[b]64bit:[/b] Base - Driver Group
SafeBootMin:[b]64bit:[/b] BasicDisplay.sys - C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] BasicRender.sys - C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] Boot Bus Extender - Driver Group
SafeBootMin:[b]64bit:[/b] Boot file system - Driver Group
SafeBootMin:[b]64bit:[/b] BrokerInfrastructure - C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] CoreMessagingRegistrar - C:\Windows\SysNative\CoreMessaging.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] EFS - C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] File system - Driver Group
SafeBootMin:[b]64bit:[/b] Filter - Driver Group
SafeBootMin:[b]64bit:[/b] HelpSvc - Service
SafeBootMin:[b]64bit:[/b] iai2c.sys - C:\Windows\SysNative\drivers\iai2c.sys (Intel(R) Corporation)
SafeBootMin:[b]64bit:[/b] KeyIso - C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] LSM - C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] Netlogon - C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] PCI Configuration - Driver Group
SafeBootMin:[b]64bit:[/b] PNP Filter - Driver Group
SafeBootMin:[b]64bit:[/b] Primary disk - Driver Group
SafeBootMin:[b]64bit:[/b] sacsvr - Service
SafeBootMin:[b]64bit:[/b] SCSI Class - Driver Group
SafeBootMin:[b]64bit:[/b] SpbCx.sys - C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] StateRepository - C:\Windows\SysNative\Windows.StateRepository.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] System Bus Extender - Driver Group
SafeBootMin:[b]64bit:[/b] SystemEventsBroker - C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] TBS - Service
SafeBootMin:[b]64bit:[/b] TileDataModelSvc - C:\Windows\SysNative\tileobjserver.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] uefi.sys - C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] UserManager - C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] vmms - Service
SafeBootMin:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:[b]64bit:[/b] {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices
SafeBootMin:[b]64bit:[/b] {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller
SafeBootMin:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin:[b]64bit:[/b] {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: CoreMessagingRegistrar - C:\Windows\SysWOW64\CoreMessaging.dll (Microsoft Corporation)
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: StateRepository - C:\Windows\SysWOW64\Windows.StateRepository.dll (Microsoft Corporation)
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: TBS - Service
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices
SafeBootMin: {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware

SafeBootNet:[b]64bit:[/b] Ahcache.sys - C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] AppMgmt - Service
SafeBootNet:[b]64bit:[/b] Base - Driver Group
SafeBootNet:[b]64bit:[/b] BasicDisplay.sys - C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] BasicRender.sys - C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] Boot Bus Extender - Driver Group
SafeBootNet:[b]64bit:[/b] Boot file system - Driver Group
SafeBootNet:[b]64bit:[/b] BrokerInfrastructure - C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] CoreMessagingRegistrar - C:\Windows\SysNative\CoreMessaging.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] EFS - C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] File system - Driver Group
SafeBootNet:[b]64bit:[/b] Filter - Driver Group
SafeBootNet:[b]64bit:[/b] HelpSvc - Service
SafeBootNet:[b]64bit:[/b] KeyIso - C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] LSM - C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] Messenger - Service
SafeBootNet:[b]64bit:[/b] NDIS Wrapper - Driver Group
SafeBootNet:[b]64bit:[/b] NetBIOSGroup - Driver Group
SafeBootNet:[b]64bit:[/b] NetDDEGroup - Driver Group
SafeBootNet:[b]64bit:[/b] Netlogon - C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] netprofm - C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] Network - Driver Group
SafeBootNet:[b]64bit:[/b] NetworkProvider - Driver Group
SafeBootNet:[b]64bit:[/b] PCI Configuration - Driver Group
SafeBootNet:[b]64bit:[/b] PNP Filter - Driver Group
SafeBootNet:[b]64bit:[/b] PNP_TDI - Driver Group
SafeBootNet:[b]64bit:[/b] Primary disk - Driver Group
SafeBootNet:[b]64bit:[/b] rdpencdd.sys - Driver
SafeBootNet:[b]64bit:[/b] rdsessmgr - Service
SafeBootNet:[b]64bit:[/b] sacsvr - Service
SafeBootNet:[b]64bit:[/b] SCSI Class - Driver Group
SafeBootNet:[b]64bit:[/b] SmartcardSimulator - Driver
SafeBootNet:[b]64bit:[/b] SpbCx.sys - C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] StateRepository - C:\Windows\SysNative\Windows.StateRepository.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] Streams Drivers - Driver Group
SafeBootNet:[b]64bit:[/b] System Bus Extender - Driver Group
SafeBootNet:[b]64bit:[/b] SystemEventsBroker - C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] TBS - Service
SafeBootNet:[b]64bit:[/b] TDI - Driver Group
SafeBootNet:[b]64bit:[/b] TileDataModelSvc - C:\Windows\SysNative\tileobjserver.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] uefi.sys - C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] UserManager - C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] VaultSvc - C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] VirtualSmartcardReader - Driver
SafeBootNet:[b]64bit:[/b] vmms - Service
SafeBootNet:[b]64bit:[/b] Wcmsvc - C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] WudfUsbccidDriver - Driver
SafeBootNet:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:[b]64bit:[/b] {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:[b]64bit:[/b] {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:[b]64bit:[/b] {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:[b]64bit:[/b] {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:[b]64bit:[/b] {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:[b]64bit:[/b] {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices
SafeBootNet:[b]64bit:[/b] {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller
SafeBootNet:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet:[b]64bit:[/b] {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: CoreMessagingRegistrar - C:\Windows\SysWOW64\CoreMessaging.dll (Microsoft Corporation)
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdpencdd.sys - Driver
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: SmartcardSimulator - Driver
SafeBootNet: StateRepository - C:\Windows\SysWOW64\Windows.StateRepository.dll (Microsoft Corporation)
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TBS - Service
SafeBootNet: TDI - Driver Group
SafeBootNet: VirtualSmartcardReader - Driver
SafeBootNet: vmms - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices
SafeBootNet: {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware

ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {583AC46A-4A6F-39BC-AEFD-1BC2759FFA51} - .NET Framework
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {600AC0DF-B614-36F9-9E10-28896BD4ACCA} - .NET Framework
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2016/01/10 12:32:46 | 000,000,000 | ---D | C] -- C:\Users\jerem\Desktop\Out_of_Africa
[2016/01/08 17:11:19 | 000,000,000 | ---D | C] -- C:\Users\jerem\Desktop\Clara
[2015/12/22 23:01:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\SleepStudy
[2015/12/21 21:49:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Toshiba TEMPRO
[2015/12/21 21:42:24 | 000,000,000 | ---D | C] -- C:\Users\jerem\AppData\Local\ActiveSync
[2015/12/21 21:32:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modèles
[2015/12/21 21:32:35 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes vidéos
[2015/12/21 21:32:35 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes images
[2015/12/21 21:32:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Démarrer
[2015/12/21 21:32:35 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Ma musique
[2015/12/21 21:32:35 | 000,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs
[2015/12/21 21:32:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documents
[2015/12/21 21:32:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Bureau
[2015/12/21 21:32:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data
[2015/12/21 21:14:56 | 000,000,000 | --SD | C] -- C:\Users\jerem\AppData\Roaming\Microsoft
[2015/12/21 21:14:56 | 000,000,000 | R-SD | C] -- C:\Users\jerem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
[2015/12/21 21:14:56 | 000,000,000 | R--D | C] -- C:\Users\jerem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2015/12/21 21:14:56 | 000,000,000 | R--D | C] -- C:\Users\jerem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2015/12/21 21:14:56 | 000,000,000 | R--D | C] -- C:\Users\jerem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Voisinage réseau
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Voisinage d'impression
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\AppData\Local\Temporary Internet Files
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\SendTo
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Recent
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Modèles
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Documents\Mes vidéos
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Documents\Mes images
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Mes documents
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Menu Démarrer
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Documents\Ma musique
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Local Settings
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\AppData\Local\Historique
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Cookies
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\Application Data
[2015/12/21 21:14:56 | 000,000,000 | -HSD | C] -- C:\Users\jerem\AppData\Local\Application Data
[2015/12/21 21:14:56 | 000,000,000 | -H-D | C] -- C:\Users\jerem\AppData
[2015/12/21 21:14:56 | 000,000,000 | ---D | C] -- C:\Users\jerem\AppData\Local\Temp
[2015/12/21 21:14:56 | 000,000,000 | ---D | C] -- C:\Users\jerem\AppData\Local\Microsoft
[2015/12/21 21:14:56 | 000,000,000 | ---D | C] -- C:\Users\jerem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2015/12/21 21:11:55 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2015/12/21 21:11:49 | 006,873,744 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcpl.dll
[2015/12/21 21:11:49 | 003,493,008 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvc64.dll
[2015/12/21 21:11:49 | 002,558,792 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvcr.dll
[2015/12/21 21:11:49 | 001,059,984 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nv3dappshext.dll
[2015/12/21 21:11:49 | 000,385,168 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvmctray.dll
[2015/12/21 21:11:49 | 000,075,080 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nv3dappshextr.dll
[2015/12/21 21:11:49 | 000,062,792 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvshext.dll
[2015/12/21 21:11:45 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Uninstall Information
[2015/12/21 21:11:37 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2015/12/21 21:11:24 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2015/12/21 21:11:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\sda
[2015/12/21 21:11:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Conexant
[2015/12/21 21:11:11 | 000,000,000 | ---D | C] -- C:\Program Files\CONEXANT
[2015/12/21 21:11:04 | 000,086,528 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.DLL
[2015/12/21 21:11:04 | 000,082,432 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.DLL
[2015/12/21 21:10:29 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2015/12/21 21:10:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel
[2015/12/21 21:09:59 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2015/12/21 21:07:32 | 002,718,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PrintConfig.dll
[2015/12/21 21:05:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2015/12/21 21:03:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther
[2015/12/21 20:59:05 | 000,000,000 | ---D | C] -- C:\Windows.old
[2015/12/21 20:58:09 | 022,393,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2015/12/21 20:58:09 | 018,678,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2015/12/21 20:58:09 | 003,428,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2015/12/21 20:58:09 | 002,796,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2015/12/21 20:58:09 | 002,582,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2015/12/21 20:58:09 | 002,544,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2015/12/21 20:58:09 | 002,180,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2015/12/21 20:58:09 | 002,126,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2015/12/21 20:58:09 | 002,061,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2015/12/21 20:58:09 | 002,049,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2015/12/21 20:58:09 | 001,299,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2015/12/21 20:58:09 | 001,155,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll
[2015/12/21 20:58:09 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Audio.dll
[2015/12/21 20:58:09 | 001,118,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2015/12/21 20:58:09 | 001,105,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Audio.dll
[2015/12/21 20:58:09 | 001,092,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2015/12/21 20:58:09 | 001,065,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2015/12/21 20:58:09 | 001,020,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll
[2015/12/21 20:58:09 | 000,983,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll
[2015/12/21 20:58:09 | 000,931,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSMPEG2ENC.DLL
[2015/12/21 20:58:09 | 000,925,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2015/12/21 20:58:09 | 000,898,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll
[2015/12/21 20:58:09 | 000,884,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2015/12/21 20:58:09 | 000,871,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSMPEG2ENC.DLL
[2015/12/21 20:58:09 | 000,870,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2015/12/21 20:58:09 | 000,824,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebFilter.dll
[2015/12/21 20:58:09 | 000,823,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll
[2015/12/21 20:58:09 | 000,803,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll
[2015/12/21 20:58:09 | 000,794,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfds.dll
[2015/12/21 20:58:09 | 000,716,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
[2015/12/21 20:58:09 | 000,696,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupEngine.dll
[2015/12/21 20:58:09 | 000,670,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfds.dll
[2015/12/21 20:58:09 | 000,572,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WpcWebFilter.dll
[2015/12/21 20:58:09 | 000,569,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll
[2015/12/21 20:58:09 | 000,536,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2015/12/21 20:58:09 | 000,526,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll
[2015/12/21 20:58:09 | 000,517,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll
[2015/12/21 20:58:09 | 000,516,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2015/12/21 20:58:09 | 000,502,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupEngine.dll
[2015/12/21 20:58:09 | 000,498,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll
[2015/12/21 20:58:09 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmkvsrcsnk.dll
[2015/12/21 20:58:09 | 000,462,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll
[2015/12/21 20:58:09 | 000,450,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFCaptureEngine.dll
[2015/12/21 20:58:09 | 000,408,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll
[2015/12/21 20:58:09 | 000,387,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qdvd.dll
[2015/12/21 20:58:09 | 000,381,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmkvsrcsnk.dll
[2015/12/21 20:58:09 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDEServer.exe
[2015/12/21 20:58:09 | 000,369,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2015/12/21 20:58:09 | 000,366,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll
[2015/12/21 20:58:09 | 000,340,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToDevice.dll
[2015/12/21 20:58:09 | 000,337,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFPlay.dll
[2015/12/21 20:58:09 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe
[2015/12/21 20:58:09 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSFlacDecoder.dll
[2015/12/21 20:58:09 | 000,289,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFPlay.dll
[2015/12/21 20:58:09 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2015/12/21 20:58:09 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSFlacDecoder.dll
[2015/12/21 20:58:09 | 000,245,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2015/12/21 20:58:09 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll
[2015/12/21 20:58:09 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\flvprophandler.dll
[2015/12/21 20:58:09 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dialserver.dll
[2015/12/21 20:58:09 | 000,116,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll
[2015/12/21 20:58:09 | 000,115,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupApi.dll
[2015/12/21 20:58:09 | 000,110,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll
[2015/12/21 20:58:09 | 000,088,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\remoteaudioendpoint.dll
[2015/12/21 20:58:09 | 000,084,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupApi.dll
[2015/12/21 20:58:09 | 000,073,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\remoteaudioendpoint.dll
[2015/12/21 20:58:09 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppCapture.dll
[2015/12/21 20:58:09 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.proxy.dll
[2015/12/21 20:58:09 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\readingviewresources.dll
[2015/12/21 20:58:08 | 001,817,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2015/12/21 20:58:08 | 000,783,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2015/12/21 20:58:08 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2015/12/21 20:58:08 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2015/12/21 20:58:08 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2015/12/21 20:58:02 | 011,545,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2015/12/21 20:58:02 | 009,918,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2015/12/21 20:58:02 | 007,476,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2015/12/21 20:58:02 | 006,572,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanmm.dll
[2015/12/21 20:58:02 | 003,993,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2015/12/21 20:58:02 | 002,598,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll
[2015/12/21 20:58:02 | 002,352,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2015/12/21 20:58:02 | 002,155,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2015/12/21 20:58:02 | 001,995,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActiveSyncProvider.dll
[2015/12/21 20:58:02 | 001,814,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll
[2015/12/21 20:58:02 | 001,717,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2015/12/21 20:58:02 | 001,713,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRHInproc.dll
[2015/12/21 20:58:02 | 001,706,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActiveSyncProvider.dll
[2015/12/21 20:58:02 | 001,648,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comsvcs.dll
[2015/12/21 20:58:02 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\comsvcs.dll
[2015/12/21 20:58:02 | 001,318,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll
[2015/12/21 20:58:02 | 001,223,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Unistore.dll
[2015/12/21 20:58:02 | 001,035,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XboxNetApiSvc.dll
[2015/12/21 20:58:02 | 000,957,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRH.dll
[2015/12/21 20:58:02 | 000,948,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Unistore.dll
[2015/12/21 20:58:02 | 000,912,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgr.dll
[2015/12/21 20:58:02 | 000,900,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll
[2015/12/21 20:58:02 | 000,809,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe
[2015/12/21 20:58:02 | 000,795,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2015/12/21 20:58:02 | 000,704,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CellularAPI.dll
[2015/12/21 20:58:02 | 000,698,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimgapi.dll
[2015/12/21 20:58:02 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2015/12/21 20:58:02 | 000,674,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.dll
[2015/12/21 20:58:02 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll
[2015/12/21 20:58:02 | 000,630,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe
[2015/12/21 20:58:02 | 000,623,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneProviders.dll
[2015/12/21 20:58:02 | 000,607,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll
[2015/12/21 20:58:02 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2015/12/21 20:58:02 | 000,586,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wimgapi.dll
[2015/12/21 20:58:02 | 000,538,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWanAPI.dll
[2015/12/21 20:58:02 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\catsrvut.dll
[2015/12/21 20:58:02 | 000,523,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimserv.exe
[2015/12/21 20:58:02 | 000,517,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winspool.drv
[2015/12/21 20:58:02 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LogonController.dll
[2015/12/21 20:58:02 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanconn.dll
[2015/12/21 20:58:02 | 000,440,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\services.exe
[2015/12/21 20:58:02 | 000,431,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWanAPI.dll
[2015/12/21 20:58:02 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LogonController.dll
[2015/12/21 20:58:02 | 000,416,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenrollengine.dll
[2015/12/21 20:58:02 | 000,415,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\catsrvut.dll
[2015/12/21 20:58:02 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe
[2015/12/21 20:58:02 | 000,412,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifitask.exe
[2015/12/21 20:58:02 | 000,365,568 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll
[2015/12/21 20:58:02 | 000,334,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanager.dll
[2015/12/21 20:58:02 | 000,296,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\policymanager.dll
[2015/12/21 20:58:02 | 000,292,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll
[2015/12/21 20:58:02 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll
[2015/12/21 20:58:02 | 000,264,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContentDeliveryManager.Utilities.dll
[2015/12/21 20:58:02 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll
[2015/12/21 20:58:02 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCore.dll
[2015/12/21 20:58:02 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll
[2015/12/21 20:58:02 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll
[2015/12/21 20:58:02 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll
[2015/12/21 20:58:02 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmmigrator.dll
[2015/12/21 20:58:02 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll
[2015/12/21 20:58:02 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provdatastore.dll
[2015/12/21 20:58:02 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provops.dll
[2015/12/21 20:58:02 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enrollmentapi.dll
[2015/12/21 20:58:02 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmcertinst.exe
[2015/12/21 20:58:02 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rmcast.sys
[2015/12/21 20:58:02 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wificonnapi.dll
[2015/12/21 20:58:02 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCsp.dll
[2015/12/21 20:58:02 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontsub.dll
[2015/12/21 20:58:02 | 000,092,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll
[2015/12/21 20:58:02 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanagerprecheck.dll
[2015/12/21 20:58:02 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NFCProvisioningPlugin.dll
[2015/12/21 20:58:02 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppCapture.dll
[2015/12/21 20:58:02 | 000,080,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwapi.dll
[2015/12/21 20:58:02 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BarcodeProvisioningPlugin.dll
[2015/12/21 20:58:02 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProvPluginEng.dll
[2015/12/21 20:58:02 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.XboxLive.ProxyStub.dll
[2015/12/21 20:58:02 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll
[2015/12/21 20:58:02 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssign32.dll
[2015/12/21 20:58:02 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwancfg.dll
[2015/12/21 20:58:02 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininetlui.dll
[2015/12/21 20:58:02 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ihvrilproxy.dll
[2015/12/21 20:58:02 | 000,063,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wwapi.dll
[2015/12/21 20:58:02 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssign32.dll
[2015/12/21 20:58:02 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provtool.exe
[2015/12/21 20:58:02 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rilproxy.dll
[2015/12/21 20:58:02 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemovableMediaProvisioningPlugin.dll
[2015/12/21 20:58:02 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Wwanpref.dll
[2015/12/21 20:58:02 | 000,045,568 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll
[2015/12/21 20:58:02 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsplib.dll
[2015/12/21 20:58:02 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.proxy.dll
[2015/12/21 20:58:02 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe
[2015/12/21 20:58:02 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageUsage.dll
[2015/12/21 20:58:02 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2015/12/21 20:58:02 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.Provisioning.ProxyStub.dll
[2015/12/21 20:58:02 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wshrm.dll
[2015/12/21 20:58:02 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dciman32.dll
[2015/12/21 20:58:02 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpk.dll
[2015/12/21 20:58:00 | 016,984,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2015/12/21 20:58:00 | 007,979,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll
[2015/12/21 20:58:00 | 007,199,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll
[2015/12/21 20:58:00 | 006,297,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll
[2015/12/21 20:58:00 | 005,202,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll
[2015/12/21 20:58:00 | 003,593,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2015/12/21 20:58:00 | 003,355,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll
[2015/12/21 20:58:00 | 002,843,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdp.dll
[2015/12/21 20:58:00 | 002,772,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2015/12/21 20:58:00 | 002,624,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll
[2015/12/21 20:58:00 | 002,444,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll
[2015/12/21 20:58:00 | 002,185,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2015/12/21 20:58:00 | 002,001,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2015/12/21 20:58:00 | 001,944,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputService.dll
[2015/12/21 20:58:00 | 001,399,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2015/12/21 20:58:00 | 001,395,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2015/12/21 20:58:00 | 001,393,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2015/12/21 20:58:00 | 001,387,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2015/12/21 20:58:00 | 001,281,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll
[2015/12/21 20:58:00 | 001,268,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Resources.dll
[2015/12/21 20:58:00 | 001,056,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JpMapControl.dll
[2015/12/21 20:58:00 | 001,042,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingOnlineServices.dll
[2015/12/21 20:58:00 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NMAA.dll
[2015/12/21 20:58:00 | 000,973,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll
[2015/12/21 20:58:00 | 000,948,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManager.dll
[2015/12/21 20:58:00 | 000,938,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll
[2015/12/21 20:58:00 | 000,870,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\modernexecserver.dll
[2015/12/21 20:58:00 | 000,850,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll
[2015/12/21 20:58:00 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JpMapControl.dll
[2015/12/21 20:58:00 | 000,784,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NMAA.dll
[2015/12/21 20:58:00 | 000,711,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlCore.dll
[2015/12/21 20:58:00 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingOnlineServices.dll
[2015/12/21 20:58:00 | 000,697,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll
[2015/12/21 20:58:00 | 000,589,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApi.dll
[2015/12/21 20:58:00 | 000,586,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll
[2015/12/21 20:58:00 | 000,558,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MBMediaManager.dll
[2015/12/21 20:58:00 | 000,543,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll
[2015/12/21 20:58:00 | 000,511,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll
[2015/12/21 20:58:00 | 000,470,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApi.dll
[2015/12/21 20:58:00 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapConfiguration.dll
[2015/12/21 20:58:00 | 000,458,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToDevice.dll
[2015/12/21 20:58:00 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll
[2015/12/21 20:58:00 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapConfiguration.dll
[2015/12/21 20:58:00 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll
[2015/12/21 20:58:00 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorService.dll
[2015/12/21 20:58:00 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cryptngc.dll
[2015/12/21 20:58:00 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshostcore.dll
[2015/12/21 20:58:00 | 000,264,192 | ---- | C] (Nokia) -- C:\WINDOWS\SysNative\NmaDirect.dll
[2015/12/21 20:58:00 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TextInputFramework.dll
[2015/12/21 20:58:00 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cryptngc.dll
[2015/12/21 20:58:00 | 000,205,824 | ---- | C] (Nokia) -- C:\WINDOWS\SysWow64\NmaDirect.dll
[2015/12/21 20:58:00 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-AppModelExecEvents.dll
[2015/12/21 20:58:00 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe
[2015/12/21 20:58:00 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll
[2015/12/21 20:58:00 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringservice.dll
[2015/12/21 20:58:00 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe
[2015/12/21 20:58:00 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ETWCoreUIComponentsResources.dll
[2015/12/21 20:58:00 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ETWCoreUIComponentsResources.dll
[2015/12/21 20:58:00 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll
[2015/12/21 20:58:00 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvc.dll
[2015/12/21 20:58:00 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll
[2015/12/21 20:58:00 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MapControls.dll
[2015/12/21 20:58:00 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MapControls.dll
[2015/12/21 20:58:00 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll
[2015/12/21 20:58:00 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll
[2015/12/21 20:58:00 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.V2.dll
[2015/12/21 20:58:00 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsCSP.dll
[2015/12/21 20:58:00 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tzautoupdate.dll
[2015/12/21 20:58:00 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapsBtSvc.dll
[2015/12/21 20:58:00 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputLocaleManager.dll
[2015/12/21 20:58:00 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditBufferTestHook.dll
[2015/12/21 20:58:00 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosStorage.dll
[2015/12/21 20:58:00 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManagerProxy.dll
[2015/12/21 20:58:00 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshost.dll
[2015/12/21 20:58:00 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosHostClient.dll
[2015/12/21 20:58:00 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthTokenBrokerExt.dll
[2015/12/21 20:58:00 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll
[2015/12/21 20:58:00 | 000,058,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.dll
[2015/12/21 20:58:00 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosStorage.dll
[2015/12/21 20:58:00 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosResource.dll
[2015/12/21 20:58:00 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosResource.dll
[2015/12/21 20:58:00 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringclient.dll
[2015/12/21 20:58:00 | 000,051,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsUtilsV2.dll
[2015/12/21 20:58:00 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthTokenBrokerExt.dll
[2015/12/21 20:58:00 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosHostClient.dll
[2015/12/21 20:58:00 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapstoasttask.dll
[2015/12/21 20:58:00 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthManagerProxy.dll
[2015/12/21 20:58:00 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BackgroundTransferHost.exe
[2015/12/21 20:58:00 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCoreRes.dll
[2015/12/21 20:58:00 | 000,035,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe
[2015/12/21 20:58:00 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BackgroundTransferHost.exe
[2015/12/21 20:58:00 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll
[2015/12/21 20:58:00 | 000,032,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfpmp.exe
[2015/12/21 20:58:00 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringconfigsp.dll
[2015/12/21 20:58:00 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WordBreakers.dll
[2015/12/21 20:58:00 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapsupdatetask.dll
[2015/12/21 20:58:00 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nativemap.dll
[2015/12/21 20:58:00 | 000,026,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2015/12/21 20:58:00 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WordBreakers.dll
[2015/12/21 20:58:00 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IcsEntitlementHost.exe
[2015/12/21 20:58:00 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvcProxy.dll
[2015/12/21 20:58:00 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosTrace.dll
[2015/12/21 20:58:00 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosTrace.dll
[2015/12/21 20:58:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosHost.dll
[2015/12/21 20:58:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosHost.dll
[2015/12/21 20:58:00 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlStringsRes.dll
[2015/12/21 20:58:00 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlStringsRes.dll
[2015/12/21 20:57:59 | 013,017,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2015/12/21 20:57:59 | 002,680,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll
[2015/12/21 20:57:59 | 001,860,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cdp.dll
[2015/12/21 20:57:59 | 001,467,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2015/12/21 20:57:59 | 001,443,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRHInproc.dll
[2015/12/21 20:57:59 | 001,268,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Resources.dll
[2015/12/21 20:57:59 | 001,139,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2015/12/21 20:57:59 | 000,911,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dcomp.dll
[2015/12/21 20:57:59 | 000,793,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRH.dll
[2015/12/21 20:57:59 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2015/12/21 20:57:59 | 000,704,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe
[2015/12/21 20:57:59 | 000,675,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dcomp.dll
[2015/12/21 20:57:59 | 000,647,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll
[2015/12/21 20:57:59 | 000,540,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe
[2015/12/21 20:57:59 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll
[2015/12/21 20:57:59 | 000,450,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Bluetooth.dll
[2015/12/21 20:57:59 | 000,315,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Internal.Bluetooth.dll
[2015/12/21 20:57:59 | 000,303,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll
[2015/12/21 20:57:59 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceaccess.dll
[2015/12/21 20:57:59 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceaccess.dll
[2015/12/21 20:57:59 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll
[2015/12/21 20:57:59 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCensus.exe
[2015/12/21 20:57:59 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\capimg.sys
[2015/12/21 20:57:59 | 000,095,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdstor.sys
[2015/12/21 20:57:59 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontsub.dll
[2015/12/21 20:57:59 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wininetlui.dll
[2015/12/21 20:57:59 | 000,037,376 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll
[2015/12/21 20:57:59 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCoreRes.dll
[2015/12/21 20:47:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\Microsoft
[2015/12/21 20:44:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\XPSViewer
[2015/12/21 20:44:52 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2015/12/21 20:44:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2015/12/21 20:44:52 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2015/12/21 20:44:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2015/12/21 20:44:23 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll
[2015/12/21 20:44:23 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2015/12/21 20:44:23 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe
[2015/12/21 20:44:18 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll
[2015/12/21 20:44:18 | 000,124,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2015/12/21 20:44:18 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe
[2015/12/20 12:54:38 | 000,000,000 | ---D | C] -- C:\Users\jerem\Desktop\Photos
[2 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2016/01/10 19:43:01 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2016/01/10 19:19:00 | 000,001,108 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2016/01/10 12:34:49 | 001,848,398 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2016/01/10 12:34:49 | 000,825,500 | ---- | M] () -- C:\WINDOWS\SysNative\perfh00C.dat
[2016/01/10 12:34:49 | 000,734,494 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2016/01/10 12:34:49 | 000,155,764 | ---- | M] () -- C:\WINDOWS\SysNative\perfc00C.dat
[2016/01/10 12:34:49 | 000,139,034 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2016/01/10 12:19:00 | 000,001,104 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2016/01/10 12:03:20 | 000,554,288 | ---- | M] () -- C:\Users\jerem\Desktop\cacaoweb.exe
[2016/01/10 12:02:37 | 000,000,180 | ---- | M] () -- C:\WINDOWS\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
[2016/01/10 12:01:20 | 3399,958,528 | -HS- | M] () -- C:\hiberfil.sys
[2016/01/10 12:01:18 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2016/01/08 10:05:00 | 000,083,914 | ---- | M] () -- C:\Users\jerem\Documents\ReleveIdentiteBancaire.pdf
[2016/01/03 02:40:25 | 000,826,872 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2016/01/03 02:40:25 | 000,176,632 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2015/12/30 10:20:32 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/12/28 16:28:43 | 000,022,963 | ---- | M] () -- C:\Users\jerem\Desktop\Document stratégique EAD en milieu pro 2016.odt
[2015/12/21 22:08:19 | 000,282,000 | ---- | M] (BitDefender) -- C:\WINDOWS\SysNative\drivers\avchv.sys
[2015/12/21 21:37:20 | 000,338,760 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2015/12/21 21:33:17 | 000,000,290 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2015/12/21 21:31:57 | 000,027,185 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2015/12/21 21:31:57 | 000,024,768 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2015/12/21 21:28:16 | 000,023,108 | ---- | M] () -- C:\WINDOWS\SysNative\emptyregdb.dat
[2015/12/21 21:12:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01011.Wdf
[2015/12/21 21:11:08 | 000,000,200 | ---- | M] () -- C:\WINDOWS\SysNative\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
[2015/12/21 21:10:04 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_avchv_01009.Wdf
[2015/12/21 21:10:00 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
[2015/12/21 20:58:09 | 022,393,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2015/12/21 20:58:09 | 018,678,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2015/12/21 20:58:09 | 003,428,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2015/12/21 20:58:09 | 002,796,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2015/12/21 20:58:09 | 002,582,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2015/12/21 20:58:09 | 002,544,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2015/12/21 20:58:09 | 002,180,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2015/12/21 20:58:09 | 002,126,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2015/12/21 20:58:09 | 002,061,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2015/12/21 20:58:09 | 002,049,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2015/12/21 20:58:09 | 001,299,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2015/12/21 20:58:09 | 001,155,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll
[2015/12/21 20:58:09 | 001,131,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Audio.dll
[2015/12/21 20:58:09 | 001,118,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2015/12/21 20:58:09 | 001,105,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Audio.dll
[2015/12/21 20:58:09 | 001,092,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2015/12/21 20:58:09 | 001,065,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2015/12/21 20:58:09 | 001,020,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll
[2015/12/21 20:58:09 | 000,983,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll
[2015/12/21 20:58:09 | 000,931,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSMPEG2ENC.DLL
[2015/12/21 20:58:09 | 000,925,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2015/12/21 20:58:09 | 000,898,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll
[2015/12/21 20:58:09 | 000,884,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2015/12/21 20:58:09 | 000,871,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSMPEG2ENC.DLL
[2015/12/21 20:58:09 | 000,870,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2015/12/21 20:58:09 | 000,824,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebFilter.dll
[2015/12/21 20:58:09 | 000,823,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll
[2015/12/21 20:58:09 | 000,803,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll
[2015/12/21 20:58:09 | 000,794,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfds.dll
[2015/12/21 20:58:09 | 000,716,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
[2015/12/21 20:58:09 | 000,696,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupEngine.dll
[2015/12/21 20:58:09 | 000,670,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfds.dll
[2015/12/21 20:58:09 | 000,572,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WpcWebFilter.dll
[2015/12/21 20:58:09 | 000,569,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll
[2015/12/21 20:58:09 | 000,536,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2015/12/21 20:58:09 | 000,526,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll
[2015/12/21 20:58:09 | 000,517,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll
[2015/12/21 20:58:09 | 000,516,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2015/12/21 20:58:09 | 000,502,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupEngine.dll
[2015/12/21 20:58:09 | 000,498,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll
[2015/12/21 20:58:09 | 000,497,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmkvsrcsnk.dll
[2015/12/21 20:58:09 | 000,462,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll
[2015/12/21 20:58:09 | 000,450,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFCaptureEngine.dll
[2015/12/21 20:58:09 | 000,408,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll
[2015/12/21 20:58:09 | 000,387,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qdvd.dll
[2015/12/21 20:58:09 | 000,381,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmkvsrcsnk.dll
[2015/12/21 20:58:09 | 000,375,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDEServer.exe
[2015/12/21 20:58:09 | 000,369,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2015/12/21 20:58:09 | 000,366,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll
[2015/12/21 20:58:09 | 000,340,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToDevice.dll
[2015/12/21 20:58:09 | 000,337,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFPlay.dll
[2015/12/21 20:58:09 | 000,334,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe
[2015/12/21 20:58:09 | 000,323,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSFlacDecoder.dll
[2015/12/21 20:58:09 | 000,289,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFPlay.dll
[2015/12/21 20:58:09 | 000,275,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2015/12/21 20:58:09 | 000,270,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSFlacDecoder.dll
[2015/12/21 20:58:09 | 000,245,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2015/12/21 20:58:09 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll
[2015/12/21 20:58:09 | 000,133,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\flvprophandler.dll
[2015/12/21 20:58:09 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dialserver.dll
[2015/12/21 20:58:09 | 000,116,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll
[2015/12/21 20:58:09 | 000,115,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupApi.dll
[2015/12/21 20:58:09 | 000,110,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll
[2015/12/21 20:58:09 | 000,088,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\remoteaudioendpoint.dll
[2015/12/21 20:58:09 | 000,084,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupApi.dll
[2015/12/21 20:58:09 | 000,073,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\remoteaudioendpoint.dll
[2015/12/21 20:58:09 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppCapture.dll
[2015/12/21 20:58:09 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.proxy.dll
[2015/12/21 20:58:09 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\readingviewresources.dll
[2015/12/21 20:58:08 | 001,817,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2015/12/21 20:58:08 | 000,783,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2015/12/21 20:58:08 | 000,220,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2015/12/21 20:58:08 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2015/12/21 20:58:08 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2015/12/21 20:58:02 | 011,545,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2015/12/21 20:58:02 | 009,918,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2015/12/21 20:58:02 | 007,476,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2015/12/21 20:58:02 | 006,572,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanmm.dll
[2015/12/21 20:58:02 | 003,993,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2015/12/21 20:58:02 | 002,598,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll
[2015/12/21 20:58:02 | 002,352,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2015/12/21 20:58:02 | 002,155,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2015/12/21 20:58:02 | 001,995,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActiveSyncProvider.dll
[2015/12/21 20:58:02 | 001,814,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll
[2015/12/21 20:58:02 | 001,717,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2015/12/21 20:58:02 | 001,713,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRHInproc.dll
[2015/12/21 20:58:02 | 001,706,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActiveSyncProvider.dll
[2015/12/21 20:58:02 | 001,648,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comsvcs.dll
[2015/12/21 20:58:02 | 001,328,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\comsvcs.dll
[2015/12/21 20:58:02 | 001,318,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll
[2015/12/21 20:58:02 | 001,223,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Unistore.dll
[2015/12/21 20:58:02 | 001,035,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XboxNetApiSvc.dll
[2015/12/21 20:58:02 | 000,957,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRH.dll
[2015/12/21 20:58:02 | 000,948,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Unistore.dll
[2015/12/21 20:58:02 | 000,912,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgr.dll
[2015/12/21 20:58:02 | 000,900,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll
[2015/12/21 20:58:02 | 000,809,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe
[2015/12/21 20:58:02 | 000,795,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2015/12/21 20:58:02 | 000,704,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CellularAPI.dll
[2015/12/21 20:58:02 | 000,698,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimgapi.dll
[2015/12/21 20:58:02 | 000,683,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2015/12/21 20:58:02 | 000,674,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.dll
[2015/12/21 20:58:02 | 000,638,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll
[2015/12/21 20:58:02 | 000,630,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe
[2015/12/21 20:58:02 | 000,623,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneProviders.dll
[2015/12/21 20:58:02 | 000,607,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll
[2015/12/21 20:58:02 | 000,604,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2015/12/21 20:58:02 | 000,586,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wimgapi.dll
[2015/12/21 20:58:02 | 000,538,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWanAPI.dll
[2015/12/21 20:58:02 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\catsrvut.dll
[2015/12/21 20:58:02 | 000,523,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimserv.exe
[2015/12/21 20:58:02 | 000,517,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winspool.drv
[2015/12/21 20:58:02 | 000,515,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LogonController.dll
[2015/12/21 20:58:02 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanconn.dll
[2015/12/21 20:58:02 | 000,440,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\services.exe
[2015/12/21 20:58:02 | 000,431,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWanAPI.dll
[2015/12/21 20:58:02 | 000,421,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LogonController.dll
[2015/12/21 20:58:02 | 000,416,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenrollengine.dll
[2015/12/21 20:58:02 | 000,415,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\catsrvut.dll
[2015/12/21 20:58:02 | 000,414,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe
[2015/12/21 20:58:02 | 000,412,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifitask.exe
[2015/12/21 20:58:02 | 000,365,568 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll
[2015/12/21 20:58:02 | 000,334,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanager.dll
[2015/12/21 20:58:02 | 000,296,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\policymanager.dll
[2015/12/21 20:58:02 | 000,292,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll
[2015/12/21 20:58:02 | 000,286,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll
[2015/12/21 20:58:02 | 000,264,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContentDeliveryManager.Utilities.dll
[2015/12/21 20:58:02 | 000,248,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll
[2015/12/21 20:58:02 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCore.dll
[2015/12/21 20:58:02 | 000,210,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll
[2015/12/21 20:58:02 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll
[2015/12/21 20:58:02 | 000,182,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll
[2015/12/21 20:58:02 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmmigrator.dll
[2015/12/21 20:58:02 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll
[2015/12/21 20:58:02 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provdatastore.dll
[2015/12/21 20:58:02 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provops.dll
[2015/12/21 20:58:02 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enrollmentapi.dll
[2015/12/21 20:58:02 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmcertinst.exe
[2015/12/21 20:58:02 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rmcast.sys
[2015/12/21 20:58:02 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wificonnapi.dll
[2015/12/21 20:58:02 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCsp.dll
[2015/12/21 20:58:02 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontsub.dll
[2015/12/21 20:58:02 | 000,092,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll
[2015/12/21 20:58:02 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanagerprecheck.dll
[2015/12/21 20:58:02 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NFCProvisioningPlugin.dll
[2015/12/21 20:58:02 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppCapture.dll
[2015/12/21 20:58:02 | 000,080,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwapi.dll
[2015/12/21 20:58:02 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BarcodeProvisioningPlugin.dll
[2015/12/21 20:58:02 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProvPluginEng.dll
[2015/12/21 20:58:02 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.XboxLive.ProxyStub.dll
[2015/12/21 20:58:02 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll
[2015/12/21 20:58:02 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssign32.dll
[2015/12/21 20:58:02 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwancfg.dll
[2015/12/21 20:58:02 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininetlui.dll
[2015/12/21 20:58:02 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ihvrilproxy.dll
[2015/12/21 20:58:02 | 000,063,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wwapi.dll
[2015/12/21 20:58:02 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssign32.dll
[2015/12/21 20:58:02 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provtool.exe
[2015/12/21 20:58:02 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rilproxy.dll
[2015/12/21 20:58:02 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemovableMediaProvisioningPlugin.dll
[2015/12/21 20:58:02 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Wwanpref.dll
[2015/12/21 20:58:02 | 000,045,568 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll
[2015/12/21 20:58:02 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsplib.dll
[2015/12/21 20:58:02 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.proxy.dll
[2015/12/21 20:58:02 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe
[2015/12/21 20:58:02 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageUsage.dll
[2015/12/21 20:58:02 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2015/12/21 20:58:02 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.Provisioning.ProxyStub.dll
[2015/12/21 20:58:02 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wshrm.dll
[2015/12/21 20:58:02 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dciman32.dll
[2015/12/21 20:58:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpk.dll
[2015/12/21 20:58:00 | 016,984,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2015/12/21 20:58:00 | 007,979,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll
[2015/12/21 20:58:00 | 007,199,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll
[2015/12/21 20:58:00 | 006,297,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll
[2015/12/21 20:58:00 | 005,202,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll
[2015/12/21 20:58:00 | 003,593,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2015/12/21 20:58:00 | 003,355,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll
[2015/12/21 20:58:00 | 002,843,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdp.dll
[2015/12/21 20:58:00 | 002,772,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2015/12/21 20:58:00 | 002,653,816 | ---- | M] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll
[2015/12/21 20:58:00 | 002,624,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll
[2015/12/21 20:58:00 | 002,444,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll
[2015/12/21 20:58:00 | 002,185,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2015/12/21 20:58:00 | 002,001,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2015/12/21 20:58:00 | 001,944,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputService.dll
[2015/12/21 20:58:00 | 001,859,448 | ---- | M] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2015/12/21 20:58:00 | 001,399,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2015/12/21 20:58:00 | 001,395,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2015/12/21 20:58:00 | 001,393,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2015/12/21 20:58:00 | 001,387,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2015/12/21 20:58:00 | 001,281,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll
[2015/12/21 20:58:00 | 001,268,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Resources.dll
[2015/12/21 20:58:00 | 001,056,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JpMapControl.dll
[2015/12/21 20:58:00 | 001,042,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingOnlineServices.dll
[2015/12/21 20:58:00 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NMAA.dll
[2015/12/21 20:58:00 | 000,973,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll
[2015/12/21 20:58:00 | 000,948,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManager.dll
[2015/12/21 20:58:00 | 000,938,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll
[2015/12/21 20:58:00 | 000,870,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\modernexecserver.dll
[2015/12/21 20:58:00 | 000,850,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll
[2015/12/21 20:58:00 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JpMapControl.dll
[2015/12/21 20:58:00 | 000,784,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NMAA.dll
[2015/12/21 20:58:00 | 000,711,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlCore.dll
[2015/12/21 20:58:00 | 000,709,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingOnlineServices.dll
[2015/12/21 20:58:00 | 000,697,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll
[2015/12/21 20:58:00 | 000,589,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApi.dll
[2015/12/21 20:58:00 | 000,586,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll
[2015/12/21 20:58:00 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MBMediaManager.dll
[2015/12/21 20:58:00 | 000,543,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll
[2015/12/21 20:58:00 | 000,511,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll
[2015/12/21 20:58:00 | 000,470,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApi.dll
[2015/12/21 20:58:00 | 000,459,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapConfiguration.dll
[2015/12/21 20:58:00 | 000,458,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToDevice.dll
[2015/12/21 20:58:00 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll
[2015/12/21 20:58:00 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapConfiguration.dll
[2015/12/21 20:58:00 | 000,345,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll
[2015/12/21 20:58:00 | 000,342,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorService.dll
[2015/12/21 20:58:00 | 000,320,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cryptngc.dll
[2015/12/21 20:58:00 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshostcore.dll
[2015/12/21 20:58:00 | 000,264,192 | ---- | M] (Nokia) -- C:\WINDOWS\SysNative\NmaDirect.dll
[2015/12/21 20:58:00 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TextInputFramework.dll
[2015/12/21 20:58:00 | 000,241,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cryptngc.dll
[2015/12/21 20:58:00 | 000,205,824 | ---- | M] (Nokia) -- C:\WINDOWS\SysWow64\NmaDirect.dll
[2015/12/21 20:58:00 | 000,204,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-AppModelExecEvents.dll
[2015/12/21 20:58:00 | 000,199,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe
[2015/12/21 20:58:00 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll
[2015/12/21 20:58:00 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringservice.dll
[2015/12/21 20:58:00 | 000,161,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe
[2015/12/21 20:58:00 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\SensorsCx.dll
[2015/12/21 20:58:00 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ETWCoreUIComponentsResources.dll
[2015/12/21 20:58:00 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ETWCoreUIComponentsResources.dll
[2015/12/21 20:58:00 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll
[2015/12/21 20:58:00 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvc.dll
[2015/12/21 20:58:00 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll
[2015/12/21 20:58:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MapControls.dll
[2015/12/21 20:58:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MapControls.dll
[2015/12/21 20:58:00 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll
[2015/12/21 20:58:00 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll
[2015/12/21 20:58:00 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.V2.dll
[2015/12/21 20:58:00 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsCSP.dll
[2015/12/21 20:58:00 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tzautoupdate.dll
[2015/12/21 20:58:00 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapsBtSvc.dll
[2015/12/21 20:58:00 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputLocaleManager.dll
[2015/12/21 20:58:00 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditBufferTestHook.dll
[2015/12/21 20:58:00 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosStorage.dll
[2015/12/21 20:58:00 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManagerProxy.dll
[2015/12/21 20:58:00 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshost.dll
[2015/12/21 20:58:00 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosHostClient.dll
[2015/12/21 20:58:00 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthTokenBrokerExt.dll
[2015/12/21 20:58:00 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll
[2015/12/21 20:58:00 | 000,058,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.dll
[2015/12/21 20:58:00 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosStorage.dll
[2015/12/21 20:58:00 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosResource.dll
[2015/12/21 20:58:00 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosResource.dll
[2015/12/21 20:58:00 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringclient.dll
[2015/12/21 20:58:00 | 000,051,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsUtilsV2.dll
[2015/12/21 20:58:00 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthTokenBrokerExt.dll
[2015/12/21 20:58:00 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosHostClient.dll
[2015/12/21 20:58:00 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapstoasttask.dll
[2015/12/21 20:58:00 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthManagerProxy.dll
[2015/12/21 20:58:00 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BackgroundTransferHost.exe
[2015/12/21 20:58:00 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCoreRes.dll
[2015/12/21 20:58:00 | 000,035,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe
[2015/12/21 20:58:00 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BackgroundTransferHost.exe
[2015/12/21 20:58:00 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll
[2015/12/21 20:58:00 | 000,032,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfpmp.exe
[2015/12/21 20:58:00 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringconfigsp.dll
[2015/12/21 20:58:00 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WordBreakers.dll
[2015/12/21 20:58:00 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapsupdatetask.dll
[2015/12/21 20:58:00 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nativemap.dll
[2015/12/21 20:58:00 | 000,026,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2015/12/21 20:58:00 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WordBreakers.dll
[2015/12/21 20:58:00 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IcsEntitlementHost.exe
[2015/12/21 20:58:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvcProxy.dll
[2015/12/21 20:58:00 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosTrace.dll
[2015/12/21 20:58:00 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosTrace.dll
[2015/12/21 20:58:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosHost.dll
[2015/12/21 20:58:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosHost.dll
[2015/12/21 20:58:00 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlStringsRes.dll
[2015/12/21 20:58:00 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlStringsRes.dll
[2015/12/21 20:57:59 | 013,017,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2015/12/21 20:57:59 | 002,680,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll
[2015/12/21 20:57:59 | 001,860,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cdp.dll
[2015/12/21 20:57:59 | 001,467,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2015/12/21 20:57:59 | 001,443,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRHInproc.dll
[2015/12/21 20:57:59 | 001,268,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Resources.dll
[2015/12/21 20:57:59 | 001,139,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2015/12/21 20:57:59 | 000,911,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dcomp.dll
[2015/12/21 20:57:59 | 000,793,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRH.dll
[2015/12/21 20:57:59 | 000,764,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2015/12/21 20:57:59 | 000,704,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe
[2015/12/21 20:57:59 | 000,675,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dcomp.dll
[2015/12/21 20:57:59 | 000,647,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll
[2015/12/21 20:57:59 | 000,540,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe
[2015/12/21 20:57:59 | 000,490,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll
[2015/12/21 20:57:59 | 000,450,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Bluetooth.dll
[2015/12/21 20:57:59 | 000,315,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Internal.Bluetooth.dll
[2015/12/21 20:57:59 | 000,303,104 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll
[2015/12/21 20:57:59 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceaccess.dll
[2015/12/21 20:57:59 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceaccess.dll
[2015/12/21 20:57:59 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll
[2015/12/21 20:57:59 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCensus.exe
[2015/12/21 20:57:59 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\capimg.sys
[2015/12/21 20:57:59 | 000,095,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdstor.sys
[2015/12/21 20:57:59 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontsub.dll
[2015/12/21 20:57:59 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wininetlui.dll
[2015/12/21 20:57:59 | 000,037,376 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll
[2015/12/21 20:57:59 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCoreRes.dll
[2015/12/21 20:53:42 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\synth3dvsc.sys.mui
[2015/12/21 20:53:42 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\netvsc.sys.mui
[2015/12/21 20:53:42 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\vmstorfl.sys.mui
[2015/12/21 20:53:42 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\dmvsc.sys.mui
[2015/12/21 20:53:42 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\usbrpm.sys.mui
[2015/12/21 20:53:39 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\fvevol.sys.mui
[2015/12/21 20:53:39 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\WpdMtpDr.dll.mui
[2015/12/21 20:53:36 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\en-US\NdisImPlatform.sys.mui
[2015/12/21 20:53:34 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\en-US\ndiscap.sys.mui
[2015/12/21 20:53:34 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\en-US\wfplwfs.sys.mui
[2015/12/21 20:53:30 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\http.sys.mui
[2015/12/21 20:53:30 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\nwifi.sys.mui
[2015/12/21 20:53:30 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\NdisImPlatform.sys.mui
[2015/12/21 20:53:30 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mslldp.sys.mui
[2015/12/21 20:53:30 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\refsv1.sys.mui
[2015/12/21 20:53:30 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\tunnel.sys.mui
[2015/12/21 20:53:30 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\modem.sys.mui
[2015/12/21 20:53:30 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\agilevpn.sys.mui
[2015/12/21 20:53:30 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wudfpf.sys.mui
[2015/12/21 20:53:30 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\volmgrx.sys.mui
[2015/12/21 20:53:30 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ws2ifsl.sys.mui
[2015/12/21 20:53:30 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\NdisVirtualBus.sys.mui
[2015/12/21 20:53:28 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\tcpip.sys.mui
[2015/12/21 20:53:28 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ntfs.sys.mui
[2015/12/21 20:53:28 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\srv2.sys.mui
[2015/12/21 20:53:28 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ndis.sys.mui
[2015/12/21 20:53:28 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mrxsmb.sys.mui
[2015/12/21 20:53:28 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\afd.sys.mui
[2015/12/21 20:53:28 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mup.sys.mui
[2015/12/21 20:53:28 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\mgtdyn.dll.mui
[2015/12/21 20:53:28 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\idtsec.dll.mui
[2015/12/21 20:53:28 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\SensorsHid.dll.mui
[2015/12/21 20:53:28 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\storqosflt.sys.mui
[2015/12/21 20:53:28 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ndiscap.sys.mui
[2015/12/21 20:53:28 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\rdbss.sys.mui
[2015/12/21 20:53:28 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\fltmgr.sys.mui
[2015/12/21 20:53:28 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wfplwfs.sys.mui
[2015/12/21 20:53:28 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wdf01000.sys.mui
[2015/12/21 20:53:28 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ndisuio.sys.mui
[2015/12/21 20:53:28 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\partmgr.sys.mui
[2015/12/21 20:53:28 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mountmgr.sys.mui
[2015/12/21 20:53:28 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\SensorsCx.dll.mui
[2015/12/21 20:53:28 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\hidscanner.dll.mui
[2015/12/21 20:53:27 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\scfilter.sys.mui
[2015/12/21 20:53:26 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mshidumdf.sys.mui
[2015/12/21 20:53:25 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\luafv.sys.mui
[2015/12/21 20:53:25 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wof.sys.mui
[2015/12/21 20:53:24 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\pacer.sys.mui
[2015/12/21 20:53:24 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\qwavedrv.sys.mui
[2015/12/21 20:53:24 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\msgpiowin32.sys.mui
[2015/12/21 20:53:23 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\volsnap.sys.mui
[2015/12/21 20:53:23 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\spaceport.sys.mui
[2015/12/21 20:53:23 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\usbport.sys.mui
[2015/12/21 20:53:23 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\USBHUB3.SYS.mui
[2015/12/21 20:53:23 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\USBXHCI.SYS.mui
[2015/12/21 20:53:23 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\usbhub.sys.mui
[2015/12/21 20:53:23 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\processr.sys.mui
[2015/12/21 20:53:23 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\intelppm.sys.mui
[2015/12/21 20:53:23 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\amdppm.sys.mui
[2015/12/21 20:53:23 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\amdk8.sys.mui
[2015/12/21 20:53:23 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\1394ohci.sys.mui
[2015/12/21 20:53:23 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\vhdmp.sys.mui
[2015/12/21 20:53:23 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\vdrvroot.sys.mui
[2015/12/21 20:53:23 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\serial.sys.mui
[2015/12/21 20:53:23 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\i8042prt.sys.mui
[2015/12/21 20:53:23 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\acpi.sys.mui
[2015/12/21 20:53:23 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\tpm.sys.mui
[2015/12/21 20:53:23 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\pci.sys.mui
[2015/12/21 20:53:23 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\battc.sys.mui
[2015/12/21 20:53:23 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ataport.sys.mui
[2015/12/21 20:53:23 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\hidclass.sys.mui
[2015/12/21 20:53:23 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\IPMIDrv.sys.mui
[2015/12/21 20:53:23 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\disk.sys.mui
[2015/12/21 20:53:23 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\sermouse.sys.mui
[2015/12/21 20:53:23 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wacompen.sys.mui
[2015/12/21 20:53:23 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mouclass.sys.mui
[2015/12/21 20:53:23 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\kbdclass.sys.mui
[2015/12/21 20:53:23 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\parport.sys.mui
[2015/12/21 20:53:23 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\isapnp.sys.mui
[2015/12/21 20:53:23 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\usbehci.sys.mui
[2015/12/21 20:53:23 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\umbus.sys.mui
[2015/12/21 20:53:23 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\tsusbflt.sys.mui
[2015/12/21 20:53:23 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mssmbios.sys.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\vhf.sys.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\USBSTOR.SYS.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ULIAGPKX.SYS.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\UAGP35.sys.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\rdpdr.sys.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\NV_AGP.SYS.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\MTConfig.sys.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mouhid.sys.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\kbdhid.sys.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\GAGP30KX.sys.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\cdrom.sys.mui
[2015/12/21 20:53:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\AGP440.sys.mui
[2015/12/21 20:53:23 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\volmgr.sys.mui
[2015/12/21 20:53:23 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\pdc.sys.mui
[2015/12/21 20:53:22 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wmbclass.sys.mui
[2015/12/21 20:53:22 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\bthport.sys.mui
[2015/12/21 20:53:22 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\BthLEEnum.sys.mui
[2015/12/21 20:53:22 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\EhStorTcgDrv.sys.mui
[2015/12/21 20:53:22 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\WUDFUsbccidDriver.dll.mui
[2015/12/21 20:53:22 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\sdbus.sys.mui
[2015/12/21 20:53:22 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\dumpsd.sys.mui
[2015/12/21 20:53:22 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\hidbth.sys.mui
[2015/12/21 20:53:22 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\bthpan.sys.mui
[2015/12/21 20:53:22 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\portcls.sys.mui
[2015/12/21 20:53:22 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\pcmcia.sys.mui
[2015/12/21 20:53:22 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\HidBthLE.dll.mui
[2015/12/21 20:53:22 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\hdaudbus.sys.mui
[2015/12/21 20:53:22 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\BthA2DP.sys.mui
[2015/12/21 20:53:22 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\hidi2c.sys.mui
[2015/12/21 20:53:22 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\BthMini.SYS.mui
[2015/12/21 20:53:22 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\sdstor.sys.mui
[2015/12/21 20:53:22 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\rndismpx.sys.mui
[2015/12/21 20:53:22 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\rndismp6.sys.mui
[2015/12/21 20:53:22 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\HdAudio.sys.mui
[2015/12/21 20:53:22 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\BTHUSB.SYS.mui
[2015/12/21 20:53:22 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\bthhfenum.sys.mui
[2015/12/21 20:53:22 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\usbvideo.sys.mui
[2015/12/21 20:53:22 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\USBAUDIO.sys.mui
[2015/12/21 20:53:22 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\serscan.sys.mui
[2015/12/21 20:53:22 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\rfcomm.sys.mui
[2015/12/21 20:53:22 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\pnpmem.sys.mui
[2015/12/21 20:53:22 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\bthenum.sys.mui
[2015/12/21 20:53:22 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\BthAvrcpTg.sys.mui
[2015/12/21 20:53:22 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\BthhfHid.sys.mui
[2015/12/19 20:20:00 | 000,002,269 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2016/01/10 19:43:01 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2016/01/08 10:04:59 | 000,083,914 | ---- | C] () -- C:\Users\jerem\Documents\ReleveIdentiteBancaire.pdf
[2015/12/28 16:14:59 | 000,022,963 | ---- | C] () -- C:\Users\jerem\Desktop\Document stratégique EAD en milieu pro 2016.odt
[2015/12/21 21:28:16 | 000,023,108 | ---- | C] () -- C:\WINDOWS\SysNative\emptyregdb.dat
[2015/12/21 21:22:01 | 3399,958,528 | -HS- | C] () -- C:\hiberfil.sys
[2015/12/21 21:20:32 | 000,001,576 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2015/12/21 21:14:56 | 000,000,352 | ---- | C] () -- C:\Users\jerem\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2015/12/21 21:14:56 | 000,000,334 | ---- | C] () -- C:\Users\jerem\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2015/12/21 21:12:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01011.Wdf
[2015/12/21 21:11:49 | 005,096,627 | ---- | C] () -- C:\WINDOWS\SysNative\nvcoproc.bin
[2015/12/21 21:11:08 | 000,000,200 | ---- | C] () -- C:\WINDOWS\SysNative\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
[2015/12/21 21:11:08 | 000,000,180 | ---- | C] () -- C:\WINDOWS\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
[2015/12/21 21:10:04 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_avchv_01009.Wdf
[2015/12/21 21:10:00 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
[2015/12/21 21:05:48 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2015/12/21 21:04:29 | 000,338,760 | ---- | C] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2015/12/21 21:03:34 | 000,051,838 | ---- | C] () -- C:\WINDOWS\SysWow64\license.rtf
[2015/12/21 21:03:34 | 000,051,838 | ---- | C] () -- C:\WINDOWS\SysNative\license.rtf
[2015/12/21 20:58:00 | 002,653,816 | ---- | C] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll
[2015/12/21 20:58:00 | 001,859,448 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2015/11/18 13:40:15 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2015/10/30 08:24:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2015/10/30 08:24:43 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2015/10/30 08:18:39 | 000,164,224 | ---- | C] () -- C:\WINDOWS\SysWow64\weretw.dll
[2015/10/30 08:18:36 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2015/10/30 08:18:36 | 000,047,104 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2015/10/30 08:18:34 | 000,157,696 | ---- | C] () -- C:\WINDOWS\SysWow64\MTF.dll
[2015/10/30 08:18:34 | 000,019,968 | ---- | C] () -- C:\WINDOWS\SysWow64\GamePanelExternalHook.dll
[2015/10/30 08:18:31 | 000,252,928 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.Perception.Stub.dll
[2015/10/30 08:18:31 | 000,029,184 | ---- | C] () -- C:\WINDOWS\SysWow64\dtdump.exe
[2015/10/30 08:18:29 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2015/10/30 08:18:29 | 000,293,376 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll
[2015/10/30 08:18:26 | 000,022,528 | ---- | C] () -- C:\WINDOWS\SysWow64\efsext.dll
[2015/10/30 08:18:25 | 000,002,269 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2015/10/30 08:18:23 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2015/10/30 08:17:40 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2015/09/16 09:36:39 | 001,103,902 | ---- | C] () -- C:\ProgramData\1442390725.bdinstall.bin
[2015/09/15 16:53:33 | 037,748,880 | ---- | C] () -- C:\WINDOWS\SysWow64\nvcompiler.dll
[2015/09/15 16:43:12 | 000,036,864 | ---- | C] () -- C:\WINDOWS\EP_UNINSTALL.EXE
[2015/07/24 20:51:02 | 000,000,046 | ---- | C] () -- C:\WINDOWS\RicaOption.ini

[color=#E56717]========== ZeroAccess Check ==========[/color]


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2015/10/30 08:17:59 | 006,601,408 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2015/10/30 08:18:31 | 005,237,336 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2015/10/30 08:17:43 | 000,987,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2015/10/30 08:18:21 | 000,765,440 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2015/10/30 08:17:45 | 000,518,656 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== LOP Check ==========[/color]

[2015/09/16 09:41:35 | 000,000,000 | ---D | M] -- C:\Users\jerem\AppData\Roaming\Bitdefender
[2016/01/10 18:37:06 | 000,000,000 | ---D | M] -- C:\Users\jerem\AppData\Roaming\cacaoweb
[2015/09/15 16:41:58 | 000,000,000 | ---D | M] -- C:\Users\jerem\AppData\Roaming\DropboxOEM
[2015/09/16 10:05:22 | 000,000,000 | ---D | M] -- C:\Users\jerem\AppData\Roaming\istartsurf
[2015/09/16 09:05:24 | 000,000,000 | ---D | M] -- C:\Users\jerem\AppData\Roaming\QuickScan

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
[2015/12/29 23:31:20 | 000,006,786 | ---- | M] () -- C:\bdlog.txt
[2015/07/10 12:00:31 | 000,395,268 | RHS- | M] () -- C:\bootmgr
[2015/10/30 08:18:34 | 000,000,001 | -HS- | M] () -- C:\BOOTNXT
[2016/01/10 12:01:20 | 3399,958,528 | -HS- | M] () -- C:\hiberfil.sys
[2015/12/30 10:20:32 | 1342,177,280 | -HS- | M] () -- C:\pagefile.sys
[2016/01/10 19:43:01 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015/12/30 10:20:32 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

[color=#A23BEC]< %PROGRAMFILES%\*.* >[/color]
[2015/10/30 08:21:27 | 000,000,174 | -HS- | M] () -- C:\Program Files (x86)\desktop.ini

[color=#A23BEC]< %PROGRAMFILES%\*. >[/color]
[2015/08/13 04:47:52 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\AGEIA Technologies
[2015/12/21 21:16:58 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Common Files
[2015/08/13 05:16:33 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\CyberLink
[2015/08/13 05:24:36 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Dropbox
[2015/08/13 05:24:01 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\eBay
[2015/09/15 16:43:11 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Fnac
[2015/09/16 10:07:09 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Google
[2015/08/13 05:59:52 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2015/08/13 04:43:32 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Intel
[2015/12/21 20:58:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Internet Explorer
[2015/12/05 12:11:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Office
[2015/12/21 21:16:59 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft.NET
[2015/12/21 20:44:52 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSBuild
[2015/08/13 04:49:06 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\NVIDIA Corporation
[2015/11/18 13:40:53 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\RayDld
[2015/08/13 05:04:39 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Realtek
[2015/12/21 20:44:52 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Reference Assemblies
[2015/10/15 13:40:24 | 000,000,000 | R--D | M] -- C:\Program Files (x86)\Skype
[2015/08/13 05:23:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Spotify
[2015/08/13 05:22:54 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Symbaloo_TLauncher
[2015/08/13 05:59:42 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\TOSHIBA
[2015/12/21 21:49:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Toshiba TEMPRO
[2015/12/21 21:11:45 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Uninstall Information
[2015/12/21 20:54:11 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Defender
[2015/10/30 20:00:06 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Mail
[2015/12/21 20:54:11 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Media Player
[2015/10/30 08:24:28 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Multimedia Platform
[2015/10/30 08:24:24 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows NT
[2015/12/21 20:54:11 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Photo Viewer
[2015/10/30 08:24:28 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Portable Devices
[2015/10/30 08:24:24 | 000,000,000 | -HSD | M] -- C:\Program Files (x86)\Windows Sidebar
[2015/10/30 08:24:24 | 000,000,000 | --SD | M] -- C:\Program Files (x86)\WindowsPowerShell

[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2015/10/30 08:17:23 | 000,063,328 | ---- | M] (Microsoft Corporation) MD5=870F1A2C936F92B5D053DF7EC75B352F -- C:\WINDOWS\SysNative\drivers\AGP440.sys
[2015/10/30 08:17:23 | 000,063,328 | ---- | M] (Microsoft Corporation) MD5=870F1A2C936F92B5D053DF7EC75B352F -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_d82530a843997b64\AGP440.sys
[2015/10/30 08:17:23 | 000,063,328 | ---- | M] (Microsoft Corporation) MD5=870F1A2C936F92B5D053DF7EC75B352F -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_10.0.10586.0_none_4698859469080cab\AGP440.sys
[2015/07/10 11:59:38 | 000,063,328 | ---- | M] (Microsoft Corporation) MD5=EF09D07626820F7F89519514C17FE768 -- C:\Windows.old\Windows\System32\drivers\AGP440.sys
[2015/07/10 11:59:38 | 000,063,328 | ---- | M] (Microsoft Corporation) MD5=EF09D07626820F7F89519514C17FE768 -- C:\Windows.old\Windows\System32\DriverStore\FileRepository\machine.inf_amd64_c357541563097b98\AGP440.sys
[2015/07/10 11:59:38 | 000,063,328 | ---- | M] (Microsoft Corporation) MD5=EF09D07626820F7F89519514C17FE768 -- C:\Windows.old\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_10.0.10240.16384_none_c2135eea595e241e\AGP440.sys

[color=#A23BEC]< MD5 for: APPMGMTS.DLL >[/color]
[2015/10/30 09:02:00 | 000,079,740 | ---- | M] () MD5=0145A9BCAEE4FCD070BCCF8AD664FEE3 -- C:\Windows\WinSxS\wow64_microsoft-windows-g..oftwareinstallation_31bf3856ad364e35_10.0.10586.0_none_18a92b0f3ac19665\appmgmts.dll
[2015/07/10 13:48:53 | 000,079,788 | ---- | M] () MD5=60C3339644B24C3805B79D78872A8CF6 -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-g..oftwareinstallation_31bf3856ad364e35_10.0.10240.16384_none_942404652b17add8\appmgmts.dll
[2015/10/30 08:32:26 | 000,085,882 | ---- | M] () MD5=6791ADF7B61CAF34FAD91FCE4BB1F417 -- C:\Windows\WinSxS\amd64_microsoft-windows-g..oftwareinstallation_31bf3856ad364e35_10.0.10586.0_none_0e5480bd0660d46a\appmgmts.dll
[2015/07/10 13:29:56 | 000,085,874 | ---- | M] () MD5=8A51C79161B9F1E1FD46928F703CE532 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-g..oftwareinstallation_31bf3856ad364e35_10.0.10240.16384_none_89cf5a12f6b6ebdd\appmgmts.dll

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2015/10/30 08:17:23 | 000,028,512 | ---- | M] (Microsoft Corporation) MD5=492B99D2E3D5D7BFD5F0AE1BE7BD37DD -- C:\WINDOWS\SysNative\drivers\atapi.sys
[2015/10/30 08:17:23 | 000,028,512 | ---- | M] (Microsoft Corporation) MD5=492B99D2E3D5D7BFD5F0AE1BE7BD37DD -- C:\WINDOWS\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_1a5ded552bf60401\atapi.sys
[2015/10/30 08:17:23 | 000,028,512 | ---- | M] (Microsoft Corporation) MD5=492B99D2E3D5D7BFD5F0AE1BE7BD37DD -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_10.0.10586.0_none_69bdc072cbe101cd\atapi.sys
[2015/07/10 11:59:39 | 000,028,512 | ---- | M] (Microsoft Corporation) MD5=8921DF6060DB5C7700AA48CB12E9EA08 -- C:\Windows.old\Windows\System32\drivers\atapi.sys
[2015/07/10 11:59:39 | 000,028,512 | ---- | M] (Microsoft Corporation) MD5=8921DF6060DB5C7700AA48CB12E9EA08 -- C:\Windows.old\Windows\System32\DriverStore\FileRepository\mshdc.inf_amd64_5689072091519d03\atapi.sys
[2015/07/10 11:59:39 | 000,028,512 | ---- | M] (Microsoft Corporation) MD5=8921DF6060DB5C7700AA48CB12E9EA08 -- C:\Windows.old\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_10.0.10240.16384_none_e53899c8bc371940\atapi.sys

[color=#A23BEC]< MD5 for: AUTOCHK.EXE >[/color]
[2015/10/30 08:17:47 | 000,945,664 | ---- | M] (Microsoft Corporation) MD5=587FF70B5B09CC9AC06D118D7CBF3C0A -- C:\WINDOWS\SysNative\autochk.exe
[2015/10/30 08:17:47 | 000,945,664 | ---- | M] (Microsoft Corporation) MD5=587FF70B5B09CC9AC06D118D7CBF3C0A -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_10.0.10586.0_none_6e7985a26c185620\autochk.exe
[2015/10/30 08:18:23 | 000,852,992 | ---- | M] (Microsoft Corporation) MD5=8BE5791891BD97CD785D473DD1A56031 -- C:\Windows\SysWOW64\autochk.exe
[2015/10/30 08:18:23 | 000,852,992 | ---- | M] (Microsoft Corporation) MD5=8BE5791891BD97CD785D473DD1A56031 -- C:\Windows\WinSxS\wow64_microsoft-windows-autochk_31bf3856ad364e35_10.0.10586.0_none_78ce2ff4a079181b\autochk.exe
[2015/07/10 11:59:57 | 000,944,640 | ---- | M] (Microsoft Corporation) MD5=9A4DEDB0AFE7D254DA6F38F976ABB84E -- C:\Windows.old\Windows\System32\autochk.exe
[2015/07/10 11:59:57 | 000,944,640 | ---- | M] (Microsoft Corporation) MD5=9A4DEDB0AFE7D254DA6F38F976ABB84E -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_10.0.10240.16384_none_e9f45ef85c6e6d93\autochk.exe
[2015/07/10 12:00:25 | 000,852,480 | ---- | M] (Microsoft Corporation) MD5=B407085E10413D1F023A8E666140C429 -- C:\Windows.old\Windows\SysWOW64\autochk.exe
[2015/07/10 12:00:25 | 000,852,480 | ---- | M] (Microsoft Corporation) MD5=B407085E10413D1F023A8E666140C429 -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-autochk_31bf3856ad364e35_10.0.10240.16384_none_f449094a90cf2f8e\autochk.exe

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2015/07/10 12:00:00 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=1E8A9267F8886803AAE02982FC1B5BC4 -- C:\Windows.old\Windows\System32\drivers\beep.sys
[2015/07/10 12:00:00 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=1E8A9267F8886803AAE02982FC1B5BC4 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-beepsys_31bf3856ad364e35_10.0.10240.16384_none_cc211301a24a92ff\beep.sys
[2015/10/30 08:17:51 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=5A88834AEE15D97695FAE0837B73B3E4 -- C:\WINDOWS\SysNative\drivers\beep.sys
[2015/10/30 08:17:51 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=5A88834AEE15D97695FAE0837B73B3E4 -- C:\Windows\WinSxS\amd64_microsoft-windows-beepsys_31bf3856ad364e35_10.0.10586.0_none_50a639abb1f47b8c\beep.sys

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2015/10/09 14:04:26 | 000,273,034 | ---- | M] () MD5=2E9FDCB53410E0B0551038A75C9A596A -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16386_none_6409c6df48ca75ac\explorer.exe
[2015/10/09 13:40:03 | 000,378,186 | ---- | M] () MD5=2EB448A13C8304D9F8E8A20875CA1EC2 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16386_none_59b51c8d1469b3b1\explorer.exe
[2015/10/09 14:04:32 | 000,199,778 | ---- | M] () MD5=3CA61C8322B96EA39751B2260BA58195 -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16404_none_640b799d48c8c7ad\explorer.exe
[2015/10/30 08:18:10 | 004,502,864 | ---- | M] (Microsoft Corporation) MD5=4572EB3DDBD2DFA10DE7A037A6CC6D53 -- C:\Windows\explorer.exe
[2015/10/30 08:18:10 | 004,502,864 | ---- | M] (Microsoft Corporation) MD5=4572EB3DDBD2DFA10DE7A037A6CC6D53 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10586.0_none_de3a3f6b2413a1f0\explorer.exe
[2015/11/25 06:12:23 | 004,047,288 | ---- | M] (Microsoft Corporation) MD5=4EEB94F7E1ABAB5503EEFEA7F2394370 -- C:\Windows.old\Windows\SysWOW64\explorer.exe
[2015/11/25 06:12:23 | 004,047,288 | ---- | M] (Microsoft Corporation) MD5=4EEB94F7E1ABAB5503EEFEA7F2394370 -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16603_none_640d784b48c6fd34\explorer.exe
[2015/08/13 05:50:29 | 000,216,988 | ---- | M] () MD5=537EFE20C4C2136D07CE74D775018238 -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16384_none_6409c31348ca7b5e\explorer.exe
[2015/10/30 08:18:36 | 004,064,320 | ---- | M] (Microsoft Corporation) MD5=7F46BC4C9DBAAA549629D6C677E417D6 -- C:\Windows\SysWOW64\explorer.exe
[2015/10/30 08:18:36 | 004,064,320 | ---- | M] (Microsoft Corporation) MD5=7F46BC4C9DBAAA549629D6C677E417D6 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10586.0_none_e88ee9bd587463eb\explorer.exe
[2015/10/09 13:40:07 | 000,337,549 | ---- | M] () MD5=A028A963712693E82C90707E7059FDB4 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16404_none_59b6cf4b146805b2\explorer.exe
[2015/08/11 10:40:22 | 004,048,808 | ---- | M] (Microsoft Corporation) MD5=B3F90790F991A5A21113B58EE50FA696 -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16431_none_640b2f9348c91d1b\explorer.exe
[2015/11/25 06:42:36 | 004,532,304 | ---- | M] (Microsoft Corporation) MD5=D2EAEC106F183572317AF7D68E381063 -- C:\Windows.old\Windows\explorer.exe
[2015/11/25 06:42:36 | 004,532,304 | ---- | M] (Microsoft Corporation) MD5=D2EAEC106F183572317AF7D68E381063 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16603_none_59b8cdf914663b39\explorer.exe
[2015/08/11 11:04:23 | 004,532,304 | ---- | M] (Microsoft Corporation) MD5=F1CBCB7FA6F3B309639AA2D4EF74469C -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16431_none_59b6854114685b20\explorer.exe
[2015/08/13 05:40:48 | 000,266,722 | ---- | M] () MD5=FAAF6C65A010514F895FA910FAB626CC -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10240.16384_none_59b518c11469b963\explorer.exe

[color=#A23BEC]< MD5 for: HIDSERV.DLL >[/color]
[2015/10/30 08:17:51 | 000,036,864 | ---- | M] (Microsoft Corporation) MD5=46DE2EF6382DD9613CB506760648F262 -- C:\WINDOWS\SysNative\hidserv.dll
[2015/10/30 08:17:51 | 000,036,864 | ---- | M] (Microsoft Corporation) MD5=46DE2EF6382DD9613CB506760648F262 -- C:\Windows\WinSxS\amd64_microsoft-windows-hid-user_31bf3856ad364e35_10.0.10586.0_none_6331e0c631c5db68\hidserv.dll
[2015/07/10 11:59:59 | 000,034,304 | ---- | M] (Microsoft Corporation) MD5=5576DF399CF2D3B63608F7F282151249 -- C:\Windows.old\Windows\System32\hidserv.dll
[2015/07/10 11:59:59 | 000,034,304 | ---- | M] (Microsoft Corporation) MD5=5576DF399CF2D3B63608F7F282151249 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-hid-user_31bf3856ad364e35_10.0.10240.16384_none_deacba1c221bf2db\hidserv.dll
[2015/07/10 12:00:26 | 000,029,696 | ---- | M] (Microsoft Corporation) MD5=79E59B65911FC6A155417C85639DB0BC -- C:\Windows.old\Windows\SysWOW64\hidserv.dll
[2015/07/10 12:00:26 | 000,029,696 | ---- | M] (Microsoft Corporation) MD5=79E59B65911FC6A155417C85639DB0BC -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-hid-user_31bf3856ad364e35_10.0.10240.16384_none_e901646e567cb4d6\hidserv.dll
[2015/10/30 08:18:25 | 000,031,744 | ---- | M] (Microsoft Corporation) MD5=CB8FDF512167635C405462929B869173 -- C:\Windows\SysWOW64\hidserv.dll
[2015/10/30 08:18:25 | 000,031,744 | ---- | M] (Microsoft Corporation) MD5=CB8FDF512167635C405462929B869173 -- C:\Windows\WinSxS\wow64_microsoft-windows-hid-user_31bf3856ad364e35_10.0.10586.0_none_6d868b1866269d63\hidserv.dll

[color=#A23BEC]< MD5 for: IASTORV.SYS >[/color]
[2015/07/10 11:59:38 | 000,412,000 | ---- | M] (Intel Corporation) MD5=4E69EE8F8E5DA036535D433C544AF9E2 -- C:\Windows.old\Windows\System32\drivers\iaStorV.sys
[2015/07/10 11:59:38 | 000,412,000 | ---- | M] (Intel Corporation) MD5=4E69EE8F8E5DA036535D433C544AF9E2 -- C:\Windows.old\Windows\System32\DriverStore\FileRepository\iastorv.inf_amd64_5069105fb236ae4b\iaStorV.sys
[2015/07/10 11:59:38 | 000,412,000 | ---- | M] (Intel Corporation) MD5=4E69EE8F8E5DA036535D433C544AF9E2 -- C:\Windows.old\Windows\WinSxS\amd64_iastorv.inf_31bf3856ad364e35_10.0.10240.16384_none_b711c42722754533\iaStorV.sys
[2015/10/30 08:17:22 | 000,412,000 | ---- | M] (Intel Corporation) MD5=9652E1E35A92D8C75710C17A63B15796 -- C:\WINDOWS\SysNative\drivers\iaStorV.sys
[2015/10/30 08:17:22 | 000,412,000 | ---- | M] (Intel Corporation) MD5=9652E1E35A92D8C75710C17A63B15796 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_5069105fb236ae4b\iaStorV.sys
[2015/10/30 08:17:22 | 000,412,000 | ---- | M] (Intel Corporation) MD5=9652E1E35A92D8C75710C17A63B15796 -- C:\Windows\WinSxS\amd64_iastorv.inf_31bf3856ad364e35_10.0.10586.0_none_3b96ead1321f2dc0\iaStorV.sys

[color=#A23BEC]< MD5 for: IMM32.DLL >[/color]
[2015/10/30 08:17:58 | 000,230,416 | ---- | M] (Microsoft Corporation) MD5=706EAE0012D8489D1DA0FD73140A4D93 -- C:\WINDOWS\SysNative\imm32.dll
[2015/10/30 08:17:58 | 000,230,416 | ---- | M] (Microsoft Corporation) MD5=706EAE0012D8489D1DA0FD73140A4D93 -- C:\Windows\WinSxS\amd64_microsoft-windows-imm32_31bf3856ad364e35_10.0.10586.0_none_e8dbb66f24c23033\imm32.dll
[2015/07/10 12:00:28 | 000,168,400 | ---- | M] (Microsoft Corporation) MD5=837F5F1B7C66CF4B5C8FDF6BE472E9BA -- C:\Windows.old\Windows\SysWOW64\imm32.dll
[2015/07/10 12:00:28 | 000,168,400 | ---- | M] (Microsoft Corporation) MD5=837F5F1B7C66CF4B5C8FDF6BE472E9BA -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-imm32_31bf3856ad364e35_10.0.10240.16384_none_6eab3a17497909a1\imm32.dll
[2015/10/30 08:18:29 | 000,169,928 | ---- | M] (Microsoft Corporation) MD5=BC14DF8FE84A3A0EBCE87B857AC765E1 -- C:\Windows\SysWOW64\imm32.dll
[2015/10/30 08:18:29 | 000,169,928 | ---- | M] (Microsoft Corporation) MD5=BC14DF8FE84A3A0EBCE87B857AC765E1 -- C:\Windows\WinSxS\wow64_microsoft-windows-imm32_31bf3856ad364e35_10.0.10586.0_none_f33060c15922f22e\imm32.dll
[2015/07/10 12:00:05 | 000,211,288 | ---- | M] (Microsoft Corporation) MD5=BFE876E837A15B740FCEA4F4A844C7C9 -- C:\Windows.old\Windows\System32\imm32.dll
[2015/07/10 12:00:05 | 000,211,288 | ---- | M] (Microsoft Corporation) MD5=BFE876E837A15B740FCEA4F4A844C7C9 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-imm32_31bf3856ad364e35_10.0.10240.16384_none_64568fc5151847a6\imm32.dll

[color=#A23BEC]< MD5 for: KERNEL32.DLL >[/color]
[2015/07/10 11:59:59 | 000,702,512 | ---- | M] (Microsoft Corporation) MD5=038B10C8E735FE667DA29B2E92A09B8A -- C:\Windows.old\Windows\System32\kernel32.dll
[2015/07/10 11:59:59 | 000,702,512 | ---- | M] (Microsoft Corporation) MD5=038B10C8E735FE667DA29B2E92A09B8A -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-kernel32_31bf3856ad364e35_10.0.10240.16384_none_9bbe56eff0f8d352\kernel32.dll
[2015/10/30 08:17:46 | 000,705,584 | ---- | M] (Microsoft Corporation) MD5=1C9C6933A94C594DE7366124B4DD6075 -- C:\WINDOWS\SysNative\kernel32.dll
[2015/10/30 08:17:46 | 000,705,584 | ---- | M] (Microsoft Corporation) MD5=1C9C6933A94C594DE7366124B4DD6075 -- C:\Windows\WinSxS\amd64_microsoft-windows-kernel32_31bf3856ad364e35_10.0.10586.0_none_20437d9a00a2bbdf\kernel32.dll
[2015/10/30 08:18:22 | 000,620,176 | ---- | M] (Microsoft Corporation) MD5=44AAC4307BE433E5C730124EB9043543 -- C:\Windows\SysWOW64\kernel32.dll
[2015/10/30 08:18:22 | 000,620,176 | ---- | M] (Microsoft Corporation) MD5=44AAC4307BE433E5C730124EB9043543 -- C:\Windows\WinSxS\wow64_microsoft-windows-kernel32_31bf3856ad364e35_10.0.10586.0_none_2a9827ec35037dda\kernel32.dll
[2015/07/10 12:00:23 | 000,624,312 | ---- | M] (Microsoft Corporation) MD5=6407D861DFB1D295336EFC8D12DE2E5F -- C:\Windows.old\Windows\SysWOW64\kernel32.dll
[2015/07/10 12:00:23 | 000,624,312 | ---- | M] (Microsoft Corporation) MD5=6407D861DFB1D295336EFC8D12DE2E5F -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-kernel32_31bf3856ad364e35_10.0.10240.16384_none_a61301422559954d\kernel32.dll

[color=#A23BEC]< MD5 for: MSWSOCK.DLL >[/color]
[2015/07/10 12:00:30 | 000,306,528 | ---- | M] (Microsoft Corporation) MD5=56D710DA9CCC7E5541DB958BC2A13EE2 -- C:\Windows.old\Windows\SysWOW64\mswsock.dll
[2015/07/10 12:00:30 | 000,306,528 | ---- | M] (Microsoft Corporation) MD5=56D710DA9CCC7E5541DB958BC2A13EE2 -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_10.0.10240.16384_none_caa87306fc59cb2d\mswsock.dll
[2015/10/30 08:18:03 | 000,357,216 | ---- | M] (Microsoft Corporation) MD5=5791806AA09F4AA912C5259E414F7F04 -- C:\WINDOWS\SysNative\mswsock.dll
[2015/10/30 08:18:03 | 000,357,216 | ---- | M] (Microsoft Corporation) MD5=5791806AA09F4AA912C5259E414F7F04 -- C:\Windows\WinSxS\amd64_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_10.0.10586.0_none_44d8ef5ed7a2f1bf\mswsock.dll
[2015/07/10 12:00:09 | 000,364,384 | ---- | M] (Microsoft Corporation) MD5=6E887DD203D23FD46D3460A3DB67E0D0 -- C:\Windows.old\Windows\System32\mswsock.dll
[2015/07/10 12:00:09 | 000,364,384 | ---- | M] (Microsoft Corporation) MD5=6E887DD203D23FD46D3460A3DB67E0D0 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_10.0.10240.16384_none_c053c8b4c7f90932\mswsock.dll
[2015/10/30 08:18:31 | 000,312,160 | ---- | M] (Microsoft Corporation) MD5=81EFE830E0E69582C1B5D1090C72CC8E -- C:\Windows\SysWOW64\mswsock.dll
[2015/10/30 08:18:31 | 000,312,160 | ---- | M] (Microsoft Corporation) MD5=81EFE830E0E69582C1B5D1090C72CC8E -- C:\Windows\WinSxS\wow64_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_10.0.10586.0_none_4f2d99b10c03b3ba\mswsock.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2015/10/09 13:48:26 | 000,009,716 | ---- | M] () MD5=36C39372992103BF8AD4239D921A217D -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_10.0.10240.16384_none_6155efe3c2b95661\ndis.sys
[2015/09/17 07:37:20 | 001,168,736 | ---- | M] (Microsoft Corporation) MD5=616F40B897DA651221F86A1741E9609B -- C:\Windows.old\Windows\System32\drivers\ndis.sys
[2015/09/17 07:37:20 | 001,168,736 | ---- | M] (Microsoft Corporation) MD5=616F40B897DA651221F86A1741E9609B -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_10.0.10240.16515_none_615891d5c2b6d2cf\ndis.sys
[2015/10/09 13:48:28 | 000,005,184 | ---- | M] () MD5=65BF421EF9F1D4DC74A63D59393D46ED -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_10.0.10240.16394_none_6155d91bc2b97002\ndis.sys
[2015/10/30 08:18:03 | 001,152,864 | ---- | M] (Microsoft Corporation) MD5=AFAECF904F1C343EBD50F91BC8D0DBE8 -- C:\WINDOWS\SysNative\drivers\ndis.sys
[2015/10/30 08:18:03 | 001,152,864 | ---- | M] (Microsoft Corporation) MD5=AFAECF904F1C343EBD50F91BC8D0DBE8 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_10.0.10586.0_none_e5db168dd2633eee\ndis.sys

[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2015/07/10 12:00:26 | 000,708,608 | ---- | M] (Microsoft Corporation) MD5=415414A10B77B9F56EB561C23806431D -- C:\Windows.old\Windows\SysWOW64\netlogon.dll
[2015/07/10 12:00:26 | 000,708,608 | ---- | M] (Microsoft Corporation) MD5=415414A10B77B9F56EB561C23806431D -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_10.0.10240.16384_none_100cd3440707f4f6\netlogon.dll
[2015/07/10 12:00:02 | 000,836,096 | ---- | M] (Microsoft Corporation) MD5=5E9439E5FA71649335D8FB0090843062 -- C:\Windows.old\Windows\System32\netlogon.dll
[2015/07/10 12:00:02 | 000,836,096 | ---- | M] (Microsoft Corporation) MD5=5E9439E5FA71649335D8FB0090843062 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_10.0.10240.16384_none_05b828f1d2a732fb\netlogon.dll
[2015/10/30 08:18:25 | 000,713,216 | ---- | M] (Microsoft Corporation) MD5=6723047B98153648723D147FD58427CD -- C:\Windows\SysWOW64\netlogon.dll
[2015/10/30 08:18:25 | 000,713,216 | ---- | M] (Microsoft Corporation) MD5=6723047B98153648723D147FD58427CD -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_10.0.10586.0_none_9491f9ee16b1dd83\netlogon.dll
[2015/10/30 08:17:53 | 000,846,848 | ---- | M] (Microsoft Corporation) MD5=89D288579C4FCA7E894116DF966BC54B -- C:\WINDOWS\SysNative\netlogon.dll
[2015/10/30 08:17:53 | 000,846,848 | ---- | M] (Microsoft Corporation) MD5=89D288579C4FCA7E894116DF966BC54B -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_10.0.10586.0_none_8a3d4f9be2511b88\netlogon.dll

[color=#A23BEC]< MD5 for: NTFS.SYS >[/color]
[2015/07/30 07:03:30 | 002,116,448 | ---- | M] (Microsoft Corporation) MD5=466EC5659C02ED53DBD47DC1BC2B8086 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-ntfs_31bf3856ad364e35_10.0.10240.16412_none_ae733761b7974fd9\ntfs.sys
[2015/10/09 13:48:36 | 000,159,948 | ---- | M] () MD5=69DFF8D32F8DC3D9C5417818801B1E7A -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-ntfs_31bf3856ad364e35_10.0.10240.16384_none_ae719b6bb798e437\ntfs.sys
[2015/12/01 08:01:29 | 002,115,936 | ---- | M] (Microsoft Corporation) MD5=BA8DC96D1DD7785EB0589CB1777208B7 -- C:\Windows.old\Windows\System32\drivers\ntfs.sys
[2015/12/01 08:01:29 | 002,115,936 | ---- | M] (Microsoft Corporation) MD5=BA8DC96D1DD7785EB0589CB1777208B7 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-ntfs_31bf3856ad364e35_10.0.10240.16601_none_ae754cd7b7956bbf\ntfs.sys
[2016/01/02 18:38:04 | 000,159,634 | ---- | M] () MD5=C26ADF056ADFCE9B934DB92525B65BC6 -- C:\Windows\WinSxS\amd64_microsoft-windows-ntfs_31bf3856ad364e35_10.0.10586.0_none_32f6c215c742ccc4\ntfs.sys
[2015/12/21 20:58:08 | 002,152,800 | ---- | M] (Microsoft Corporation) MD5=EFEFC245B884B1BE0401931398DCD707 -- C:\WINDOWS\SysNative\drivers\ntfs.sys
[2015/12/21 20:58:08 | 002,152,800 | ---- | M] (Microsoft Corporation) MD5=EFEFC245B884B1BE0401931398DCD707 -- C:\Windows\WinSxS\amd64_microsoft-windows-ntfs_31bf3856ad364e35_10.0.10586.29_none_2a494c30cdca5b65\ntfs.sys

[color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color]
[2015/07/10 11:59:39 | 000,166,240 | ---- | M] (NVIDIA Corporation) MD5=76F19EAE7A52CBAF7B8EC428BE6E0DA0 -- C:\Windows.old\Windows\System32\drivers\nvstor.sys
[2015/07/10 11:59:39 | 000,166,240 | ---- | M] (NVIDIA Corporation) MD5=76F19EAE7A52CBAF7B8EC428BE6E0DA0 -- C:\Windows.old\Windows\System32\DriverStore\FileRepository\nvraid.inf_amd64_3ee6d81b22b3ea66\nvstor.sys
[2015/07/10 11:59:39 | 000,166,240 | ---- | M] (NVIDIA Corporation) MD5=76F19EAE7A52CBAF7B8EC428BE6E0DA0 -- C:\Windows.old\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_10.0.10240.16384_none_41db34d659abef0b\nvstor.sys
[2015/10/30 08:17:23 | 000,166,240 | ---- | M] (NVIDIA Corporation) MD5=8B50D897657AB4A15FD9E251BBF7D107 -- C:\WINDOWS\SysNative\drivers\nvstor.sys
[2015/10/30 08:17:23 | 000,166,240 | ---- | M] (NVIDIA Corporation) MD5=8B50D897657AB4A15FD9E251BBF7D107 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_3ee6d81b22b3ea66\nvstor.sys
[2015/10/30 08:17:23 | 000,166,240 | ---- | M] (NVIDIA Corporation) MD5=8B50D897657AB4A15FD9E251BBF7D107 -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_10.0.10586.0_none_c6605b806955d798\nvstor.sys

[color=#A23BEC]< MD5 for: PROQUOTA.EXE >[/color]
[2015/07/10 12:00:26 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=2884FDC26067A7AF8CA34009DB315ECC -- C:\Windows.old\Windows\SysWOW64\proquota.exe
[2015/07/10 12:00:26 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=2884FDC26067A7AF8CA34009DB315ECC -- C:\Windows.old\Windows\WinSxS\x86_microsoft-windows-proquota_31bf3856ad364e35_10.0.10240.16384_none_d3a8ce0274b50157\proquota.exe
[2015/10/30 08:18:26 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=91AF5014A8A913C424735F875147483A -- C:\Windows\SysWOW64\proquota.exe
[2015/10/30 08:18:26 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=91AF5014A8A913C424735F875147483A -- C:\Windows\WinSxS\x86_microsoft-windows-proquota_31bf3856ad364e35_10.0.10586.0_none_582df4ac845ee9e4\proquota.exe
[2015/07/10 12:00:01 | 000,034,304 | ---- | M] (Microsoft Corporation) MD5=EA8E0AE71F8C0725A67CF0D87A7413A5 -- C:\Windows.old\Windows\System32\proquota.exe
[2015/07/10 12:00:01 | 000,034,304 | ---- | M] (Microsoft Corporation) MD5=EA8E0AE71F8C0725A67CF0D87A7413A5 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-proquota_31bf3856ad364e35_10.0.10240.16384_none_2fc769862d12728d\proquota.exe
[2015/10/30 08:17:52 | 000,034,304 | ---- | M] (Microsoft Corporation) MD5=FCCF20A5CDD31E3CC9EB3431F9F7B41F -- C:\WINDOWS\SysNative\proquota.exe
[2015/10/30 08:17:52 | 000,034,304 | ---- | M] (Microsoft Corporation) MD5=FCCF20A5CDD31E3CC9EB3431F9F7B41F -- C:\Windows\WinSxS\amd64_microsoft-windows-proquota_31bf3856ad364e35_10.0.10586.0_none_b44c90303cbc5b1a\proquota.exe

[color=#A23BEC]< MD5 for: QMGR.DLL >[/color]
[2015/10/30 08:17:43 | 001,144,320 | ---- | M] (Microsoft Corporation) MD5=64582C924C48175D52AED0D0E64AB413 -- C:\WINDOWS\SysNative\qmgr.dll
[2015/10/30 08:17:43 | 001,144,320 | ---- | M] (Microsoft Corporation) MD5=64582C924C48175D52AED0D0E64AB413 -- C:\Windows\WinSxS\amd64_microsoft-windows-bits-client-core_31bf3856ad364e35_10.0.10586.0_none_b2ca7530352e10e9\qmgr.dll
[2015/07/10 11:59:53 | 001,168,896 | ---- | M] (Microsoft Corporation) MD5=BD60F5633F6BD617D9ECCA3FFDC0D37E -- C:\Windows.old\Windows\System32\qmgr.dll
[2015/07/10 11:59:53 | 001,168,896 | ---- | M] (Microsoft Corporation) MD5=BD60F5633F6BD617D9ECCA3FFDC0D37E -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-bits-client-core_31bf3856ad364e35_10.0.10240.16384_none_2e454e862584285c\qmgr.dll

[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2015/10/30 08:18:26 | 000,227,840 | ---- | M] (Microsoft Corporation) MD5=47DAFA0A61CCB9CA36E2CF38C42D9BAF -- C:\Windows\SysWOW64\scecli.dll
[2015/10/30 08:18:26 | 000,227,840 | ---- | M] (Microsoft Corporation) MD5=47DAFA0A61CCB9CA36E2CF38C42D9BAF -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_10.0.10586.0_none_cee82506b7d3643e\scecli.dll
[2015/07/10 12:00:01 | 000,284,672 | ---- | M] (Microsoft Corporation) MD5=7DD59DB925AC2401D33B38152551153E -- C:\Windows.old\Windows\System32\scecli.dll
[2015/07/10 12:00:01 | 000,284,672 | ---- | M] (Microsoft Corporation) MD5=7DD59DB925AC2401D33B38152551153E -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_10.0.10240.16384_none_400e540a73c8b9b6\scecli.dll
[2015/10/30 08:17:53 | 000,251,392 | ---- | M] (Microsoft Corporation) MD5=930A1C518D65A9E781CD16C9BCFC5BEF -- C:\WINDOWS\SysNative\scecli.dll
[2015/10/30 08:17:53 | 000,251,392 | ---- | M] (Microsoft Corporation) MD5=930A1C518D65A9E781CD16C9BCFC5BEF -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_10.0.10586.0_none_c4937ab48372a243\scecli.dll
[2015/07/10 12:00:27 | 000,227,840 | ---- | M] (Microsoft Corporation) MD5=E45A0DCC29B8097D7D51CAEE389F4665 -- C:\Windows.old\Windows\SysWOW64\scecli.dll
[2015/07/10 12:00:27 | 000,227,840 | ---- | M] (Microsoft Corporation) MD5=E45A0DCC29B8097D7D51CAEE389F4665 -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_10.0.10240.16384_none_4a62fe5ca8297bb1\scecli.dll

[color=#A23BEC]< MD5 for: SPOOLSV.EXE >[/color]
[2015/07/10 12:00:14 | 000,781,824 | ---- | M] (Microsoft Corporation) MD5=58C17D92AD61EC7A98B05F4FAD0D205A -- C:\Windows.old\Windows\System32\spoolsv.exe
[2015/07/10 12:00:14 | 000,781,824 | ---- | M] (Microsoft Corporation) MD5=58C17D92AD61EC7A98B05F4FAD0D205A -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_10.0.10240.16384_none_de4c14d05c360fba\spoolsv.exe
[2015/10/30 08:18:09 | 000,755,712 | ---- | M] (Microsoft Corporation) MD5=DC520253EC32B515E7792DB05DB43EB2 -- C:\WINDOWS\SysNative\spoolsv.exe
[2015/10/30 08:18:09 | 000,755,712 | ---- | M] (Microsoft Corporation) MD5=DC520253EC32B515E7792DB05DB43EB2 -- C:\Windows\WinSxS\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_10.0.10586.0_none_62d13b7a6bdff847\spoolsv.exe

[color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color]
[2015/10/30 08:18:25 | 000,037,256 | ---- | M] (Microsoft Corporation) MD5=6A1212077C0559029CDFB9C39580C835 -- C:\Windows\SysWOW64\svchost.exe
[2015/10/30 08:18:25 | 000,037,256 | ---- | M] (Microsoft Corporation) MD5=6A1212077C0559029CDFB9C39580C835 -- C:\Windows\WinSxS\wow64_microsoft-windows-services-svchost_31bf3856ad364e35_10.0.10586.0_none_4c959c4be405b311\svchost.exe
[2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) MD5=8497852ED44AFF902D502015792D315D -- C:\WINDOWS\SysNative\svchost.exe
[2015/10/30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) MD5=8497852ED44AFF902D502015792D315D -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_10.0.10586.0_none_4240f1f9afa4f116\svchost.exe
[2015/07/10 11:59:58 | 000,039,856 | ---- | M] (Microsoft Corporation) MD5=A1AEAFC58DF7803B8AA2B09EA93C722F -- C:\Windows.old\Windows\System32\svchost.exe
[2015/07/10 11:59:58 | 000,039,856 | ---- | M] (Microsoft Corporation) MD5=A1AEAFC58DF7803B8AA2B09EA93C722F -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_10.0.10240.16384_none_bdbbcb4f9ffb0889\svchost.exe
[2015/07/10 12:00:25 | 000,035,176 | ---- | M] (Microsoft Corporation) MD5=A412DEDAC6A1FF7BA06FEB3B6725495E -- C:\Windows.old\Windows\SysWOW64\svchost.exe
[2015/07/10 12:00:25 | 000,035,176 | ---- | M] (Microsoft Corporation) MD5=A412DEDAC6A1FF7BA06FEB3B6725495E -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-services-svchost_31bf3856ad364e35_10.0.10240.16384_none_c81075a1d45bca84\svchost.exe

[color=#A23BEC]< MD5 for: TERMSRV.DLL >[/color]
[2015/10/30 08:18:18 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=14307D4801C8CEF0A615907C09E886B3 -- C:\WINDOWS\SysNative\termsrv.dll
[2015/10/30 08:18:18 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=14307D4801C8CEF0A615907C09E886B3 -- C:\Windows\WinSxS\amd64_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_10.0.10586.0_none_1b24da20fe9b4a93\termsrv.dll
[2015/07/10 12:00:20 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0608264209A836821D6AB8C67B108AB -- C:\Windows.old\Windows\System32\termsrv.dll
[2015/07/10 12:00:20 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0608264209A836821D6AB8C67B108AB -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_10.0.10240.16384_none_969fb376eef16206\termsrv.dll

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2015/07/10 12:00:01 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=5F6D4F12EA33BFC0F0F8CEEAC332AB2B -- C:\Windows.old\Windows\System32\userinit.exe
[2015/07/10 12:00:01 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=5F6D4F12EA33BFC0F0F8CEEAC332AB2B -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_10.0.10240.16384_none_e4292bc46c5d42af\userinit.exe
[2015/10/30 08:17:53 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=8F3ECCB5DC878FA14887B43CD148CBA9 -- C:\WINDOWS\SysNative\userinit.exe
[2015/10/30 08:17:53 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=8F3ECCB5DC878FA14887B43CD148CBA9 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_10.0.10586.0_none_68ae526e7c072b3c\userinit.exe
[2015/10/30 08:18:26 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A878CF325C93723B5017642E6FDB80E8 -- C:\Windows\SysWOW64\userinit.exe
[2015/10/30 08:18:26 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A878CF325C93723B5017642E6FDB80E8 -- C:\Windows\WinSxS\wow64_microsoft-windows-userinit_31bf3856ad364e35_10.0.10586.0_none_7302fcc0b067ed37\userinit.exe
[2015/07/10 12:00:27 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A89C18F5E6D8981D5E937B325290915A -- C:\Windows.old\Windows\SysWOW64\userinit.exe
[2015/07/10 12:00:27 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A89C18F5E6D8981D5E937B325290915A -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-userinit_31bf3856ad364e35_10.0.10240.16384_none_ee7dd616a0be04aa\userinit.exe

[color=#A23BEC]< MD5 for: VOLSNAP.SYS >[/color]
[2015/07/10 11:59:39 | 000,378,720 | ---- | M] (Microsoft Corporation) MD5=823A237D871CD652C6BFD47BECB6810A -- C:\Windows.old\Windows\System32\drivers\volsnap.sys
[2015/07/10 11:59:39 | 000,378,720 | ---- | M] (Microsoft Corporation) MD5=823A237D871CD652C6BFD47BECB6810A -- C:\Windows.old\Windows\System32\DriverStore\FileRepository\volume.inf_amd64_b017de7f410d7e0a\volsnap.sys
[2015/07/10 11:59:39 | 000,378,720 | ---- | M] (Microsoft Corporation) MD5=823A237D871CD652C6BFD47BECB6810A -- C:\Windows.old\Windows\WinSxS\amd64_volume.inf_31bf3856ad364e35_10.0.10240.16384_none_1db7292f96c24571\volsnap.sys
[2015/10/30 08:17:22 | 000,414,560 | ---- | M] (Microsoft Corporation) MD5=E1F91A727A04C9F8199D04FF3BBBF63C -- C:\WINDOWS\SysNative\drivers\volsnap.sys
[2015/10/30 08:17:22 | 000,414,560 | ---- | M] (Microsoft Corporation) MD5=E1F91A727A04C9F8199D04FF3BBBF63C -- C:\WINDOWS\SysNative\DriverStore\FileRepository\volume.inf_amd64_910e4cc912bf5a43\volsnap.sys
[2015/10/30 08:17:22 | 000,414,560 | ---- | M] (Microsoft Corporation) MD5=E1F91A727A04C9F8199D04FF3BBBF63C -- C:\Windows\WinSxS\amd64_volume.inf_31bf3856ad364e35_10.0.10586.0_none_a23c4fd9a66c2dfe\volsnap.sys

[color=#A23BEC]< MD5 for: WININET.DLL >[/color]
[2016/01/06 09:43:54 | 000,135,235 | ---- | M] () MD5=00581FEE75F2B106A727B6E67725E3EB -- C:\Windows\WinSxS\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_11.0.10586.0_none_66416b2afea6b1b8\wininet.dll
[2015/10/09 13:42:27 | 000,281,161 | ---- | M] () MD5=30D47183C13E12AB00814738CE2E8AD4 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_11.0.10240.16391_none_4da15ca565f5169f\wininet.dll
[2015/10/09 19:53:07 | 000,219,989 | ---- | M] () MD5=57DB9583497ADA1019CA66A531078235 -- C:\Windows.old\Windows\WinSxS\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_11.0.10240.16384_none_f182dd9bad97833d\wininet.dll
[2015/09/17 06:35:00 | 002,207,232 | ---- | M] (Microsoft Corporation) MD5=73FC0143E518D8DB7AFE9675F4AF8063 -- C:\Windows.old\Windows\SysWOW64\wininet.dll
[2015/09/17 06:35:00 | 002,207,232 | ---- | M] (Microsoft Corporation) MD5=73FC0143E518D8DB7AFE9675F4AF8063 -- C:\Windows.old\Windows\WinSxS\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_11.0.10240.16515_none_f1857f8dad94ffab\wininet.dll
[2015/12/21 20:57:59 | 002,121,216 | ---- | M] (Microsoft Corporation) MD5=90F7CF0E4FFD720EBAC601CABE25D880 -- C:\Windows\SysWOW64\wininet.dll
[2015/12/21 20:57:59 | 002,121,216 | ---- | M] (Microsoft Corporation) MD5=90F7CF0E4FFD720EBAC601CABE25D880 -- C:\Windows\WinSxS\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_11.0.10586.17_none_5da99338051e0b50\wininet.dll
[2015/12/21 20:58:02 | 002,647,552 | ---- | M] (Microsoft Corporation) MD5=AB4C1A9F37C0B8467AC923ED4AD727D6 -- C:\WINDOWS\SysNative\wininet.dll
[2015/12/21 20:58:02 | 002,647,552 | ---- | M] (Microsoft Corporation) MD5=AB4C1A9F37C0B8467AC923ED4AD727D6 -- C:\Windows\WinSxS\amd64_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_11.0.10586.17_none_b9c82ebbbd7b7c86\wininet.dll
[2016/01/02 17:49:02 | 000,121,598 | ---- | M] () MD5=D67BD7FC7E9C807EEAE1D28B17D284F3 -- C:\Windows\WinSxS\amd64_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_11.0.10586.0_none_c26006aeb70422ee\wininet.dll
[2015/10/09 19:53:16 | 000,232,112 | ---- | M] () MD5=DA7EF6415C461D71199123F60D473324 -- C:\Windows.old\Windows\WinSxS\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_11.0.10240.16391_none_f182c121ad97a569\wininet.dll
[2015/09/17 06:49:51 | 002,740,224 | ---- | M] (Microsoft Corporation) MD5=E5D86250453B33900666D92ED1A92ABE -- C:\Windows.old\Windows\System32\wininet.dll
[2015/09/17 06:49:51 | 002,740,224 | ---- | M] (Microsoft Corporation) MD5=E5D86250453B33900666D92ED1A92ABE -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_11.0.10240.16515_none_4da41b1165f270e1\wininet.dll
[2015/10/09 13:42:24 | 000,277,266 | ---- | M] () MD5=F98341F09F95A4BB602EFA7A06ED8D18 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_11.0.10240.16384_none_4da1791f65f4f473\wininet.dll

[color=#A23BEC]< MD5 for: WININIT.EXE >[/color]
[2015/07/18 06:02:37 | 000,290,312 | ---- | M] (Microsoft Corporation) MD5=7718A2A9B2BFB2C8E2BAEB03310CA3FD -- C:\Windows.old\Windows\System32\wininit.exe
[2015/07/18 06:02:37 | 000,290,312 | ---- | M] (Microsoft Corporation) MD5=7718A2A9B2BFB2C8E2BAEB03310CA3FD -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-wininit_31bf3856ad364e35_10.0.10240.16393_none_38f311cf9efe0dc0\wininit.exe
[2015/10/09 13:56:02 | 000,007,089 | ---- | M] () MD5=B8B827E0CF2D703744040643B71F94C6 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-wininit_31bf3856ad364e35_10.0.10240.16384_none_38f32a7d9efdf146\wininit.exe
[2015/10/30 08:17:53 | 000,290,856 | ---- | M] (Microsoft Corporation) MD5=CAD491DD9EC00BB841EA407D9C498C4A -- C:\WINDOWS\SysNative\wininit.exe
[2015/10/30 08:17:53 | 000,290,856 | ---- | M] (Microsoft Corporation) MD5=CAD491DD9EC00BB841EA407D9C498C4A -- C:\Windows\WinSxS\amd64_microsoft-windows-wininit_31bf3856ad364e35_10.0.10586.0_none_bd785127aea7d9d3\wininit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2015/10/09 13:56:03 | 000,066,233 | ---- | M] () MD5=096B633FC6270D22866D8AC1F7FA9DEA -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16384_none_77c372c56f9ec699\winlogon.exe
[2015/10/09 13:56:03 | 000,066,233 | ---- | M] () MD5=096B633FC6270D22866D8AC1F7FA9DEA -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16384_none_77c372c56f9ec699\winlogon.exe
[2015/10/09 13:56:04 | 000,042,840 | ---- | M] () MD5=122EDFD306E8D1B1EAC47CF7BAD82675 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16405_none_77c52b356f9d100f\winlogon.exe
[2015/10/09 13:56:04 | 000,042,840 | ---- | M] () MD5=122EDFD306E8D1B1EAC47CF7BAD82675 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16405_none_77c52b356f9d100f\winlogon.exe
[2015/10/30 08:17:53 | 000,584,704 | ---- | M] (Microsoft Corporation) MD5=46C8E60DEDBDA95C102D1B2E74676578 -- C:\WINDOWS\SysNative\winlogon.exe
[2015/10/30 08:17:53 | 000,584,704 | ---- | M] (Microsoft Corporation) MD5=46C8E60DEDBDA95C102D1B2E74676578 -- C:\WINDOWS\SysNative\winlogon.exe
[2015/10/30 08:17:53 | 000,584,704 | ---- | M] (Microsoft Corporation) MD5=46C8E60DEDBDA95C102D1B2E74676578 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10586.0_none_fc48996f7f48af26\winlogon.exe
[2015/10/30 08:17:53 | 000,584,704 | ---- | M] (Microsoft Corporation) MD5=46C8E60DEDBDA95C102D1B2E74676578 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10586.0_none_fc48996f7f48af26\winlogon.exe
[2015/10/09 13:56:04 | 000,032,794 | ---- | M] () MD5=51858B1F36676F3FC50D511FFB208482 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16485_none_77c474f56f9ddd17\winlogon.exe
[2015/10/09 13:56:04 | 000,032,794 | ---- | M] () MD5=51858B1F36676F3FC50D511FFB208482 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16485_none_77c474f56f9ddd17\winlogon.exe
[2015/11/11 12:50:08 | 000,058,782 | ---- | M] () MD5=5D05CE2E40D3564B91BD7CF8A7826F4F -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16520_none_77c5f4716f9c6ae5\winlogon.exe
[2015/11/11 12:50:08 | 000,058,782 | ---- | M] () MD5=5D05CE2E40D3564B91BD7CF8A7826F4F -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16520_none_77c5f4716f9c6ae5\winlogon.exe
[2015/11/11 12:50:09 | 000,058,712 | ---- | M] () MD5=713BD97C95DC79E9E5CD8F76BB15918D -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16542_none_77c5caad6f9c9875\winlogon.exe
[2015/11/11 12:50:09 | 000,058,712 | ---- | M] () MD5=713BD97C95DC79E9E5CD8F76BB15918D -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16542_none_77c5caad6f9c9875\winlogon.exe
[2015/11/05 05:01:41 | 000,579,072 | ---- | M] (Microsoft Corporation) MD5=A7C48B051A9C5D5054916DE5BEBBCA2D -- C:\Windows.old\Windows\System32\winlogon.exe
[2015/11/05 05:01:41 | 000,579,072 | ---- | M] (Microsoft Corporation) MD5=A7C48B051A9C5D5054916DE5BEBBCA2D -- C:\Windows.old\Windows\System32\winlogon.exe
[2015/11/05 05:01:41 | 000,579,072 | ---- | M] (Microsoft Corporation) MD5=A7C48B051A9C5D5054916DE5BEBBCA2D -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16590_none_77c554f96f9d1e4c\winlogon.exe
[2015/11/05 05:01:41 | 000,579,072 | ---- | M] (Microsoft Corporation) MD5=A7C48B051A9C5D5054916DE5BEBBCA2D -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16590_none_77c554f96f9d1e4c\winlogon.exe
[2015/11/25 11:54:21 | 000,000,275 | ---- | M] () MD5=AA7C692D4A7BA7CC83F22F9366E00A73 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16566_none_77c5a4b56f9cc053\winlogon.exe
[2015/11/25 11:54:21 | 000,000,275 | ---- | M] () MD5=AA7C692D4A7BA7CC83F22F9366E00A73 -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10240.16566_none_77c5a4b56f9cc053\winlogon.exe

[color=#A23BEC]< MD5 for: WS2_32.DLL >[/color]
[2015/07/10 12:00:10 | 000,422,560 | ---- | M] (Microsoft Corporation) MD5=0E49B1E08DF8484884A0092C48B933DB -- C:\Windows.old\Windows\System32\ws2_32.dll
[2015/07/10 12:00:10 | 000,422,560 | ---- | M] (Microsoft Corporation) MD5=0E49B1E08DF8484884A0092C48B933DB -- C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_10.0.10240.16384_none_fab8227169035068\ws2_32.dll
[2015/10/30 08:18:31 | 000,388,896 | ---- | M] (Microsoft Corporation) MD5=140119791F6CC1DF4F6103C1FB90DA2B -- C:\Windows\SysWOW64\ws2_32.dll
[2015/10/30 08:18:31 | 000,388,896 | ---- | M] (Microsoft Corporation) MD5=140119791F6CC1DF4F6103C1FB90DA2B -- C:\Windows\WinSxS\wow64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_10.0.10586.0_none_8991f36dad0dfaf0\ws2_32.dll
[2015/10/30 08:18:03 | 000,430,816 | ---- | M] (Microsoft Corporation) MD5=710FE2B9E94A409872F22DDC8D40CDFD -- C:\WINDOWS\SysNative\ws2_32.dll
[2015/10/30 08:18:03 | 000,430,816 | ---- | M] (Microsoft Corporation) MD5=710FE2B9E94A409872F22DDC8D40CDFD -- C:\Windows\WinSxS\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_10.0.10586.0_none_7f3d491b78ad38f5\ws2_32.dll
[2015/07/10 12:00:28 | 000,372,912 | ---- | M] (Microsoft Corporation) MD5=C8F00509B3880DDEDC7944472AC9D5B8 -- C:\Windows.old\Windows\SysWOW64\ws2_32.dll
[2015/07/10 12:00:28 | 000,372,912 | ---- | M] (Microsoft Corporation) MD5=C8F00509B3880DDEDC7944472AC9D5B8 -- C:\Windows.old\Windows\WinSxS\wow64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_10.0.10240.16384_none_050cccc39d641263\ws2_32.dll

[color=#A23BEC]< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s >[/color]
"" = mnmsrvc
"Debug" =
"Kmode" = \SystemRoot\System32\win32k.sys
"Optional" = [binary data]
"Required" = DebugWindows [binary data]
"Windows" = %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2015/12/21 20:58:09 | 012,125,184 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\ieframe.dll

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]

[color=#A23BEC]< c:\$recycle.bin\*.* /s >[/color]
[2015/12/30 20:12:05 | 000,000,150 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$I00UXQ4.avi
[2015/12/28 14:48:40 | 000,000,138 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$I6P9GTP.avi
[2016/01/02 21:18:11 | 000,000,160 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$I7Z1TJ9.avi
[2015/12/28 14:48:40 | 000,000,148 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$I9D8JRV.avi
[2016/01/02 18:50:40 | 000,000,178 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$IDBEC77.docx
[2015/12/30 20:12:05 | 000,000,166 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$IEP73V3.avi
[2015/12/28 14:48:40 | 000,000,154 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$IGTO4VB.avi
[2015/12/21 22:34:19 | 000,000,144 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$IHBW6WR.avi
[2015/12/23 16:51:48 | 000,000,150 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$IQIPJGJ.avi
[2016/01/02 21:18:11 | 000,000,160 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$IQQWM11.avi
[2015/12/30 20:12:05 | 000,000,154 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$ISE1IVX.avi
[2015/12/28 14:48:40 | 000,000,170 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$IT93OGS.avi
[2015/12/21 22:13:27 | 000,000,100 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$ITB94OE.JPG
[2015/12/28 14:48:40 | 000,000,146 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$IXKBTWT.avi
[2015/12/30 20:12:05 | 000,000,132 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$IXYWL7J.avi
[2015/12/28 14:48:40 | 000,000,162 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$IYB46Z5.avi
[2015/12/23 16:51:48 | 000,000,166 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$IZJCTIV.avi
[2006/09/30 04:23:08 | 183,762,944 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$R00UXQ4.avi
[2006/09/29 20:12:42 | 183,601,152 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$R6P9GTP.avi
[2006/09/30 05:51:24 | 183,912,448 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$R7Z1TJ9.avi
[2006/09/24 05:57:34 | 183,869,440 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$R9D8JRV.avi
[2016/01/02 18:02:56 | 000,018,891 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RDBEC77.docx
[2006/09/30 11:06:20 | 183,937,024 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$REP73V3.avi
[2006/09/30 02:29:38 | 183,846,912 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RGTO4VB.avi
[2006/09/24 12:27:04 | 183,826,432 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RHBW6WR.avi
[2006/09/30 01:34:46 | 183,523,328 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RQIPJGJ.avi
[2006/09/30 07:57:14 | 183,986,176 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RQQWM11.avi
[2006/09/30 08:11:58 | 183,826,432 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RSE1IVX.avi
[2006/09/30 02:54:26 | 188,733,440 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RT93OGS.avi
[2011/12/17 11:43:32 | 002,860,222 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RTB94OE.JPG
[2006/09/30 12:44:48 | 183,904,256 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RXKBTWT.avi
[2006/09/30 11:22:22 | 183,758,848 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RXYWL7J.avi
[2006/09/30 03:29:34 | 183,943,168 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RYB46Z5.avi
[2006/09/30 01:13:16 | 178,337,792 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\$RZJCTIV.avi
[2015/09/15 16:25:49 | 000,000,129 | -HS- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-1001\desktop.ini
[2015/08/13 04:30:20 | 000,000,129 | -HS- | M] () -- c:\$recycle.bin\S-1-5-21-2149473279-1792248870-4122273111-500\desktop.ini
[2015/09/16 10:04:03 | 000,001,104 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2015/09/16 10:04:03 | 000,001,108 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2015/12/21 21:27:47 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT

< End of report >

Publicité


Signaler le contenu de ce document

Publicité