cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 15/04/2016 13:00:54 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\jean-claude\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10586.0)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,60 Gb Total Physical Memory | 2,17 Gb Available Physical Memory | 60,42% Memory free
4,22 Gb Paging File | 2,76 Gb Available in Paging File | 65,30% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 678,70 Gb Total Space | 644,04 Gb Free Space | 94,89% Space Free | Partition Type: NTFS
Drive D: | 17,91 Gb Total Space | 2,25 Gb Free Space | 12,57% Space Free | Partition Type: NTFS

Computer Name: TIGROU | User Name: jean-claude | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - File not found --
PRC - [2016/04/15 12:59:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jean-claude\Desktop\OTL.exe
PRC - [2016/03/28 21:44:44 | 000,144,384 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
PRC - [2015/08/21 22:09:14 | 000,344,064 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
PRC - [2015/06/24 22:57:00 | 000,303,360 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
PRC - [2015/06/24 22:57:00 | 000,106,952 | ---- | M] (Andrea Electronics Corporation) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
PRC - [2014/06/26 18:32:13 | 002,466,448 | ---- | M] (Realsil Microelectronics Inc.) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
PRC - [2012/07/09 13:40:02 | 000,580,512 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
PRC - [2012/07/09 13:40:02 | 000,035,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
PRC - [2012/03/28 18:34:30 | 000,091,432 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2016/03/28 21:44:44 | 022,330,368 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll
MOD - [2016/03/28 21:44:44 | 000,144,384 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
MOD - [2016/03/28 21:44:44 | 000,141,312 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2016/04/02 05:21:17 | 000,498,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\tileobjserver.dll -- (tiledatamodelsvc)
SRV:[b]64bit:[/b] - [2016/04/02 05:15:47 | 001,090,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo)
SRV:[b]64bit:[/b] - [2016/04/02 05:07:41 | 002,158,592 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2016/03/29 09:51:06 | 000,087,040 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate)
SRV:[b]64bit:[/b] - [2016/03/29 09:50:15 | 000,066,560 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker)
SRV:[b]64bit:[/b] - [2016/03/29 09:38:23 | 000,207,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc)
SRV:[b]64bit:[/b] - [2016/03/29 09:27:45 | 000,339,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorService.dll -- (SensorService)
SRV:[b]64bit:[/b] - [2016/03/29 09:20:21 | 000,948,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager)
SRV:[b]64bit:[/b] - [2016/03/29 09:13:03 | 000,587,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2016/03/29 08:32:15 | 001,098,240 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc)
SRV:[b]64bit:[/b] - [2016/03/29 07:45:48 | 000,338,432 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:50 | 000,275,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:13 | 001,035,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:10 | 000,749,056 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:10 | 000,606,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:10 | 000,591,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:09 | 003,449,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:09 | 000,912,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:09 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:02 | 001,490,432 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:02 | 001,224,704 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:02 | 000,649,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:02 | 000,252,928 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:02 | 000,163,840 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:02 | 000,162,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:01 | 001,139,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave)
SRV:[b]64bit:[/b] - [2016/03/27 22:43:01 | 000,847,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2016/03/27 22:42:53 | 002,057,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2016/03/27 22:42:53 | 001,613,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2016/03/27 22:42:53 | 000,625,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC)
SRV:[b]64bit:[/b] - [2016/03/27 22:42:53 | 000,145,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc)
SRV:[b]64bit:[/b] - [2016/03/27 22:25:45 | 000,084,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\inetsrv\w3logsvc.dll -- (w3logsvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:19:28 | 000,075,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2015/10/30 09:19:26 | 000,504,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2015/10/30 09:19:26 | 000,497,664 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService)
SRV:[b]64bit:[/b] - [2015/10/30 09:18:46 | 000,168,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:18:43 | 001,872,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:18:41 | 000,117,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2015/10/30 09:18:19 | 001,297,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService)
SRV:[b]64bit:[/b] - [2015/10/30 09:18:18 | 000,729,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2015/10/30 09:18:14 | 000,081,408 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2015/10/30 09:18:01 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:18:01 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService)
SRV:[b]64bit:[/b] - [2015/10/30 09:18:01 | 000,034,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker)
SRV:[b]64bit:[/b] - [2015/10/30 09:18:01 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:18:01 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:59 | 002,745,856 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:59 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:59 | 000,023,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:58 | 000,764,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:58 | 000,287,744 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:54 | 000,360,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\usocore.dll -- (UsoSvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:53 | 000,097,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:53 | 000,060,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:52 | 000,181,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:51 | 000,031,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:50 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_e1dd0)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_e1dd0)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_e1dd0)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_e1dd0)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_e1dd0)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:48 | 000,444,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:48 | 000,205,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:47 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:46 | 000,290,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:46 | 000,186,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dcpsvc.dll -- (DcpSvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:46 | 000,118,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:46 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:45 | 000,313,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:43 | 000,278,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:43 | 000,057,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:41 | 000,052,736 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:39 | 000,547,840 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,380,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,364,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,024,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:21 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,326,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
SRV:[b]64bit:[/b] - [2015/10/22 22:53:10 | 000,255,472 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:[b]64bit:[/b] - [2015/08/21 22:09:14 | 000,344,064 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:[b]64bit:[/b] - [2015/07/17 07:51:48 | 000,246,472 | ---- | M] (Synaptics Incorporated) [Auto | Running] -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe -- (SynTPEnhService)
SRV:[b]64bit:[/b] - [2015/06/24 22:57:00 | 000,303,360 | ---- | M] (Realtek Semiconductor) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe -- (RtkAudioService)
SRV:[b]64bit:[/b] - [2015/06/24 22:57:00 | 000,106,952 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV - [2016/03/27 22:43:02 | 000,949,248 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc)
SRV - [2016/03/27 22:25:52 | 000,504,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2016/03/27 22:25:42 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\w3logsvc.dll -- (w3logsvc)
SRV - [2016/03/27 22:25:39 | 000,056,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2015/10/30 09:18:31 | 002,179,584 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository)
SRV - [2015/10/30 09:18:31 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\lfsvc.dll -- (lfsvc)
SRV - [2015/10/30 09:18:29 | 000,461,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2015/10/30 09:18:23 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2015/10/30 09:18:21 | 000,200,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2015/10/30 09:17:21 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2015/10/05 10:48:46 | 001,135,416 | ---- | M] (Malwarebytes) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2015/05/19 17:22:06 | 000,099,128 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2014/06/26 18:32:13 | 002,466,448 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R)
SRV - [2012/07/09 13:40:02 | 000,035,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2016/03/29 12:23:38 | 000,277,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2016/03/29 11:25:13 | 000,258,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000)
DRV:[b]64bit:[/b] - [2016/03/29 10:21:40 | 000,378,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2016/03/29 10:16:55 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid)
DRV:[b]64bit:[/b] - [2016/03/29 09:23:41 | 000,694,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi)
DRV:[b]64bit:[/b] - [2016/03/27 22:42:52 | 000,534,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2016/03/27 22:42:52 | 000,238,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip)
DRV:[b]64bit:[/b] - [2016/03/27 22:42:52 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\capimg.sys -- (CapImg)
DRV:[b]64bit:[/b] - [2016/03/27 22:42:52 | 000,095,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2016/03/27 22:42:52 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2015/10/30 21:02:59 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2015/10/30 21:02:53 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2015/10/30 09:19:39 | 000,030,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:42 | 000,052,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:09 | 000,930,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refsv1.sys -- (ReFSv1)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:09 | 000,385,376 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:08 | 000,218,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:03 | 000,200,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:03 | 000,106,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:03 | 000,078,848 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:03 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:03 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:03 | 000,031,584 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:03 | 000,026,624 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ioqos.sys -- (IoQos)
DRV:[b]64bit:[/b] - [2015/10/30 09:18:01 | 000,154,464 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:57 | 000,047,616 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:52 | 000,163,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:52 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:52 | 000,039,264 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:51 | 000,155,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:51 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:51 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:51 | 000,074,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:51 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:50 | 000,199,008 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:46 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:46 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:42 | 000,126,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:42 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:39 | 000,081,920 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,293,216 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,209,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,127,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,118,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,099,680 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,087,040 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (tsusbflt)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,044,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:37 | 000,031,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:26 | 000,017,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:25 | 000,046,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:25 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:25 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:25 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:25 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,705,376 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,589,824 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rt640x64.sys -- (rt640x64)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,532,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,424,800 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,133,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,131,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,104,800 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,099,168 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,094,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,079,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,076,128 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,059,232 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,058,720 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,058,208 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,055,808 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,034,144 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:23 | 000,026,976 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 003,436,896 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 001,135,456 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,673,120 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,209,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,107,360 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,083,296 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,037,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,026,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:22 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn.sys -- (bcmfn)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,165,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,117,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,081,408 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iai2c.sys -- (iai2c)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,064,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,046,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys -- (CompositeBus)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2015/10/30 09:17:18 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2015/10/22 22:53:11 | 021,648,880 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:[b]64bit:[/b] - [2015/10/22 22:53:11 | 000,674,288 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:[b]64bit:[/b] - [2015/10/05 10:50:22 | 000,064,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:[b]64bit:[/b] - [2015/10/05 10:50:06 | 000,025,816 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:[b]64bit:[/b] - [2015/07/17 07:51:46 | 000,614,088 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2015/06/12 04:59:24 | 002,554,528 | ---- | M] (MediaTek Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr28x.sys -- (netr28x)
DRV:[b]64bit:[/b] - [2015/06/05 02:12:54 | 000,310,528 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsP2Stor.sys -- (RSP2STOR)
DRV:[b]64bit:[/b] - [2015/06/03 01:27:02 | 001,219,200 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtbth.sys -- (rtbth)
DRV:[b]64bit:[/b] - [2015/05/28 07:00:44 | 000,102,912 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdWT6.sys -- (AtiHDAudioService)
DRV:[b]64bit:[/b] - [2012/08/31 10:40:24 | 000,020,800 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WirelessButtonDriver64.sys -- (WirelessButtonDriver)
DRV:[b]64bit:[/b] - [2012/08/29 09:34:03 | 000,043,832 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:[b]64bit:[/b] - [2012/08/29 09:34:03 | 000,041,272 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Smb_driver_AMDASF.sys -- (SmbDrv)
DRV:[b]64bit:[/b] - [2012/08/01 12:22:00 | 000,645,952 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2012/06/25 10:24:50 | 000,092,536 | ---- | M] (CyberLink) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\CLVirtualDrive.sys -- (CLVirtualDrive)
DRV:[b]64bit:[/b] - [2012/06/19 04:07:50 | 000,057,000 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV - [2015/10/30 09:17:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys -- (CompositeBus)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/CQNOT13/3
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/CQNOT13/3
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{C12A522C-7BC7-42B1-8CAB-75C5386F31FC}: "URL" = http://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPNTDF
IE - HKLM\..\SearchScopes\{C12A522C-7BC7-42B1-8CAB-75C5386F31FC}: "URL" = http://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
IE - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-FR
IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 63 2B F8 0A AD 91 D1 01 [binary data]
IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = DE 56 D0 24 AD 91 D1 01 [binary data]
IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGNI_frFR516
IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\..\SearchScopes\{C12A522C-7BC7-42B1-8CAB-75C5386F31FC}: "URL" = http://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
IE - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)



O1 HOSTS File: ([2013/08/22 15:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:[b]64bit:[/b] - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKU\S-1-5-21-2831380159-3414325279-591814190-1002\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [CLVirtualDrive] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe (CyberLink Corp.)
O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2831380159-3414325279-591814190-1002..\Run: [CCleaner Monitoring] "C:\Windows.old\Program Files\CCleaner\CCleaner64.exe" /MONITOR File not found
O4 - HKU\S-1-5-21-2831380159-3414325279-591814190-1002..\Run: [OneDrive] C:\Users\jean-claude\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2831380159-3414325279-591814190-1002..\RunOnce: [Uninstall C:\Users\jean-claude\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\jean-claude\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64" File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O9:[b]64bit:[/b] - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{480be6c5-33c1-45ce-8122-86cd65349259}: DhcpNameServer = 192.168.0.254
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWOW64\skype4com.dll (Skype Technologies)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30:[b]64bit:[/b] - LSA: Security Packages - (livessp) - File not found
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs:[b]64bit:[/b] dosvc - C:\Windows\SysNative\dosvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] DcpSvc - C:\Windows\SysNative\dcpsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] NetSetupSvc - C:\Windows\SysNative\NetSetupSvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] RetailDemo - C:\Windows\SysNative\RDXService.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] lfsvc - C:\Windows\SysNative\lfsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] dmwappushservice - C:\Windows\SysNative\dmwappushsvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] XboxNetApiSvc - C:\Windows\SysNative\XboxNetApiSvc.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] UsoSvc - C:\Windows\SysNative\usocore.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] XblGameSave - C:\Windows\SysNative\XblGameSave.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] DmEnrollmentSvc - C:\Windows\SysNative\Windows.Internal.Management.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] UserManager - C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] XblAuthManager - C:\Windows\SysNative\XblAuthManager.dll (Microsoft Corporation)


SafeBootMin:[b]64bit:[/b] Ahcache.sys - C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] AppMgmt - Service
SafeBootMin:[b]64bit:[/b] Base - Driver Group
SafeBootMin:[b]64bit:[/b] BasicDisplay.sys - C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] BasicRender.sys - C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] Boot Bus Extender - Driver Group
SafeBootMin:[b]64bit:[/b] Boot file system - Driver Group
SafeBootMin:[b]64bit:[/b] BrokerInfrastructure - C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] CoreMessagingRegistrar - C:\Windows\SysNative\CoreMessaging.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] EFS - C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] File system - Driver Group
SafeBootMin:[b]64bit:[/b] Filter - Driver Group
SafeBootMin:[b]64bit:[/b] HelpSvc - Service
SafeBootMin:[b]64bit:[/b] iai2c.sys - C:\Windows\SysNative\drivers\iai2c.sys (Intel(R) Corporation)
SafeBootMin:[b]64bit:[/b] KeyIso - C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] LSM - C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] Netlogon - C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] PCI Configuration - Driver Group
SafeBootMin:[b]64bit:[/b] PNP Filter - Driver Group
SafeBootMin:[b]64bit:[/b] Primary disk - Driver Group
SafeBootMin:[b]64bit:[/b] sacsvr - Service
SafeBootMin:[b]64bit:[/b] SCSI Class - Driver Group
SafeBootMin:[b]64bit:[/b] SpbCx.sys - C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] StateRepository - C:\Windows\SysNative\Windows.StateRepository.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] System Bus Extender - Driver Group
SafeBootMin:[b]64bit:[/b] SystemEventsBroker - C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] TBS - Service
SafeBootMin:[b]64bit:[/b] TileDataModelSvc - C:\Windows\SysNative\tileobjserver.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] uefi.sys - C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] UserManager - C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] vmms - Service
SafeBootMin:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:[b]64bit:[/b] {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices
SafeBootMin:[b]64bit:[/b] {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller
SafeBootMin:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin:[b]64bit:[/b] {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: CoreMessagingRegistrar - C:\Windows\SysWOW64\CoreMessaging.dll (Microsoft Corporation)
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: StateRepository - C:\Windows\SysWOW64\Windows.StateRepository.dll (Microsoft Corporation)
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: TBS - Service
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices
SafeBootMin: {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware

SafeBootNet:[b]64bit:[/b] Ahcache.sys - C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] AppMgmt - Service
SafeBootNet:[b]64bit:[/b] Base - Driver Group
SafeBootNet:[b]64bit:[/b] BasicDisplay.sys - C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] BasicRender.sys - C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] Boot Bus Extender - Driver Group
SafeBootNet:[b]64bit:[/b] Boot file system - Driver Group
SafeBootNet:[b]64bit:[/b] BrokerInfrastructure - C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] CoreMessagingRegistrar - C:\Windows\SysNative\CoreMessaging.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] EFS - C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] File system - Driver Group
SafeBootNet:[b]64bit:[/b] Filter - Driver Group
SafeBootNet:[b]64bit:[/b] HelpSvc - Service
SafeBootNet:[b]64bit:[/b] KeyIso - C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] LSM - C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] Messenger - Service
SafeBootNet:[b]64bit:[/b] NDIS Wrapper - Driver Group
SafeBootNet:[b]64bit:[/b] NetBIOSGroup - Driver Group
SafeBootNet:[b]64bit:[/b] NetDDEGroup - Driver Group
SafeBootNet:[b]64bit:[/b] Netlogon - C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] netprofm - C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] Network - Driver Group
SafeBootNet:[b]64bit:[/b] NetworkProvider - Driver Group
SafeBootNet:[b]64bit:[/b] PCI Configuration - Driver Group
SafeBootNet:[b]64bit:[/b] PNP Filter - Driver Group
SafeBootNet:[b]64bit:[/b] PNP_TDI - Driver Group
SafeBootNet:[b]64bit:[/b] Primary disk - Driver Group
SafeBootNet:[b]64bit:[/b] rdpencdd.sys - Driver
SafeBootNet:[b]64bit:[/b] rdsessmgr - Service
SafeBootNet:[b]64bit:[/b] sacsvr - Service
SafeBootNet:[b]64bit:[/b] SCSI Class - Driver Group
SafeBootNet:[b]64bit:[/b] SmartcardSimulator - Driver
SafeBootNet:[b]64bit:[/b] SpbCx.sys - C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] StateRepository - C:\Windows\SysNative\Windows.StateRepository.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] Streams Drivers - Driver Group
SafeBootNet:[b]64bit:[/b] System Bus Extender - Driver Group
SafeBootNet:[b]64bit:[/b] SystemEventsBroker - C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] TBS - Service
SafeBootNet:[b]64bit:[/b] TDI - Driver Group
SafeBootNet:[b]64bit:[/b] TileDataModelSvc - C:\Windows\SysNative\tileobjserver.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] uefi.sys - C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] UserManager - C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] VaultSvc - C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] VirtualSmartcardReader - Driver
SafeBootNet:[b]64bit:[/b] vmms - Service
SafeBootNet:[b]64bit:[/b] Wcmsvc - C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] WudfUsbccidDriver - Driver
SafeBootNet:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:[b]64bit:[/b] {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:[b]64bit:[/b] {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:[b]64bit:[/b] {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:[b]64bit:[/b] {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:[b]64bit:[/b] {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:[b]64bit:[/b] {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices
SafeBootNet:[b]64bit:[/b] {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller
SafeBootNet:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet:[b]64bit:[/b] {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: CoreMessagingRegistrar - C:\Windows\SysWOW64\CoreMessaging.dll (Microsoft Corporation)
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdpencdd.sys - Driver
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: SmartcardSimulator - Driver
SafeBootNet: StateRepository - C:\Windows\SysWOW64\Windows.StateRepository.dll (Microsoft Corporation)
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TBS - Service
SafeBootNet: TDI - Driver Group
SafeBootNet: VirtualSmartcardReader - Driver
SafeBootNet: vmms - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices
SafeBootNet: {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware

ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {583AC46A-4A6F-39BC-AEFD-1BC2759FFA51} - .NET Framework
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - U
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\inf\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {600AC0DF-B614-36F9-9E10-28896BD4ACCA} - .NET Framework
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2016/04/15 12:58:16 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\jean-claude\Desktop\OTL.exe
[2016/04/13 17:49:41 | 022,378,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2016/04/13 17:49:13 | 016,985,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2016/04/13 17:48:42 | 018,673,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2016/04/13 17:48:37 | 011,545,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2016/04/13 17:48:32 | 007,836,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2016/04/13 17:48:20 | 007,474,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2016/04/13 17:48:18 | 009,918,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2016/04/13 17:48:08 | 003,592,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2016/04/13 17:48:07 | 003,994,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2016/04/13 17:48:00 | 013,018,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2016/04/13 17:47:55 | 003,575,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2016/04/13 17:47:53 | 005,662,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2016/04/13 17:47:51 | 001,297,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll
[2016/04/13 17:47:49 | 003,078,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\esent.dll
[2016/04/13 17:47:45 | 007,199,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll
[2016/04/13 17:47:42 | 001,098,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dosvc.dll
[2016/04/13 17:47:40 | 002,722,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\esent.dll
[2016/04/13 17:47:39 | 000,859,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll
[2016/04/13 17:47:38 | 000,649,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
[2016/04/13 17:47:37 | 002,158,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2016/04/13 17:47:36 | 002,624,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll
[2016/04/13 17:47:36 | 001,390,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll
[2016/04/13 17:47:35 | 001,832,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2016/04/13 17:47:34 | 003,428,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2016/04/13 17:47:34 | 000,958,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemoteNaturalLanguage.dll
[2016/04/13 17:47:32 | 001,388,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2016/04/13 17:47:32 | 001,211,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Cred.dll
[2016/04/13 17:47:31 | 000,948,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManager.dll
[2016/04/13 17:47:28 | 000,986,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll
[2016/04/13 17:47:25 | 001,090,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXService.dll
[2016/04/13 17:47:16 | 001,714,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRHInproc.dll
[2016/04/13 17:47:13 | 001,575,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll
[2016/04/13 17:47:12 | 002,798,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2016/04/13 17:47:10 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll
[2016/04/13 17:47:10 | 000,696,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupEngine.dll
[2016/04/13 17:47:10 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tileobjserver.dll
[2016/04/13 17:47:09 | 000,938,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll
[2016/04/13 17:47:07 | 001,072,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.Http.dll
[2016/04/13 17:47:07 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupShim.dll
[2016/04/13 17:47:07 | 000,438,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AccountsRt.dll
[2016/04/13 17:47:06 | 000,965,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRH.dll
[2016/04/13 17:47:05 | 000,821,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TokenBroker.dll
[2016/04/13 17:47:05 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AccountsRt.dll
[2016/04/13 17:47:05 | 000,300,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppHost.exe
[2016/04/13 17:47:03 | 000,712,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RemoteNaturalLanguage.dll
[2016/04/13 17:47:03 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll
[2016/04/13 17:47:02 | 001,946,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2016/04/13 17:47:02 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NMAA.dll
[2016/04/13 17:47:01 | 000,253,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppHost.exe
[2016/04/13 17:47:00 | 005,202,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll
[2016/04/13 17:46:57 | 001,052,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MsSpellCheckingFacility.dll
[2016/04/13 17:46:57 | 000,354,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupShim.dll
[2016/04/13 17:46:56 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneProviders.dll
[2016/04/13 17:46:56 | 000,460,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapConfiguration.dll
[2016/04/13 17:46:56 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXTaskFactory.dll
[2016/04/13 17:46:55 | 001,410,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Http.dll
[2016/04/13 17:46:54 | 001,388,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2016/04/13 17:46:53 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorService.dll
[2016/04/13 17:46:50 | 000,730,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Shell.Broker.dll
[2016/04/13 17:46:48 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2016/04/13 17:46:46 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Cred.dll
[2016/04/13 17:46:46 | 000,502,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupEngine.dll
[2016/04/13 17:46:42 | 001,239,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Bluetooth.dll
[2016/04/13 17:46:39 | 000,630,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe
[2016/04/13 17:46:38 | 001,317,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2016/04/13 17:46:37 | 000,711,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlCore.dll
[2016/04/13 17:46:37 | 000,369,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2016/04/13 17:46:35 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SharedStartModel.dll
[2016/04/13 17:46:35 | 000,550,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll
[2016/04/13 17:46:33 | 001,944,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputService.dll
[2016/04/13 17:46:28 | 001,141,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2016/04/13 17:46:27 | 001,139,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2016/04/13 17:46:27 | 001,056,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JpMapControl.dll
[2016/04/13 17:46:26 | 000,848,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2016/04/13 17:46:25 | 001,444,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRHInproc.dll
[2016/04/13 17:46:24 | 000,688,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll
[2016/04/13 17:46:23 | 001,626,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2016/04/13 17:46:22 | 001,030,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2016/04/13 17:46:22 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll
[2016/04/13 17:46:21 | 000,365,568 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll
[2016/04/13 17:46:19 | 000,415,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll
[2016/04/13 17:46:18 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenrollengine.dll
[2016/04/13 17:46:17 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll
[2016/04/13 17:46:16 | 000,874,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2016/04/13 17:46:16 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRH.dll
[2016/04/13 17:46:15 | 000,787,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.dll
[2016/04/13 17:46:15 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TokenBroker.dll
[2016/04/13 17:46:13 | 000,556,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PsmServiceExtHost.dll
[2016/04/13 17:46:13 | 000,258,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ufx01000.sys
[2016/04/13 17:46:12 | 003,351,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2016/04/13 17:46:12 | 000,686,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2016/04/13 17:46:11 | 000,628,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MessagingDataModel2.dll
[2016/04/13 17:46:09 | 000,881,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Input.Inking.dll
[2016/04/13 17:46:09 | 000,587,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2016/04/13 17:46:09 | 000,541,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe
[2016/04/13 17:46:08 | 001,117,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll
[2016/04/13 17:46:07 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MsSpellCheckingFacility.dll
[2016/04/13 17:46:07 | 000,303,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll
[2016/04/13 17:46:06 | 000,498,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MessagingDataModel2.dll
[2016/04/13 17:46:05 | 000,378,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS
[2016/04/13 17:46:03 | 000,682,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Input.Inking.dll
[2016/04/13 17:46:01 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.dll
[2016/04/13 17:46:01 | 000,261,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LsaIso.exe
[2016/04/13 17:45:59 | 000,209,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll
[2016/04/13 17:45:59 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEDataLayerHelpers.dll
[2016/04/13 17:45:58 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshostcore.dll
[2016/04/13 17:45:58 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AboveLockAppHost.dll
[2016/04/13 17:45:57 | 000,765,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2016/04/13 17:45:57 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredProvDataModel.dll
[2016/04/13 17:45:57 | 000,296,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\policymanager.dll
[2016/04/13 17:45:52 | 000,521,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll
[2016/04/13 17:45:52 | 000,440,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredProvDataModel.dll
[2016/04/13 17:45:11 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapConfiguration.dll
[2016/04/13 17:45:10 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncbservice.dll
[2016/04/13 17:45:10 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmregistration.dll
[2016/04/13 17:45:09 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.Web.Core.dll
[2016/04/13 17:45:09 | 000,334,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanager.dll
[2016/04/13 17:45:08 | 000,989,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecConfig.efi
[2016/04/13 17:45:08 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveui.dll
[2016/04/13 17:45:07 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\accountaccessor.dll
[2016/04/13 17:45:07 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TextInputFramework.dll
[2016/04/13 17:45:07 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2016/04/13 17:45:06 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Devices.dll
[2016/04/13 17:45:05 | 000,374,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2016/04/13 17:45:04 | 000,848,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2016/04/13 17:45:03 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enrollmentapi.dll
[2016/04/13 17:45:03 | 000,100,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmapi.dll
[2016/04/13 17:45:01 | 000,888,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.dll
[2016/04/13 17:45:01 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmmigrator.dll
[2016/04/13 17:45:00 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncController.dll
[2016/04/13 17:45:00 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AboveLockAppHost.dll
[2016/04/13 17:45:00 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosStorage.dll
[2016/04/13 17:44:58 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mdmregistration.dll
[2016/04/13 17:44:58 | 000,110,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srvcli.dll
[2016/04/13 17:44:57 | 000,854,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Bluetooth.dll
[2016/04/13 17:44:57 | 000,115,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupApi.dll
[2016/04/13 17:44:57 | 000,081,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netapi32.dll
[2016/04/13 17:44:56 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEDataLayerHelpers.dll
[2016/04/13 17:44:56 | 000,078,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wkscli.dll
[2016/04/13 17:44:55 | 000,705,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll
[2016/04/13 17:44:55 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Devices.dll
[2016/04/13 17:44:54 | 000,277,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys
[2016/04/13 17:44:53 | 000,770,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iuilp.dll
[2016/04/13 17:44:53 | 000,084,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupApi.dll
[2016/04/13 17:44:53 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wkscli.dll
[2016/04/13 17:44:52 | 000,694,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdiWiFi.sys
[2016/04/13 17:44:52 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleacc.dll
[2016/04/13 17:44:52 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BitLockerDeviceEncryption.exe
[2016/04/13 17:44:51 | 000,074,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easinvoker.exe
[2016/04/13 17:44:51 | 000,051,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsNativeApi.dll
[2016/04/13 17:44:50 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JpMapControl.dll
[2016/04/13 17:44:50 | 000,185,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys
[2016/04/13 17:44:50 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosStorage.dll
[2016/04/13 17:44:49 | 000,841,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2016/04/13 17:44:49 | 000,058,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.dll
[2016/04/13 17:44:48 | 000,686,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieproxy.dll
[2016/04/13 17:44:47 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DAFWSD.dll
[2016/04/13 17:44:47 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSysprep.dll
[2016/04/13 17:44:47 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsdchngr.dll
[2016/04/13 17:44:46 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.dll
[2016/04/13 17:44:43 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\credprovhost.dll
[2016/04/13 17:44:43 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEEventDispatcher.dll
[2016/04/13 17:44:36 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easwrt.dll
[2016/04/13 17:44:36 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanagerprecheck.dll
[2016/04/13 17:44:35 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEStoreEventHandlers.dll
[2016/04/13 17:44:35 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmcsps.dll
[2016/04/13 17:44:35 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browserbroker.dll
[2016/04/13 17:44:34 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEEventDispatcher.dll
[2016/04/13 17:44:34 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationObjFactory.dll
[2016/04/13 17:44:33 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsdchngr.dll
[2016/04/13 17:44:32 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NotificationObjFactory.dll
[2016/04/13 17:44:32 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuautoappupdate.dll
[2016/04/13 17:44:30 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieproxy.dll
[2016/04/13 17:44:29 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\credprovhost.dll
[2016/04/13 17:44:28 | 000,330,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2016/04/13 17:44:28 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll
[2016/04/13 17:44:27 | 004,774,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2016/04/13 17:44:27 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FWPUCLNT.DLL
[2016/04/13 17:44:27 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2016/04/13 17:44:26 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\basesrv.dll
[2016/04/13 17:44:25 | 000,821,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvewiz.dll
[2016/04/13 17:44:25 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OnDemandConnRouteHelper.dll
[2016/04/13 17:44:24 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browcli.dll
[2016/04/13 17:44:24 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\browcli.dll
[2016/04/13 17:44:23 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msorcl32.dll
[2016/04/13 17:44:23 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManagerShellext.exe
[2016/04/13 17:44:22 | 000,450,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SyncController.dll
[2016/04/13 17:44:22 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tzautoupdate.dll
[2016/04/13 17:44:21 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Security.Authentication.Web.Core.dll
[2016/04/13 17:44:21 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvecpl.dll
[2016/04/13 17:44:20 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveskybackup.dll
[2016/04/13 17:44:20 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tbauth.dll
[2016/04/13 17:44:19 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\easwrt.dll
[2016/04/13 17:44:18 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininetlui.dll
[2016/04/13 17:44:16 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll
[2016/04/13 17:44:14 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.DeviceEncryptionHandlers.dll
[2016/04/13 17:44:14 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wininetlui.dll
[2016/04/13 17:44:14 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2016/04/13 17:44:12 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FWPUCLNT.DLL
[2016/04/13 17:44:12 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FontProvider.dll
[2016/04/13 17:44:11 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll
[2016/04/13 17:44:11 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshost.dll
[2016/04/13 17:44:11 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TokenBrokerCookies.exe
[2016/04/13 17:44:10 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys
[2016/04/13 17:44:10 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.V2.dll
[2016/04/13 17:44:10 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tbauth.dll
[2016/04/13 17:44:10 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TokenBrokerCookies.exe
[2016/04/13 17:44:09 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapsupdatetask.dll
[2016/04/13 17:44:08 | 007,979,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll
[2016/04/13 17:44:08 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenterprisediagnostics.dll
[2016/04/13 17:44:07 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetCfgNotifyObjectHost.exe
[2016/04/13 17:44:06 | 006,297,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll
[2016/04/13 17:44:05 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvc.dll
[2016/04/13 17:44:05 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontsub.dll
[2016/04/13 17:44:04 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mtxoci.dll
[2016/04/13 17:44:04 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsCSP.dll
[2016/04/13 17:44:03 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll
[2016/04/13 17:44:03 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mtxoci.dll
[2016/04/13 17:44:03 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BdeHdCfgLib.dll
[2016/04/13 17:44:02 | 000,784,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NMAA.dll
[2016/04/13 17:44:02 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsNativeApi.V2.dll
[2016/04/13 17:44:02 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OnDemandConnRouteHelper.dll
[2016/04/13 17:44:01 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll
[2016/04/13 17:44:01 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleacchooks.dll
[2016/04/13 17:44:01 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\oleacchooks.dll
[2016/04/13 17:44:00 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapsBtSvc.dll
[2016/04/13 17:44:00 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputLocaleManager.dll
[2016/04/13 17:44:00 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xinputhid.sys
[2016/04/13 17:43:59 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe
[2016/04/13 17:43:59 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe
[2016/04/13 17:43:59 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontsub.dll
[2016/04/13 17:43:59 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppCapture.dll
[2016/04/13 17:43:58 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe
[2016/04/13 17:43:57 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll
[2016/04/13 17:43:56 | 000,045,568 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll
[2016/04/13 17:43:56 | 000,037,376 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll
[2016/04/12 17:18:59 | 000,000,000 | ---D | C] -- C:\Program Files\Speccy
[2016/04/12 17:17:19 | 005,111,240 | ---- | C] (Piriform Ltd) -- C:\Users\jean-claude\Desktop\spsetup129.exe
[2016/04/12 17:14:30 | 000,891,392 | ---- | C] (Farbar) -- C:\Users\jean-claude\Desktop\MiniToolBox.exe
[2016/04/12 17:04:44 | 000,000,000 | ---D | C] -- C:\FRST
[2016/04/12 17:03:56 | 002,375,168 | ---- | C] (Farbar) -- C:\Users\jean-claude\Desktop\FRST64.exe
[2016/04/07 19:21:39 | 000,000,000 | ---D | C] -- C:\Users\jean-claude\AppData\Local\Temp
[2016/04/07 19:09:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
[2016/04/07 19:09:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ZHPFix
[2016/04/02 17:09:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\SleepStudy
[2016/03/31 14:44:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VS Revo Group
[2016/03/27 23:16:25 | 000,000,000 | ---D | C] -- C:\Users\jean-claude\AppData\Local\ActiveSync
[2016/03/27 23:10:52 | 000,000,000 | -HSD | C] -- C:\Recovery
[2016/03/27 23:10:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther
[2016/03/27 23:09:33 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documents
[2016/03/27 23:09:33 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data
[2016/03/27 22:53:20 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Uninstall Information
[2016/03/27 22:43:53 | 001,542,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\quartz.dll
[2016/03/27 22:43:53 | 000,890,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOD.DLL
[2016/03/27 22:43:53 | 000,890,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxPackaging.dll
[2016/03/27 22:43:53 | 000,671,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\advapi32.dll
[2016/03/27 22:43:53 | 000,569,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll
[2016/03/27 22:43:53 | 000,567,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MCRecvSrc.dll
[2016/03/27 22:43:53 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSync.dll
[2016/03/27 22:43:53 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MCRecvSrc.dll
[2016/03/27 22:43:53 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDEServer.exe
[2016/03/27 22:43:53 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe
[2016/03/27 22:43:53 | 000,287,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.MediaControl.dll
[2016/03/27 22:43:53 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ksproxy.ax
[2016/03/27 22:43:53 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Scanners.dll
[2016/03/27 22:43:53 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dialserver.dll
[2016/03/27 22:43:53 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppCapture.dll
[2016/03/27 22:43:53 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.proxy.dll
[2016/03/27 22:43:52 | 001,674,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\quartz.dll
[2016/03/27 22:43:52 | 001,070,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOE.DLL
[2016/03/27 22:43:52 | 000,925,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2016/03/27 22:43:52 | 000,871,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSMPEG2ENC.DLL
[2016/03/27 22:43:52 | 000,786,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMADMOD.DLL
[2016/03/27 22:43:52 | 000,695,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMADMOD.DLL
[2016/03/27 22:43:52 | 000,517,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll
[2016/03/27 22:43:52 | 000,387,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qdvd.dll
[2016/03/27 22:43:52 | 000,340,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToDevice.dll
[2016/03/27 22:43:52 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSFlacDecoder.dll
[2016/03/27 22:43:52 | 000,305,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ksproxy.ax
[2016/03/27 22:43:52 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSFlacDecoder.dll
[2016/03/27 22:43:52 | 000,119,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP3DMOD.DLL
[2016/03/27 22:43:52 | 000,100,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP3DMOD.DLL
[2016/03/27 22:43:51 | 002,544,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2016/03/27 22:43:51 | 002,180,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2016/03/27 22:43:51 | 002,061,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2016/03/27 22:43:51 | 001,299,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2016/03/27 22:43:51 | 001,152,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll
[2016/03/27 22:43:51 | 001,118,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2016/03/27 22:43:51 | 001,105,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Audio.dll
[2016/03/27 22:43:51 | 000,980,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll
[2016/03/27 22:43:51 | 000,895,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll
[2016/03/27 22:43:51 | 000,882,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2016/03/27 22:43:51 | 000,713,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
[2016/03/27 22:43:51 | 000,709,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2016/03/27 22:43:51 | 000,701,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll
[2016/03/27 22:43:51 | 000,670,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfds.dll
[2016/03/27 22:43:51 | 000,493,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmkvsrcsnk.dll
[2016/03/27 22:43:51 | 000,462,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll
[2016/03/27 22:43:51 | 000,450,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFCaptureEngine.dll
[2016/03/27 22:43:51 | 000,420,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvproc.dll
[2016/03/27 22:43:51 | 000,379,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmkvsrcsnk.dll
[2016/03/27 22:43:51 | 000,245,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2016/03/27 22:43:51 | 000,208,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mftranscode.dll
[2016/03/27 22:43:51 | 000,116,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll
[2016/03/27 22:43:50 | 002,581,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2016/03/27 22:43:50 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Audio.dll
[2016/03/27 22:43:50 | 001,092,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2016/03/27 22:43:50 | 001,062,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2016/03/27 22:43:50 | 001,017,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll
[2016/03/27 22:43:50 | 000,858,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll
[2016/03/27 22:43:50 | 000,848,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2016/03/27 22:43:50 | 000,819,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll
[2016/03/27 22:43:50 | 000,794,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfds.dll
[2016/03/27 22:43:50 | 000,536,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2016/03/27 22:43:50 | 000,526,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll
[2016/03/27 22:43:50 | 000,516,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2016/03/27 22:43:50 | 000,498,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll
[2016/03/27 22:43:50 | 000,476,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvproc.dll
[2016/03/27 22:43:50 | 000,408,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll
[2016/03/27 22:43:50 | 000,366,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll
[2016/03/27 22:43:50 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2016/03/27 22:43:50 | 000,234,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mftranscode.dll
[2016/03/27 22:43:50 | 000,110,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll
[2016/03/27 22:43:50 | 000,088,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\remoteaudioendpoint.dll
[2016/03/27 22:43:50 | 000,073,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\remoteaudioendpoint.dll
[2016/03/27 22:43:49 | 000,613,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSync.dll
[2016/03/27 22:43:49 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srcore.dll
[2016/03/27 22:43:49 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RMSRoamingSecurity.dll
[2016/03/27 22:43:48 | 000,401,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sharemediacpl.dll
[2016/03/27 22:43:47 | 001,750,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcMon.exe
[2016/03/27 22:43:47 | 000,870,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2016/03/27 22:43:47 | 000,824,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebFilter.dll
[2016/03/27 22:43:47 | 000,572,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WpcWebFilter.dll
[2016/03/27 22:43:47 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FirewallAPI.dll
[2016/03/27 22:43:47 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fwpolicyiomgr.dll
[2016/03/27 22:43:47 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fwbase.dll
[2016/03/27 22:43:47 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fwpolicyiomgr.dll
[2016/03/27 22:43:47 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fwbase.dll
[2016/03/27 22:43:47 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpninprc.dll
[2016/03/27 22:43:47 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfapigp.dll
[2016/03/27 22:43:47 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfapigp.dll
[2016/03/27 22:43:30 | 001,255,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOE.DLL
[2016/03/27 22:43:30 | 000,931,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSMPEG2ENC.DLL
[2016/03/27 22:43:30 | 000,785,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\evr.dll
[2016/03/27 22:43:30 | 000,652,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\evr.dll
[2016/03/27 22:43:30 | 000,343,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsApi.dll
[2016/03/27 22:43:30 | 000,337,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFPlay.dll
[2016/03/27 22:43:30 | 000,289,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFPlay.dll
[2016/03/27 22:43:30 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsApi.dll
[2016/03/27 22:43:29 | 001,847,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMPDMC.exe
[2016/03/27 22:43:29 | 001,497,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMPDMC.exe
[2016/03/27 22:43:28 | 012,586,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll
[2016/03/27 22:43:27 | 014,252,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll
[2016/03/27 22:43:27 | 004,894,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2016/03/27 22:43:27 | 002,127,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2016/03/27 22:43:27 | 002,050,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2016/03/27 22:43:27 | 000,803,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll
[2016/03/27 22:43:27 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2016/03/27 22:43:27 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\flvprophandler.dll
[2016/03/27 22:43:27 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2016/03/27 22:43:27 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2016/03/27 22:43:26 | 000,784,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2016/03/27 22:43:24 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\readingviewresources.dll
[2016/03/27 22:43:23 | 001,997,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KernelBase.dll
[2016/03/27 22:43:23 | 001,818,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2016/03/27 22:43:21 | 004,412,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll
[2016/03/27 22:43:21 | 004,064,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2016/03/27 22:43:21 | 002,155,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2016/03/27 22:43:21 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasdlg.dll
[2016/03/27 22:43:21 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2016/03/27 22:43:21 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LogonController.dll
[2016/03/27 22:43:21 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SimCfg.dll
[2016/03/27 22:43:21 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SimAuth.dll
[2016/03/27 22:43:21 | 000,081,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OpenWith.exe
[2016/03/27 22:43:21 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2016/03/27 22:43:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasautou.exe
[2016/03/27 22:43:13 | 001,707,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActiveSyncProvider.dll
[2016/03/27 22:43:13 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\comsvcs.dll
[2016/03/27 22:43:13 | 001,035,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XboxNetApiSvc.dll
[2016/03/27 22:43:13 | 000,673,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.dll
[2016/03/27 22:43:13 | 000,586,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wimgapi.dll
[2016/03/27 22:43:13 | 000,572,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\taskschd.dll
[2016/03/27 22:43:13 | 000,558,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\uReFS.dll
[2016/03/27 22:43:13 | 000,535,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rastls.dll
[2016/03/27 22:43:13 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidcli.dll
[2016/03/27 22:43:13 | 000,431,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWanAPI.dll
[2016/03/27 22:43:13 | 000,415,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\catsrvut.dll
[2016/03/27 22:43:13 | 000,187,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll
[2016/03/27 22:43:13 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll
[2016/03/27 22:43:13 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WiFiDisplay.dll
[2016/03/27 22:43:13 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.XboxLive.ProxyStub.dll
[2016/03/27 22:43:13 | 000,063,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wwapi.dll
[2016/03/27 22:43:13 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssign32.dll
[2016/03/27 22:43:13 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pcaui.exe
[2016/03/27 22:43:13 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usermgrcli.dll
[2016/03/27 22:43:13 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TimeBrokerClient.dll
[2016/03/27 22:43:13 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rastlsext.dll
[2016/03/27 22:43:12 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werui.dll
[2016/03/27 22:43:12 | 000,258,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sqmapi.dll
[2016/03/27 22:43:12 | 000,092,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll
[2016/03/27 22:43:11 | 007,533,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2016/03/27 22:43:11 | 001,717,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2016/03/27 22:43:11 | 001,415,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2016/03/27 22:43:11 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uDWM.dll
[2016/03/27 22:43:11 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsqmcons.exe
[2016/03/27 22:43:11 | 000,085,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OpenWith.exe
[2016/03/27 22:43:11 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cfgbkend.dll
[2016/03/27 22:43:11 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dciman32.dll
[2016/03/27 22:43:11 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpk.dll
[2016/03/27 22:43:10 | 004,827,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll
[2016/03/27 22:43:10 | 004,502,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2016/03/27 22:43:10 | 002,597,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll
[2016/03/27 22:43:10 | 002,352,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2016/03/27 22:43:10 | 001,814,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll
[2016/03/27 22:43:10 | 001,318,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll
[2016/03/27 22:43:10 | 001,118,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2016/03/27 22:43:10 | 000,900,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll
[2016/03/27 22:43:10 | 000,884,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasdlg.dll
[2016/03/27 22:43:10 | 000,749,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneService.dll
[2016/03/27 22:43:10 | 000,733,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasapi32.dll
[2016/03/27 22:43:10 | 000,704,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CellularAPI.dll
[2016/03/27 22:43:10 | 000,610,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rastls.dll
[2016/03/27 22:43:10 | 000,606,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll
[2016/03/27 22:43:10 | 000,591,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SmsRouterSvc.dll
[2016/03/27 22:43:10 | 000,538,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWanAPI.dll
[2016/03/27 22:43:10 | 000,517,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winspool.drv
[2016/03/27 22:43:10 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LogonController.dll
[2016/03/27 22:43:10 | 000,463,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll
[2016/03/27 22:43:10 | 000,412,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll
[2016/03/27 22:43:10 | 000,412,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifitask.exe
[2016/03/27 22:43:10 | 000,389,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll
[2016/03/27 22:43:10 | 000,307,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usbmon.dll
[2016/03/27 22:43:10 | 000,305,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifiprofilessettinghandler.dll
[2016/03/27 22:43:10 | 000,264,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContentDeliveryManager.Utilities.dll
[2016/03/27 22:43:10 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\QuickActionsDataModel.dll
[2016/03/27 22:43:10 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Scanners.dll
[2016/03/27 22:43:10 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll
[2016/03/27 22:43:10 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SimCfg.dll
[2016/03/27 22:43:10 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll
[2016/03/27 22:43:10 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SimAuth.dll
[2016/03/27 22:43:10 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rmcast.sys
[2016/03/27 22:43:10 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wificonnapi.dll
[2016/03/27 22:43:10 | 000,080,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwapi.dll
[2016/03/27 22:43:10 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll
[2016/03/27 22:43:10 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SMSRouter.dll
[2016/03/27 22:43:10 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ihvrilproxy.dll
[2016/03/27 22:43:10 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rilproxy.dll
[2016/03/27 22:43:10 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfdprov.dll
[2016/03/27 22:43:10 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsplib.dll
[2016/03/27 22:43:10 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe
[2016/03/27 22:43:10 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiConfigSP.dll
[2016/03/27 22:43:10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansvcpal.dll
[2016/03/27 22:43:10 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasautou.exe
[2016/03/27 22:43:10 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wshrm.dll
[2016/03/27 22:43:10 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasadhlp.dll
[2016/03/27 22:43:10 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rastlsext.dll
[2016/03/27 22:43:09 | 008,705,672 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll
[2016/03/27 22:43:09 | 006,572,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanmm.dll
[2016/03/27 22:43:09 | 003,449,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSService.dll
[2016/03/27 22:43:09 | 001,996,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActiveSyncProvider.dll
[2016/03/27 22:43:09 | 001,648,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comsvcs.dll
[2016/03/27 22:43:09 | 001,582,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aitstatic.exe
[2016/03/27 22:43:09 | 001,500,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RecoveryDrive.exe
[2016/03/27 22:43:09 | 001,322,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll
[2016/03/27 22:43:09 | 001,309,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll
[2016/03/27 22:43:09 | 001,173,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2016/03/27 22:43:09 | 001,009,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOD.DLL
[2016/03/27 22:43:09 | 000,915,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\configurationclient.dll
[2016/03/27 22:43:09 | 000,912,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgr.dll
[2016/03/27 22:43:09 | 000,791,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2016/03/27 22:43:09 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidcli.dll
[2016/03/27 22:43:09 | 000,713,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\invagent.dll
[2016/03/27 22:43:09 | 000,685,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scapi.dll
[2016/03/27 22:43:09 | 000,644,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uReFS.dll
[2016/03/27 22:43:09 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2016/03/27 22:43:09 | 000,584,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe
[2016/03/27 22:43:09 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\catsrvut.dll
[2016/03/27 22:43:09 | 000,513,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2016/03/27 22:43:09 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanconn.dll
[2016/03/27 22:43:09 | 000,440,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\services.exe
[2016/03/27 22:43:09 | 000,382,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuuhext.dll
[2016/03/27 22:43:09 | 000,376,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.MediaControl.dll
[2016/03/27 22:43:09 | 000,360,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vaultsvc.dll
[2016/03/27 22:43:09 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\domgmt.dll
[2016/03/27 22:43:09 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vaultcli.dll
[2016/03/27 22:43:09 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll
[2016/03/27 22:43:09 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2016/03/27 22:43:09 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wshom.ocx
[2016/03/27 22:43:09 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srpapi.dll
[2016/03/27 22:43:09 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hlink.dll
[2016/03/27 22:43:09 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provpackageapidll.dll
[2016/03/27 22:43:09 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssign32.dll
[2016/03/27 22:43:09 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwancfg.dll
[2016/03/27 22:43:09 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Wwanpref.dll
[2016/03/27 22:43:09 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcaui.exe
[2016/03/27 22:43:09 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgrcli.dll
[2016/03/27 22:43:09 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.proxy.dll
[2016/03/27 22:43:09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageUsage.dll
[2016/03/27 22:43:09 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sscoreext.dll
[2016/03/27 22:43:03 | 000,678,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qedit.dll
[2016/03/27 22:43:03 | 000,216,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll
[2016/03/27 22:43:02 | 001,490,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataService.dll
[2016/03/27 22:43:02 | 001,399,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2016/03/27 22:43:02 | 001,224,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Unistore.dll
[2016/03/27 22:43:02 | 001,042,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingOnlineServices.dll
[2016/03/27 22:43:02 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Unistore.dll
[2016/03/27 22:43:02 | 000,938,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContactApis.dll
[2016/03/27 22:43:02 | 000,808,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe
[2016/03/27 22:43:02 | 000,790,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EmailApis.dll
[2016/03/27 22:43:02 | 000,779,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskschd.dll
[2016/03/27 22:43:02 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ContactApis.dll
[2016/03/27 22:43:02 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChatApis.dll
[2016/03/27 22:43:02 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingOnlineServices.dll
[2016/03/27 22:43:02 | 000,700,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppointmentApis.dll
[2016/03/27 22:43:02 | 000,698,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimgapi.dll
[2016/03/27 22:43:02 | 000,697,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll
[2016/03/27 22:43:02 | 000,649,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ngcsvc.dll
[2016/03/27 22:43:02 | 000,640,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2016/03/27 22:43:02 | 000,589,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApi.dll
[2016/03/27 22:43:02 | 000,586,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll
[2016/03/27 22:43:02 | 000,576,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys
[2016/03/27 22:43:02 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EmailApis.dll
[2016/03/27 22:43:02 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.UX.EapRequestHandler.dll
[2016/03/27 22:43:02 | 000,558,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MBMediaManager.dll
[2016/03/27 22:43:02 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppointmentApis.dll
[2016/03/27 22:43:02 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ChatApis.dll
[2016/03/27 22:43:02 | 000,523,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimserv.exe
[2016/03/27 22:43:02 | 000,511,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll
[2016/03/27 22:43:02 | 000,475,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DDDS.dll
[2016/03/27 22:43:02 | 000,472,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DscCore.dll
[2016/03/27 22:43:02 | 000,470,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApi.dll
[2016/03/27 22:43:02 | 000,458,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToDevice.dll
[2016/03/27 22:43:02 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll
[2016/03/27 22:43:02 | 000,394,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2016/03/27 22:43:02 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cryptngc.dll
[2016/03/27 22:43:02 | 000,292,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll
[2016/03/27 22:43:02 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll
[2016/03/27 22:43:02 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExSMime.dll
[2016/03/27 22:43:02 | 000,264,192 | ---- | C] (Nokia) -- C:\WINDOWS\SysNative\NmaDirect.dll
[2016/03/27 22:43:02 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataAccountApis.dll
[2016/03/27 22:43:02 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PimIndexMaintenance.dll
[2016/03/27 22:43:02 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cemapi.dll
[2016/03/27 22:43:02 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cryptngc.dll
[2016/03/27 22:43:02 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCore.dll
[2016/03/27 22:43:02 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExSMime.dll
[2016/03/27 22:43:02 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneCallHistoryApis.dll
[2016/03/27 22:43:02 | 000,205,824 | ---- | C] (Nokia) -- C:\WINDOWS\SysWow64\NmaDirect.dll
[2016/03/27 22:43:02 | 000,202,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscapi.dll
[2016/03/27 22:43:02 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cemapi.dll
[2016/03/27 22:43:02 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataAccountApis.dll
[2016/03/27 22:43:02 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VCardParser.dll
[2016/03/27 22:43:02 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll
[2016/03/27 22:43:02 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiDisplay.dll
[2016/03/27 22:43:02 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll
[2016/03/27 22:43:02 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PhoneCallHistoryApis.dll
[2016/03/27 22:43:02 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe
[2016/03/27 22:43:02 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provdatastore.dll
[2016/03/27 22:43:02 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TimeBrokerServer.dll
[2016/03/27 22:43:02 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provops.dll
[2016/03/27 22:43:02 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringservice.dll
[2016/03/27 22:43:02 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CallHistoryClient.dll
[2016/03/27 22:43:02 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmcertinst.exe
[2016/03/27 22:43:02 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VCardParser.dll
[2016/03/27 22:43:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FilterDS.dll
[2016/03/27 22:43:02 | 000,147,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wermgr.exe
[2016/03/27 22:43:02 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmclient.exe
[2016/03/27 22:43:02 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CallHistoryClient.dll
[2016/03/27 22:43:02 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCsp.dll
[2016/03/27 22:43:02 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppointmentActivation.dll
[2016/03/27 22:43:02 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataTimeUtil.dll
[2016/03/27 22:43:02 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MapControls.dll
[2016/03/27 22:43:02 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MapControls.dll
[2016/03/27 22:43:02 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ngckeyenum.dll
[2016/03/27 22:43:02 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppointmentActivation.dll
[2016/03/27 22:43:02 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NFCProvisioningPlugin.dll
[2016/03/27 22:43:02 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataTimeUtil.dll
[2016/03/27 22:43:02 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAppInstaller.exe
[2016/03/27 22:43:02 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceEnroller.exe
[2016/03/27 22:43:02 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BarcodeProvisioningPlugin.dll
[2016/03/27 22:43:02 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProvPluginEng.dll
[2016/03/27 22:43:02 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditBufferTestHook.dll
[2016/03/27 22:43:02 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\POSyncServices.dll
[2016/03/27 22:43:02 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EnterpriseDesktopAppMgmtCSP.dll
[2016/03/27 22:43:02 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataPlatformHelperUtil.dll
[2016/03/27 22:43:02 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosHostClient.dll
[2016/03/27 22:43:02 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PimIndexMaintenanceClient.dll
[2016/03/27 22:43:02 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll
[2016/03/27 22:43:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosResource.dll
[2016/03/27 22:43:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosResource.dll
[2016/03/27 22:43:02 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataPlatformHelperUtil.dll
[2016/03/27 22:43:02 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provtool.exe
[2016/03/27 22:43:02 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\POSyncServices.dll
[2016/03/27 22:43:02 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotificationUx.exe
[2016/03/27 22:43:02 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringclient.dll
[2016/03/27 22:43:02 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemovableMediaProvisioningPlugin.dll
[2016/03/27 22:43:02 | 000,051,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsUtilsV2.dll
[2016/03/27 22:43:02 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosHostClient.dll
[2016/03/27 22:43:02 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PimIndexMaintenanceClient.dll
[2016/03/27 22:43:02 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataTypeHelperUtil.dll
[2016/03/27 22:43:02 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataLanguageUtil.dll
[2016/03/27 22:43:02 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapstoasttask.dll
[2016/03/27 22:43:02 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TimeBrokerClient.dll
[2016/03/27 22:43:02 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataTypeHelperUtil.dll
[2016/03/27 22:43:02 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataLanguageUtil.dll
[2016/03/27 22:43:02 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ztrace_maps.dll
[2016/03/27 22:43:02 | 000,035,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe
[2016/03/27 22:43:02 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll
[2016/03/27 22:43:02 | 000,032,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfpmp.exe
[2016/03/27 22:43:02 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ztrace_maps.dll
[2016/03/27 22:43:02 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringconfigsp.dll
[2016/03/27 22:43:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WordBreakers.dll
[2016/03/27 22:43:02 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.Provisioning.ProxyStub.dll
[2016/03/27 22:43:02 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nativemap.dll
[2016/03/27 22:43:02 | 000,026,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2016/03/27 22:43:02 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WordBreakers.dll
[2016/03/27 22:43:02 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExtrasXmlParser.dll
[2016/03/27 22:43:02 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExtrasXmlParser.dll
[2016/03/27 22:43:02 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IcsEntitlementHost.exe
[2016/03/27 22:43:02 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvcProxy.dll
[2016/03/27 22:43:02 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosTrace.dll
[2016/03/27 22:43:02 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosTrace.dll
[2016/03/27 22:43:02 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosHost.dll
[2016/03/27 22:43:02 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosHost.dll
[2016/03/27 22:43:02 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlStringsRes.dll
[2016/03/27 22:43:02 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlStringsRes.dll
[2016/03/27 22:43:01 | 005,503,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d2d1.dll
[2016/03/27 22:43:01 | 002,773,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2016/03/27 22:43:01 | 002,606,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2016/03/27 22:43:01 | 002,186,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2016/03/27 22:43:01 | 001,824,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2016/03/27 22:43:01 | 001,594,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2016/03/27 22:43:01 | 001,270,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2016/03/27 22:43:01 | 001,139,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblGameSave.dll
[2016/03/27 22:43:01 | 000,982,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxPackaging.dll
[2016/03/27 22:43:01 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netlogon.dll
[2016/03/27 22:43:01 | 000,820,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2016/03/27 22:43:01 | 000,652,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll
[2016/03/27 22:43:01 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ETWCoreUIComponentsResources.dll
[2016/03/27 22:43:01 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ETWCoreUIComponentsResources.dll
[2016/03/27 22:43:01 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll
[2016/03/27 22:43:01 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll
[2016/03/27 22:43:01 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winhttpcom.dll
[2016/03/27 22:43:01 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winhttpcom.dll
[2016/03/27 22:42:54 | 006,607,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.storage.dll
[2016/03/27 22:42:54 | 005,321,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Data.Pdf.dll
[2016/03/27 22:42:54 | 005,242,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll
[2016/03/27 22:42:54 | 002,843,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdp.dll
[2016/03/27 22:42:54 | 002,604,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CertEnroll.dll
[2016/03/27 22:42:54 | 002,001,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2016/03/27 22:42:54 | 001,268,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Resources.dll
[2016/03/27 22:42:54 | 000,754,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll
[2016/03/27 22:42:54 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2016/03/27 22:42:54 | 000,342,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2016/03/27 22:42:54 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\facecredentialprovider.dll
[2016/03/27 22:42:54 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DisplayManager.dll
[2016/03/27 22:42:54 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PackageStateRoaming.dll
[2016/03/27 22:42:54 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSip.dll
[2016/03/27 22:42:54 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxSip.dll
[2016/03/27 22:42:54 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbio.dll
[2016/03/27 22:42:54 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ProximityCommon.dll
[2016/03/27 22:42:54 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winbio.dll
[2016/03/27 22:42:54 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\profext.dll
[2016/03/27 22:42:54 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthTokenBrokerExt.dll
[2016/03/27 22:42:54 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthManagerProxy.dll
[2016/03/27 22:42:54 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCoreRes.dll
[2016/03/27 22:42:54 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BackgroundTransferHost.exe
[2016/03/27 22:42:53 | 006,972,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Data.Pdf.dll
[2016/03/27 22:42:53 | 006,952,088 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2016/03/27 22:42:53 | 003,355,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll
[2016/03/27 22:42:53 | 002,912,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CertEnroll.dll
[2016/03/27 22:42:53 | 002,444,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll
[2016/03/27 22:42:53 | 002,057,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidsvc.dll
[2016/03/27 22:42:53 | 001,613,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diagtrack.dll
[2016/03/27 22:42:53 | 000,990,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll
[2016/03/27 22:42:53 | 000,870,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\modernexecserver.dll
[2016/03/27 22:42:53 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.AccountsControl.dll
[2016/03/27 22:42:53 | 000,703,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe
[2016/03/27 22:42:53 | 000,647,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll
[2016/03/27 22:42:53 | 000,625,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipSVC.dll
[2016/03/27 22:42:53 | 000,585,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.AccountsControl.dll
[2016/03/27 22:42:53 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qedit.dll
[2016/03/27 22:42:53 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-system-events.dll
[2016/03/27 22:42:53 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\thumbcache.dll
[2016/03/27 22:42:53 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceaccess.dll
[2016/03/27 22:42:53 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DisplayManager.dll
[2016/03/27 22:42:53 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceaccess.dll
[2016/03/27 22:42:53 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PackageStateRoaming.dll
[2016/03/27 22:42:53 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-AppModelExecEvents.dll
[2016/03/27 22:42:53 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProximityCommon.dll
[2016/03/27 22:42:53 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCensus.exe
[2016/03/27 22:42:53 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthBroker.dll
[2016/03/27 22:42:53 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dssvc.dll
[2016/03/27 22:42:53 | 000,141,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthHost.exe
[2016/03/27 22:42:53 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wshom.ocx
[2016/03/27 22:42:53 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManagerProxy.dll
[2016/03/27 22:42:53 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\profext.dll
[2016/03/27 22:42:53 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthTokenBrokerExt.dll
[2016/03/27 22:42:53 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BackgroundTransferHost.exe
[2016/03/27 22:42:52 | 006,740,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2016/03/27 22:42:52 | 002,680,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll
[2016/03/27 22:42:52 | 001,860,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cdp.dll
[2016/03/27 22:42:52 | 001,804,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMALFXGFXDSP.dll
[2016/03/27 22:42:52 | 001,467,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2016/03/27 22:42:52 | 001,268,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Resources.dll
[2016/03/27 22:42:52 | 000,911,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dcomp.dll
[2016/03/27 22:42:52 | 000,675,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dcomp.dll
[2016/03/27 22:42:52 | 000,538,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2016/03/27 22:42:52 | 000,534,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS
[2016/03/27 22:42:52 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll
[2016/03/27 22:42:52 | 000,450,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Bluetooth.dll
[2016/03/27 22:42:52 | 000,394,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werui.dll
[2016/03/27 22:42:52 | 000,315,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Internal.Bluetooth.dll
[2016/03/27 22:42:52 | 000,238,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xboxgip.sys
[2016/03/27 22:42:52 | 000,220,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sqmapi.dll
[2016/03/27 22:42:52 | 000,141,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wermgr.exe
[2016/03/27 22:42:52 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\capimg.sys
[2016/03/27 22:42:52 | 000,095,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdstor.sys
[2016/03/27 22:42:52 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbser.sys
[2016/03/27 22:42:52 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cfgbkend.dll
[2016/03/27 22:42:52 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCoreRes.dll
[2016/03/27 22:30:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\Microsoft
[2016/03/27 22:26:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\XPSViewer
[2016/03/27 22:26:07 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2016/03/27 22:26:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2016/03/27 22:26:07 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2016/03/27 22:26:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2016/03/27 22:26:07 | 000,000,000 | ---D | C] -- C:\inetpub
[2016/03/27 22:25:34 | 000,000,000 | --SD | C] -- C:\Users\jean-claude\AppData\Roaming\Microsoft
[2016/03/27 22:25:34 | 000,000,000 | R-SD | C] -- C:\Users\jean-claude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
[2016/03/27 22:25:34 | 000,000,000 | R--D | C] -- C:\Users\jean-claude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2016/03/27 22:25:34 | 000,000,000 | R--D | C] -- C:\Users\jean-claude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2016/03/27 22:25:34 | 000,000,000 | R--D | C] -- C:\Users\jean-claude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Voisinage réseau
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Voisinage d'impression
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\AppData\Local\Temporary Internet Files
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\SendTo
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Recent
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Modèles
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Documents\Mes vidéos
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Documents\Mes images
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Mes documents
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Menu Démarrer
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Documents\Ma musique
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Local Settings
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\AppData\Local\Historique
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Cookies
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\Application Data
[2016/03/27 22:25:34 | 000,000,000 | -HSD | C] -- C:\Users\jean-claude\AppData\Local\Application Data
[2016/03/27 22:25:34 | 000,000,000 | -H-D | C] -- C:\Users\jean-claude\AppData
[2016/03/27 22:25:34 | 000,000,000 | ---D | C] -- C:\Users\jean-claude\AppData\Local\Microsoft
[2016/03/27 22:25:34 | 000,000,000 | ---D | C] -- C:\Users\jean-claude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2016/03/27 22:24:37 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll
[2016/03/27 22:24:37 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2016/03/27 22:24:37 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe
[2016/03/27 22:24:30 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll
[2016/03/27 22:24:30 | 000,124,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2016/03/27 22:24:30 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe
[2016/03/27 22:23:59 | 001,087,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll
[2016/03/27 22:23:59 | 000,304,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\systemreset.exe
[2016/03/27 22:19:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
[2016/03/27 22:19:29 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2016/03/27 22:19:27 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2016/03/27 22:18:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2016/03/27 22:18:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2016/03/27 22:18:20 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2016/03/27 22:18:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM
[2016/03/27 22:17:49 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2016/03/27 22:17:22 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2016/03/27 22:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\sda
[2016/03/27 22:16:05 | 002,718,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PrintConfig.dll
[2016/03/27 22:12:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2016/04/15 12:59:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jean-claude\Desktop\OTL.exe
[2016/04/15 12:53:13 | 1544,450,048 | -HS- | M] () -- C:\hiberfil.sys
[2016/04/15 12:53:07 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2016/04/14 19:09:07 | 002,049,398 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2016/04/14 19:09:07 | 000,899,370 | ---- | M] () -- C:\WINDOWS\SysNative\perfh00C.dat
[2016/04/14 19:09:07 | 000,798,970 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2016/04/14 19:09:07 | 000,188,262 | ---- | M] () -- C:\WINDOWS\SysNative\perfc00C.dat
[2016/04/14 19:09:07 | 000,164,654 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2016/04/14 19:03:08 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2016/04/14 19:01:58 | 002,375,168 | ---- | M] (Farbar) -- C:\Users\jean-claude\Desktop\FRST64.exe
[2016/04/14 19:01:20 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2016/04/13 18:45:39 | 000,203,328 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2016/04/13 16:12:26 | 000,013,376 | ---- | M] () -- C:\bootsqm.dat
[2016/04/12 17:19:05 | 000,000,837 | ---- | M] () -- C:\Users\Public\Desktop\Speccy.lnk
[2016/04/12 17:17:20 | 005,111,240 | ---- | M] (Piriform Ltd) -- C:\Users\jean-claude\Desktop\spsetup129.exe
[2016/04/12 17:14:31 | 000,891,392 | ---- | M] (Farbar) -- C:\Users\jean-claude\Desktop\MiniToolBox.exe
[2016/04/07 21:16:11 | 000,000,370 | ---- | M] () -- C:\WINDOWS\tasks\HPCeeScheduleForjean-claude.job
[2016/04/07 19:15:09 | 000,000,766 | ---- | M] () -- C:\Users\jean-claude\Desktop\ZHPDiag.lnk
[2016/04/07 19:09:37 | 000,001,918 | ---- | M] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2016/04/06 20:32:08 | 000,829,944 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2016/04/06 20:32:08 | 000,176,632 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2016/04/03 16:26:33 | 002,174,464 | ---- | M] () -- C:\Users\jean-claude\ZHPDiag3.exe
[2016/04/03 16:07:40 | 000,000,917 | ---- | M] () -- C:\Users\jean-claude\Desktop\ZHPCleaner.lnk
[2016/04/02 06:13:14 | 000,369,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2016/04/02 06:10:46 | 000,730,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Shell.Broker.dll
[2016/04/02 06:10:39 | 000,374,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2016/04/02 06:10:25 | 000,770,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iuilp.dll
[2016/04/02 05:30:16 | 000,151,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEStoreEventHandlers.dll
[2016/04/02 05:29:38 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEDataLayerHelpers.dll
[2016/04/02 05:29:29 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEDataLayerHelpers.dll
[2016/04/02 05:26:25 | 000,630,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneProviders.dll
[2016/04/02 05:25:58 | 000,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NotificationObjFactory.dll
[2016/04/02 05:25:42 | 000,278,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationObjFactory.dll
[2016/04/02 05:23:44 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEEventDispatcher.dll
[2016/04/02 05:23:05 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEEventDispatcher.dll
[2016/04/02 05:21:17 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tileobjserver.dll
[2016/04/02 05:18:47 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SharedStartModel.dll
[2016/04/02 05:15:47 | 001,090,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXService.dll
[2016/04/02 05:14:35 | 003,994,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2016/04/02 05:09:17 | 001,832,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2016/04/02 05:07:41 | 002,158,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2016/04/02 05:07:22 | 003,575,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2016/04/02 05:03:52 | 004,774,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2016/04/02 05:00:39 | 001,390,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll
[2016/03/31 15:04:09 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2016/03/29 12:23:38 | 000,277,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys
[2016/03/29 12:22:12 | 001,030,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2016/03/29 12:22:12 | 000,874,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2016/03/29 12:20:20 | 007,474,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2016/03/29 12:20:19 | 001,317,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2016/03/29 12:20:19 | 001,141,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2016/03/29 12:20:17 | 002,656,952 | ---- | M] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll
[2016/03/29 12:15:23 | 000,100,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmapi.dll
[2016/03/29 12:11:32 | 000,686,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2016/03/29 12:02:09 | 000,989,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecConfig.efi
[2016/03/29 12:02:02 | 000,334,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanager.dll
[2016/03/29 11:56:37 | 001,297,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll
[2016/03/29 11:37:57 | 001,862,008 | ---- | M] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2016/03/29 11:28:18 | 000,115,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupApi.dll
[2016/03/29 11:28:16 | 000,696,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupEngine.dll
[2016/03/29 11:25:23 | 000,058,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.dll
[2016/03/29 11:25:13 | 000,258,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ufx01000.sys
[2016/03/29 11:19:37 | 000,296,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\policymanager.dll
[2016/03/29 11:18:27 | 000,185,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys
[2016/03/29 11:17:08 | 000,300,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppHost.exe
[2016/03/29 11:13:11 | 000,986,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll
[2016/03/29 11:11:27 | 000,074,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easinvoker.exe
[2016/03/29 11:10:44 | 000,110,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srvcli.dll
[2016/03/29 11:09:54 | 000,078,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wkscli.dll
[2016/03/29 11:08:30 | 000,261,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LsaIso.exe
[2016/03/29 11:07:11 | 000,081,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netapi32.dll
[2016/03/29 10:44:53 | 000,502,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupEngine.dll
[2016/03/29 10:44:50 | 000,084,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupApi.dll
[2016/03/29 10:41:44 | 000,051,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsNativeApi.dll
[2016/03/29 10:41:04 | 000,630,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe
[2016/03/29 10:32:59 | 000,253,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppHost.exe
[2016/03/29 10:25:44 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wkscli.dll
[2016/03/29 10:21:40 | 000,378,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS
[2016/03/29 10:17:11 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsCSP.dll
[2016/03/29 10:16:55 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xinputhid.sys
[2016/03/29 10:07:26 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanagerprecheck.dll
[2016/03/29 10:07:20 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2016/03/29 10:07:14 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.V2.dll
[2016/03/29 10:07:14 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsdchngr.dll
[2016/03/29 10:07:09 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenterprisediagnostics.dll
[2016/03/29 10:06:14 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleacchooks.dll
[2016/03/29 10:06:04 | 000,045,568 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll
[2016/03/29 10:02:38 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontsub.dll
[2016/03/29 10:01:15 | 000,541,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe
[2016/03/29 10:00:51 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveskybackup.dll
[2016/03/29 10:00:40 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapsupdatetask.dll
[2016/03/29 10:00:23 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetCfgNotifyObjectHost.exe
[2016/03/29 09:59:20 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManagerShellext.exe
[2016/03/29 09:58:17 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininetlui.dll
[2016/03/29 09:57:59 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll
[2016/03/29 09:57:44 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browcli.dll
[2016/03/29 09:57:42 | 000,199,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe
[2016/03/29 09:57:22 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosStorage.dll
[2016/03/29 09:55:34 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tbauth.dll
[2016/03/29 09:55:24 | 000,120,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvc.dll
[2016/03/29 09:54:03 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mtxoci.dll
[2016/03/29 09:53:25 | 000,116,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FontProvider.dll
[2016/03/29 09:52:04 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TokenBrokerCookies.exe
[2016/03/29 09:51:53 | 000,167,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2016/03/29 09:51:06 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tzautoupdate.dll
[2016/03/29 09:50:57 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSysprep.dll
[2016/03/29 09:50:52 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BdeHdCfgLib.dll
[2016/03/29 09:50:25 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OnDemandConnRouteHelper.dll
[2016/03/29 09:50:15 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshost.dll
[2016/03/29 09:50:11 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuautoappupdate.dll
[2016/03/29 09:49:59 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browserbroker.dll
[2016/03/29 09:48:58 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Devices.dll
[2016/03/29 09:48:35 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppCapture.dll
[2016/03/29 09:46:30 | 000,365,568 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll
[2016/03/29 09:44:19 | 000,230,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DAFWSD.dll
[2016/03/29 09:42:37 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshostcore.dll
[2016/03/29 09:39:18 | 000,550,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll
[2016/03/29 09:38:23 | 000,207,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll
[2016/03/29 09:36:09 | 000,209,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll
[2016/03/29 09:35:45 | 000,239,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\credprovhost.dll
[2016/03/29 09:35:40 | 000,411,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleacc.dll
[2016/03/29 09:34:50 | 000,333,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys
[2016/03/29 09:34:37 | 000,641,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll
[2016/03/29 09:34:10 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieproxy.dll
[2016/03/29 09:33:46 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easwrt.dll
[2016/03/29 09:32:57 | 000,414,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe
[2016/03/29 09:32:35 | 000,764,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll
[2016/03/29 09:30:14 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msorcl32.dll
[2016/03/29 09:28:42 | 000,460,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapConfiguration.dll
[2016/03/29 09:27:45 | 000,339,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorService.dll
[2016/03/29 09:26:12 | 000,169,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmmigrator.dll
[2016/03/29 09:23:59 | 000,628,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MessagingDataModel2.dll
[2016/03/29 09:23:41 | 000,694,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdiWiFi.sys
[2016/03/29 09:23:09 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXTaskFactory.dll
[2016/03/29 09:22:47 | 000,438,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AccountsRt.dll
[2016/03/29 09:21:39 | 000,330,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2016/03/29 09:20:34 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsdchngr.dll
[2016/03/29 09:20:33 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsNativeApi.V2.dll
[2016/03/29 09:20:28 | 000,166,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AboveLockAppHost.dll
[2016/03/29 09:20:21 | 000,948,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManager.dll
[2016/03/29 09:19:43 | 000,556,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PsmServiceExtHost.dll
[2016/03/29 09:19:39 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\oleacchooks.dll
[2016/03/29 09:19:30 | 000,037,376 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll
[2016/03/29 09:17:55 | 000,440,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredProvDataModel.dll
[2016/03/29 09:17:29 | 000,708,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.Web.Core.dll
[2016/03/29 09:17:04 | 001,056,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JpMapControl.dll
[2016/03/29 09:16:33 | 000,852,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll
[2016/03/29 09:16:09 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontsub.dll
[2016/03/29 09:15:44 | 001,714,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRHInproc.dll
[2016/03/29 09:14:43 | 000,965,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRH.dll
[2016/03/29 09:14:05 | 000,859,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll
[2016/03/29 09:13:03 | 000,587,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2016/03/29 09:12:16 | 000,471,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupShim.dll
[2016/03/29 09:12:15 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wininetlui.dll
[2016/03/29 09:11:45 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\browcli.dll
[2016/03/29 09:11:44 | 000,161,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe
[2016/03/29 09:11:28 | 000,881,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Input.Inking.dll
[2016/03/29 09:11:27 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosStorage.dll
[2016/03/29 09:11:23 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NMAA.dll
[2016/03/29 09:10:45 | 000,938,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll
[2016/03/29 09:10:40 | 001,388,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2016/03/29 09:09:56 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tbauth.dll
[2016/03/29 09:09:47 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapsBtSvc.dll
[2016/03/29 09:09:12 | 001,239,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Bluetooth.dll
[2016/03/29 09:08:39 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mtxoci.dll
[2016/03/29 09:08:35 | 000,888,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.dll
[2016/03/29 09:08:32 | 000,841,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2016/03/29 09:06:55 | 001,575,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll
[2016/03/29 09:06:55 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TokenBrokerCookies.exe
[2016/03/29 09:06:54 | 000,848,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2016/03/29 09:05:30 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OnDemandConnRouteHelper.dll
[2016/03/29 09:05:21 | 001,395,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2016/03/29 09:04:15 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Devices.dll
[2016/03/29 09:02:45 | 001,211,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Cred.dll
[2016/03/29 09:02:16 | 002,624,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll
[2016/03/29 09:02:14 | 000,303,104 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll
[2016/03/29 09:00:38 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.DeviceEncryptionHandlers.dll
[2016/03/29 09:00:11 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll
[2016/03/29 09:00:08 | 000,345,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll
[2016/03/29 09:00:05 | 000,235,008 | ---- | M] () -- C:\WINDOWS\SysNative\MTF.dll
[2016/03/29 08:59:56 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll
[2016/03/29 08:59:52 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll
[2016/03/29 08:59:10 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BitLockerDeviceEncryption.exe
[2016/03/29 08:56:21 | 000,415,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll
[2016/03/29 08:56:05 | 000,821,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TokenBroker.dll
[2016/03/29 08:55:42 | 001,052,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MsSpellCheckingFacility.dll
[2016/03/29 08:53:32 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\credprovhost.dll
[2016/03/29 08:52:16 | 000,306,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieproxy.dll
[2016/03/29 08:52:01 | 000,141,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\easwrt.dll
[2016/03/29 08:49:56 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveui.dll
[2016/03/29 08:48:08 | 000,346,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapConfiguration.dll
[2016/03/29 08:44:25 | 000,498,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MessagingDataModel2.dll
[2016/03/29 08:43:29 | 000,358,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AccountsRt.dll
[2016/03/29 08:42:33 | 000,250,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2016/03/29 08:42:31 | 001,410,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Http.dll
[2016/03/29 08:42:28 | 003,592,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2016/03/29 08:41:39 | 000,129,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AboveLockAppHost.dll
[2016/03/29 08:40:56 | 000,787,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.dll
[2016/03/29 08:39:35 | 000,350,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredProvDataModel.dll
[2016/03/29 08:39:19 | 000,496,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Security.Authentication.Web.Core.dll
[2016/03/29 08:38:55 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JpMapControl.dll
[2016/03/29 08:37:45 | 001,444,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRHInproc.dll
[2016/03/29 08:37:09 | 000,799,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRH.dll
[2016/03/29 08:36:48 | 003,351,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2016/03/29 08:36:46 | 000,649,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
[2016/03/29 08:35:26 | 000,354,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupShim.dll
[2016/03/29 08:34:56 | 000,682,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Input.Inking.dll
[2016/03/29 08:34:54 | 000,784,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NMAA.dll
[2016/03/29 08:34:52 | 000,418,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenrollengine.dll
[2016/03/29 08:34:33 | 000,711,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlCore.dll
[2016/03/29 08:32:57 | 000,854,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Bluetooth.dll
[2016/03/29 08:32:43 | 000,638,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.dll
[2016/03/29 08:32:33 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmcsps.dll
[2016/03/29 08:32:31 | 000,162,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enrollmentapi.dll
[2016/03/29 08:32:26 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmregistration.dll
[2016/03/29 08:32:15 | 001,098,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dosvc.dll
[2016/03/29 08:31:44 | 001,117,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll
[2016/03/29 08:31:23 | 000,705,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll
[2016/03/29 08:31:02 | 001,946,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2016/03/29 08:30:31 | 001,139,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2016/03/29 08:29:41 | 000,555,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncController.dll
[2016/03/29 08:29:22 | 000,256,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\accountaccessor.dll
[2016/03/29 08:28:13 | 001,944,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputService.dll
[2016/03/29 08:28:10 | 000,764,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Cred.dll
[2016/03/29 08:27:21 | 007,979,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll
[2016/03/29 08:27:14 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll
[2016/03/29 08:27:11 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TextInputFramework.dll
[2016/03/29 08:27:04 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputLocaleManager.dll
[2016/03/29 08:27:01 | 000,162,816 | ---- | M] () -- C:\WINDOWS\SysWow64\MTF.dll
[2016/03/29 08:23:37 | 000,777,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MsSpellCheckingFacility.dll
[2016/03/29 08:22:58 | 000,638,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TokenBroker.dll
[2016/03/29 08:17:00 | 000,765,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2016/03/29 08:14:22 | 001,072,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.Http.dll
[2016/03/29 08:13:06 | 000,592,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.dll
[2016/03/29 08:06:46 | 000,151,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mdmregistration.dll
[2016/03/29 08:05:57 | 001,388,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2016/03/29 08:05:44 | 001,626,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2016/03/29 08:05:40 | 007,199,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll
[2016/03/29 08:05:20 | 000,450,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SyncController.dll
[2016/03/29 08:04:35 | 000,688,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll
[2016/03/29 08:04:06 | 000,848,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2016/03/29 08:01:28 | 013,018,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2016/03/29 08:00:50 | 006,297,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll
[2016/03/29 07:56:52 | 016,985,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2016/03/29 07:52:20 | 011,545,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2016/03/29 07:51:55 | 009,918,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2016/03/29 07:51:27 | 022,378,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2016/03/29 07:49:21 | 005,202,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll
[2016/03/29 07:45:48 | 000,338,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncbservice.dll
[2016/03/29 07:45:43 | 003,078,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\esent.dll
[2016/03/29 07:43:27 | 000,521,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll
[2016/03/29 07:43:22 | 003,428,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2016/03/29 07:38:54 | 002,798,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2016/03/29 07:38:50 | 018,673,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2016/03/29 07:36:49 | 002,722,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\esent.dll
[2016/03/29 07:35:37 | 000,821,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvewiz.dll
[2016/03/29 07:28:43 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvecpl.dll
[2016/03/29 07:27:32 | 005,662,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2016/03/29 07:27:00 | 007,836,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2016/03/29 07:26:38 | 000,402,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FWPUCLNT.DLL
[2016/03/29 07:26:06 | 000,958,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemoteNaturalLanguage.dll
[2016/03/29 07:25:30 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FWPUCLNT.DLL
[2016/03/29 07:25:01 | 000,712,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RemoteNaturalLanguage.dll
[2016/03/29 07:21:24 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\basesrv.dll
[2016/03/27 23:08:38 | 000,040,008 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2016/03/27 23:08:38 | 000,040,008 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2016/03/27 22:57:31 | 000,023,208 | ---- | M] () -- C:\WINDOWS\SysNative\emptyregdb.dat
[2016/03/27 22:43:53 | 001,542,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\quartz.dll
[2016/03/27 22:43:53 | 000,890,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOD.DLL
[2016/03/27 22:43:53 | 000,890,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxPackaging.dll
[2016/03/27 22:43:53 | 000,871,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSMPEG2ENC.DLL
[2016/03/27 22:43:53 | 000,671,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\advapi32.dll
[2016/03/27 22:43:53 | 000,569,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll
[2016/03/27 22:43:53 | 000,567,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MCRecvSrc.dll
[2016/03/27 22:43:53 | 000,503,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSync.dll
[2016/03/27 22:43:53 | 000,480,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MCRecvSrc.dll
[2016/03/27 22:43:53 | 000,372,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDEServer.exe
[2016/03/27 22:43:53 | 000,334,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe
[2016/03/27 22:43:53 | 000,287,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.MediaControl.dll
[2016/03/27 22:43:53 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ksproxy.ax
[2016/03/27 22:43:53 | 000,168,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Scanners.dll
[2016/03/27 22:43:53 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dialserver.dll
[2016/03/27 22:43:53 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppCapture.dll
[2016/03/27 22:43:53 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.proxy.dll
[2016/03/27 22:43:52 | 001,674,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\quartz.dll
[2016/03/27 22:43:52 | 001,070,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOE.DLL
[2016/03/27 22:43:52 | 000,925,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2016/03/27 22:43:52 | 000,882,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2016/03/27 22:43:52 | 000,786,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMADMOD.DLL
[2016/03/27 22:43:52 | 000,695,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMADMOD.DLL
[2016/03/27 22:43:52 | 000,517,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll
[2016/03/27 22:43:52 | 000,387,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qdvd.dll
[2016/03/27 22:43:52 | 000,340,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToDevice.dll
[2016/03/27 22:43:52 | 000,320,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSFlacDecoder.dll
[2016/03/27 22:43:52 | 000,305,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ksproxy.ax
[2016/03/27 22:43:52 | 000,266,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSFlacDecoder.dll
[2016/03/27 22:43:52 | 000,119,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP3DMOD.DLL
[2016/03/27 22:43:52 | 000,100,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP3DMOD.DLL
[2016/03/27 22:43:51 | 002,544,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2016/03/27 22:43:51 | 002,180,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2016/03/27 22:43:51 | 002,061,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2016/03/27 22:43:51 | 001,299,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2016/03/27 22:43:51 | 001,152,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll
[2016/03/27 22:43:51 | 001,118,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2016/03/27 22:43:51 | 001,105,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Audio.dll
[2016/03/27 22:43:51 | 000,980,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll
[2016/03/27 22:43:51 | 000,895,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll
[2016/03/27 22:43:51 | 000,858,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll
[2016/03/27 22:43:51 | 000,713,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
[2016/03/27 22:43:51 | 000,709,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2016/03/27 22:43:51 | 000,701,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll
[2016/03/27 22:43:51 | 000,670,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfds.dll
[2016/03/27 22:43:51 | 000,493,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmkvsrcsnk.dll
[2016/03/27 22:43:51 | 000,462,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll
[2016/03/27 22:43:51 | 000,450,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFCaptureEngine.dll
[2016/03/27 22:43:51 | 000,420,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvproc.dll
[2016/03/27 22:43:51 | 000,379,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmkvsrcsnk.dll
[2016/03/27 22:43:51 | 000,245,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2016/03/27 22:43:51 | 000,208,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mftranscode.dll
[2016/03/27 22:43:51 | 000,116,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll
[2016/03/27 22:43:50 | 002,581,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2016/03/27 22:43:50 | 001,131,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Audio.dll
[2016/03/27 22:43:50 | 001,092,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2016/03/27 22:43:50 | 001,062,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2016/03/27 22:43:50 | 001,017,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll
[2016/03/27 22:43:50 | 000,848,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2016/03/27 22:43:50 | 000,819,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll
[2016/03/27 22:43:50 | 000,794,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfds.dll
[2016/03/27 22:43:50 | 000,536,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2016/03/27 22:43:50 | 000,526,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll
[2016/03/27 22:43:50 | 000,516,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2016/03/27 22:43:50 | 000,498,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll
[2016/03/27 22:43:50 | 000,476,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvproc.dll
[2016/03/27 22:43:50 | 000,408,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll
[2016/03/27 22:43:50 | 000,366,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll
[2016/03/27 22:43:50 | 000,275,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2016/03/27 22:43:50 | 000,234,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mftranscode.dll
[2016/03/27 22:43:50 | 000,110,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll
[2016/03/27 22:43:50 | 000,088,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\remoteaudioendpoint.dll
[2016/03/27 22:43:50 | 000,073,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\remoteaudioendpoint.dll
[2016/03/27 22:43:49 | 000,613,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSync.dll
[2016/03/27 22:43:49 | 000,477,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srcore.dll
[2016/03/27 22:43:49 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RMSRoamingSecurity.dll
[2016/03/27 22:43:48 | 000,401,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sharemediacpl.dll
[2016/03/27 22:43:47 | 001,750,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcMon.exe
[2016/03/27 22:43:47 | 000,870,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2016/03/27 22:43:47 | 000,824,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebFilter.dll
[2016/03/27 22:43:47 | 000,572,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WpcWebFilter.dll
[2016/03/27 22:43:47 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FirewallAPI.dll
[2016/03/27 22:43:47 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fwpolicyiomgr.dll
[2016/03/27 22:43:47 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fwbase.dll
[2016/03/27 22:43:47 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fwpolicyiomgr.dll
[2016/03/27 22:43:47 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fwbase.dll
[2016/03/27 22:43:47 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpninprc.dll
[2016/03/27 22:43:47 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfapigp.dll
[2016/03/27 22:43:47 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfapigp.dll
[2016/03/27 22:43:30 | 001,497,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMPDMC.exe
[2016/03/27 22:43:30 | 001,255,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOE.DLL
[2016/03/27 22:43:30 | 000,931,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSMPEG2ENC.DLL
[2016/03/27 22:43:30 | 000,785,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\evr.dll
[2016/03/27 22:43:30 | 000,652,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\evr.dll
[2016/03/27 22:43:30 | 000,343,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsApi.dll
[2016/03/27 22:43:30 | 000,337,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFPlay.dll
[2016/03/27 22:43:30 | 000,289,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFPlay.dll
[2016/03/27 22:43:30 | 000,273,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsApi.dll
[2016/03/27 22:43:29 | 012,586,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll
[2016/03/27 22:43:29 | 001,847,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMPDMC.exe
[2016/03/27 22:43:28 | 014,252,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll
[2016/03/27 22:43:27 | 004,894,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2016/03/27 22:43:27 | 002,127,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2016/03/27 22:43:27 | 002,050,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2016/03/27 22:43:27 | 000,803,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll
[2016/03/27 22:43:27 | 000,221,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2016/03/27 22:43:27 | 000,129,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\flvprophandler.dll
[2016/03/27 22:43:27 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2016/03/27 22:43:27 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2016/03/27 22:43:26 | 000,784,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2016/03/27 22:43:24 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\readingviewresources.dll
[2016/03/27 22:43:23 | 001,997,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KernelBase.dll
[2016/03/27 22:43:23 | 001,818,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2016/03/27 22:43:21 | 004,412,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll
[2016/03/27 22:43:21 | 004,064,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2016/03/27 22:43:21 | 002,155,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2016/03/27 22:43:21 | 000,799,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasdlg.dll
[2016/03/27 22:43:21 | 000,683,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2016/03/27 22:43:21 | 000,421,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LogonController.dll
[2016/03/27 22:43:21 | 000,157,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SimCfg.dll
[2016/03/27 22:43:21 | 000,129,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SimAuth.dll
[2016/03/27 22:43:21 | 000,081,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OpenWith.exe
[2016/03/27 22:43:21 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2016/03/27 22:43:21 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasautou.exe
[2016/03/27 22:43:13 | 001,707,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActiveSyncProvider.dll
[2016/03/27 22:43:13 | 001,328,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\comsvcs.dll
[2016/03/27 22:43:13 | 001,035,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XboxNetApiSvc.dll
[2016/03/27 22:43:13 | 000,673,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.dll
[2016/03/27 22:43:13 | 000,586,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wimgapi.dll
[2016/03/27 22:43:13 | 000,572,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\taskschd.dll
[2016/03/27 22:43:13 | 000,558,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\uReFS.dll
[2016/03/27 22:43:13 | 000,535,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rastls.dll
[2016/03/27 22:43:13 | 000,510,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidcli.dll
[2016/03/27 22:43:13 | 000,431,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWanAPI.dll
[2016/03/27 22:43:13 | 000,415,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\catsrvut.dll
[2016/03/27 22:43:13 | 000,187,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll
[2016/03/27 22:43:13 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll
[2016/03/27 22:43:13 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WiFiDisplay.dll
[2016/03/27 22:43:13 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.XboxLive.ProxyStub.dll
[2016/03/27 22:43:13 | 000,063,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wwapi.dll
[2016/03/27 22:43:13 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssign32.dll
[2016/03/27 22:43:13 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pcaui.exe
[2016/03/27 22:43:13 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usermgrcli.dll
[2016/03/27 22:43:13 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TimeBrokerClient.dll
[2016/03/27 22:43:13 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rastlsext.dll
[2016/03/27 22:43:12 | 001,717,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2016/03/27 22:43:12 | 000,451,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werui.dll
[2016/03/27 22:43:12 | 000,258,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sqmapi.dll
[2016/03/27 22:43:12 | 000,092,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll
[2016/03/27 22:43:11 | 007,533,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2016/03/27 22:43:11 | 004,827,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll
[2016/03/27 22:43:11 | 001,415,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2016/03/27 22:43:11 | 000,838,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uDWM.dll
[2016/03/27 22:43:11 | 000,228,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsqmcons.exe
[2016/03/27 22:43:11 | 000,085,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OpenWith.exe
[2016/03/27 22:43:11 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cfgbkend.dll
[2016/03/27 22:43:11 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dciman32.dll
[2016/03/27 22:43:11 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpk.dll
[2016/03/27 22:43:10 | 006,572,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanmm.dll
[2016/03/27 22:43:10 | 004,502,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2016/03/27 22:43:10 | 002,597,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll
[2016/03/27 22:43:10 | 002,352,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2016/03/27 22:43:10 | 001,814,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll
[2016/03/27 22:43:10 | 001,318,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll
[2016/03/27 22:43:10 | 001,118,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2016/03/27 22:43:10 | 000,900,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll
[2016/03/27 22:43:10 | 000,884,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasdlg.dll
[2016/03/27 22:43:10 | 000,749,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneService.dll
[2016/03/27 22:43:10 | 000,733,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasapi32.dll
[2016/03/27 22:43:10 | 000,704,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CellularAPI.dll
[2016/03/27 22:43:10 | 000,610,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rastls.dll
[2016/03/27 22:43:10 | 000,606,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll
[2016/03/27 22:43:10 | 000,591,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SmsRouterSvc.dll
[2016/03/27 22:43:10 | 000,538,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWanAPI.dll
[2016/03/27 22:43:10 | 000,517,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winspool.drv
[2016/03/27 22:43:10 | 000,515,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LogonController.dll
[2016/03/27 22:43:10 | 000,463,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll
[2016/03/27 22:43:10 | 000,412,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll
[2016/03/27 22:43:10 | 000,412,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifitask.exe
[2016/03/27 22:43:10 | 000,389,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll
[2016/03/27 22:43:10 | 000,307,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usbmon.dll
[2016/03/27 22:43:10 | 000,305,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifiprofilessettinghandler.dll
[2016/03/27 22:43:10 | 000,264,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContentDeliveryManager.Utilities.dll
[2016/03/27 22:43:10 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\QuickActionsDataModel.dll
[2016/03/27 22:43:10 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Scanners.dll
[2016/03/27 22:43:10 | 000,210,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll
[2016/03/27 22:43:10 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SimCfg.dll
[2016/03/27 22:43:10 | 000,182,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll
[2016/03/27 22:43:10 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SimAuth.dll
[2016/03/27 22:43:10 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rmcast.sys
[2016/03/27 22:43:10 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wificonnapi.dll
[2016/03/27 22:43:10 | 000,080,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwapi.dll
[2016/03/27 22:43:10 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll
[2016/03/27 22:43:10 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SMSRouter.dll
[2016/03/27 22:43:10 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ihvrilproxy.dll
[2016/03/27 22:43:10 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rilproxy.dll
[2016/03/27 22:43:10 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfdprov.dll
[2016/03/27 22:43:10 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsplib.dll
[2016/03/27 22:43:10 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe
[2016/03/27 22:43:10 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiConfigSP.dll
[2016/03/27 22:43:10 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansvcpal.dll
[2016/03/27 22:43:10 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasautou.exe
[2016/03/27 22:43:10 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wshrm.dll
[2016/03/27 22:43:10 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasadhlp.dll
[2016/03/27 22:43:10 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rastlsext.dll
[2016/03/27 22:43:09 | 008,705,672 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll
[2016/03/27 22:43:09 | 003,449,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSService.dll
[2016/03/27 22:43:09 | 001,996,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActiveSyncProvider.dll
[2016/03/27 22:43:09 | 001,648,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comsvcs.dll
[2016/03/27 22:43:09 | 001,582,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aitstatic.exe
[2016/03/27 22:43:09 | 001,500,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RecoveryDrive.exe
[2016/03/27 22:43:09 | 001,322,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll
[2016/03/27 22:43:09 | 001,309,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll
[2016/03/27 22:43:09 | 001,173,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2016/03/27 22:43:09 | 001,009,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOD.DLL
[2016/03/27 22:43:09 | 000,915,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\configurationclient.dll
[2016/03/27 22:43:09 | 000,912,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgr.dll
[2016/03/27 22:43:09 | 000,791,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2016/03/27 22:43:09 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidcli.dll
[2016/03/27 22:43:09 | 000,713,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\invagent.dll
[2016/03/27 22:43:09 | 000,685,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scapi.dll
[2016/03/27 22:43:09 | 000,644,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uReFS.dll
[2016/03/27 22:43:09 | 000,604,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2016/03/27 22:43:09 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe
[2016/03/27 22:43:09 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\catsrvut.dll
[2016/03/27 22:43:09 | 000,513,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2016/03/27 22:43:09 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanconn.dll
[2016/03/27 22:43:09 | 000,440,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\services.exe
[2016/03/27 22:43:09 | 000,382,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuuhext.dll
[2016/03/27 22:43:09 | 000,376,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.MediaControl.dll
[2016/03/27 22:43:09 | 000,360,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vaultsvc.dll
[2016/03/27 22:43:09 | 000,318,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\domgmt.dll
[2016/03/27 22:43:09 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vaultcli.dll
[2016/03/27 22:43:09 | 000,248,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll
[2016/03/27 22:43:09 | 000,210,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2016/03/27 22:43:09 | 000,148,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wshom.ocx
[2016/03/27 22:43:09 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srpapi.dll
[2016/03/27 22:43:09 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hlink.dll
[2016/03/27 22:43:09 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provpackageapidll.dll
[2016/03/27 22:43:09 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssign32.dll
[2016/03/27 22:43:09 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwancfg.dll
[2016/03/27 22:43:09 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Wwanpref.dll
[2016/03/27 22:43:09 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcaui.exe
[2016/03/27 22:43:09 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgrcli.dll
[2016/03/27 22:43:09 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.proxy.dll
[2016/03/27 22:43:09 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageUsage.dll
[2016/03/27 22:43:09 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sscoreext.dll
[2016/03/27 22:43:03 | 000,678,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qedit.dll
[2016/03/27 22:43:03 | 000,216,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll
[2016/03/27 22:43:02 | 001,594,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2016/03/27 22:43:02 | 001,490,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataService.dll
[2016/03/27 22:43:02 | 001,399,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2016/03/27 22:43:02 | 001,224,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Unistore.dll
[2016/03/27 22:43:02 | 001,042,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingOnlineServices.dll
[2016/03/27 22:43:02 | 000,949,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Unistore.dll
[2016/03/27 22:43:02 | 000,938,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContactApis.dll
[2016/03/27 22:43:02 | 000,808,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe
[2016/03/27 22:43:02 | 000,790,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EmailApis.dll
[2016/03/27 22:43:02 | 000,779,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskschd.dll
[2016/03/27 22:43:02 | 000,769,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ContactApis.dll
[2016/03/27 22:43:02 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChatApis.dll
[2016/03/27 22:43:02 | 000,709,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingOnlineServices.dll
[2016/03/27 22:43:02 | 000,700,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppointmentApis.dll
[2016/03/27 22:43:02 | 000,698,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimgapi.dll
[2016/03/27 22:43:02 | 000,697,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll
[2016/03/27 22:43:02 | 000,649,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ngcsvc.dll
[2016/03/27 22:43:02 | 000,640,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2016/03/27 22:43:02 | 000,589,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApi.dll
[2016/03/27 22:43:02 | 000,586,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll
[2016/03/27 22:43:02 | 000,576,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys
[2016/03/27 22:43:02 | 000,575,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EmailApis.dll
[2016/03/27 22:43:02 | 000,574,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.UX.EapRequestHandler.dll
[2016/03/27 22:43:02 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MBMediaManager.dll
[2016/03/27 22:43:02 | 000,552,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppointmentApis.dll
[2016/03/27 22:43:02 | 000,540,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ChatApis.dll
[2016/03/27 22:43:02 | 000,523,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimserv.exe
[2016/03/27 22:43:02 | 000,511,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll
[2016/03/27 22:43:02 | 000,475,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DDDS.dll
[2016/03/27 22:43:02 | 000,472,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DscCore.dll
[2016/03/27 22:43:02 | 000,470,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApi.dll
[2016/03/27 22:43:02 | 000,458,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToDevice.dll
[2016/03/27 22:43:02 | 000,406,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll
[2016/03/27 22:43:02 | 000,394,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2016/03/27 22:43:02 | 000,320,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cryptngc.dll
[2016/03/27 22:43:02 | 000,292,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll
[2016/03/27 22:43:02 | 000,286,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll
[2016/03/27 22:43:02 | 000,274,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExSMime.dll
[2016/03/27 22:43:02 | 000,264,192 | ---- | M] (Nokia) -- C:\WINDOWS\SysNative\NmaDirect.dll
[2016/03/27 22:43:02 | 000,260,608 | ---- | M] () -- C:\WINDOWS\SysNative\MTFServer.dll
[2016/03/27 22:43:02 | 000,258,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataAccountApis.dll
[2016/03/27 22:43:02 | 000,252,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PimIndexMaintenance.dll
[2016/03/27 22:43:02 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cemapi.dll
[2016/03/27 22:43:02 | 000,241,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cryptngc.dll
[2016/03/27 22:43:02 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCore.dll
[2016/03/27 22:43:02 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExSMime.dll
[2016/03/27 22:43:02 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneCallHistoryApis.dll
[2016/03/27 22:43:02 | 000,205,824 | ---- | M] (Nokia) -- C:\WINDOWS\SysWow64\NmaDirect.dll
[2016/03/27 22:43:02 | 000,202,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscapi.dll
[2016/03/27 22:43:02 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cemapi.dll
[2016/03/27 22:43:02 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataAccountApis.dll
[2016/03/27 22:43:02 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VCardParser.dll
[2016/03/27 22:43:02 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll
[2016/03/27 22:43:02 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiDisplay.dll
[2016/03/27 22:43:02 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll
[2016/03/27 22:43:02 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PhoneCallHistoryApis.dll
[2016/03/27 22:43:02 | 000,166,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe
[2016/03/27 22:43:02 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provdatastore.dll
[2016/03/27 22:43:02 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TimeBrokerServer.dll
[2016/03/27 22:43:02 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provops.dll
[2016/03/27 22:43:02 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringservice.dll
[2016/03/27 22:43:02 | 000,161,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CallHistoryClient.dll
[2016/03/27 22:43:02 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmcertinst.exe
[2016/03/27 22:43:02 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\SensorsCx.dll
[2016/03/27 22:43:02 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VCardParser.dll
[2016/03/27 22:43:02 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FilterDS.dll
[2016/03/27 22:43:02 | 000,147,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wermgr.exe
[2016/03/27 22:43:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmclient.exe
[2016/03/27 22:43:02 | 000,129,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CallHistoryClient.dll
[2016/03/27 22:43:02 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCsp.dll
[2016/03/27 22:43:02 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppointmentActivation.dll
[2016/03/27 22:43:02 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataTimeUtil.dll
[2016/03/27 22:43:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MapControls.dll
[2016/03/27 22:43:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MapControls.dll
[2016/03/27 22:43:02 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ngckeyenum.dll
[2016/03/27 22:43:02 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppointmentActivation.dll
[2016/03/27 22:43:02 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NFCProvisioningPlugin.dll
[2016/03/27 22:43:02 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataTimeUtil.dll
[2016/03/27 22:43:02 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAppInstaller.exe
[2016/03/27 22:43:02 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceEnroller.exe
[2016/03/27 22:43:02 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BarcodeProvisioningPlugin.dll
[2016/03/27 22:43:02 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProvPluginEng.dll
[2016/03/27 22:43:02 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditBufferTestHook.dll
[2016/03/27 22:43:02 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\POSyncServices.dll
[2016/03/27 22:43:02 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EnterpriseDesktopAppMgmtCSP.dll
[2016/03/27 22:43:02 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataPlatformHelperUtil.dll
[2016/03/27 22:43:02 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosHostClient.dll
[2016/03/27 22:43:02 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PimIndexMaintenanceClient.dll
[2016/03/27 22:43:02 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll
[2016/03/27 22:43:02 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosResource.dll
[2016/03/27 22:43:02 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosResource.dll
[2016/03/27 22:43:02 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataPlatformHelperUtil.dll
[2016/03/27 22:43:02 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provtool.exe
[2016/03/27 22:43:02 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\POSyncServices.dll
[2016/03/27 22:43:02 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotificationUx.exe
[2016/03/27 22:43:02 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringclient.dll
[2016/03/27 22:43:02 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemovableMediaProvisioningPlugin.dll
[2016/03/27 22:43:02 | 000,051,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsUtilsV2.dll
[2016/03/27 22:43:02 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosHostClient.dll
[2016/03/27 22:43:02 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PimIndexMaintenanceClient.dll
[2016/03/27 22:43:02 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataTypeHelperUtil.dll
[2016/03/27 22:43:02 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataLanguageUtil.dll
[2016/03/27 22:43:02 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapstoasttask.dll
[2016/03/27 22:43:02 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TimeBrokerClient.dll
[2016/03/27 22:43:02 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataTypeHelperUtil.dll
[2016/03/27 22:43:02 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataLanguageUtil.dll
[2016/03/27 22:43:02 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ztrace_maps.dll
[2016/03/27 22:43:02 | 000,035,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe
[2016/03/27 22:43:02 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll
[2016/03/27 22:43:02 | 000,032,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfpmp.exe
[2016/03/27 22:43:02 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ztrace_maps.dll
[2016/03/27 22:43:02 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringconfigsp.dll
[2016/03/27 22:43:02 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WordBreakers.dll
[2016/03/27 22:43:02 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.Provisioning.ProxyStub.dll
[2016/03/27 22:43:02 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nativemap.dll
[2016/03/27 22:43:02 | 000,026,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2016/03/27 22:43:02 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WordBreakers.dll
[2016/03/27 22:43:02 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExtrasXmlParser.dll
[2016/03/27 22:43:02 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExtrasXmlParser.dll
[2016/03/27 22:43:02 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IcsEntitlementHost.exe
[2016/03/27 22:43:02 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvcProxy.dll
[2016/03/27 22:43:02 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosTrace.dll
[2016/03/27 22:43:02 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosTrace.dll
[2016/03/27 22:43:02 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosHost.dll
[2016/03/27 22:43:02 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosHost.dll
[2016/03/27 22:43:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlStringsRes.dll
[2016/03/27 22:43:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlStringsRes.dll
[2016/03/27 22:43:01 | 005,503,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d2d1.dll
[2016/03/27 22:43:01 | 002,773,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2016/03/27 22:43:01 | 002,606,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2016/03/27 22:43:01 | 002,186,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2016/03/27 22:43:01 | 001,824,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2016/03/27 22:43:01 | 001,270,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2016/03/27 22:43:01 | 001,139,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblGameSave.dll
[2016/03/27 22:43:01 | 000,982,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxPackaging.dll
[2016/03/27 22:43:01 | 000,847,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netlogon.dll
[2016/03/27 22:43:01 | 000,820,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2016/03/27 22:43:01 | 000,652,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll
[2016/03/27 22:43:01 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ETWCoreUIComponentsResources.dll
[2016/03/27 22:43:01 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ETWCoreUIComponentsResources.dll
[2016/03/27 22:43:01 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll
[2016/03/27 22:43:01 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll
[2016/03/27 22:43:01 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winhttpcom.dll
[2016/03/27 22:43:01 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winhttpcom.dll
[2016/03/27 22:42:54 | 006,607,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.storage.dll
[2016/03/27 22:42:54 | 005,321,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Data.Pdf.dll
[2016/03/27 22:42:54 | 005,242,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll
[2016/03/27 22:42:54 | 003,355,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll
[2016/03/27 22:42:54 | 002,843,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdp.dll
[2016/03/27 22:42:54 | 002,604,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CertEnroll.dll
[2016/03/27 22:42:54 | 002,001,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2016/03/27 22:42:54 | 001,268,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Resources.dll
[2016/03/27 22:42:54 | 000,754,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll
[2016/03/27 22:42:54 | 000,436,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2016/03/27 22:42:54 | 000,342,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2016/03/27 22:42:54 | 000,275,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\facecredentialprovider.dll
[2016/03/27 22:42:54 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DisplayManager.dll
[2016/03/27 22:42:54 | 000,184,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PackageStateRoaming.dll
[2016/03/27 22:42:54 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSip.dll
[2016/03/27 22:42:54 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxSip.dll
[2016/03/27 22:42:54 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbio.dll
[2016/03/27 22:42:54 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ProximityCommon.dll
[2016/03/27 22:42:54 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winbio.dll
[2016/03/27 22:42:54 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\profext.dll
[2016/03/27 22:42:54 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthTokenBrokerExt.dll
[2016/03/27 22:42:54 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthManagerProxy.dll
[2016/03/27 22:42:54 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCoreRes.dll
[2016/03/27 22:42:54 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BackgroundTransferHost.exe
[2016/03/27 22:42:53 | 006,972,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Data.Pdf.dll
[2016/03/27 22:42:53 | 006,952,088 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2016/03/27 22:42:53 | 002,912,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CertEnroll.dll
[2016/03/27 22:42:53 | 002,680,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll
[2016/03/27 22:42:53 | 002,444,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll
[2016/03/27 22:42:53 | 002,057,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidsvc.dll
[2016/03/27 22:42:53 | 001,613,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diagtrack.dll
[2016/03/27 22:42:53 | 000,990,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll
[2016/03/27 22:42:53 | 000,870,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\modernexecserver.dll
[2016/03/27 22:42:53 | 000,828,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.AccountsControl.dll
[2016/03/27 22:42:53 | 000,703,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe
[2016/03/27 22:42:53 | 000,647,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll
[2016/03/27 22:42:53 | 000,625,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipSVC.dll
[2016/03/27 22:42:53 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.AccountsControl.dll
[2016/03/27 22:42:53 | 000,573,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qedit.dll
[2016/03/27 22:42:53 | 000,299,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-system-events.dll
[2016/03/27 22:42:53 | 000,297,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\thumbcache.dll
[2016/03/27 22:42:53 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceaccess.dll
[2016/03/27 22:42:53 | 000,274,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DisplayManager.dll
[2016/03/27 22:42:53 | 000,228,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceaccess.dll
[2016/03/27 22:42:53 | 000,224,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PackageStateRoaming.dll
[2016/03/27 22:42:53 | 000,204,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-AppModelExecEvents.dll
[2016/03/27 22:42:53 | 000,167,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProximityCommon.dll
[2016/03/27 22:42:53 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCensus.exe
[2016/03/27 22:42:53 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthBroker.dll
[2016/03/27 22:42:53 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dssvc.dll
[2016/03/27 22:42:53 | 000,141,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthHost.exe
[2016/03/27 22:42:53 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wshom.ocx
[2016/03/27 22:42:53 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManagerProxy.dll
[2016/03/27 22:42:53 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\profext.dll
[2016/03/27 22:42:53 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthTokenBrokerExt.dll
[2016/03/27 22:42:53 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BackgroundTransferHost.exe
[2016/03/27 22:42:52 | 006,740,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2016/03/27 22:42:52 | 001,860,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cdp.dll
[2016/03/27 22:42:52 | 001,804,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMALFXGFXDSP.dll
[2016/03/27 22:42:52 | 001,467,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2016/03/27 22:42:52 | 001,268,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Resources.dll
[2016/03/27 22:42:52 | 000,911,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dcomp.dll
[2016/03/27 22:42:52 | 000,675,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dcomp.dll
[2016/03/27 22:42:52 | 000,538,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2016/03/27 22:42:52 | 000,534,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS
[2016/03/27 22:42:52 | 000,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll
[2016/03/27 22:42:52 | 000,450,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Bluetooth.dll
[2016/03/27 22:42:52 | 000,394,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werui.dll
[2016/03/27 22:42:52 | 000,315,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Internal.Bluetooth.dll
[2016/03/27 22:42:52 | 000,238,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xboxgip.sys
[2016/03/27 22:42:52 | 000,220,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sqmapi.dll
[2016/03/27 22:42:52 | 000,141,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wermgr.exe
[2016/03/27 22:42:52 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\capimg.sys
[2016/03/27 22:42:52 | 000,095,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdstor.sys
[2016/03/27 22:42:52 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbser.sys
[2016/03/27 22:42:52 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cfgbkend.dll
[2016/03/27 22:42:52 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCoreRes.dll
[2016/03/27 22:25:53 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iisRtl.dll
[2016/03/27 22:25:53 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\admwprox.dll
[2016/03/27 22:25:53 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ahadmin.dll
[2016/03/27 22:25:53 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iisreset.exe
[2016/03/27 22:25:53 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wamregps.dll
[2016/03/27 22:25:53 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iisrstap.dll
[2016/03/27 22:25:50 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iisRtl.dll
[2016/03/27 22:25:50 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\admwprox.dll
[2016/03/27 22:25:50 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ahadmin.dll
[2016/03/27 22:25:50 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iisreset.exe
[2016/03/27 22:25:50 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wamregps.dll
[2016/03/27 22:25:50 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iisrstap.dll
[2016/03/27 22:24:07 | 001,956,472 | ---- | M] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2016/03/27 22:23:59 | 001,087,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll
[2016/03/27 22:23:59 | 000,304,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\systemreset.exe
[2016/03/27 22:18:12 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01011.Wdf
[2016/03/27 22:17:38 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin
[2016/03/19 17:37:18 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2016/04/13 17:47:54 | 002,656,952 | ---- | C] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll
[2016/04/13 17:47:18 | 001,862,008 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2016/04/13 17:43:56 | 000,235,008 | ---- | C] () -- C:\WINDOWS\SysNative\MTF.dll
[2016/04/13 17:43:55 | 000,162,816 | ---- | C] () -- C:\WINDOWS\SysWow64\MTF.dll
[2016/04/13 16:37:46 | 000,000,214 | ---- | C] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2016/04/13 16:12:26 | 000,013,376 | ---- | C] () -- C:\bootsqm.dat
[2016/04/12 17:19:05 | 000,000,837 | ---- | C] () -- C:\Users\Public\Desktop\Speccy.lnk
[2016/04/07 19:09:37 | 000,001,918 | ---- | C] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2016/04/03 16:26:33 | 002,174,464 | ---- | C] () -- C:\Users\jean-claude\ZHPDiag3.exe
[2016/04/03 16:07:40 | 000,000,917 | ---- | C] () -- C:\Users\jean-claude\Desktop\ZHPCleaner.lnk
[2016/04/02 18:46:45 | 000,000,766 | ---- | C] () -- C:\Users\jean-claude\Desktop\ZHPDiag.lnk
[2016/03/27 23:10:35 | 000,050,653 | ---- | C] () -- C:\WINDOWS\SysWow64\license.rtf
[2016/03/27 23:10:35 | 000,050,653 | ---- | C] () -- C:\WINDOWS\SysNative\license.rtf
[2016/03/27 22:47:52 | 1544,450,048 | -HS- | C] () -- C:\hiberfil.sys
[2016/03/27 22:43:43 | 000,001,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2016/03/27 22:43:02 | 000,260,608 | ---- | C] () -- C:\WINDOWS\SysNative\MTFServer.dll
[2016/03/27 22:25:34 | 000,000,352 | ---- | C] () -- C:\Users\jean-claude\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2016/03/27 22:25:34 | 000,000,334 | ---- | C] () -- C:\Users\jean-claude\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2016/03/27 22:24:17 | 002,049,398 | ---- | C] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2016/03/27 22:24:07 | 001,956,472 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2016/03/27 22:18:12 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01011.Wdf
[2016/03/27 22:17:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2016/03/27 22:13:58 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2016/03/27 22:12:07 | 000,203,328 | ---- | C] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2016/03/23 16:08:31 | 000,000,370 | ---- | C] () -- C:\WINDOWS\tasks\HPCeeScheduleForjean-claude.job
[2016/03/19 17:37:18 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2015/10/30 09:24:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2015/10/30 09:24:43 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2015/10/30 09:18:39 | 000,164,224 | ---- | C] () -- C:\WINDOWS\SysWow64\weretw.dll
[2015/10/30 09:18:36 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2015/10/30 09:18:36 | 000,047,104 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2015/10/30 09:18:34 | 000,019,968 | ---- | C] () -- C:\WINDOWS\SysWow64\GamePanelExternalHook.dll
[2015/10/30 09:18:31 | 000,252,928 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.Perception.Stub.dll
[2015/10/30 09:18:31 | 000,029,184 | ---- | C] () -- C:\WINDOWS\SysWow64\dtdump.exe
[2015/10/30 09:18:29 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2015/10/30 09:18:29 | 000,293,376 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll
[2015/10/30 09:18:26 | 000,022,528 | ---- | C] () -- C:\WINDOWS\SysWow64\efsext.dll
[2015/10/30 09:18:25 | 000,002,269 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2015/10/30 09:18:23 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2015/10/30 09:17:40 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2015/10/22 22:53:28 | 000,111,088 | ---- | C] () -- C:\WINDOWS\SysWow64\hsa-thunk.dll
[2015/10/22 22:53:14 | 000,204,952 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsvl.dat
[2015/10/22 22:53:14 | 000,157,144 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsva.dat
[2015/10/22 22:53:10 | 000,152,560 | ---- | C] () -- C:\WINDOWS\SysWow64\atieah32.exe
[2015/10/22 22:53:06 | 000,807,424 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_ld32.exe
[2015/10/22 22:53:03 | 001,004,024 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_as32.exe
[2015/10/22 22:52:53 | 000,198,632 | ---- | C] () -- C:\WINDOWS\SysWow64\amdgfxinfo32.dll
[2015/10/22 22:52:53 | 000,132,080 | ---- | C] () -- C:\WINDOWS\SysWow64\amdhdl32.dll
[2014/06/26 18:23:02 | 000,003,620 | ---- | C] () -- C:\WINDOWS\SysWow64\LOCALSERVICE.INI
[2014/06/26 18:23:02 | 000,000,043 | ---- | C] () -- C:\WINDOWS\SysWow64\LOCALDEVICE.INI

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2016/03/28 21:16:11 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2016/03/27 22:42:54 | 006,607,080 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2016/03/27 22:42:54 | 005,242,496 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2015/10/30 09:17:43 | 000,987,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2015/10/30 09:18:21 | 000,765,440 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2015/10/30 09:17:45 | 000,518,656 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== LOP Check ==========[/color]

[2016/03/27 22:44:08 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2016/03/27 22:44:08 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
[2015/08/10 20:50:06 | 000,000,000 | ---D | M] -- C:\Users\jean-claude\AppData\Roaming\library_dir
[2012/10/27 17:15:41 | 000,000,000 | ---D | M] -- C:\Users\jean-claude\AppData\Roaming\Synaptics
[2012/12/27 15:37:32 | 000,000,000 | ---D | M] -- C:\Users\jean-claude\AppData\Roaming\TuneUp Software
[2012/11/13 09:04:18 | 000,000,000 | ---D | M] -- C:\Users\jean-claude\AppData\Roaming\WildTangent
[2016/04/07 19:18:43 | 000,000,000 | ---D | M] -- C:\Users\jean-claude\AppData\Roaming\ZHP

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< MD5 for: AFD.SYS >[/color]
[2016/03/27 22:43:23 | 000,578,912 | ---- | M] (Microsoft Corporation) MD5=70148EFA9A562E7185B75BBE7D376BF7 -- C:\WINDOWS\SysNative\drivers\afd.sys
[2016/03/27 22:43:23 | 000,578,912 | ---- | M] (Microsoft Corporation) MD5=70148EFA9A562E7185B75BBE7D376BF7 -- C:\Windows\WinSxS\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_10.0.10586.3_none_646de09d08c449f6\afd.sys
[2015/10/30 09:18:03 | 000,579,424 | ---- | M] (Microsoft Corporation) MD5=F71FCE3C16F5B15FDD84580AA067C749 -- C:\Windows\WinSxS\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_10.0.10586.0_none_646ddaeb08c45281\afd.sys

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2015/10/30 09:18:10 | 004,502,864 | ---- | M] (Microsoft Corporation) MD5=4572EB3DDBD2DFA10DE7A037A6CC6D53 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10586.0_none_de3a3f6b2413a1f0\explorer.exe
[2015/10/30 09:18:36 | 004,064,320 | ---- | M] (Microsoft Corporation) MD5=7F46BC4C9DBAAA549629D6C677E417D6 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10586.0_none_e88ee9bd587463eb\explorer.exe
[2016/03/27 22:43:10 | 004,502,352 | ---- | M] (Microsoft Corporation) MD5=95D730526EF81792CD6848D8D10FAA1C -- C:\Windows\explorer.exe
[2016/03/27 22:43:10 | 004,502,352 | ---- | M] (Microsoft Corporation) MD5=95D730526EF81792CD6848D8D10FAA1C -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10586.104_none_beea9f69d8a18cd7\explorer.exe
[2016/03/27 22:43:21 | 004,064,320 | ---- | M] (Microsoft Corporation) MD5=FCBCED2A237DCD7EF86CED551B731742 -- C:\Windows\SysWOW64\explorer.exe
[2016/03/27 22:43:21 | 004,064,320 | ---- | M] (Microsoft Corporation) MD5=FCBCED2A237DCD7EF86CED551B731742 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_10.0.10586.104_none_c93f49bc0d024ed2\explorer.exe

[color=#A23BEC]< MD5 for: I8042PRT.SYS >[/color]
[2015/10/30 09:17:23 | 000,114,688 | ---- | M] (Microsoft Corporation) MD5=53FDD9E69189E546DE4740F8C4D8AB2F -- C:\WINDOWS\SysNative\drivers\i8042prt.sys
[2015/10/30 09:17:23 | 000,114,688 | ---- | M] (Microsoft Corporation) MD5=53FDD9E69189E546DE4740F8C4D8AB2F -- C:\WINDOWS\SysNative\DriverStore\FileRepository\keyboard.inf_amd64_3539a90f5703fafe\i8042prt.sys
[2015/10/30 09:17:25 | 000,114,688 | ---- | M] (Microsoft Corporation) MD5=53FDD9E69189E546DE4740F8C4D8AB2F -- C:\Windows\WinSxS\amd64_dual_keyboard.inf_31bf3856ad364e35_10.0.10586.0_none_98ad1edae3f4b35e\i8042prt.sys
[2015/10/30 09:17:23 | 000,114,688 | ---- | M] (Microsoft Corporation) MD5=53FDD9E69189E546DE4740F8C4D8AB2F -- C:\Windows\WinSxS\amd64_keyboard.inf_31bf3856ad364e35_10.0.10586.0_none_23d4063183501faf\i8042prt.sys

[color=#A23BEC]< MD5 for: LSASS.EXE >[/color]
[2015/10/30 09:18:03 | 000,057,912 | ---- | M] (Microsoft Corporation) MD5=889459F1FDDC5EC58B437AA6C436F33F -- C:\WINDOWS\SysNative\lsass.exe
[2015/10/30 09:18:03 | 000,057,912 | ---- | M] (Microsoft Corporation) MD5=889459F1FDDC5EC58B437AA6C436F33F -- C:\Windows\WinSxS\amd64_microsoft-windows-lsa-minwin_31bf3856ad364e35_10.0.10586.0_none_c9f139f63ca59a50\lsass.exe

[color=#A23BEC]< MD5 for: NETBT.SYS >[/color]
[2015/10/30 09:18:08 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=F51C02D992A8D6BC5EC4D990F227D4C7 -- C:\WINDOWS\SysNative\drivers\netbt.sys
[2015/10/30 09:18:08 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=F51C02D992A8D6BC5EC4D990F227D4C7 -- C:\Windows\WinSxS\amd64_microsoft-windows-netbt-minwin_31bf3856ad364e35_10.0.10586.0_none_7832199a8236f90f\netbt.sys

[color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color]
[2015/10/30 09:18:25 | 000,037,256 | ---- | M] (Microsoft Corporation) MD5=6A1212077C0559029CDFB9C39580C835 -- C:\Windows\SysWOW64\svchost.exe
[2015/10/30 09:18:25 | 000,037,256 | ---- | M] (Microsoft Corporation) MD5=6A1212077C0559029CDFB9C39580C835 -- C:\Windows\WinSxS\wow64_microsoft-windows-services-svchost_31bf3856ad364e35_10.0.10586.0_none_4c959c4be405b311\svchost.exe
[2015/10/30 09:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) MD5=8497852ED44AFF902D502015792D315D -- C:\WINDOWS\SysNative\svchost.exe
[2015/10/30 09:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) MD5=8497852ED44AFF902D502015792D315D -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_10.0.10586.0_none_4240f1f9afa4f116\svchost.exe
[2015/10/05 10:48:32 | 000,893,752 | ---- | M] (MalwareBytes) MD5=E9A75E4B409A01E52055CE7CCA7FF925 -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\svchost.exe

[color=#A23BEC]< MD5 for: TCPIP.SYS >[/color]
[2016/03/29 10:26:06 | 002,403,680 | ---- | M] (Microsoft Corporation) MD5=083A727D784009F9CCFB120C7841B7AF -- C:\WINDOWS\SysNative\drivers\tcpip.sys
[2016/03/29 10:26:06 | 002,403,680 | ---- | M] (Microsoft Corporation) MD5=083A727D784009F9CCFB120C7841B7AF -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-driver_31bf3856ad364e35_10.0.10586.212_none_4521af6f161d9e99\tcpip.sys
[2015/10/30 09:18:03 | 002,403,680 | ---- | M] (Microsoft Corporation) MD5=892F30506DCCF230C5A57019C1D8D31B -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-driver_31bf3856ad364e35_10.0.10586.0_none_647e1e0a6185cd48\tcpip.sys

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2015/10/30 09:17:53 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=8F3ECCB5DC878FA14887B43CD148CBA9 -- C:\WINDOWS\SysNative\userinit.exe
[2015/10/30 09:17:53 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=8F3ECCB5DC878FA14887B43CD148CBA9 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_10.0.10586.0_none_68ae526e7c072b3c\userinit.exe
[2015/10/30 09:18:26 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A878CF325C93723B5017642E6FDB80E8 -- C:\Windows\SysWOW64\userinit.exe
[2015/10/30 09:18:26 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A878CF325C93723B5017642E6FDB80E8 -- C:\Windows\WinSxS\wow64_microsoft-windows-userinit_31bf3856ad364e35_10.0.10586.0_none_7302fcc0b067ed37\userinit.exe

[color=#A23BEC]< MD5 for: VOLSNAP.SYS >[/color]
[2015/10/30 09:17:22 | 000,414,560 | ---- | M] (Microsoft Corporation) MD5=E1F91A727A04C9F8199D04FF3BBBF63C -- C:\WINDOWS\SysNative\drivers\volsnap.sys
[2015/10/30 09:17:22 | 000,414,560 | ---- | M] (Microsoft Corporation) MD5=E1F91A727A04C9F8199D04FF3BBBF63C -- C:\WINDOWS\SysNative\DriverStore\FileRepository\volume.inf_amd64_910e4cc912bf5a43\volsnap.sys
[2015/10/30 09:17:22 | 000,414,560 | ---- | M] (Microsoft Corporation) MD5=E1F91A727A04C9F8199D04FF3BBBF63C -- C:\Windows\WinSxS\amd64_volume.inf_31bf3856ad364e35_10.0.10586.0_none_a23c4fd9a66c2dfe\volsnap.sys

[color=#A23BEC]< MD5 for: WININIT.EXE >[/color]
[2015/10/30 09:17:53 | 000,290,856 | ---- | M] (Microsoft Corporation) MD5=CAD491DD9EC00BB841EA407D9C498C4A -- C:\WINDOWS\SysNative\wininit.exe
[2015/10/30 09:17:53 | 000,290,856 | ---- | M] (Microsoft Corporation) MD5=CAD491DD9EC00BB841EA407D9C498C4A -- C:\Windows\WinSxS\amd64_microsoft-windows-wininit_31bf3856ad364e35_10.0.10586.0_none_bd785127aea7d9d3\wininit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2015/10/30 09:17:53 | 000,584,704 | ---- | M] (Microsoft Corporation) MD5=46C8E60DEDBDA95C102D1B2E74676578 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10586.0_none_fc48996f7f48af26\winlogon.exe
[2016/03/27 22:43:09 | 000,584,704 | ---- | M] (Microsoft Corporation) MD5=7B24B823404D53DA4748F21AD2BF04C9 -- C:\WINDOWS\SysNative\winlogon.exe
[2016/03/27 22:43:09 | 000,584,704 | ---- | M] (Microsoft Corporation) MD5=7B24B823404D53DA4748F21AD2BF04C9 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_10.0.10586.63_none_f3dc0aaa859f8abd\winlogon.exe
[2015/10/05 10:48:32 | 000,893,752 | ---- | M] (MalwareBytes) MD5=E9A75E4B409A01E52055CE7CCA7FF925 -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe

[color=#A23BEC]< %APPDATA%\*.exe /s >[/color]
[2016/04/03 16:07:33 | 002,108,928 | ---- | M] () -- C:\Users\jean-claude\AppData\Roaming\ZHP\ZHPCleaner.exe
[2016/04/03 16:26:19 | 002,171,904 | ---- | M] () -- C:\Users\jean-claude\AppData\Roaming\ZHP\ZHPDiag3.exe

[color=#A23BEC]< %APPDATA%\Adobe\Update\*.* >[/color]

[color=#A23BEC]< %APPDATA%\Update\*.* >[/color]

[color=#A23BEC]< %APPDATA%\Microsoft\*.* >[/color]

[color=#A23BEC]< %ALLUSERSPROFILE%\Favorites\*.* >[/color]

[color=#A23BEC]< %ALLUSERSPROFILE%\*.* >[/color]

[color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
[2012/07/26 05:44:30 | 000,398,156 | RHS- | M] () -- C:\bootmgr
[2015/10/30 09:18:34 | 000,000,001 | -HS- | M] () -- C:\BOOTNXT
[2012/08/04 01:21:37 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2016/04/13 16:12:26 | 000,013,376 | ---- | M] () -- C:\bootsqm.dat
[2016/04/15 12:53:13 | 1544,450,048 | -HS- | M] () -- C:\hiberfil.sys
[2016/04/14 19:03:08 | 671,088,640 | -HS- | M] () -- C:\pagefile.sys
[2016/04/14 19:03:08 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys

[color=#A23BEC]< %PROGRAMFILES%\*.* >[/color]
[2015/10/30 09:21:27 | 000,000,174 | -HS- | M] () -- C:\Program Files (x86)\desktop.ini

[color=#A23BEC]< %PROGRAMFILES%\Internet Explorer\*.* >[/color]
[2015/10/30 09:19:38 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ExtExport.exe
[2015/10/30 09:19:39 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\hmmapi.dll
[2015/10/30 09:19:39 | 000,002,963 | ---- | M] () -- C:\Program Files (x86)\Internet Explorer\ie9props.propdesc
[2015/10/30 09:19:39 | 000,475,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ieinstal.exe
[2015/10/30 09:19:39 | 000,221,696 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
[2015/10/30 09:19:39 | 000,323,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\IEShims.dll
[2016/03/27 22:43:23 | 000,820,416 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
[2016/03/27 22:43:23 | 000,220,064 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\sqmapi.dll

[color=#A23BEC]< %USERPROFILE%\*.* >[/color]
[2016/04/14 19:09:33 | 001,835,008 | -HS- | M] () -- C:\Users\jean-claude\NTUSER.DAT
[2016/03/27 22:25:34 | 000,468,992 | -HS- | M] () -- C:\Users\jean-claude\ntuser.dat.LOG1
[2016/03/27 22:25:34 | 000,028,672 | -HS- | M] () -- C:\Users\jean-claude\ntuser.dat.LOG2
[2016/04/13 19:20:20 | 000,065,536 | -HS- | M] () -- C:\Users\jean-claude\NTUSER.DAT{6c444bce-f460-11e5-89ce-b628b5c34259}.TM.blf
[2016/04/13 19:20:20 | 000,524,288 | -HS- | M] () -- C:\Users\jean-claude\NTUSER.DAT{6c444bce-f460-11e5-89ce-b628b5c34259}.TMContainer00000000000000000001.regtrans-ms
[2016/03/27 22:25:35 | 000,524,288 | -HS- | M] () -- C:\Users\jean-claude\NTUSER.DAT{6c444bce-f460-11e5-89ce-b628b5c34259}.TMContainer00000000000000000002.regtrans-ms
[2016/03/27 23:13:35 | 000,000,020 | -HS- | M] () -- C:\Users\jean-claude\ntuser.ini
[2016/04/03 16:26:33 | 002,174,464 | ---- | M] () -- C:\Users\jean-claude\ZHPDiag3.exe

[color=#A23BEC]< %Temp%\smtmp\1\*.* >[/color]

[color=#A23BEC]< %Temp%\smtmp\2\*.* >[/color]

[color=#A23BEC]< %Temp%\smtmp\3\*.* >[/color]

[color=#A23BEC]< %Temp%\smtmp\4\*.* >[/color]

[color=#A23BEC]< %USERPROFILE%\Local Settings\Temp\*.exe >[/color]

[color=#A23BEC]< %USERPROFILE%\Local Settings\Temp\*.dll >[/color]

[color=#A23BEC]< %USERPROFILE%\Application Data\*.exe >[/color]

[color=#A23BEC]< %systemroot%\system32\DBBK\*.* /s >[/color]

[color=#A23BEC]< %systemroot%\system32\config\systemprofile\*.* >[/color]

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\*.exe /90 >[/color]
[2016/03/27 22:43:10 | 004,502,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /90 >[/color]
[2016/03/29 08:41:39 | 000,129,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AboveLockAppHost.dll
[2016/03/29 08:43:29 | 000,358,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AccountsRt.dll
[2016/03/27 22:43:13 | 001,707,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ActiveSyncProvider.dll
[2016/04/02 05:08:48 | 002,193,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\actxprxy.dll
[2016/03/27 22:25:50 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\admwprox.dll
[2016/03/27 22:42:53 | 000,499,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
[2016/03/27 22:25:50 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ahadmin.dll
[2016/03/27 22:43:53 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AppCapture.dll
[2016/03/27 22:43:02 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AppointmentActivation.dll
[2016/03/27 22:43:02 | 000,552,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AppointmentApis.dll
[2016/03/27 22:43:13 | 000,187,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AppxAllUserStore.dll
[2016/03/27 22:42:54 | 000,342,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AppXDeploymentClient.dll
[2016/03/27 22:43:53 | 000,890,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AppxPackaging.dll
[2016/03/27 22:42:54 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AppxSip.dll
[2016/03/27 22:43:13 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\asycfilt.dll
[2016/03/29 09:02:14 | 000,303,104 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\atmfd.dll
[2016/03/29 09:19:30 | 000,037,376 | ---- | M] (Adobe Systems) -- C:\WINDOWS\system32\atmlib.dll
[2016/03/27 22:43:50 | 000,454,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AudioEng.dll
[2016/03/27 22:43:50 | 000,366,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AUDIOKSE.dll
[2016/03/27 22:43:50 | 000,405,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\AudioSes.dll
[2016/03/27 22:43:21 | 002,155,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\authui.dll
[2016/03/27 22:43:53 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\bcastdvr.proxy.dll
[2016/03/29 07:49:21 | 005,202,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\BingMaps.dll
[2016/03/27 22:43:02 | 000,709,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\BingOnlineServices.dll
[2016/03/29 09:11:45 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browcli.dll
[2016/03/27 22:43:02 | 000,129,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\CallHistoryClient.dll
[2016/03/27 22:43:13 | 000,415,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\catsrvut.dll
[2016/03/27 22:42:52 | 001,860,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cdp.dll
[2016/03/27 22:43:02 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cemapi.dll
[2016/03/27 22:42:54 | 002,604,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\CertEnroll.dll
[2016/03/27 22:42:52 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cfgbkend.dll
[2016/03/29 07:27:32 | 005,662,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Chakra.dll
[2016/03/27 22:43:02 | 000,540,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ChatApis.dll
[2016/03/27 22:43:01 | 001,824,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\combase.dll
[2016/03/27 22:43:13 | 001,328,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comsvcs.dll
[2016/03/27 22:43:02 | 000,769,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ContactApis.dll
[2016/03/29 11:37:57 | 001,862,008 | ---- | M] () -- C:\WINDOWS\system32\CoreUIComponents.dll
[2016/03/29 08:39:35 | 000,350,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\CredProvDataModel.dll
[2016/03/29 08:53:32 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\credprovhost.dll
[2016/03/27 22:43:02 | 000,241,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptngc.dll
[2016/03/27 22:43:01 | 004,759,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d2d1.dll
[2016/03/27 22:43:01 | 002,186,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d11.dll
[2016/03/27 22:42:53 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dciman32.dll
[2016/03/27 22:42:52 | 000,675,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dcomp.dll
[2016/03/27 22:42:53 | 000,228,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\deviceaccess.dll
[2016/03/27 22:42:54 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DisplayManager.dll
[2016/03/29 11:28:54 | 000,535,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dnsapi.dll
[2016/03/29 08:05:44 | 001,626,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dwmcore.dll
[2016/03/27 22:43:01 | 000,523,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dxgi.dll
[2016/03/29 08:52:01 | 000,141,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\easwrt.dll
[2016/03/29 07:38:50 | 018,673,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\edgehtml.dll
[2016/03/27 22:43:02 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\EditBufferTestHook.dll
[2016/03/27 22:43:02 | 000,575,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\EmailApis.dll
[2016/03/29 07:36:49 | 002,722,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\esent.dll
[2016/03/27 22:43:01 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
[2016/03/27 22:43:30 | 000,652,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\evr.dll
[2016/03/27 22:43:21 | 004,412,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ExplorerFrame.dll
[2016/03/27 22:43:02 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ExSMime.dll
[2016/03/27 22:43:02 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ExtrasXmlParser.dll
[2016/03/27 22:43:47 | 000,369,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\FirewallAPI.dll
[2016/03/29 09:16:09 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fontsub.dll
[2016/03/27 22:43:47 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fwbase.dll
[2016/03/27 22:43:47 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fwpolicyiomgr.dll
[2016/03/29 07:25:30 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\FWPUCLNT.DLL
[2016/03/27 22:43:02 | 001,371,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
[2016/03/27 22:42:52 | 001,467,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\GdiPlus.dll
[2016/03/27 22:42:53 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hlink.dll
[2016/03/27 22:43:13 | 000,203,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iassam.dll
[2016/03/27 22:43:27 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iedkcs32.dll
[2016/03/29 07:41:27 | 012,125,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ieframe.dll
[2016/03/29 08:52:16 | 000,306,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ieproxy.dll
[2016/03/27 22:43:48 | 002,919,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iertutil.dll
[2016/03/27 22:25:50 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iisrstap.dll
[2016/03/27 22:25:50 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iisRtl.dll
[2016/03/29 08:27:04 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\InputLocaleManager.dll
[2016/03/29 08:28:13 | 001,944,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\InputService.dll
[2016/03/29 08:38:55 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\JpMapControl.dll
[2016/03/27 22:42:53 | 000,647,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\jscript.dll
[2016/03/27 22:43:27 | 003,666,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\jscript9.dll
[2016/03/29 09:12:14 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\jsproxy.dll
[2016/03/29 08:37:47 | 000,792,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kerberos.dll
[2016/03/27 22:43:23 | 001,557,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\KernelBase.dll
[2016/03/29 11:13:11 | 000,986,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\LicenseManager.dll
[2016/03/27 22:43:21 | 000,421,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\LogonController.dll
[2016/03/27 22:42:53 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lpk.dll
[2016/03/29 08:48:08 | 000,346,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MapConfiguration.dll
[2016/03/29 08:34:33 | 000,711,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MapControlCore.dll
[2016/03/27 22:43:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MapControlStringsRes.dll
[2016/03/29 09:09:47 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MapsBtSvc.dll
[2016/03/27 22:43:02 | 000,470,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MbaeApi.dll
[2016/03/27 22:43:53 | 000,480,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MCRecvSrc.dll
[2016/03/29 08:06:46 | 000,151,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mdmregistration.dll
[2016/03/29 08:44:25 | 000,498,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MessagingDataModel2.dll
[2016/03/27 22:43:02 | 000,511,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mf.dll
[2016/03/27 22:43:51 | 000,980,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfasfsrcsnk.dll
[2016/03/27 22:43:51 | 000,450,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MFCaptureEngine.dll
[2016/03/27 22:43:51 | 002,180,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfcore.dll
[2016/03/27 22:43:51 | 000,670,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfds.dll
[2016/03/27 22:43:51 | 002,061,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MFMediaEngine.dll
[2016/03/27 22:43:51 | 000,379,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfmkvsrcsnk.dll
[2016/03/27 22:43:52 | 000,882,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfmp4srcsnk.dll
[2016/03/27 22:43:51 | 000,713,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
[2016/03/27 22:43:51 | 000,701,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfnetcore.dll
[2016/03/27 22:43:51 | 001,118,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfnetsrc.dll
[2016/03/27 22:43:52 | 000,925,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfplat.dll
[2016/03/27 22:43:30 | 000,289,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MFPlay.dll
[2016/03/27 22:43:51 | 000,116,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfps.dll
[2016/03/27 22:43:51 | 000,462,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfreadwrite.dll
[2016/03/27 22:43:51 | 000,895,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfsrcsnk.dll
[2016/03/27 22:43:51 | 000,709,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfsvr.dll
[2016/03/27 22:43:51 | 000,208,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mftranscode.dll
[2016/03/27 22:43:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
[2016/03/27 22:43:02 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
[2016/03/27 22:43:02 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
[2016/03/29 08:00:50 | 006,297,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mos.dll
[2016/03/27 22:43:02 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MosHostClient.dll
[2016/03/27 22:43:02 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MosResource.dll
[2016/03/29 09:11:27 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MosStorage.dll
[2016/03/27 22:43:52 | 000,100,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MP3DMOD.DLL
[2016/03/27 22:42:52 | 001,174,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll
[2016/03/27 22:43:26 | 000,687,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msfeeds.dll
[2016/03/27 22:43:52 | 000,266,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSFlacDecoder.dll
[2016/03/27 22:42:53 | 002,680,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msftedit.dll
[2016/03/29 07:37:38 | 019,340,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mshtml.dll
[2016/03/29 08:10:14 | 003,671,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msi.dll
[2016/03/27 22:43:53 | 000,871,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSMPEG2ENC.DLL
[2016/03/29 09:30:14 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msorcl32.dll
[2016/03/27 22:43:13 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mssign32.dll
[2016/03/29 08:23:37 | 000,777,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
[2016/03/27 22:42:52 | 006,740,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mstscax.dll
[2016/03/29 10:24:25 | 000,294,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msv1_0.dll
[2016/03/27 22:43:51 | 000,420,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvproc.dll
[2016/03/29 08:32:17 | 001,588,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msxml3.dll
[2016/03/27 22:42:53 | 002,026,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msxml6.dll
[2016/03/29 08:27:01 | 000,162,816 | ---- | M] () -- C:\WINDOWS\system32\MTF.dll
[2016/03/29 09:08:39 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mtxoci.dll
[2016/03/29 10:23:00 | 000,069,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netapi32.dll
[2016/03/27 22:43:01 | 000,713,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netlogon.dll
[2016/03/29 10:44:50 | 000,084,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NetSetupApi.dll
[2016/03/29 10:44:53 | 000,502,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NetSetupEngine.dll
[2016/03/29 08:35:26 | 000,354,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NetSetupShim.dll
[2016/03/29 08:34:54 | 000,784,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NMAA.dll
[2016/03/27 22:43:02 | 000,205,824 | ---- | M] (Nokia) -- C:\WINDOWS\system32\NmaDirect.dll
[2016/04/02 05:25:58 | 000,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NotificationObjFactory.dll
[2016/03/27 22:43:23 | 001,542,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
[2016/03/27 22:43:01 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\offlinelsa.dll
[2016/03/27 22:43:13 | 000,957,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
[2016/03/29 08:53:31 | 000,323,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleacc.dll
[2016/03/29 09:19:39 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleacchooks.dll
[2016/03/27 22:43:13 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
[2016/03/29 09:05:30 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
[2016/03/27 22:42:54 | 000,184,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PackageStateRoaming.dll
[2016/03/27 22:43:02 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
[2016/03/27 22:43:02 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
[2016/03/27 22:43:52 | 000,340,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PlayToDevice.dll
[2016/03/27 22:43:52 | 000,517,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PlayToManager.dll
[2016/03/29 11:19:37 | 000,296,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\policymanager.dll
[2016/03/27 22:43:02 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\POSyncServices.dll
[2016/03/27 22:42:54 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\profext.dll
[2016/03/27 22:42:54 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ProximityCommon.dll
[2016/03/27 22:43:53 | 000,569,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qdvd.dll
[2016/03/27 22:42:53 | 000,573,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qedit.dll
[2016/03/27 22:43:53 | 001,542,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\quartz.dll
[2016/03/27 22:43:21 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasadhlp.dll
[2016/03/27 22:43:21 | 000,653,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasapi32.dll
[2016/03/27 22:43:21 | 000,799,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasdlg.dll
[2016/03/27 22:43:13 | 000,535,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastls.dll
[2016/03/27 22:43:13 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastlsext.dll
[2016/03/27 22:43:50 | 000,073,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\remoteaudioendpoint.dll
[2016/03/29 07:25:01 | 000,712,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
[2016/03/29 09:11:58 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
[2016/03/27 22:43:01 | 000,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schannel.dll
[2016/03/27 22:43:30 | 000,273,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\SensorsApi.dll
[2016/03/29 10:41:44 | 000,051,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\SensorsNativeApi.dll
[2016/03/29 09:20:33 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
[2016/03/27 22:43:53 | 000,503,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\SettingSync.dll
[2016/03/27 22:42:54 | 000,754,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\SettingSyncCore.dll
[2016/03/27 22:43:21 | 021,124,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
[2016/03/27 22:43:21 | 000,129,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\SimAuth.dll
[2016/03/27 22:43:21 | 000,157,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\SimCfg.dll
[2016/03/27 22:42:52 | 000,220,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sqmapi.dll
[2016/03/29 08:37:09 | 000,799,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\SRH.dll
[2016/03/29 08:37:45 | 001,444,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\SRHInproc.dll
[2016/03/29 10:26:48 | 000,073,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srvcli.dll
[2016/03/29 08:56:21 | 000,415,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\StoreAgent.dll
[2016/03/29 08:05:20 | 000,450,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\SyncController.dll
[2016/03/27 22:43:13 | 000,572,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\taskschd.dll
[2016/03/29 09:09:56 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tbauth.dll
[2016/03/29 08:27:11 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\TextInputFramework.dll
[2016/03/27 22:42:54 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\thumbcache.dll
[2016/03/27 22:43:13 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\TimeBrokerClient.dll
[2016/03/29 08:22:58 | 000,638,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\TokenBroker.dll
[2016/03/27 22:42:54 | 002,001,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\twinui.appcore.dll
[2016/03/29 07:51:55 | 009,918,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\twinui.dll
[2016/03/29 08:30:31 | 001,139,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\UIAutomationCore.dll
[2016/03/27 22:42:52 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\UIAutomationCoreRes.dll
[2016/03/27 22:43:02 | 000,949,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Unistore.dll
[2016/03/27 22:43:13 | 000,558,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uReFS.dll
[2016/03/29 08:05:14 | 001,500,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\urlmon.dll
[2016/03/27 22:43:02 | 001,337,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
[2016/03/27 22:43:02 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\UserDataAccountApis.dll
[2016/03/27 22:43:02 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\UserDataLanguageUtil.dll
[2016/03/27 22:43:02 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
[2016/03/27 22:43:02 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\UserDataTimeUtil.dll
[2016/03/27 22:43:02 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
[2016/03/27 22:43:13 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usermgrcli.dll
[2016/03/27 22:43:13 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\UserMgrProxy.dll
[2016/03/27 22:42:53 | 000,503,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\vbscript.dll
[2016/03/27 22:43:02 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\VCardParser.dll
[2016/04/02 05:29:29 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\VEDataLayerHelpers.dll
[2016/04/02 05:23:44 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\VEEventDispatcher.dll
[2016/03/27 22:25:50 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wamregps.dll
[2016/03/27 22:42:52 | 000,538,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wer.dll
[2016/03/27 22:42:52 | 000,394,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\werui.dll
[2016/03/27 22:43:47 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wfapigp.dll
[2016/03/27 22:43:13 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WiFiDisplay.dll
[2016/03/27 22:43:13 | 000,586,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wimgapi.dll
[2016/03/27 22:42:54 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winbio.dll
[2016/03/27 22:42:53 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.AccountsControl.dll
[2016/03/29 08:36:46 | 000,649,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
[2016/03/29 08:42:33 | 000,250,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
[2016/03/27 22:42:54 | 005,321,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Data.Pdf.dll
[2016/03/29 08:32:57 | 000,854,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
[2016/03/27 22:43:53 | 000,168,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
[2016/03/27 22:42:52 | 000,315,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
[2016/03/27 22:43:51 | 001,105,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Media.Audio.dll
[2016/03/29 09:04:15 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Media.Devices.dll
[2016/03/29 07:38:54 | 002,798,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Media.dll
[2016/03/27 22:43:53 | 000,287,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
[2016/03/27 22:42:53 | 006,952,088 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
[2016/03/29 08:31:44 | 001,117,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Media.Speech.dll
[2016/03/27 22:43:21 | 000,683,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
[2016/03/29 07:43:27 | 000,521,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
[2016/03/29 08:32:43 | 000,638,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Networking.dll
[2016/03/29 08:39:19 | 000,496,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
[2016/03/27 22:42:54 | 005,242,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\windows.storage.dll
[2016/03/29 08:27:14 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
[2016/03/29 08:28:10 | 000,764,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.UI.Cred.dll
[2016/03/27 22:42:52 | 000,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.UI.dll
[2016/03/29 08:34:56 | 000,682,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
[2016/03/29 07:58:57 | 001,799,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.UI.Logon.dll
[2016/03/29 08:01:28 | 013,018,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.UI.Xaml.dll
[2016/03/27 22:42:52 | 001,268,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
[2016/03/29 08:13:06 | 000,592,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Web.dll
[2016/03/29 08:14:22 | 001,072,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Web.Http.dll
[2016/03/27 22:43:01 | 000,613,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winhttp.dll
[2016/03/27 22:43:01 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winhttpcom.dll
[2016/03/29 08:02:15 | 002,229,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wininet.dll
[2016/03/29 09:12:15 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wininetlui.dll
[2016/03/27 22:43:01 | 000,820,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WinTypes.dll
[2016/03/29 10:25:44 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wkscli.dll
[2016/03/27 22:43:13 | 000,510,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wlidcli.dll
[2016/03/27 22:43:52 | 000,695,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WMADMOD.DLL
[2016/03/27 22:43:29 | 012,586,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wmp.dll
[2016/03/27 22:43:53 | 000,890,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WMSPDMOD.DLL
[2016/03/27 22:43:52 | 001,070,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WMSPDMOE.DLL
[2016/03/27 22:43:02 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WordBreakers.dll
[2016/03/27 22:43:47 | 000,572,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WpcWebFilter.dll
[2016/03/29 08:39:53 | 000,564,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WSDApi.dll
[2016/03/29 09:20:34 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsdchngr.dll
[2016/03/29 08:31:23 | 000,705,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuapi.dll
[2016/03/27 22:43:13 | 000,431,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WWanAPI.dll
[2016/03/27 22:43:13 | 000,063,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wwapi.dll
[2016/03/27 22:42:54 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\XblAuthManagerProxy.dll
[2016/03/27 22:42:54 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
[2016/03/27 22:43:02 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ztrace_maps.dll

[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /90 >[/color]

[color=#A23BEC]< %systemroot%\system32\*.exe /90 >[/color]
[2016/03/27 22:42:54 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\BackgroundTransferHost.exe
[2016/03/27 22:43:53 | 000,334,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\bcastdvr.exe
[2016/03/27 22:43:21 | 004,064,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\explorer.exe
[2016/04/06 20:32:08 | 000,829,944 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerApp.exe
[2016/03/29 10:01:15 | 000,541,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fontdrvhost.exe
[2016/03/27 22:25:50 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iisreset.exe
[2016/03/29 09:11:44 | 000,161,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\InstallAgent.exe
[2016/03/27 22:43:21 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\LaunchWinApp.exe
[2016/03/29 10:32:59 | 000,253,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\LockAppHost.exe
[2016/03/27 22:43:02 | 000,032,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfpmp.exe
[2016/03/27 22:43:21 | 000,081,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\OpenWith.exe
[2016/03/27 22:43:13 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pcaui.exe
[2016/03/27 22:43:21 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasautou.exe
[2016/03/29 09:06:55 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\TokenBrokerCookies.exe
[2016/03/27 22:42:52 | 000,141,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wermgr.exe
[2016/03/27 22:43:30 | 001,497,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WMPDMC.exe
[2016/03/27 22:42:53 | 000,703,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WWAHost.exe

[color=#A23BEC]< %systemroot%\system32\config\*.sav >[/color]

[color=#A23BEC]< %systemroot%\system32\spool\prtprocs\w32x86\*.* >[/color]

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\assembly\tmp\*.* /S /MD5 >[/color]

[color=#A23BEC]< %systemroot%\assembly\GAC_32\*.* /S /MD5 >[/color]
[2015/10/23 18:47:02 | 000,069,120 | ---- | M] () MD5=07BFC869DA465C1A747A352477D24935 -- C:\WINDOWS\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
[2016/03/27 22:29:19 | 000,014,136 | ---- | M] () MD5=25CC2E52B72FA4CB0AB706EE764FD91E -- C:\WINDOWS\assembly\GAC_32\HP.SupportAssistant\7.0.1.1__ff8a51a3dda870ab\HP.SupportAssistant.dll
[2015/10/23 18:47:02 | 000,072,192 | ---- | M] () MD5=44A88FCF142A50D0066B92EB72368EF1 -- C:\WINDOWS\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
[2015/10/30 09:19:56 | 000,507,904 | ---- | M] () MD5=8F7A8F48CA3F7C823D964F97BB3E4994 -- C:\WINDOWS\assembly\GAC_32\Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Microsoft.Ink.dll
[2015/10/30 09:18:26 | 000,077,824 | ---- | M] () MD5=995990C6CACC5B50900A0481D29DFDE7 -- C:\WINDOWS\assembly\GAC_32\Microsoft.Interop.Security.AzRoles\2.0.0.0__31bf3856ad364e35\Microsoft.Interop.Security.AzRoles.dll
[2016/03/27 22:25:36 | 000,163,840 | ---- | M] () MD5=0E65372FDE28B5EC730AD74CEEC93E5A -- C:\WINDOWS\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
[2015/10/23 18:45:36 | 000,088,720 | ---- | M] () MD5=524403E17E52C17F8A9BA1CD0E023D3C -- C:\WINDOWS\assembly\GAC_32\MSBuild\3.5.0.0__b03f5f7f11d50a3a\MSBuild.exe
[2015/03/30 18:36:50 | 000,001,581 | ---- | M] () MD5=1EA3E30080C0E256C2EF0C621E91C345 -- C:\WINDOWS\assembly\GAC_32\MSBuild\3.5.0.0__b03f5f7f11d50a3a\msbuild.exe.config
[2015/03/30 18:36:26 | 000,066,728 | ---- | M] () MD5=C01B81BB10AD14DBC5C4ECD350638096 -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\big5.nlp
[2015/03/30 18:36:26 | 000,082,172 | ---- | M] () MD5=EE1F60F8774D74BED8B13498F3FE737A -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\bopomofo.nlp
[2015/03/30 18:36:26 | 000,116,756 | ---- | M] () MD5=F6DFDA5A31162D848634504565F6D321 -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\ksc.nlp
[2016/03/24 04:20:48 | 004,554,752 | ---- | M] () MD5=3152FDE604C0AFAF2419242B303A9BF2 -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
[2015/10/30 09:19:56 | 000,059,342 | ---- | M] () MD5=DA5748A89E22A3932387E65694B25BBB -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\normidna.nlp
[2015/03/30 18:36:28 | 000,045,794 | ---- | M] () MD5=3831A5E217D6FA828CCE1011DA26E677 -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\normnfc.nlp
[2015/03/30 18:36:28 | 000,039,284 | ---- | M] () MD5=DBDE664E0BA4BACD0A6A04AE2232B205 -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\normnfd.nlp
[2015/03/30 18:36:28 | 000,066,384 | ---- | M] () MD5=C9B88B759FE81D59CE8EBF5A0A8EB75A -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\normnfkc.nlp
[2015/03/30 18:36:28 | 000,060,294 | ---- | M] () MD5=3CAB6AB66759FCDF73B61EE262C9ACF4 -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\normnfkd.nlp
[2015/03/30 18:36:28 | 000,083,748 | ---- | M] () MD5=54144F43EDF5AA8F504A30E7C1D1A7B5 -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\prc.nlp
[2015/03/30 18:36:28 | 000,083,748 | ---- | M] () MD5=901863C68E6523336CAC602FE9320ABC -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\prcp.nlp
[2015/03/30 18:36:28 | 000,262,148 | ---- | M] () MD5=FB59D247F7143C3B9683A547E808A88B -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\sortkey.nlp
[2015/03/30 18:36:28 | 000,020,320 | ---- | M] () MD5=FF13BA175F0013D2311827E0D438C60B -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\sorttbls.nlp
[2015/03/30 18:36:28 | 000,028,288 | ---- | M] () MD5=09E420F90A329BDA68477FA4AF43CB28 -- C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\xjis.nlp
[2016/03/24 04:20:51 | 004,222,976 | ---- | M] () MD5=F84B9BC068B3756236B23DF9B0E95A94 -- C:\WINDOWS\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
[2015/03/30 18:37:48 | 000,000,161 | ---- | M] () MD5=C0856EC51C8C75B8FDF02C1BBCFE7B93 -- C:\WINDOWS\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationFontCache.exe.config
[2016/03/24 04:20:51 | 001,737,888 | ---- | M] () MD5=8280F12A51369AC436F2F9C210290067 -- C:\WINDOWS\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\wpfgfx_v0300.dll
[2015/10/23 18:47:06 | 000,487,424 | ---- | M] () MD5=0F9FBEE3B2D6CC783AC25973C65536F5 -- C:\WINDOWS\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
[2016/03/27 22:43:53 | 002,975,744 | ---- | M] () MD5=02E7DA853E98B6803E17E1665A00623C -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
[2015/10/23 18:47:06 | 000,258,048 | ---- | M] () MD5=286B9C09DB8A5019E4D0BBFAA5347651 -- C:\WINDOWS\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
[2015/10/23 18:47:06 | 000,113,664 | ---- | M] () MD5=5CA0D7674EB1C4E4EF7B705AADD18701 -- C:\WINDOWS\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
[2016/03/24 04:20:51 | 000,372,736 | ---- | M] () MD5=5C1ACC14C7D2F0D37ED3D59D754356C9 -- C:\WINDOWS\assembly\GAC_32\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
[2015/10/23 18:47:06 | 000,261,632 | ---- | M] () MD5=15492A20921288348A14EF2BDF22C09E -- C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
[2015/10/23 18:47:06 | 005,287,936 | ---- | M] () MD5=BF4A86BBACAD576AF7AFE812131B7BB0 -- C:\WINDOWS\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll

[color=#A23BEC]< %systemroot%\assembly\GAC_64\*.* /S /MD5 >[/color]
[2015/10/09 22:24:26 | 000,080,896 | ---- | M] () MD5=86DBF7D4C465802BB6E844283F749619 -- C:\WINDOWS\assembly\GAC_64\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
[2015/10/09 22:24:26 | 000,089,600 | ---- | M] () MD5=1325F1B76208CBE370C44AF40E7210AD -- C:\WINDOWS\assembly\GAC_64\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
[2015/10/30 09:19:54 | 000,507,904 | ---- | M] () MD5=97830313B717820208EA2844FBD8EBA8 -- C:\WINDOWS\assembly\GAC_64\Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Microsoft.Ink.dll
[2015/10/30 09:17:53 | 000,077,824 | ---- | M] () MD5=E5B3BC82B39EBDCA3392EDE23393727B -- C:\WINDOWS\assembly\GAC_64\Microsoft.Interop.Security.AzRoles\2.0.0.0__31bf3856ad364e35\Microsoft.Interop.Security.AzRoles.dll
[2016/03/27 22:25:40 | 000,163,840 | ---- | M] () MD5=8A07A18D2BB889EF067AC77170B09A9C -- C:\WINDOWS\assembly\GAC_64\Microsoft.Transactions.Bridge.Dtc\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
[2015/10/23 18:44:48 | 000,084,624 | ---- | M] () MD5=143665A5091C39B0E48FC225AB221D77 -- C:\WINDOWS\assembly\GAC_64\MSBuild\3.5.0.0__b03f5f7f11d50a3a\MSBuild.exe
[2015/03/30 18:50:36 | 000,001,581 | ---- | M] () MD5=1EA3E30080C0E256C2EF0C621E91C345 -- C:\WINDOWS\assembly\GAC_64\MSBuild\3.5.0.0__b03f5f7f11d50a3a\msbuild.exe.config
[2015/03/30 18:50:48 | 000,066,728 | ---- | M] () MD5=C01B81BB10AD14DBC5C4ECD350638096 -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\big5.nlp
[2015/03/30 18:50:48 | 000,082,172 | ---- | M] () MD5=EE1F60F8774D74BED8B13498F3FE737A -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\bopomofo.nlp
[2015/03/30 18:50:48 | 000,116,756 | ---- | M] () MD5=F6DFDA5A31162D848634504565F6D321 -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\ksc.nlp
[2016/03/24 04:20:57 | 004,571,136 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
[2015/10/30 09:19:32 | 000,059,342 | ---- | M] () MD5=DA5748A89E22A3932387E65694B25BBB -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\normidna.nlp
[2015/03/30 18:50:50 | 000,045,794 | ---- | M] () MD5=3831A5E217D6FA828CCE1011DA26E677 -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\normnfc.nlp
[2015/03/30 18:50:50 | 000,039,284 | ---- | M] () MD5=DBDE664E0BA4BACD0A6A04AE2232B205 -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\normnfd.nlp
[2015/03/30 18:50:50 | 000,066,384 | ---- | M] () MD5=C9B88B759FE81D59CE8EBF5A0A8EB75A -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\normnfkc.nlp
[2015/03/30 18:50:50 | 000,060,294 | ---- | M] () MD5=3CAB6AB66759FCDF73B61EE262C9ACF4 -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\normnfkd.nlp
[2015/03/30 18:50:50 | 000,083,748 | ---- | M] () MD5=54144F43EDF5AA8F504A30E7C1D1A7B5 -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\prc.nlp
[2015/03/30 18:50:50 | 000,083,748 | ---- | M] () MD5=901863C68E6523336CAC602FE9320ABC -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\prcp.nlp
[2015/03/30 18:50:50 | 000,262,148 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\sortkey.nlp
[2015/03/30 18:50:50 | 000,020,320 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\sorttbls.nlp
[2015/03/30 18:50:50 | 000,028,288 | ---- | M] () MD5=09E420F90A329BDA68477FA4AF43CB28 -- C:\WINDOWS\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\xjis.nlp
[2016/03/24 04:20:56 | 004,006,400 | ---- | M] () MD5=39FDA63A8EDFFE4D0CA9800CB85876CC -- C:\WINDOWS\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
[2015/03/30 18:53:20 | 000,000,161 | ---- | M] () MD5=C0856EC51C8C75B8FDF02C1BBCFE7B93 -- C:\WINDOWS\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationFontCache.exe.config
[2016/03/24 04:20:56 | 002,256,032 | ---- | M] () MD5=0062C4765DADF53686A1923E336B4E18 -- C:\WINDOWS\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\wpfgfx_v0300.dll
[2015/10/09 22:24:28 | 000,503,296 | ---- | M] () MD5=9D232CD08D6C4C6FA2E3B67C14C250FA -- C:\WINDOWS\assembly\GAC_64\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
[2016/03/27 22:43:53 | 003,150,336 | ---- | M] () MD5=861A56D16BDB8DC0C3CB1E42AE23ACFE -- C:\WINDOWS\assembly\GAC_64\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
[2015/10/09 22:24:28 | 000,245,760 | ---- | M] () MD5=AD60E0814D79E5FE7FC54207053D8A1C -- C:\WINDOWS\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
[2015/10/09 22:24:28 | 000,133,120 | ---- | M] () MD5=87078B0698BEA8FE9227D36D78546C31 -- C:\WINDOWS\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
[2016/03/24 04:20:56 | 000,358,400 | ---- | M] () MD5=08C9D74245FA82C9DC9B18E87D149EE8 -- C:\WINDOWS\assembly\GAC_64\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
[2015/10/09 22:24:28 | 000,283,136 | ---- | M] () MD5=9D9C6856D770121A63AE08D22406D174 -- C:\WINDOWS\assembly\GAC_64\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
[2015/10/09 22:24:28 | 005,296,128 | ---- | M] () MD5=9AF68ED0A07BD595125CC6B673496E78 -- C:\WINDOWS\assembly\GAC_64\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll

[color=#A23BEC]< %windir%\ServiceProfiles\LocalService\AppData\Local\Temp\*.* >[/color]
[2 C:\WINDOWS\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\WINDOWS\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ]

[color=#A23BEC]< %windir%\ServiceProfiles\NetworkService\AppData\Local\Temp\*.* >[/color]
[2012/12/27 15:31:00 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-474bde6e.exe
[2016/04/15 13:11:43 | 000,034,940 | ---- | M] () -- C:\WINDOWS\ServiceProfiles\NetworkService\AppData\Local\Temp\MpCmdRun.log

[color=#A23BEC]< %windir%\temp*.* >[/color]

[color=#A23BEC]< "%WinDir%\$NtUninstallKB*$." /30 >[/color]

[color=#A23BEC]< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections >[/color]
"DefaultConnectionSettings" = 46 00 00 00 64 02 00 00 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [binary data]
"SavedLegacySettings" = 46 00 00 00 3E 1D 00 00 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [binary data]

[color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color]

[color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color]

[color=#A23BEC]< C:\Program Files\Common Files\ComObjects\*.* / >[/color]
Invalid Switch:

[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color]

[color=#A23BEC]< Read more at http://www.cjoint.com/c/CEdoIMl1owN#Q5DKG8FoibuWEVp9.99 >[/color]
Invalid Switch: CEdoIMl1owN#Q5DKG8FoibuWEVp9.99

< End of report >

Publicité


Signaler le contenu de ce document

Publicité