OTL logfile created on: 20/05/2017 19:56:59 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = D:\utillisateur\telechargements An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.11.14393.0) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1,91 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 20,19% Memory free 3,07 Gb Paging File | 1,12 Gb Available in Paging File | 36,34% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 28,46 Gb Total Space | 11,57 Gb Free Space | 40,64% Space Free | Partition Type: NTFS Drive D: | 58,23 Gb Total Space | 51,66 Gb Free Space | 88,71% Space Free | Partition Type: exFAT Computer Name: ODZ | User Name: odz-plus.com | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2017/05/20 19:30:20 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\utillisateur\telechargements\OTL.exe PRC - [2017/05/13 16:53:37 | 000,169,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE PRC - [2017/05/11 19:23:45 | 000,064,512 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeHost.exe PRC - [2017/05/05 05:20:29 | 000,517,064 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2017/05/04 06:56:38 | 002,603,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe PRC - [2017/04/28 04:45:44 | 000,493,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncHost.exe PRC - [2017/04/28 04:44:11 | 000,328,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpCmdRun.exe PRC - [2017/04/28 04:39:22 | 004,312,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2017/04/28 04:07:07 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCuiL.exe PRC - [2017/04/28 03:54:51 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winlogon.exe PRC - [2017/04/28 03:51:04 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe PRC - [2017/04/25 09:12:12 | 000,083,056 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2017/04/25 05:08:52 | 001,518,808 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\OneDrive.exe PRC - [2017/03/17 19:12:05 | 010,883,824 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe PRC - [2017/03/04 10:47:15 | 000,330,568 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe PRC - [2017/03/04 10:22:19 | 000,183,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchFilterHost.exe PRC - [2017/03/04 10:17:59 | 000,297,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchProtocolHost.exe PRC - [2017/03/04 10:01:07 | 000,773,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe PRC - [2017/03/04 10:00:54 | 000,529,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spoolsv.exe PRC - [2016/12/12 19:21:48 | 000,587,288 | ---- | M] (Oracle Corporation) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2016/12/12 19:21:34 | 000,925,720 | ---- | M] (Oracle Corporation) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe PRC - [2016/11/02 15:29:48 | 000,947,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe PRC - [2016/11/02 15:05:45 | 000,313,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe PRC - [2016/09/07 09:07:57 | 000,043,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe PRC - [2016/08/06 07:47:34 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dasHost.exe PRC - [2016/07/16 21:17:58 | 000,304,640 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe PRC - [2016/07/16 12:25:55 | 000,072,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostw.exe PRC - [2016/07/16 12:25:50 | 000,217,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe PRC - [2016/07/16 12:25:47 | 000,416,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe PRC - [2016/07/16 12:25:47 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2016/07/16 12:25:31 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe PRC - [2016/07/16 12:25:07 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sihost.exe PRC - [2016/07/16 12:25:03 | 000,029,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RuntimeBroker.exe PRC - [2016/05/25 14:03:26 | 000,043,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe PRC - [2016/05/03 23:26:06 | 000,434,648 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxEM.exe PRC - [2016/05/03 23:26:06 | 000,415,200 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxTray.exe PRC - [2016/05/03 23:26:06 | 000,292,832 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxCUIService.exe PRC - [2016/05/03 23:26:06 | 000,228,320 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxHK.exe PRC - [2014/09/22 11:17:27 | 007,761,920 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe PRC - [2014/09/10 20:21:48 | 000,458,472 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Launch Manager\LMTray.exe PRC - [2014/09/10 20:21:40 | 000,461,544 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe PRC - [2014/09/10 20:21:36 | 000,450,792 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe PRC - [2014/09/10 20:21:30 | 000,480,488 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe PRC - [2014/06/26 16:36:30 | 000,451,816 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Quick Access\QASvc.exe PRC - [2014/06/26 16:36:28 | 000,441,576 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Quick Access\QAMsg.exe PRC - [2014/06/26 16:36:26 | 000,502,504 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Quick Access\QAEvent.exe PRC - [2014/05/08 12:15:08 | 000,081,336 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DptfPolicyLpmServiceHelper.exe PRC - [2014/05/08 12:15:06 | 000,097,208 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DptfPolicyCriticalService.exe PRC - [2014/05/08 12:15:06 | 000,090,552 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DptfPolicyLpmService.exe PRC - [2014/05/08 12:03:42 | 000,083,384 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DptfParticipantProcessorService.exe PRC - [2014/03/12 16:31:58 | 000,070,144 | ---- | M] () -- C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe PRC - [2014/01/08 22:54:12 | 000,247,040 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer Touch Tools\TouchToolsLaunchSvc.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2017/05/20 19:30:20 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\utillisateur\telechargements\OTL.exe MOD - [2017/05/13 16:54:11 | 000,219,840 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Root\Office16\1036\ONINTL.DLL MOD - [2017/05/13 16:53:37 | 000,169,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE MOD - [2017/05/11 19:23:48 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\ssScreenVVS2.dll MOD - [2017/05/11 19:23:47 | 031,002,624 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkyWrap.dll MOD - [2017/05/11 19:23:45 | 001,741,824 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\skypert.dll MOD - [2017/05/11 19:23:45 | 000,168,960 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll MOD - [2017/05/11 19:23:45 | 000,064,512 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeHost.exe MOD - [2017/05/11 19:23:43 | 009,655,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\RtmPltfm.dll MOD - [2017/05/11 19:23:42 | 000,482,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\RtmPal.dll MOD - [2017/05/11 19:23:41 | 002,366,976 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\RtmCodecs.dll MOD - [2017/05/11 19:23:41 | 000,757,760 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\RtmMediaManager.dll MOD - [2017/05/05 05:22:37 | 051,657,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xul.dll MOD - [2017/05/05 05:21:35 | 000,146,888 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\softokn3.dll MOD - [2017/05/05 05:21:17 | 000,093,640 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssdbm3.dll MOD - [2017/05/05 05:21:14 | 000,414,152 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssckbi.dll MOD - [2017/05/05 05:21:10 | 001,222,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nss3.dll MOD - [2017/05/05 05:21:06 | 000,124,360 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozglue.dll MOD - [2017/05/05 05:21:03 | 000,155,080 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozavutil.dll MOD - [2017/05/05 05:21:00 | 001,448,904 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozavcodec.dll MOD - [2017/05/05 05:20:44 | 001,381,320 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\libGLESv2.dll MOD - [2017/05/05 05:20:40 | 000,026,568 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\libEGL.dll MOD - [2017/05/05 05:20:37 | 000,052,168 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\lgpllibs.dll MOD - [2017/05/05 05:20:32 | 000,319,944 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\freebl3.dll MOD - [2017/05/05 05:20:29 | 000,517,064 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe MOD - [2017/05/05 03:49:19 | 003,747,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\d3dcompiler_47.dll MOD - [2017/05/05 03:49:18 | 000,028,864 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-math-l1-1-0.dll MOD - [2017/05/05 03:49:18 | 000,025,792 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-multibyte-l1-1-0.dll MOD - [2017/05/05 03:49:18 | 000,024,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-string-l1-1-0.dll MOD - [2017/05/05 03:49:18 | 000,024,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-stdio-l1-1-0.dll MOD - [2017/05/05 03:49:18 | 000,022,720 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-runtime-l1-1-0.dll MOD - [2017/05/05 03:49:18 | 000,022,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-convert-l1-1-0.dll MOD - [2017/05/05 03:49:18 | 000,020,672 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-time-l1-1-0.dll MOD - [2017/05/05 03:49:18 | 000,020,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-filesystem-l1-1-0.dll MOD - [2017/05/05 03:49:18 | 000,018,624 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-utility-l1-1-0.dll MOD - [2017/05/05 03:49:18 | 000,018,624 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-locale-l1-1-0.dll MOD - [2017/05/05 03:49:18 | 000,018,624 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-heap-l1-1-0.dll MOD - [2017/05/05 03:49:18 | 000,018,624 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-environment-l1-1-0.dll MOD - [2017/05/05 03:49:00 | 000,440,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\MSVCP140.dll MOD - [2017/05/05 03:49:00 | 000,083,784 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll MOD - [2017/04/28 05:33:50 | 000,448,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ContentDeliveryManager.Utilities.dll MOD - [2017/04/28 05:32:09 | 000,685,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Internal.Shell.Broker.dll MOD - [2017/04/28 05:00:14 | 001,725,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll MOD - [2017/04/28 05:00:07 | 005,996,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe MOD - [2017/04/28 04:59:55 | 000,601,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaut32.dll MOD - [2017/04/28 04:56:56 | 002,048,488 | ---- | M] () -- C:\Windows\System32\CoreUIComponents.dll MOD - [2017/04/28 04:55:33 | 000,628,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll MOD - [2017/04/28 04:55:11 | 000,583,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CoreMessaging.dll MOD - [2017/04/28 04:48:25 | 000,263,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Storage.ApplicationData.dll MOD - [2017/04/28 04:46:09 | 001,504,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll MOD - [2017/04/28 04:46:03 | 005,722,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\windows.storage.dll MOD - [2017/04/28 04:45:44 | 002,263,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll MOD - [2017/04/28 04:45:44 | 000,493,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncHost.exe MOD - [2017/04/28 04:45:44 | 000,116,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CloudExperienceHostCommon.dll MOD - [2017/04/28 04:45:29 | 000,975,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twinapi.appcore.dll MOD - [2017/04/28 04:43:59 | 001,980,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6.dll MOD - [2017/04/28 04:43:48 | 001,557,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\crypt32.dll MOD - [2017/04/28 04:43:10 | 000,846,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinTypes.dll MOD - [2017/04/28 04:43:09 | 002,168,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\combase.dll MOD - [2017/04/28 04:40:19 | 004,023,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfcore.dll MOD - [2017/04/28 04:40:10 | 000,352,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll MOD - [2017/04/28 04:39:51 | 020,967,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll MOD - [2017/04/28 04:39:48 | 000,962,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole32.dll MOD - [2017/04/28 04:39:22 | 004,312,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe MOD - [2017/04/28 04:35:23 | 001,411,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32full.dll MOD - [2017/04/28 04:23:19 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserDataTimeUtil.dll MOD - [2017/04/28 04:21:14 | 000,224,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExSMime.dll MOD - [2017/04/28 04:17:36 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BluetoothApis.dll MOD - [2017/04/28 04:16:36 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserMgrProxy.dll MOD - [2017/04/28 04:16:24 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AppointmentActivation.dll MOD - [2017/04/28 04:15:35 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl MOD - [2017/04/28 04:15:29 | 000,404,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsreg.dll MOD - [2017/04/28 04:14:00 | 000,306,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieproxy.dll MOD - [2017/04/28 04:13:21 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\deviceaccess.dll MOD - [2017/04/28 04:13:15 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vaultcli.dll MOD - [2017/04/28 04:13:11 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleacc.dll MOD - [2017/04/28 04:13:01 | 013,873,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Xaml.dll MOD - [2017/04/28 04:11:50 | 000,517,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FlightSettings.dll MOD - [2017/04/28 04:10:54 | 000,819,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AppContracts.dll MOD - [2017/04/28 04:10:45 | 000,238,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AboveLockAppHost.dll MOD - [2017/04/28 04:10:44 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.ApplicationModel.dll MOD - [2017/04/28 04:10:04 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll MOD - [2017/04/28 04:09:29 | 001,109,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SharedStartModel.dll MOD - [2017/04/28 04:09:13 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll MOD - [2017/04/28 04:09:13 | 000,352,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Devices.Enumeration.dll MOD - [2017/04/28 04:08:57 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CryptoWinRT.dll MOD - [2017/04/28 04:08:12 | 007,626,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twinui.dll MOD - [2017/04/28 04:07:41 | 000,256,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\thumbcache.dll MOD - [2017/04/28 04:07:21 | 003,689,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msi.dll MOD - [2017/04/28 04:07:07 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCuiL.exe MOD - [2017/04/28 04:06:49 | 004,614,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Media.dll MOD - [2017/04/28 04:06:49 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.dll MOD - [2017/04/28 04:05:51 | 003,733,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_47.dll MOD - [2017/04/28 04:05:19 | 000,700,928 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpclient.dll MOD - [2017/04/28 04:05:17 | 000,589,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Devices.Sensors.dll MOD - [2017/04/28 04:03:57 | 000,355,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RTMediaFrame.dll MOD - [2017/04/28 03:58:53 | 000,090,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olepro32.dll MOD - [2017/04/28 03:58:35 | 000,433,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll MOD - [2017/04/28 03:57:40 | 001,247,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Globalization.dll MOD - [2017/04/28 03:57:38 | 001,136,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpncore.dll MOD - [2017/04/28 03:57:29 | 003,702,272 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\tabskb.dll MOD - [2017/04/28 03:56:35 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Media.Devices.dll MOD - [2017/04/28 03:55:05 | 002,701,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Speech_OneCore\Common\sapi_onecore.dll MOD - [2017/04/28 03:54:35 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ShareHost.dll MOD - [2017/04/28 03:54:30 | 000,654,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MbaeApiPublic.dll MOD - [2017/04/28 03:54:26 | 002,483,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll MOD - [2017/04/28 03:54:08 | 000,598,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Web.dll MOD - [2017/04/28 03:53:56 | 000,621,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.dll MOD - [2017/04/28 03:52:44 | 002,008,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll MOD - [2017/04/28 03:52:40 | 001,600,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll MOD - [2017/04/28 03:51:38 | 000,705,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Reminders.dll MOD - [2017/04/28 03:51:04 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe MOD - [2017/04/25 21:26:38 | 000,000,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\root\Office16\c2r32.dll MOD - [2017/04/25 21:26:38 | 000,000,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll MOD - [2017/04/25 21:26:38 | 000,000,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\root\Office16\AppVIsvStream32.dll MOD - [2017/04/25 05:19:29 | 000,416,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.24123.0_x86__8wekyb3d8bbwe\MSVCP140_APP.dll MOD - [2017/04/25 05:19:29 | 000,256,528 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.24123.0_x86__8wekyb3d8bbwe\vccorlib140_app.DLL MOD - [2017/04/25 05:19:29 | 000,221,704 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.24123.0_x86__8wekyb3d8bbwe\CONCRT140_APP.dll MOD - [2017/04/25 05:19:29 | 000,075,792 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.24123.0_x86__8wekyb3d8bbwe\VCRUNTIME140_APP.dll MOD - [2017/04/25 05:09:31 | 000,317,144 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Telemetry.dll MOD - [2017/04/25 05:09:29 | 004,586,712 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\SyncEngine.DLL MOD - [2017/04/25 05:09:25 | 000,196,416 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\sqmapi.dll MOD - [2017/04/25 05:09:21 | 000,613,592 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\RemoteAccess.dll MOD - [2017/04/25 05:09:17 | 001,004,248 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\platforms\qwindows.dll MOD - [2017/04/25 05:09:12 | 004,502,744 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Widgets.dll MOD - [2017/04/25 05:09:06 | 002,606,296 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Quick.dll MOD - [2017/04/25 05:09:04 | 002,528,472 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Qml.dll MOD - [2017/04/25 05:09:04 | 000,970,912 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\MSVCR120.dll MOD - [2017/04/25 05:09:03 | 000,455,328 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\MSVCP120.dll MOD - [2017/04/25 05:09:02 | 000,099,032 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\LoggingPlatform.DLL MOD - [2017/04/25 05:09:01 | 000,865,496 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Network.dll MOD - [2017/04/25 05:08:59 | 004,884,184 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Gui.dll MOD - [2017/04/25 05:08:59 | 000,462,040 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncViews.dll MOD - [2017/04/25 05:08:58 | 002,094,808 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll MOD - [2017/04/25 05:08:57 | 001,480,408 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncSessions.dll MOD - [2017/04/25 05:08:56 | 004,689,624 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Core.dll MOD - [2017/04/25 05:08:56 | 002,797,784 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncClient.dll MOD - [2017/04/25 05:08:55 | 002,805,976 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSync.Resources.dll MOD - [2017/04/25 05:08:53 | 000,390,872 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\WnsClientApi.dll MOD - [2017/04/25 05:08:52 | 001,518,808 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\OneDrive.exe MOD - [2017/04/25 05:08:51 | 000,784,088 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\ADAL.dll MOD - [2017/04/19 02:13:56 | 000,083,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vcruntime140.dll MOD - [2017/03/28 10:21:27 | 000,167,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll MOD - [2017/03/28 10:02:55 | 000,576,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wer.dll MOD - [2017/03/28 09:58:53 | 001,344,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfsrcsnk.dll MOD - [2017/03/28 09:52:00 | 000,306,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Media.MediaControl.dll MOD - [2017/03/28 09:37:46 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.HostName.dll MOD - [2017/03/28 09:35:48 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll MOD - [2017/03/28 09:34:01 | 000,117,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuthBroker.dll MOD - [2017/03/28 09:25:54 | 001,196,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl MOD - [2017/03/28 09:20:14 | 003,307,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFMediaEngine.dll MOD - [2017/03/28 09:19:47 | 000,713,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpnapps.dll MOD - [2017/03/28 09:16:38 | 003,198,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdp.dll MOD - [2017/03/28 09:14:20 | 000,357,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Geolocation.dll MOD - [2017/03/28 09:13:49 | 002,138,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InputService.dll MOD - [2017/03/28 09:12:42 | 000,827,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twinui.appcore.dll MOD - [2017/03/28 09:12:21 | 002,682,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netshell.dll MOD - [2017/03/28 09:12:02 | 000,542,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.Connectivity.dll MOD - [2017/03/28 09:12:01 | 000,862,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncCore.dll MOD - [2017/03/28 09:08:52 | 001,564,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll MOD - [2017/03/16 08:38:49 | 000,034,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CompPkgSup.dll MOD - [2017/03/04 11:57:40 | 000,484,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll MOD - [2017/03/04 11:09:33 | 000,497,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnsapi.dll MOD - [2017/03/04 11:09:27 | 002,206,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll MOD - [2017/03/04 11:02:53 | 000,184,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IPHLPAPI.DLL MOD - [2017/03/04 10:56:03 | 000,248,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\policymanager.dll MOD - [2017/03/04 10:54:12 | 002,277,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll MOD - [2017/03/04 10:54:03 | 000,524,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll MOD - [2017/03/04 10:53:07 | 000,313,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll MOD - [2017/03/04 10:52:02 | 000,272,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wintrust.dll MOD - [2017/03/04 10:47:41 | 001,123,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll MOD - [2017/03/04 10:47:32 | 000,530,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll MOD - [2017/03/04 10:47:15 | 000,330,568 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe MOD - [2017/03/04 10:46:47 | 002,121,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll MOD - [2017/03/04 10:45:07 | 000,112,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll MOD - [2017/03/04 10:42:29 | 001,260,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll MOD - [2017/03/04 10:27:46 | 000,275,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\accountaccessor.dll MOD - [2017/03/04 10:25:57 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MCCSEngineShared.dll MOD - [2017/03/04 10:25:47 | 000,167,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PimIndexMaintenance.dll MOD - [2017/03/04 10:25:17 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDShServiceObj.dll MOD - [2017/03/04 10:24:45 | 000,328,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\daxexec.dll MOD - [2017/03/04 10:24:30 | 000,321,536 | ---- | M] () -- C:\Windows\ShellExperiences\QuickActions.dll MOD - [2017/03/04 10:24:10 | 000,331,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\apppatch\AcLayers.dll MOD - [2017/03/04 10:22:48 | 000,212,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cemapi.dll MOD - [2017/03/04 10:22:19 | 000,183,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchFilterHost.exe MOD - [2017/03/04 10:21:02 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll MOD - [2017/03/04 10:20:49 | 000,424,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msutb.dll MOD - [2017/03/04 10:20:10 | 000,426,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OneDriveSettingSyncProvider.dll MOD - [2017/03/04 10:19:06 | 000,414,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winspool.drv MOD - [2017/03/04 10:18:41 | 000,567,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ChatApis.dll MOD - [2017/03/04 10:18:17 | 000,493,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WlanMediaManager.dll MOD - [2017/03/04 10:18:10 | 000,548,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddraw.dll MOD - [2017/03/04 10:17:52 | 000,529,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StructuredQuery.dll MOD - [2017/03/04 10:17:52 | 000,427,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DXP.dll MOD - [2017/03/04 10:16:41 | 000,994,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ApplicationFrame.dll MOD - [2017/03/04 10:16:39 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll MOD - [2017/03/04 10:16:28 | 000,636,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll MOD - [2017/03/04 10:16:22 | 001,456,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.953_none_baad48403594ab3f\GdiPlus.dll MOD - [2017/03/04 10:16:20 | 000,968,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Unistore.dll MOD - [2017/03/04 10:12:59 | 000,700,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Storage.Search.dll MOD - [2017/03/04 10:12:36 | 001,842,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll MOD - [2017/03/04 10:12:33 | 000,818,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\modernexecserver.dll MOD - [2017/03/04 10:10:34 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Tabbtn.dll MOD - [2017/03/04 10:07:19 | 002,643,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll MOD - [2017/03/04 10:07:04 | 000,871,424 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\tipskins.dll MOD - [2017/03/04 10:05:38 | 001,133,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssapi.dll MOD - [2017/03/04 10:05:11 | 005,455,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\ShellExperiences\StartUI.dll MOD - [2017/03/04 10:02:51 | 004,423,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll MOD - [2017/03/04 10:02:32 | 001,709,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActiveSyncProvider.dll MOD - [2017/03/04 10:02:19 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hgcpl.dll MOD - [2017/03/04 10:01:24 | 001,556,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Immersive.dll MOD - [2017/03/04 10:01:24 | 000,422,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twinapi.dll MOD - [2017/03/04 10:01:11 | 001,154,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Pimstore.dll MOD - [2017/03/04 10:00:50 | 001,998,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll MOD - [2017/03/04 10:00:42 | 000,691,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TokenBroker.dll MOD - [2017/03/04 10:00:22 | 000,850,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ContactApis.dll MOD - [2017/03/04 09:59:52 | 001,252,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserDataService.dll MOD - [2017/03/04 09:59:29 | 001,748,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesService.dll MOD - [2017/03/04 09:59:01 | 000,353,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TextInputFramework.dll MOD - [2017/03/04 09:59:01 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Core.TextInput.dll MOD - [2017/03/04 09:58:30 | 000,688,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesBackgroundTasks.dll MOD - [2017/03/04 09:58:20 | 001,150,464 | ---- | M] () -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll MOD - [2017/03/04 09:57:54 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SignalsManager.dll MOD - [2017/03/04 09:57:48 | 000,264,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.ContactPermissions.dll MOD - [2017/03/04 09:57:35 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.DoNotDisturb.dll MOD - [2017/03/04 09:57:28 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\OnlineServices.dll MOD - [2016/12/14 09:08:54 | 000,341,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msv1_0.dll MOD - [2016/12/12 19:21:48 | 000,587,288 | ---- | M] (Oracle Corporation) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe MOD - [2016/12/12 19:21:34 | 000,925,720 | ---- | M] (Oracle Corporation) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe MOD - [2016/12/09 14:09:25 | 000,133,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll MOD - [2016/12/09 14:00:53 | 000,117,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll MOD - [2016/12/09 13:52:24 | 001,344,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\user32.dll MOD - [2016/12/09 13:15:51 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EditBufferTestHook.dll MOD - [2016/12/09 13:15:49 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InputLocaleManager.dll MOD - [2016/11/11 11:59:56 | 001,586,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll MOD - [2016/11/11 11:49:42 | 000,869,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MrmCoreR.dll MOD - [2016/11/11 11:42:44 | 000,152,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RTWorkQ.dll MOD - [2016/11/11 11:23:13 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdpusersvc.dll MOD - [2016/11/11 11:20:46 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wincorlib.dll MOD - [2016/11/11 11:18:13 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscinterop.dll MOD - [2016/11/11 11:17:24 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActivationManager.dll MOD - [2016/11/11 11:15:26 | 001,357,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll MOD - [2016/11/11 11:12:21 | 000,529,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpnprv.dll MOD - [2016/11/11 11:05:12 | 003,370,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.StateRepository.dll MOD - [2016/11/11 11:03:58 | 000,772,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntshrui.dll MOD - [2016/11/02 15:29:48 | 000,947,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe MOD - [2016/11/02 15:08:01 | 000,111,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NetSetupApi.dll MOD - [2016/11/02 15:01:37 | 001,425,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll MOD - [2016/11/02 14:45:09 | 000,182,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfsensorgroup.dll MOD - [2016/11/02 14:42:39 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NetworkUXBroker.dll MOD - [2016/11/02 14:39:53 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll MOD - [2016/11/02 14:29:14 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NPSM.dll MOD - [2016/11/02 14:26:46 | 000,912,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.dll MOD - [2016/11/02 14:23:43 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\GlobCollationHost.dll MOD - [2016/10/15 08:00:47 | 000,254,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twinui.pcshell.dll MOD - [2016/10/15 07:54:00 | 000,410,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVolSSO.dll MOD - [2016/10/15 07:43:47 | 000,500,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NotificationController.dll MOD - [2016/10/15 07:36:59 | 000,358,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\stobject.dll MOD - [2016/10/15 07:35:18 | 002,708,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\esent.dll MOD - [2016/09/15 21:37:05 | 000,402,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ws2_32.dll MOD - [2016/09/15 21:23:19 | 000,170,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll MOD - [2016/09/15 21:18:22 | 000,856,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll MOD - [2016/09/15 21:13:51 | 000,113,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll MOD - [2016/09/15 20:57:05 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ClipboardServer.dll MOD - [2016/09/15 20:56:50 | 000,262,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pdh.dll MOD - [2016/09/15 20:56:42 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DataExchange.dll MOD - [2016/09/15 20:55:43 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\biwinrt.dll MOD - [2016/09/15 20:54:36 | 000,461,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\webio.dll MOD - [2016/09/07 08:58:51 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserDataLanguageUtil.dll MOD - [2016/09/07 08:58:35 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserDataTypeHelperUtil.dll MOD - [2016/09/07 08:58:13 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\POSyncServices.dll MOD - [2016/09/07 08:56:55 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ContactActivation.dll MOD - [2016/09/07 08:54:52 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserDataPlatformHelperUtil.dll MOD - [2016/09/07 08:49:42 | 000,260,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Phoneutil.dll MOD - [2016/09/07 08:34:21 | 000,444,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSync.dll MOD - [2016/08/06 08:16:01 | 000,798,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll MOD - [2016/08/06 07:45:49 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\container.dll MOD - [2016/08/06 07:44:11 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\deviceassociation.dll MOD - [2016/08/06 07:40:04 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Shell.dll MOD - [2016/08/06 07:28:53 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samlib.dll MOD - [2016/08/06 07:21:15 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll MOD - [2016/08/06 07:21:13 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll MOD - [2016/08/06 07:21:12 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Sync.dll MOD - [2016/08/06 07:21:10 | 000,054,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\JsonReader.dll MOD - [2016/08/06 07:21:07 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersProxyStub.dll MOD - [2016/08/06 07:21:06 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ContactPermissionsProxyStub.dll MOD - [2016/08/06 07:21:05 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\DoNotDisturbProxyStub.dll MOD - [2016/08/06 07:21:03 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriProxyStub.dll MOD - [2016/08/05 12:23:12 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppc.dll MOD - [2016/08/05 12:18:23 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slc.dll MOD - [2016/08/02 08:47:21 | 000,094,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32u.dll MOD - [2016/07/22 05:18:36 | 000,297,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll MOD - [2016/07/16 21:18:01 | 000,491,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll MOD - [2016/07/16 21:17:58 | 001,085,440 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\TipRes.dll MOD - [2016/07/16 21:17:58 | 000,304,640 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe MOD - [2016/07/16 21:17:58 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Ink\TabIpsps.dll MOD - [2016/07/16 21:17:55 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsApi.dll MOD - [2016/07/16 21:15:50 | 006,238,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll MOD - [2016/07/16 21:15:50 | 002,269,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll MOD - [2016/07/16 12:26:53 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srclient.dll MOD - [2016/07/16 12:26:51 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll MOD - [2016/07/16 12:26:51 | 000,154,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll MOD - [2016/07/16 12:26:43 | 000,265,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActionCenter.dll MOD - [2016/07/16 12:26:43 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hcproviders.dll MOD - [2016/07/16 12:26:42 | 003,309,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll MOD - [2016/07/16 12:26:42 | 000,732,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.dll MOD - [2016/07/16 12:26:42 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlaapi.dll MOD - [2016/07/16 12:26:42 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ELSCore.dll MOD - [2016/07/16 12:26:42 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msauserext.dll MOD - [2016/07/16 12:26:42 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vsstrace.dll MOD - [2016/07/16 12:26:41 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceSetupManagerAPI.dll MOD - [2016/07/16 12:26:40 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spp.dll MOD - [2016/07/16 12:26:05 | 002,231,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL MOD - [2016/07/16 12:26:05 | 000,385,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\provsvc.dll MOD - [2016/07/16 12:26:05 | 000,330,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll MOD - [2016/07/16 12:26:05 | 000,273,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL MOD - [2016/07/16 12:26:05 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpnsp.dll MOD - [2016/07/16 12:26:02 | 000,724,480 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\EppManifest.dll MOD - [2016/07/16 12:26:02 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Cortana.PAL.Desktop.dll MOD - [2016/07/16 12:26:01 | 000,786,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\opengl32.dll MOD - [2016/07/16 12:26:01 | 000,141,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\glu32.dll MOD - [2016/07/16 12:26:01 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll MOD - [2016/07/16 12:26:01 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IconCodecService.dll MOD - [2016/07/16 12:26:00 | 001,453,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dui70.dll MOD - [2016/07/16 12:26:00 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\werconcpl.dll MOD - [2016/07/16 12:26:00 | 000,482,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\duser.dll MOD - [2016/07/16 12:26:00 | 000,354,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll MOD - [2016/07/16 12:26:00 | 000,257,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsta.dll MOD - [2016/07/16 12:26:00 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll MOD - [2016/07/16 12:26:00 | 000,053,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll MOD - [2016/07/16 12:25:58 | 001,660,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batmeter.dll MOD - [2016/07/16 12:25:58 | 000,479,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll MOD - [2016/07/16 12:25:58 | 000,305,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InputSwitch.dll MOD - [2016/07/16 12:25:58 | 000,284,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shlwapi.dll MOD - [2016/07/16 12:25:58 | 000,225,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shdocvw.dll MOD - [2016/07/16 12:25:58 | 000,027,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\version.dll MOD - [2016/07/16 12:25:57 | 000,477,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prnfldr.dll MOD - [2016/07/16 12:25:56 | 000,232,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\edputil.dll MOD - [2016/07/16 12:25:56 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HNetCfgClient.dll MOD - [2016/07/16 12:25:56 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TetheringStation.dll MOD - [2016/07/16 12:25:56 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wcmapi.dll MOD - [2016/07/16 12:25:56 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VoipRT.dll MOD - [2016/07/16 12:25:55 | 000,566,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll MOD - [2016/07/16 12:25:55 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.System.Profile.RetailInfo.dll MOD - [2016/07/16 12:25:55 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx MOD - [2016/07/16 12:25:55 | 000,072,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostw.exe MOD - [2016/07/16 12:25:55 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wldp.dll MOD - [2016/07/16 12:25:55 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InprocLogger.dll MOD - [2016/07/16 12:25:55 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll MOD - [2016/07/16 12:25:55 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontgroupsoverride.dll MOD - [2016/07/16 12:25:55 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MCCSPal.dll MOD - [2016/07/16 12:25:51 | 000,185,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmllite.dll MOD - [2016/07/16 12:25:51 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usermgrcli.dll MOD - [2016/07/16 12:25:50 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MTFServer.dll MOD - [2016/07/16 12:25:50 | 000,141,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ContactHarvesterDS.dll MOD - [2016/07/16 12:25:50 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\qasf.dll MOD - [2016/07/16 12:25:50 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDFR.DLL MOD - [2016/07/16 12:25:49 | 000,159,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AppxAllUserStore.dll MOD - [2016/07/16 12:25:49 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingMonitor.dll MOD - [2016/07/16 12:25:49 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncPolicy.dll MOD - [2016/07/16 12:25:49 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drprov.dll MOD - [2016/07/16 12:25:47 | 000,779,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\fastprox.dll MOD - [2016/07/16 12:25:47 | 000,524,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxs.dll MOD - [2016/07/16 12:25:47 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbemcomn.dll MOD - [2016/07/16 12:25:47 | 000,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\framedynos.dll MOD - [2016/07/16 12:25:47 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QuickActionsDataModel.dll MOD - [2016/07/16 12:25:47 | 000,108,032 | ---- | M] () -- C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll MOD - [2016/07/16 12:25:47 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll MOD - [2016/07/16 12:25:47 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemsvc.dll MOD - [2016/07/16 12:25:47 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemprox.dll MOD - [2016/07/16 12:25:47 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\linkinfo.dll MOD - [2016/07/16 12:25:47 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NotificationControllerPS.dll MOD - [2016/07/16 12:25:46 | 001,220,608 | ---- | M] (Microsoft) -- C:\Windows\System32\dbghelp.dll MOD - [2016/07/16 12:25:46 | 000,339,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll MOD - [2016/07/16 12:25:46 | 000,135,680 | ---- | M] (Microsoft) -- C:\Windows\System32\dbgcore.dll MOD - [2016/07/16 12:25:46 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EthernetMediaManager.dll MOD - [2016/07/16 12:25:41 | 000,367,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcryptprimitives.dll MOD - [2016/07/16 12:25:41 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsNativeApi.V2.dll MOD - [2016/07/16 12:25:41 | 000,054,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsNativeApi.dll MOD - [2016/07/16 12:25:41 | 000,044,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsUtilsV2.dll MOD - [2016/07/16 12:25:41 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fltLib.dll MOD - [2016/07/16 12:25:40 | 000,773,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt.dll MOD - [2016/07/16 12:25:40 | 000,255,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll MOD - [2016/07/16 12:25:40 | 000,093,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imagehlp.dll MOD - [2016/07/16 12:25:40 | 000,082,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcd.dll MOD - [2016/07/16 12:25:40 | 000,054,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll MOD - [2016/07/16 12:25:40 | 000,031,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll MOD - [2016/07/16 12:25:40 | 000,026,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll MOD - [2016/07/16 12:25:40 | 000,020,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nsi.dll MOD - [2016/07/16 12:25:39 | 000,918,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ucrtbase.dll MOD - [2016/07/16 12:25:39 | 000,498,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcp_win.dll MOD - [2016/07/16 12:25:39 | 000,415,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcp110_win.dll MOD - [2016/07/16 12:25:39 | 000,315,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mswsock.dll MOD - [2016/07/16 12:25:39 | 000,275,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powrprof.dll MOD - [2016/07/16 12:25:39 | 000,268,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncryptprov.dll MOD - [2016/07/16 12:25:39 | 000,213,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll MOD - [2016/07/16 12:25:39 | 000,200,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mlang.dll MOD - [2016/07/16 12:25:39 | 000,184,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rsaenh.dll MOD - [2016/07/16 12:25:39 | 000,183,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logoncli.dll MOD - [2016/07/16 12:25:39 | 000,173,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntasn1.dll MOD - [2016/07/16 12:25:39 | 000,154,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntmarta.dll MOD - [2016/07/16 12:25:39 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OneCoreCommonProxyStub.dll MOD - [2016/07/16 12:25:39 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptnet.dll MOD - [2016/07/16 12:25:39 | 000,132,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll MOD - [2016/07/16 12:25:39 | 000,120,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll MOD - [2016/07/16 12:25:39 | 000,104,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncryptsslp.dll MOD - [2016/07/16 12:25:39 | 000,094,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userenv.dll MOD - [2016/07/16 12:25:39 | 000,086,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpr.dll MOD - [2016/07/16 12:25:39 | 000,075,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srvcli.dll MOD - [2016/07/16 12:25:39 | 000,068,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptsp.dll MOD - [2016/07/16 12:25:39 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc.dll MOD - [2016/07/16 12:25:39 | 000,060,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptdll.dll MOD - [2016/07/16 12:25:39 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wkscli.dll MOD - [2016/07/16 12:25:39 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll MOD - [2016/07/16 12:25:39 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devrtl.dll MOD - [2016/07/16 12:25:39 | 000,049,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msasn1.dll MOD - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe MOD - [2016/07/16 12:25:39 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmiclnt.dll MOD - [2016/07/16 12:25:39 | 000,036,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll MOD - [2016/07/16 12:25:39 | 000,033,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NtlmShared.dll MOD - [2016/07/16 12:25:39 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tokenbinding.dll MOD - [2016/07/16 12:25:39 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsparse.dll MOD - [2016/07/16 12:25:39 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpapi.dll MOD - [2016/07/16 12:25:31 | 001,122,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dcomp.dll MOD - [2016/07/16 12:25:31 | 000,513,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncController.dll MOD - [2016/07/16 12:25:31 | 000,384,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\syncutil.dll MOD - [2016/07/16 12:25:31 | 000,371,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AccountsRt.dll MOD - [2016/07/16 12:25:31 | 000,330,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\APHostService.dll MOD - [2016/07/16 12:25:31 | 000,149,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imm32.dll MOD - [2016/07/16 12:25:31 | 000,124,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cabinet.dll MOD - [2016/07/16 12:25:31 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\networkhelper.dll MOD - [2016/07/16 12:25:31 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usp10.dll MOD - [2016/07/16 12:25:31 | 000,069,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netapi32.dll MOD - [2016/07/16 12:25:31 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Syncreg.dll MOD - [2016/07/16 12:25:31 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntlanman.dll MOD - [2016/07/16 12:25:31 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncProxy.dll MOD - [2016/07/16 12:25:31 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\APHostClient.dll MOD - [2016/07/16 12:25:31 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hid.dll MOD - [2016/07/16 12:25:31 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll MOD - [2016/07/16 12:25:31 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimg32.dll MOD - [2016/07/16 12:25:30 | 000,538,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll MOD - [2016/07/16 12:25:30 | 000,482,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\advapi32.dll MOD - [2016/07/16 12:25:30 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.System.Profile.HardwareId.dll MOD - [2016/07/16 12:25:30 | 000,135,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winmm.dll MOD - [2016/07/16 12:25:30 | 000,131,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winmmbase.dll MOD - [2016/07/16 12:25:30 | 000,090,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.dll MOD - [2016/07/16 12:25:30 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll MOD - [2016/07/16 12:25:30 | 000,029,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll MOD - [2016/07/16 12:25:30 | 000,028,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdmo.dll MOD - [2016/07/16 12:25:30 | 000,020,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll MOD - [2016/07/16 12:25:28 | 001,368,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Speech\Common\sapi.dll MOD - [2016/07/16 12:25:28 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll MOD - [2016/07/16 12:25:24 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrnr.dll MOD - [2016/07/16 12:25:22 | 001,515,520 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Ink\InkObj.dll MOD - [2016/07/16 12:25:22 | 000,528,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clbcatq.dll MOD - [2016/07/16 12:25:22 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\es.dll MOD - [2016/07/16 12:25:22 | 000,299,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ninput.dll MOD - [2016/07/16 12:25:22 | 000,196,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorShell.dll MOD - [2016/07/16 12:25:22 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TabbtnEx.dll MOD - [2016/07/16 12:25:22 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\TipResX.dll MOD - [2016/07/16 12:25:21 | 000,581,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apphelp.dll MOD - [2016/07/16 12:25:21 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\davclnt.dll MOD - [2016/07/16 12:25:21 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc_os.dll MOD - [2016/07/16 12:25:21 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc.dll MOD - [2016/07/16 12:25:16 | 015,048,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DDORes.dll MOD - [2016/07/16 12:25:16 | 004,268,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupapi.dll MOD - [2016/07/16 12:25:16 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscapi.dll MOD - [2016/07/16 12:25:16 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcacli.dll MOD - [2016/07/16 12:25:16 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\davhlpr.dll MOD - [2016/07/16 12:25:16 | 000,017,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psapi.dll MOD - [2016/07/16 12:25:16 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FamilySafetyExt.dll MOD - [2016/07/16 12:25:16 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DefaultDeviceManager.dll MOD - [2016/07/16 12:25:15 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msiltcfg.dll MOD - [2016/07/16 12:25:10 | 000,067,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwapi.dll MOD - [2016/07/16 12:25:09 | 000,295,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hnetcfg.dll MOD - [2016/07/16 12:25:09 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netprofm.dll MOD - [2016/07/16 12:25:09 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NapiNSP.dll MOD - [2016/07/16 12:25:09 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\npmproxy.dll MOD - [2016/07/16 12:25:09 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsock32.dll MOD - [2016/07/16 12:25:08 | 000,549,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SHCore.dll MOD - [2016/07/16 12:25:07 | 000,702,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSync.dll MOD - [2016/07/16 12:25:07 | 000,651,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MessagingDataModel2.dll MOD - [2016/07/16 12:25:07 | 000,362,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\coml2.dll MOD - [2016/07/16 12:25:07 | 000,295,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Graphics.dll MOD - [2016/07/16 12:25:07 | 000,279,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL MOD - [2016/07/16 12:25:07 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VEEventDispatcher.dll MOD - [2016/07/16 12:25:07 | 000,250,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NotificationObjFactory.dll MOD - [2016/07/16 12:25:07 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowManagement.dll MOD - [2016/07/16 12:25:07 | 000,084,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rmclient.dll MOD - [2016/07/16 12:25:07 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EventAggregation.dll MOD - [2016/07/16 12:25:07 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll MOD - [2016/07/16 12:25:07 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\keepaliveprovider.dll MOD - [2016/07/16 12:25:07 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sihost.exe MOD - [2016/07/16 12:25:07 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.System.Diagnostics.dll MOD - [2016/07/16 12:25:07 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PimIndexMaintenanceClient.dll MOD - [2016/07/16 12:25:07 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.System.Profile.SystemId.dll MOD - [2016/07/16 12:25:07 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\notificationplatformcomponent.dll MOD - [2016/07/16 12:25:07 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll MOD - [2016/07/16 12:25:07 | 000,025,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LocationFrameworkPS.dll MOD - [2016/07/16 12:25:07 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemEventsBrokerClient.dll MOD - [2016/07/16 12:25:05 | 005,061,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll MOD - [2016/07/16 12:25:05 | 001,575,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\actxprxy.dll MOD - [2016/07/16 12:25:05 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll MOD - [2016/07/16 12:25:05 | 000,335,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll MOD - [2016/07/16 12:25:05 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fwbase.dll MOD - [2016/07/16 12:25:05 | 000,114,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxva2.dll MOD - [2016/07/16 12:25:05 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Query.dll MOD - [2016/07/16 12:25:05 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LicenseManagerApi.dll MOD - [2016/07/16 12:25:05 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll MOD - [2016/07/16 12:25:05 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BitsProxy.dll MOD - [2016/07/16 12:25:04 | 001,375,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\propsys.dll MOD - [2016/07/16 12:25:04 | 000,528,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StateRepository.Core.dll MOD - [2016/07/16 12:25:04 | 000,328,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BCP47Langs.dll MOD - [2016/07/16 12:25:04 | 000,080,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ResourcePolicyClient.dll MOD - [2016/07/16 12:25:04 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profext.dll MOD - [2016/07/16 12:25:04 | 000,043,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel.appcore.dll MOD - [2016/07/16 12:25:03 | 000,807,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll MOD - [2016/07/16 12:25:03 | 000,798,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OneCoreUAPCommonProxyStub.dll MOD - [2016/07/16 12:25:03 | 000,584,664 | ---- | M] (SQLite Development Team) -- C:\Windows\System32\winsqlite3.dll MOD - [2016/07/16 12:25:03 | 000,480,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\directmanipulation.dll MOD - [2016/07/16 12:25:03 | 000,458,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlidprov.dll MOD - [2016/07/16 12:25:03 | 000,416,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.System.Launcher.dll MOD - [2016/07/16 12:25:03 | 000,298,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\windows.immersiveshell.serviceprovider.dll MOD - [2016/07/16 12:25:03 | 000,201,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExecModelClient.dll MOD - [2016/07/16 12:25:03 | 000,184,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdprt.dll MOD - [2016/07/16 12:25:03 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PackageStateRoaming.dll MOD - [2016/07/16 12:25:03 | 000,175,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rometadata.dll MOD - [2016/07/16 12:25:03 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MicrosoftAccountTokenProvider.dll MOD - [2016/07/16 12:25:03 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mskeyprotcli.dll MOD - [2016/07/16 12:25:03 | 000,124,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll MOD - [2016/07/16 12:25:03 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IDStore.dll MOD - [2016/07/16 12:25:03 | 000,102,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Clipc.dll MOD - [2016/07/16 12:25:03 | 000,090,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DevDispItemProvider.dll MOD - [2016/07/16 12:25:03 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DesktopShellExt.dll MOD - [2016/07/16 12:25:03 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Globalization.Fontgroups.dll MOD - [2016/07/16 12:25:03 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\threadpoolwinrt.dll MOD - [2016/07/16 12:25:03 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mskeyprotect.dll MOD - [2016/07/16 12:25:03 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OnDemandConnRouteHelper.dll MOD - [2016/07/16 12:25:03 | 000,042,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsclient.dll MOD - [2016/07/16 12:25:03 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\execmodelproxy.dll MOD - [2016/07/16 12:25:03 | 000,029,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RuntimeBroker.exe MOD - [2016/07/16 12:25:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atlthunk.dll MOD - [2016/07/16 12:25:03 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WpPortingLibrary.dll MOD - [2016/07/16 12:25:01 | 001,088,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfperfhelper.dll MOD - [2016/07/16 12:25:01 | 000,640,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\evr.dll MOD - [2016/07/16 12:25:01 | 000,455,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSAudDecMFT.dll MOD - [2016/07/16 12:25:01 | 000,232,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RESAMPLEDMO.DLL MOD - [2016/07/16 12:25:01 | 000,098,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MP3DMOD.DLL MOD - [2016/07/16 12:25:01 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasadhlp.dll MOD - [2016/05/03 23:26:54 | 012,007,936 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igd10iumd32.dll MOD - [2016/05/03 23:26:54 | 003,726,232 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igdusc32.dll MOD - [2016/05/03 23:26:06 | 000,623,112 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxDH.dll MOD - [2016/05/03 23:26:06 | 000,434,648 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxEM.exe MOD - [2016/05/03 23:26:06 | 000,415,200 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxTray.exe MOD - [2016/05/03 23:26:06 | 000,267,784 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxDI.dll MOD - [2016/05/03 23:26:06 | 000,232,968 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxLHM.dll MOD - [2016/05/03 23:26:06 | 000,228,320 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxHK.exe MOD - [2014/09/22 11:17:27 | 007,761,920 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe MOD - [2014/09/10 20:21:48 | 000,458,472 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Launch Manager\LMTray.exe MOD - [2014/06/26 16:36:28 | 000,441,576 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Quick Access\QAMsg.exe MOD - [2014/06/26 16:36:26 | 000,502,504 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Quick Access\QAEvent.exe MOD - [2014/05/08 12:15:08 | 000,081,336 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DptfPolicyLpmServiceHelper.exe [color=#E56717]========== Services (All) ==========[/color] SRV - [2017/05/11 19:10:23 | 000,271,864 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2017/05/05 05:20:48 | 000,173,512 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2017/05/04 06:56:38 | 002,603,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe -- (ClickToRunSvc) SRV - [2017/05/04 01:30:08 | 000,207,056 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2017/04/28 05:02:55 | 000,271,488 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc) SRV - [2017/04/28 05:01:16 | 002,717,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll -- (PrintNotify) SRV - [2017/04/28 04:55:11 | 000,583,128 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\CoreMessaging.dll -- (CoreMessagingRegistrar) SRV - [2017/04/28 04:44:10 | 000,084,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV - [2017/04/28 04:19:24 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc) SRV - [2017/04/28 04:16:44 | 000,121,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\bthserv.dll -- (bthserv) SRV - [2017/04/28 04:13:28 | 000,298,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Windows.Internal.Management.dll -- (DmEnrollmentSvc) SRV - [2017/04/28 04:11:50 | 000,623,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\bisrv.dll -- (BrokerInfrastructure) SRV - [2017/04/28 04:11:50 | 000,517,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FlightSettings.dll -- (wisvc) SRV - [2017/04/28 04:11:30 | 000,713,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs) SRV - [2017/04/28 04:11:30 | 000,713,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch) SRV - [2017/04/28 04:10:54 | 000,518,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wiaservc.dll -- (StiSvc) SRV - [2017/04/28 04:10:27 | 000,425,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\usocore.dll -- (UsoSvc) SRV - [2017/04/28 04:10:27 | 000,242,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NgcCtnrSvc.dll -- (NgcCtnrSvc) SRV - [2017/04/28 04:10:10 | 000,822,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\usermgr.dll -- (UserManager) SRV - [2017/04/28 04:09:44 | 000,561,152 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\rasmans.dll -- (RasMan) SRV - [2017/04/28 04:07:58 | 000,754,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ngcsvc.dll -- (NgcSvc) SRV - [2017/04/28 04:06:48 | 002,333,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WsmSvc.dll -- (WinRM) SRV - [2017/04/28 04:06:09 | 001,488,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\diagtrack.dll -- (DiagTrack) SRV - [2017/04/28 04:03:56 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\wlidsvc.dll -- (wlidsvc) SRV - [2017/04/28 04:03:08 | 001,098,752 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\gpsvc.dll -- (gpsvc) SRV - [2017/04/28 04:00:58 | 000,300,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV - [2017/04/28 03:59:40 | 000,786,432 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv) SRV - [2017/04/28 03:59:15 | 001,017,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS) SRV - [2017/04/28 03:53:25 | 001,525,760 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\FntCache.dll -- (FontCache) SRV - [2017/04/28 03:52:53 | 001,887,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wuaueng.dll -- (wuauserv) SRV - [2017/04/28 03:52:47 | 000,846,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\termsrv.dll -- (TermService) SRV - [2017/04/25 09:12:12 | 000,083,056 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2017/03/28 09:12:13 | 000,920,064 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\dosvc.dll -- (DoSvc) SRV - [2017/03/18 20:45:32 | 001,949,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AppXDeploymentServer.dll -- (AppXSvc) SRV - [2017/03/17 19:12:05 | 010,883,824 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\TeamViewer_Service.exe -- (TeamViewer) SRV - [2017/03/04 10:25:47 | 000,167,936 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc) SRV - [2017/03/04 10:25:43 | 000,063,488 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\moshost.dll -- (MapsBroker) SRV - [2017/03/04 10:25:40 | 000,073,216 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\tzautoupdate.dll -- (tzautoupdate) SRV - [2017/03/04 10:23:25 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\appinfo.dll -- (Appinfo) SRV - [2017/03/04 10:21:12 | 000,579,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\XblAuthManager.dll -- (XblAuthManager) SRV - [2017/03/04 10:20:12 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\certprop.dll -- (SCPolicySvc) SRV - [2017/03/04 10:20:12 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\certprop.dll -- (CertPropSvc) SRV - [2017/03/04 10:19:45 | 000,277,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvcext.dll -- (vmicvss) SRV - [2017/03/04 10:19:45 | 000,277,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvcext.dll -- (vmicrdv) SRV - [2017/03/04 10:19:30 | 000,203,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache) SRV - [2017/03/04 10:19:15 | 000,704,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\XblGameSave.dll -- (XblGameSave) SRV - [2017/03/04 10:18:14 | 000,828,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\XboxNetApiSvc.dll -- (XboxNetApiSvc) SRV - [2017/03/04 10:17:05 | 000,827,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\iphlpsvc.dll -- (iphlpsvc) SRV - [2017/03/04 10:17:00 | 000,482,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess) SRV - [2017/03/04 10:16:45 | 001,013,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc) SRV - [2017/03/04 10:16:41 | 000,565,248 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wcmsvc.dll -- (Wcmsvc) SRV - [2017/03/04 10:16:38 | 000,473,600 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\RDXService.dll -- (RetailDemo) SRV - [2017/03/04 10:16:28 | 000,636,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\winhttp.dll -- (WinHttpAutoProxySvc) SRV - [2017/03/04 10:16:20 | 000,968,704 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\Unistore.dll -- (UnistoreSvc) SRV - [2017/03/04 10:12:46 | 000,894,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\SensorDataService.exe -- (SensorDataService) SRV - [2017/03/04 10:07:41 | 000,551,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\vds.exe -- (vds) SRV - [2017/03/04 10:06:40 | 001,382,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\workfolderssvc.dll -- (workfolderssvc) SRV - [2017/03/04 10:02:00 | 001,997,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc) SRV - [2017/03/04 10:01:07 | 000,773,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\System32\SearchIndexer.exe -- (WSearch) SRV - [2017/03/04 10:00:54 | 000,529,408 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\spoolsv.exe -- (Spooler) SRV - [2017/03/04 09:59:52 | 001,252,352 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\UserDataService.dll -- (UserDataSvc) SRV - [2016/12/14 08:41:53 | 000,137,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ScDeviceEnum.dll -- (ScDeviceEnum) SRV - [2016/12/14 08:36:46 | 000,497,664 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc) SRV - [2016/11/11 11:25:33 | 000,110,080 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\servicing\TrustedInstaller.exe -- (TrustedInstaller) SRV - [2016/11/11 11:23:13 | 000,254,976 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\System32\cdpusersvc.dll -- (CDPUserSvc) SRV - [2016/11/11 11:21:08 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\EnterpriseAppMgmtSvc.dll -- (EntAppSvc) SRV - [2016/11/11 11:18:41 | 000,294,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cdpsvc.dll -- (CDPSvc) SRV - [2016/11/11 11:18:22 | 000,142,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wscsvc.dll -- (wscsvc) SRV - [2016/11/11 11:15:02 | 000,441,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AppReadiness.dll -- (AppReadiness) SRV - [2016/11/11 11:11:36 | 000,309,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\StorSvc.dll -- (StorSvc) SRV - [2016/11/11 11:05:12 | 003,370,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\Windows.StateRepository.dll -- (StateRepository) SRV - [2016/11/11 11:04:11 | 000,241,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation) SRV - [2016/11/11 11:02:40 | 000,612,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsm.dll -- (LSM) SRV - [2016/11/02 14:29:05 | 000,503,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FrameServer.dll -- (FrameServer) SRV - [2016/11/02 14:26:13 | 000,182,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NetSetupSvc.dll -- (NetSetupSvc) SRV - [2016/10/15 08:36:04 | 004,970,224 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc) SRV - [2016/10/15 08:27:58 | 000,421,216 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pcasvc.dll -- (PcaSvc) SRV - [2016/10/15 07:48:56 | 000,797,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\qmgr.dll -- (BITS) SRV - [2016/10/05 13:20:04 | 000,303,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc) SRV - [2016/09/15 20:57:56 | 000,268,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc) SRV - [2016/09/15 20:56:50 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\RMapi.dll -- (RmSvc) SRV - [2016/09/15 20:56:09 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\SensorService.dll -- (SensorService) SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicvmsession) SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmictimesync) SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicshutdown) SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmickvpexchange) SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicheartbeat) SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicguestinterface) SRV - [2016/09/15 20:54:09 | 000,431,104 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\mprdim.dll -- (RemoteAccess) SRV - [2016/09/15 20:53:11 | 001,344,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (EventLog) SRV - [2016/09/15 20:48:30 | 000,310,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC) SRV - [2016/09/15 20:44:41 | 000,057,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\Sens.dll -- (SENS) SRV - [2016/09/15 20:35:53 | 000,331,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\SessEnv.dll -- (SessionEnv) SRV - [2016/09/07 09:07:57 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsass.exe -- (SamSs) SRV - [2016/09/07 08:50:07 | 000,636,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PhoneService.dll -- (PhoneSvc) SRV - [2016/09/07 08:32:03 | 000,960,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc) SRV - [2016/08/20 09:11:31 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\LicenseManagerSvc.dll -- (LicenseManager) SRV - [2016/08/06 07:37:40 | 000,366,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\das.dll -- (DeviceAssociationService) SRV - [2016/08/06 07:33:24 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\smphost.dll -- (smphost) SRV - [2016/08/06 07:23:40 | 000,448,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\w32time.dll -- (W32Time) SRV - [2016/07/16 21:17:58 | 000,234,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\umrdp.dll -- (UmRdpService) SRV - [2016/07/16 21:17:56 | 000,154,624 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV - [2016/07/16 12:26:58 | 000,527,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FXSSVC.exe -- (Fax) SRV - [2016/07/16 12:26:53 | 001,310,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbengine.exe -- (wbengine) SRV - [2016/07/16 12:26:51 | 000,071,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wpdbusenum.dll -- (WPDBusEnum) SRV - [2016/07/16 12:26:45 | 000,136,360 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing) SRV - [2016/07/16 12:26:42 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiarpc.dll -- (WiaRpc) SRV - [2016/07/16 12:26:40 | 000,373,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WalletService.dll -- (WalletService) SRV - [2016/07/16 12:26:40 | 000,124,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC) SRV - [2016/07/16 12:26:15 | 000,144,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcaSvc.dll -- (NcaSvc) SRV - [2016/07/16 12:26:05 | 000,385,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider) SRV - [2016/07/16 12:26:05 | 000,353,280 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\p2psvc.dll -- (p2psvc) SRV - [2016/07/16 12:26:05 | 000,285,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc) SRV - [2016/07/16 12:26:05 | 000,285,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc) SRV - [2016/07/16 12:26:05 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener) SRV - [2016/07/16 12:26:05 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\browser.dll -- (Browser) SRV - [2016/07/16 12:26:05 | 000,023,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg) SRV - [2016/07/16 12:26:00 | 000,068,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wercplsupport.dll -- (wercplsupport) SRV - [2016/07/16 12:25:58 | 000,566,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection) SRV - [2016/07/16 12:25:58 | 000,076,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup) SRV - [2016/07/16 12:25:58 | 000,055,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes) SRV - [2016/07/16 12:25:57 | 000,254,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv) SRV - [2016/07/16 12:25:57 | 000,120,320 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll -- (shpamsvc) SRV - [2016/07/16 12:25:57 | 000,075,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG) SRV - [2016/07/16 12:25:57 | 000,047,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dmwappushsvc.dll -- (dmwappushservice) SRV - [2016/07/16 12:25:56 | 000,328,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\upnphost.dll -- (upnphost) SRV - [2016/07/16 12:25:56 | 000,096,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\eapsvc.dll -- (Eaphost) SRV - [2016/07/16 12:25:56 | 000,036,864 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\efssvc.dll -- (EFS) SRV - [2016/07/16 12:25:55 | 000,733,184 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\schedsvc.dll -- (Schedule) SRV - [2016/07/16 12:25:55 | 000,155,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dcpsvc.dll -- (DcpSvc) SRV - [2016/07/16 12:25:55 | 000,117,248 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\regsvc.dll -- (RemoteRegistry) SRV - [2016/07/16 12:25:51 | 000,772,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\sysmain.dll -- (SysMain) SRV - [2016/07/16 12:25:51 | 000,396,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc) SRV - [2016/07/16 12:25:51 | 000,096,256 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay) SRV - [2016/07/16 12:25:51 | 000,096,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\umpnpmgr.dll -- (DeviceInstall) SRV - [2016/07/16 12:25:50 | 000,083,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\WUDFSvc.dll -- (wudfsvc) SRV - [2016/07/16 12:25:47 | 000,146,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbem\WmiApSrv.exe -- (wmiApSrv) SRV - [2016/07/16 12:25:46 | 000,188,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ssdpsrv.dll -- (SSDPSRV) SRV - [2016/07/16 12:25:46 | 000,184,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (winmgmt) SRV - [2016/07/16 12:25:46 | 000,126,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wersvc.dll -- (WerSvc) SRV - [2016/07/16 12:25:40 | 000,059,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper) SRV - [2016/07/16 12:25:40 | 000,023,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nsisvc.dll -- (nsi) SRV - [2016/07/16 12:25:39 | 000,670,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\netlogon.dll -- (Netlogon) SRV - [2016/07/16 12:25:39 | 000,292,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp) SRV - [2016/07/16 12:25:39 | 000,234,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer) SRV - [2016/07/16 12:25:39 | 000,105,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power) SRV - [2016/07/16 12:25:39 | 000,070,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\keyiso.dll -- (KeyIso) SRV - [2016/07/16 12:25:39 | 000,069,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service) SRV - [2016/07/16 12:25:39 | 000,065,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc) SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svchost.exe -- (WpnUserService_7c273d7) SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\svchost.exe -- (UserDataSvc_7c273d7) SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\svchost.exe -- (UnistoreSvc_7c273d7) SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\svchost.exe -- (PimIndexMaintenanceSvc_7c273d7) SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\svchost.exe -- (OneSyncSvc_7c273d7) SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svchost.exe -- (MessagingService_7c273d7) SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\svchost.exe -- (CDPUserSvc_7c273d7) SRV - [2016/07/16 12:25:39 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\seclogon.dll -- (seclogon) SRV - [2016/07/16 12:25:39 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lmhsvc.dll -- (lmhosts) SRV - [2016/07/16 12:25:39 | 000,019,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\System32\dllhost.exe -- (COMSysApp) SRV - [2016/07/16 12:25:31 | 000,330,240 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\System32\APHostService.dll -- (OneSyncSvc) SRV - [2016/07/16 12:25:24 | 000,183,808 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\SCardSvr.dll -- (SCardSvr) SRV - [2016/07/16 12:25:24 | 000,092,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) SRV - [2016/07/16 12:25:24 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\UI0Detect.exe -- (UI0Detect) SRV - [2016/07/16 12:25:23 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\hidserv.dll -- (hidserv) SRV - [2016/07/16 12:25:23 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wephostsvc.dll -- (WEPHOSTSVC) SRV - [2016/07/16 12:25:22 | 000,347,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\es.dll -- (EventSystem) SRV - [2016/07/16 12:25:22 | 000,329,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msdtckrm.dll -- (KtmRm) SRV - [2016/07/16 12:25:22 | 000,139,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msdtc.exe -- (MSDTC) SRV - [2016/07/16 12:25:22 | 000,134,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\TabSvc.dll -- (TabletInputService) SRV - [2016/07/16 12:25:22 | 000,117,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\iscsiexe.dll -- (MSiSCSI) SRV - [2016/07/16 12:25:22 | 000,088,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\trkwks.dll -- (TrkWks) SRV - [2016/07/16 12:25:22 | 000,009,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Locator.exe -- (RpcLocator) SRV - [2016/07/16 12:25:21 | 000,328,704 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\swprv.dll -- (swprv) SRV - [2016/07/16 12:25:21 | 000,253,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\TieringEngineService.exe -- (TieringEngineService) SRV - [2016/07/16 12:25:21 | 000,137,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dps.dll -- (DPS) SRV - [2016/07/16 12:25:21 | 000,104,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\fhsvc.dll -- (fhsvc) SRV - [2016/07/16 12:25:21 | 000,017,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\fdPHost.dll -- (fdPHost) SRV - [2016/07/16 12:25:21 | 000,011,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svsvc.dll -- (svsvc) SRV - [2016/07/16 12:25:16 | 001,536,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pla.dll -- (pla) SRV - [2016/07/16 12:25:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FDResPub.dll -- (FDResPub) SRV - [2016/07/16 12:25:15 | 000,198,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\WebClnt.dll -- (WebClient) SRV - [2016/07/16 12:25:15 | 000,149,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wecsvc.dll -- (Wecsvc) SRV - [2016/07/16 12:25:15 | 000,089,088 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\wdi.dll -- (WdiSystemHost) SRV - [2016/07/16 12:25:15 | 000,089,088 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\wdi.dll -- (WdiServiceHost) SRV - [2016/07/16 12:25:15 | 000,058,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\System32\msiexec.exe -- (msiserver) SRV - [2016/07/16 12:25:10 | 000,413,184 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\SmsRouterSvc.dll -- (SmsRouter) SRV - [2016/07/16 12:25:10 | 000,230,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc) SRV - [2016/07/16 12:25:09 | 000,432,640 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofmsvc.dll -- (netprofm) SRV - [2016/07/16 12:25:09 | 000,379,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wcncsvc.dll -- (wcncsvc) SRV - [2016/07/16 12:25:09 | 000,212,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lltdsvc.dll -- (lltdsvc) SRV - [2016/07/16 12:25:09 | 000,204,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netman.dll -- (Netman) SRV - [2016/07/16 12:25:09 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\irmon.dll -- (irmon) SRV - [2016/07/16 12:25:08 | 000,317,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent) SRV - [2016/07/16 12:25:08 | 000,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\sstpsvc.dll -- (SstpSvc) SRV - [2016/07/16 12:25:08 | 000,046,080 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\MessagingService.dll -- (MessagingService) SRV - [2016/07/16 12:25:08 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\snmptrap.exe -- (SNMPTRAP) SRV - [2016/07/16 12:25:07 | 000,740,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IKEEXT.DLL -- (IKEEXT) SRV - [2016/07/16 12:25:07 | 000,553,984 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\BFE.DLL -- (BFE) SRV - [2016/07/16 12:25:07 | 000,446,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\tileobjserver.dll -- (tiledatamodelsvc) SRV - [2016/07/16 12:25:07 | 000,294,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ncbservice.dll -- (NcbService) SRV - [2016/07/16 12:25:07 | 000,280,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV - [2016/07/16 12:25:07 | 000,259,072 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\vaultsvc.dll -- (VaultSvc) SRV - [2016/07/16 12:25:07 | 000,195,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wpnservice.dll -- (WpnService) SRV - [2016/07/16 12:25:07 | 000,167,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\tetheringservice.dll -- (icssvc) SRV - [2016/07/16 12:25:07 | 000,129,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\TimeBrokerServer.dll -- (TimeBrokerSvc) SRV - [2016/07/16 12:25:07 | 000,058,368 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\WpnUserService.dll -- (WpnUserService) SRV - [2016/07/16 12:25:07 | 000,030,208 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lfsvc.dll -- (lfsvc) SRV - [2016/07/16 12:25:07 | 000,024,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DevQueryBroker.dll -- (DevQueryBroker) SRV - [2016/07/16 12:25:05 | 000,693,248 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc) SRV - [2016/07/16 12:25:04 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AJRouter.dll -- (AJRouter) SRV - [2016/07/16 12:25:03 | 000,591,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ClipSVC.dll -- (ClipSVC) SRV - [2016/07/16 12:25:03 | 000,159,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc) SRV - [2016/07/16 12:25:03 | 000,121,344 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\dssvc.dll -- (DsSvc) SRV - [2016/07/16 12:25:03 | 000,101,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\embeddedmodesvc.dll -- (embeddedmode) SRV - [2016/07/16 12:25:01 | 000,234,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\qwave.dll -- (QWAVE) SRV - [2016/07/16 12:25:01 | 000,093,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto) SRV - [2016/07/16 12:24:52 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\BthHFSrv.dll -- (BthHFSrv) SRV - [2016/05/25 14:03:26 | 000,043,696 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0) SRV - [2016/05/03 23:26:06 | 000,299,488 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IntelCpHeciSvc.exe -- (cphs) SRV - [2016/05/03 23:26:06 | 000,292,832 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\System32\igfxCUIService.exe -- (igfxCUIService1.0.0.0) SRV - [2014/09/10 20:21:40 | 000,461,544 | ---- | M] (Acer Incorporate) [Auto | Running] -- C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe -- (LMSvc) SRV - [2014/06/26 16:36:30 | 000,451,816 | ---- | M] (Acer Incorporate) [On_Demand | Running] -- C:\Program Files\Acer\Acer Quick Access\QASvc.exe -- (QASvc) SRV - [2014/05/08 12:15:06 | 000,097,208 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\System32\DptfPolicyCriticalService.exe -- (DptfPolicyCriticalService) SRV - [2014/05/08 12:15:06 | 000,090,552 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\System32\DptfPolicyLpmService.exe -- (DptfPolicyLpmService) SRV - [2014/05/08 12:03:42 | 000,083,384 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\System32\DptfParticipantProcessorService.exe -- (DptfParticipantProcessorService) SRV - [2014/03/12 16:31:58 | 000,070,144 | ---- | M] () [Auto | Running] -- C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe -- (BTDevManager) SRV - [2014/01/08 22:54:12 | 000,247,040 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer Touch Tools\TouchToolsLaunchSvc.exe -- (TouchToolsLaunchService) [color=#E56717]========== Driver Services (All) ==========[/color] DRV - [2017/04/28 04:58:41 | 001,956,704 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\System32\drivers\ntfs.sys -- (NTFS) DRV - [2017/04/28 04:49:54 | 000,053,080 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends) DRV - [2017/04/28 04:46:29 | 001,896,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl) DRV - [2017/04/28 04:45:00 | 000,545,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vhdmp.sys -- (vhdmp) DRV - [2017/04/28 04:43:55 | 000,458,592 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\spaceport.sys -- (spaceport) DRV - [2017/04/28 04:43:27 | 000,355,168 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\rdbss.sys -- (rdbss) DRV - [2017/04/28 04:22:08 | 000,069,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\raspppoe.sys -- (RasPppoe) DRV - [2017/04/28 04:20:23 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp) DRV - [2017/04/28 04:19:07 | 000,094,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bridge.sys -- (MsBridge) DRV - [2017/04/28 04:12:10 | 000,755,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bthport.sys -- (BTHPORT) DRV - [2017/04/28 04:04:29 | 000,626,688 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\srv2.sys -- (srv2) DRV - [2017/04/28 04:04:28 | 000,344,576 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\srv.sys -- (srv) DRV - [2017/03/28 10:13:10 | 000,950,624 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ndis.sys -- (NDIS) DRV - [2017/03/28 09:58:34 | 000,240,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\msiscsi.sys -- (iScsiPrt) DRV - [2017/03/28 09:52:22 | 001,966,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip6) DRV - [2017/03/28 09:52:22 | 001,966,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip) DRV - [2017/03/28 09:41:48 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\BasicRender.sys -- (BasicRender) DRV - [2017/03/28 09:40:27 | 000,046,080 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\BasicDisplay.sys -- (BasicDisplay) DRV - [2017/03/04 11:41:26 | 000,078,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\IPMIDrv.sys -- (IPMIDRV) DRV - [2017/03/04 11:09:41 | 000,092,000 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pdc.sys -- (pdc) DRV - [2017/03/04 11:06:18 | 000,106,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\partmgr.sys -- (partmgr) DRV - [2017/03/04 11:02:34 | 000,095,584 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\tdx.sys -- (tdx) DRV - [2017/03/04 10:59:36 | 000,055,136 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\dam.sys -- (dam) DRV - [2017/03/04 10:52:45 | 000,111,968 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\storahci.sys -- (storahci) DRV - [2017/03/04 10:51:59 | 000,523,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\cng.sys -- (CNG) DRV - [2017/03/04 10:51:46 | 000,186,720 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mrxsmb20.sys -- (mrxsmb20) DRV - [2017/03/04 10:51:45 | 000,399,712 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mrxsmb.sys -- (mrxsmb) DRV - [2017/03/04 10:29:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mskssrv.sys -- (MSKSSRV) DRV - [2017/03/04 10:28:22 | 000,216,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\xboxgip.sys -- (xboxgip) DRV - [2017/03/04 10:26:38 | 000,430,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nwifi.sys -- (NativeWifiP) DRV - [2017/03/04 10:24:04 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg) DRV - [2017/03/04 10:22:18 | 000,113,152 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\dfsc.sys -- (Dfsc) DRV - [2017/03/04 10:20:10 | 000,518,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WdiWiFi.sys -- (wdiwifi) DRV - [2016/12/14 09:04:26 | 000,261,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pci.sys -- (pci) DRV - [2016/12/09 14:12:28 | 000,276,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\clfs.sys -- (CLFS) DRV - [2016/11/11 11:59:57 | 000,292,192 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\System32\drivers\fastfat.sys -- (fastfat) DRV - [2016/11/11 11:45:26 | 000,175,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tpm.sys -- (TPM) DRV - [2016/11/11 11:25:16 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\modem.sys -- (Modem) DRV - [2016/11/11 11:13:27 | 000,230,400 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\mrxsmb10.sys -- (mrxsmb10) DRV - [2016/11/02 15:21:20 | 000,570,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\acpi.sys -- (ACPI) DRV - [2016/11/02 15:00:03 | 000,042,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\iorate.sys -- (iorate) DRV - [2016/11/02 14:36:08 | 000,078,336 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\bowser.sys -- (bowser) DRV - [2016/10/15 08:10:16 | 000,482,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\afd.sys -- (AFD) DRV - [2016/10/15 08:10:14 | 000,781,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\http.sys -- (HTTP) DRV - [2016/10/15 07:46:06 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\capimg.sys -- (CapImg) DRV - [2016/10/15 07:33:33 | 000,188,928 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\ahcache.sys -- (ahcache) DRV - [2016/10/05 14:10:29 | 000,231,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\sdbus.sys -- (sdbus) DRV - [2016/10/05 13:46:02 | 000,056,672 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\MegaSas2i.sys -- (megasas2i) DRV - [2016/10/05 13:11:38 | 000,125,440 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mrxdav.sys -- (MRxDAV) DRV - [2016/09/15 21:21:08 | 000,557,920 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\fvevol.sys -- (fvevol) DRV - [2016/09/15 21:20:51 | 000,095,072 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\wcifs.sys -- (wcifs) DRV - [2016/09/15 21:00:53 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbdhid.sys -- (kbdhid) DRV - [2016/09/07 09:33:44 | 000,102,752 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ksecdd.sys -- (KSecDD) DRV - [2016/09/07 09:13:09 | 000,101,216 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv) DRV - [2016/09/07 08:39:11 | 000,196,608 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\srvnet.sys -- (srvnet) DRV - [2016/08/20 09:15:11 | 000,034,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\xinputhid.sys -- (xinputhid) DRV - [2016/08/20 09:13:17 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BthMini.SYS -- (BthMini) DRV - [2016/08/06 08:22:32 | 000,173,408 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\System32\drivers\wof.sys -- (Wof) DRV - [2016/08/06 08:14:00 | 000,145,248 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ksecpkg.sys -- (KSecPkg) DRV - [2016/08/06 07:47:47 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hidusb.sys -- (HidUsb) DRV - [2016/07/16 21:18:00 | 000,131,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpdr.sys -- (RDPDR) DRV - [2016/07/16 21:18:00 | 000,023,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV - [2016/07/16 21:17:57 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt) DRV - [2016/07/16 21:17:57 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus) DRV - [2016/07/16 12:26:51 | 000,024,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WpdUpFltr.sys -- (WpdUpFltr) DRV - [2016/07/16 12:26:02 | 000,244,576 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\WdFilter.sys -- (WdFilter) DRV - [2016/07/16 12:26:02 | 000,100,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WdNisDrv.sys -- (WdNisDrv) DRV - [2016/07/16 12:26:02 | 000,037,912 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\WdBoot.sys -- (WdBoot) DRV - [2016/07/16 12:25:57 | 000,188,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ipnat.sys -- (IPNAT) DRV - [2016/07/16 12:25:57 | 000,095,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) DRV - [2016/07/16 12:25:56 | 000,166,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiswan.sys -- (ndiswanlegacy) DRV - [2016/07/16 12:25:56 | 000,166,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndiswan.sys -- (NdisWan) DRV - [2016/07/16 12:25:56 | 000,106,496 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\Ndu.sys -- (Ndu) DRV - [2016/07/16 12:25:55 | 000,711,168 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\PEAuth.sys -- (PEAuth) DRV - [2016/07/16 12:25:55 | 000,109,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NdisImPlatform.sys -- (NdisImPlatform) DRV - [2016/07/16 12:25:55 | 000,080,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rasl2tp.sys -- (Rasl2tp) DRV - [2016/07/16 12:25:55 | 000,074,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\raspptp.sys -- (PptpMiniport) DRV - [2016/07/16 12:25:55 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\mslldp.sys -- (MsLldp) DRV - [2016/07/16 12:25:55 | 000,065,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rassstp.sys -- (RasSstp) DRV - [2016/07/16 12:25:55 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wanarp.sys -- (wanarpv6) DRV - [2016/07/16 12:25:55 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\wanarp.sys -- (wanarp) DRV - [2016/07/16 12:25:55 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndproxy.sys -- (ndproxy) DRV - [2016/07/16 12:25:55 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndistapi.sys -- (NdisTapi) DRV - [2016/07/16 12:25:55 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mstee.sys -- (MSTEE) DRV - [2016/07/16 12:25:55 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mspqm.sys -- (MSPQM) DRV - [2016/07/16 12:25:55 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mspclock.sys -- (MSPCLOCK) DRV - [2016/07/16 12:25:51 | 000,262,144 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\udfs.sys -- (udfs) DRV - [2016/07/16 12:25:51 | 000,215,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost) DRV - [2016/07/16 12:25:51 | 000,147,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\appid.sys -- (AppID) DRV - [2016/07/16 12:25:51 | 000,069,984 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo) DRV - [2016/07/16 12:25:51 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\applockerfltr.sys -- (applockerfltr) DRV - [2016/07/16 12:25:50 | 000,353,120 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volsnap.sys -- (volsnap) DRV - [2016/07/16 12:25:50 | 000,312,160 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx) DRV - [2016/07/16 12:25:50 | 000,217,088 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\netbt.sys -- (NetBT) DRV - [2016/07/16 12:25:50 | 000,161,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFRd.sys -- (WUDFWpdFs) DRV - [2016/07/16 12:25:50 | 000,161,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFRd.sys -- (WUDFRd) DRV - [2016/07/16 12:25:50 | 000,161,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFRd.sys -- (INVN_MotionApps) DRV - [2016/07/16 12:25:50 | 000,161,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFRd.sys -- (CM3218x) DRV - [2016/07/16 12:25:50 | 000,076,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFPf.sys -- (WudfPf) DRV - [2016/07/16 12:25:50 | 000,074,752 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\cdfs.sys -- (cdfs) DRV - [2016/07/16 12:25:50 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy) DRV - [2016/07/16 12:25:47 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap) DRV - [2016/07/16 12:25:41 | 000,205,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ufx01000.sys -- (Ufx01000) DRV - [2016/07/16 12:25:41 | 000,194,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\msrpc.sys -- (MsRPC) DRV - [2016/07/16 12:25:41 | 000,117,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SerCx2.sys -- (SerCx2) DRV - [2016/07/16 12:25:41 | 000,086,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT) DRV - [2016/07/16 12:25:41 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UcmTcpciCx.sys -- (UcmTcpciCx0101) DRV - [2016/07/16 12:25:41 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UcmCx.sys -- (UcmCx0101) DRV - [2016/07/16 12:25:41 | 000,060,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SpbCx.sys -- (SpbCx) DRV - [2016/07/16 12:25:41 | 000,059,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\SerCx.sys -- (SerCx) DRV - [2016/07/16 12:25:41 | 000,042,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\urscx01000.sys -- (UrsCx01000) DRV - [2016/07/16 12:25:41 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\IndirectKmd.sys -- (IndirectKmd) DRV - [2016/07/16 12:25:41 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidumdf.sys -- (mshidumdf) DRV - [2016/07/16 12:25:41 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\gpuenergydrv.sys -- (GpuEnergyDrv) DRV - [2016/07/16 12:25:40 | 000,584,296 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000) DRV - [2016/07/16 12:25:40 | 000,293,728 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\fltMgr.sys -- (FltMgr) DRV - [2016/07/16 12:25:40 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VerifierExt.sys -- (VerifierExt) DRV - [2016/07/16 12:25:40 | 000,087,392 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\mountmgr.sys -- (mountmgr) DRV - [2016/07/16 12:25:40 | 000,062,976 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\storqosflt.sys -- (storqosflt) DRV - [2016/07/16 12:25:40 | 000,051,712 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\npfs.sys -- (Npfs) DRV - [2016/07/16 12:25:40 | 000,042,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\condrv.sys -- (condrv) DRV - [2016/07/16 12:25:40 | 000,028,160 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy) DRV - [2016/07/16 12:25:40 | 000,026,464 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\System32\drivers\fs_rec.sys -- (Fs_Rec) DRV - [2016/07/16 12:25:40 | 000,024,576 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\msfs.sys -- (Msfs) DRV - [2016/07/16 12:25:40 | 000,005,120 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\null.sys -- (Null) DRV - [2016/07/16 12:25:39 | 000,279,040 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\System32\drivers\exfat.sys -- (exfat) DRV - [2016/07/16 12:25:39 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndisuio.sys -- (Ndisuio) DRV - [2016/07/16 12:25:39 | 000,042,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw) DRV - [2016/07/16 12:25:31 | 000,101,216 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\mup.sys -- (Mup) DRV - [2016/07/16 12:25:31 | 000,033,120 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\cnghwassist.sys -- (cnghwassist) DRV - [2016/07/16 12:25:31 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf) DRV - [2016/07/16 12:25:30 | 000,037,376 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\mmcss.sys -- (MMCSS) DRV - [2016/07/16 12:25:24 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter) DRV - [2016/07/16 12:25:22 | 000,075,104 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\EhStorClass.sys -- (EhStorClass) DRV - [2016/07/16 12:25:22 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\beep.sys -- (Beep) DRV - [2016/07/16 12:25:21 | 000,029,184 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace) DRV - [2016/07/16 12:25:15 | 000,099,328 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\luafv.sys -- (luafv) DRV - [2016/07/16 12:25:10 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\vwififlt.sys -- (vwififlt) DRV - [2016/07/16 12:25:10 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus) DRV - [2016/07/16 12:25:09 | 000,131,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tunnel.sys -- (tunnel) DRV - [2016/07/16 12:25:09 | 000,094,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\irda.sys -- (irda) DRV - [2016/07/16 12:25:09 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rspndr.sys -- (rspndr) DRV - [2016/07/16 12:25:09 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lltdio.sys -- (lltdio) DRV - [2016/07/16 12:25:09 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\ws2ifsl.sys -- (ws2ifsl) DRV - [2016/07/16 12:25:08 | 000,048,480 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\netbios.sys -- (NetBIOS) DRV - [2016/07/16 12:25:08 | 000,030,048 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount) DRV - [2016/07/16 12:25:08 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\asyncmac.sys -- (AsyncMac) DRV - [2016/07/16 12:25:08 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NdisVirtualBus.sys -- (NdisVirtualBus) DRV - [2016/07/16 12:25:08 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\irenum.sys -- (IRENUM) DRV - [2016/07/16 12:25:07 | 000,135,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\msgpioclx.sys -- (GPIOClx0101) DRV - [2016/07/16 12:25:07 | 000,088,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\wfplwfs.sys -- (WFPLWFS) DRV - [2016/07/16 12:25:07 | 000,058,368 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\registry.sys -- (clreg) DRV - [2016/07/16 12:25:07 | 000,052,736 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\wcnfs.sys -- (wcnfs) DRV - [2016/07/16 12:25:05 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv) DRV - [2016/07/16 12:25:01 | 000,173,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Ucx01000.sys -- (Ucx01000) DRV - [2016/07/16 12:25:01 | 000,131,424 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\pacer.sys -- (Psched) DRV - [2016/07/16 12:25:01 | 000,091,488 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\acpiex.sys -- (acpiex) DRV - [2016/07/16 12:25:01 | 000,077,312 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\filecrypt.sys -- (FileCrypt) DRV - [2016/07/16 12:25:01 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ipfltdrv.sys -- (IpFilterDriver) DRV - [2016/07/16 12:25:01 | 000,062,976 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NetAdapterCx.sys -- (NetAdapterCx) DRV - [2016/07/16 12:25:01 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV - [2016/07/16 12:25:01 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Udecx.sys -- (UdeCx) DRV - [2016/07/16 12:25:01 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\qwavedrv.sys -- (QWAVEdrv) DRV - [2016/07/16 12:25:01 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vhf.sys -- (vhf) DRV - [2016/07/16 12:25:01 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rasacd.sys -- (RasAcd) DRV - [2016/07/16 12:24:57 | 000,430,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\USBHUB3.SYS -- (USBHUB3) DRV - [2016/07/16 12:24:57 | 000,370,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbhub.sys -- (usbhub) DRV - [2016/07/16 12:24:57 | 000,289,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\USBXHCI.SYS -- (USBXHCI) DRV - [2016/07/16 12:24:57 | 000,126,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbccgp.sys -- (usbccgp) DRV - [2016/07/16 12:24:57 | 000,108,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBSTOR.SYS -- (USBSTOR) DRV - [2016/07/16 12:24:57 | 000,107,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ufxsynopsys.sys -- (ufxsynopsys) DRV - [2016/07/16 12:24:57 | 000,091,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidbth.sys -- (HidBth) DRV - [2016/07/16 12:24:57 | 000,090,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\i8042prt.sys -- (i8042prt) DRV - [2016/07/16 12:24:57 | 000,076,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\sdstor.sys -- (sdstor) DRV - [2016/07/16 12:24:57 | 000,075,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UfxChipidea.sys -- (UfxChipidea) DRV - [2016/07/16 12:24:57 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbehci.sys -- (usbehci) DRV - [2016/07/16 12:24:57 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WINUSB) DRV - [2016/07/16 12:24:57 | 000,066,560 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\iai2c.sys -- (iai2c) DRV - [2016/07/16 12:24:57 | 000,047,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbdclass.sys -- (kbdclass) DRV - [2016/07/16 12:24:57 | 000,044,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mouclass.sys -- (mouclass) DRV - [2016/07/16 12:24:57 | 000,039,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\msgpiowin32.sys -- (msgpiowin32) DRV - [2016/07/16 12:24:57 | 000,038,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidinterrupt.sys -- (hidinterrupt) DRV - [2016/07/16 12:24:57 | 000,037,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hidi2c.sys -- (hidi2c) DRV - [2016/07/16 12:24:57 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UcmUcsi.sys -- (UcmUcsi) DRV - [2016/07/16 12:24:57 | 000,027,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\buttonconverter.sys -- (buttonconverter) DRV - [2016/07/16 12:24:57 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD) DRV - [2016/07/16 12:24:57 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbuhci.sys -- (usbuhci) DRV - [2016/07/16 12:24:57 | 000,025,600 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\iagpio.sys -- (iagpio) DRV - [2016/07/16 12:24:57 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mouhid.sys -- (mouhid) DRV - [2016/07/16 12:24:57 | 000,022,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\urschipidea.sys -- (UrsChipidea) DRV - [2016/07/16 12:24:57 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbohci.sys -- (usbohci) DRV - [2016/07/16 12:24:57 | 000,021,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\urssynopsys.sys -- (UrsSynopsys) DRV - [2016/07/16 12:24:57 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sermouse.sys -- (sermouse) DRV - [2016/07/16 12:24:57 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\npsvctrig.sys -- (npsvctrig) DRV - [2016/07/16 12:24:57 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\genericusbfn.sys -- (genericusbfn) DRV - [2016/07/16 12:24:57 | 000,017,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kdnic.sys -- (kdnic) DRV - [2016/07/16 12:24:57 | 000,016,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\swenum.sys -- (swenum) DRV - [2016/07/16 12:24:57 | 000,015,384 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy) DRV - [2016/07/16 12:24:57 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\umpass.sys -- (UmPass) DRV - [2016/07/16 12:24:55 | 000,276,832 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\VSTXRAID.SYS -- (VSTXRAID) DRV - [2016/07/16 12:24:55 | 000,149,856 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\vsmraid.sys -- (vsmraid) DRV - [2016/07/16 12:24:55 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\intelppm.sys -- (intelppm) DRV - [2016/07/16 12:24:55 | 000,108,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdk8.sys -- (AmdK8) DRV - [2016/07/16 12:24:55 | 000,105,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\viac7.sys -- (ViaC7) DRV - [2016/07/16 12:24:55 | 000,105,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdppm.sys -- (AmdPPM) DRV - [2016/07/16 12:24:55 | 000,105,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\processr.sys -- (Processor) DRV - [2016/07/16 12:24:55 | 000,085,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\disk.sys -- (disk) DRV - [2016/07/16 12:24:55 | 000,081,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\parport.sys -- (Parport) DRV - [2016/07/16 12:24:55 | 000,077,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial) DRV - [2016/07/16 12:24:55 | 000,066,912 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\stornvme.sys -- (stornvme) DRV - [2016/07/16 12:24:55 | 000,064,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volmgr.sys -- (volmgr) DRV - [2016/07/16 12:24:55 | 000,059,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\uaspstor.sys -- (UASPStor) DRV - [2016/07/16 12:24:55 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser.sys -- (usbser) DRV - [2016/07/16 12:24:55 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\umbus.sys -- (umbus) DRV - [2016/07/16 12:24:55 | 000,048,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vdrvroot.sys -- (vdrvroot) DRV - [2016/07/16 12:24:55 | 000,035,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\mssmbios.sys -- (mssmbios) DRV - [2016/07/16 12:24:55 | 000,026,976 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\stexstor.sys -- (stexstor) DRV - [2016/07/16 12:24:55 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\storufs.sys -- (storufs) DRV - [2016/07/16 12:24:55 | 000,023,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\uefi.sys -- (UEFI) DRV - [2016/07/16 12:24:55 | 000,023,392 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\atapi.sys -- (atapi) DRV - [2016/07/16 12:24:55 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CmBatt.sys -- (CmBatt) DRV - [2016/07/16 12:24:55 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serenum.sys -- (Serenum) DRV - [2016/07/16 12:24:55 | 000,017,760 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\intelide.sys -- (intelide) DRV - [2016/07/16 12:24:55 | 000,014,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volume.sys -- (volume) DRV - [2016/07/16 12:24:55 | 000,014,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\pciide.sys -- (pciide) DRV - [2016/07/16 12:24:55 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\acpitime.sys -- (acpitime) DRV - [2016/07/16 12:24:55 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\parvdm.sys -- (Parvdm) DRV - [2016/07/16 12:24:55 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\acpipagr.sys -- (acpipagr) DRV - [2016/07/16 12:24:54 | 001,038,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\adp80xx.sys -- (ADP80XX) DRV - [2016/07/16 12:24:54 | 000,524,640 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\iaStorAV.sys -- (iaStorAV) DRV - [2016/07/16 12:24:54 | 000,464,736 | ---- | M] (LSI Corporation, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\megasr.sys -- (megasr) DRV - [2016/07/16 12:24:54 | 000,333,664 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\iaStorV.sys -- (iaStorV) DRV - [2016/07/16 12:24:54 | 000,215,392 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\amdsbs.sys -- (amdsbs) DRV - [2016/07/16 12:24:54 | 000,172,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\1394ohci.sys -- (1394ohci) DRV - [2016/07/16 12:24:54 | 000,142,176 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\nvstor.sys -- (nvstor) DRV - [2016/07/16 12:24:54 | 000,130,560 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\cdrom.sys -- (cdrom) DRV - [2016/07/16 12:24:54 | 000,119,136 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\nvraid.sys -- (nvraid) DRV - [2016/07/16 12:24:54 | 000,116,576 | ---- | M] (PMC-Sierra, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\arcsas.sys -- (arcsas) DRV - [2016/07/16 12:24:54 | 000,094,048 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\lsi_sas.sys -- (LSI_SAS) DRV - [2016/07/16 12:24:54 | 000,090,976 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sbp2port.sys -- (sbp2port) DRV - [2016/07/16 12:24:54 | 000,089,952 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\lsi_sas2i.sys -- (LSI_SAS2i) DRV - [2016/07/16 12:24:54 | 000,085,856 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\3ware.sys -- (3ware) DRV - [2016/07/16 12:24:54 | 000,085,856 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\lsi_sas3i.sys -- (LSI_SAS3i) DRV - [2016/07/16 12:24:54 | 000,079,200 | ---- | M] (Silicon Integrated Systems) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sisraid4.sys -- (SiSRaid4) DRV - [2016/07/16 12:24:54 | 000,075,104 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\amdsata.sys -- (amdsata) DRV - [2016/07/16 12:24:54 | 000,069,472 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\lsi_sss.sys -- (LSI_SSS) DRV - [2016/07/16 12:24:54 | 000,058,208 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\mvumis.sys -- (mvumis) DRV - [2016/07/16 12:24:54 | 000,056,672 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\HpSAMD.sys -- (HpSAMD) DRV - [2016/07/16 12:24:54 | 000,054,624 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\percsas3i.sys -- (percsas3i) DRV - [2016/07/16 12:24:54 | 000,052,064 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\megasas.sys -- (megasas) DRV - [2016/07/16 12:24:54 | 000,051,552 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\percsas2i.sys -- (percsas2i) DRV - [2016/07/16 12:24:54 | 000,048,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\isapnp.sys -- (isapnp) DRV - [2016/07/16 12:24:54 | 000,041,312 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sisraid2.sys -- (SiSRaid2) DRV - [2016/07/16 12:24:54 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidbatt.sys -- (HidBatt) DRV - [2016/07/16 12:24:54 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\fdc.sys -- (fdc) DRV - [2016/07/16 12:24:54 | 000,022,880 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\amdxata.sys -- (amdxata) DRV - [2016/07/16 12:24:54 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wacompen.sys -- (WacomPen) DRV - [2016/07/16 12:24:54 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\flpydisk.sys -- (flpydisk) DRV - [2016/07/16 12:24:54 | 000,016,224 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\msisadrv.sys -- (msisadrv) DRV - [2016/07/16 12:24:54 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sfloppy.sys -- (sfloppy) DRV - [2016/07/16 12:24:54 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AcpiDev.sys -- (AcpiDev) DRV - [2016/07/16 12:24:54 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wmiacpi.sys -- (WmiAcpi) DRV - [2016/07/16 12:24:54 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MTConfig.sys -- (MTConfig) DRV - [2016/07/16 12:24:54 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\errdev.sys -- (ErrDev) DRV - [2016/07/16 12:24:54 | 000,008,192 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bcmfn2.sys -- (bcmfn2) DRV - [2016/07/16 12:24:54 | 000,008,192 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bcmfn.sys -- (bcmfn) DRV - [2016/07/16 12:24:53 | 004,304,384 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rtwlans.sys -- (RtlWlans) DRV - [2016/07/16 12:24:53 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2016/07/16 12:24:53 | 000,042,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\intelpep.sys -- (intelpep) DRV - [2016/07/16 12:24:53 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\monitor.sys -- (monitor) DRV - [2016/07/16 12:24:53 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice) DRV - [2016/07/16 12:24:53 | 000,014,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\drmkaud.sys -- (drmkaud) DRV - [2016/07/16 12:24:52 | 000,089,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbcir.sys -- (usbcir) DRV - [2016/07/16 12:24:52 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bthhfenum.sys -- (BthHFEnum) DRV - [2016/07/16 12:24:52 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bthmodem.sys -- (BTHMODEM) DRV - [2016/07/16 12:24:52 | 000,039,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\circlass.sys -- (circlass) DRV - [2016/07/16 12:24:52 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidir.sys -- (HidIr) DRV - [2016/07/16 12:24:52 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BthAvrcpTg.sys -- (BthAvrcpTg) DRV - [2016/07/16 12:24:52 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_x86_ed148199964e21c5\CompositeBus.sys -- (CompositeBus) DRV - [2016/07/16 12:24:52 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BthhfHid.sys -- (bthhfhid) DRV - [2016/07/16 12:24:52 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbprint.sys -- (usbprint) DRV - [2016/07/16 12:24:52 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDScan.sys -- (WSDScan) DRV - [2016/07/16 12:24:51 | 000,098,656 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\pcmcia.sys -- (pcmcia) DRV - [2016/07/16 12:24:51 | 000,083,296 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus) DRV - [2016/07/16 12:24:51 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc) DRV - [2016/07/16 12:24:51 | 000,039,776 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt) DRV - [2016/07/16 12:24:51 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc) DRV - [2016/07/16 12:24:51 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc) DRV - [2016/07/16 12:24:51 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID) DRV - [2016/07/16 12:24:51 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hyperkbd.sys -- (hyperkbd) DRV - [2016/07/16 12:24:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmgencounter.sys -- (gencounter) DRV - [2016/07/16 12:24:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\acpipmi.sys -- (AcpiPmi) DRV - [2016/07/16 12:24:51 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmgid.sys -- (vmgid) DRV - [2016/07/16 12:24:51 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap) DRV - [2016/05/03 23:26:06 | 003,048,928 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx) DRV - [2015/12/01 23:46:03 | 000,044,016 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\intelaud.sys -- (intaud_WaveExtensible) DRV - [2015/12/01 23:46:03 | 000,035,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iwdbus.sys -- (iwdbus) DRV - [2014/08/14 13:33:52 | 000,462,336 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\camera.sys -- (camera) DRV - [2014/08/14 13:33:14 | 000,049,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ov2722.sys -- (ov2722) DRV - [2014/07/11 09:28:26 | 000,507,608 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtkUart.sys -- (RtkUart) DRV - [2014/05/12 13:13:00 | 000,174,808 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rtii2sac.sys -- (rtii2sac) DRV - [2014/05/08 12:14:40 | 000,182,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DptfManager.sys -- (DptfManager) DRV - [2014/05/08 12:14:34 | 000,080,824 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DptfDevProc.sys -- (DptfDevProc) DRV - [2014/05/08 12:14:30 | 000,025,528 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DptfDevPower.sys -- (DptfDevDBPT) DRV - [2014/05/08 12:14:26 | 000,036,280 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DptfDevGen.sys -- (DptfDevGen) DRV - [2014/05/08 12:14:24 | 000,044,472 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\DptfDevAmbient.sys -- (DptfDevAmbient) DRV - [2014/05/08 12:14:24 | 000,028,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DptfDevDisplay.sys -- (DptfDevDisplay) DRV - [2014/05/06 00:04:50 | 000,023,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iaiogpioe.sys -- (GPIO) DRV - [2014/04/04 04:49:34 | 000,066,408 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfebopk.sys -- (mfebopk) DRV - [2014/03/22 17:10:16 | 000,016,896 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iaiogpiovirtual.sys -- (GpioVirtual) DRV - [2014/03/22 10:10:16 | 000,087,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iaiouart.sys -- (iaiouart) DRV - [2014/03/22 10:10:16 | 000,058,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iaioi2ce.sys -- (iaioi2c) DRV - [2014/03/21 19:10:16 | 000,257,024 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\isstrtc.sys -- (IntelSST) DRV - [2014/03/16 20:08:12 | 000,048,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PMIC.sys -- (PMIC) DRV - [2014/03/16 13:09:30 | 000,021,968 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\MBI.sys -- (MBI) DRV - [2014/02/20 06:22:02 | 000,036,080 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynRMIHID.sys -- (SynRMIHID) DRV - [2014/01/10 15:54:42 | 000,075,792 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\TXEI.sys -- (TXEI) DRV - [2013/09/07 22:25:18 | 000,016,488 | ---- | M] (Capella Microsystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPLMACPI.sys -- (CPLMACPI) DRV - [2013/08/13 03:25:32 | 000,296,664 | ---- | M] (Broadcom Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bcmdhd63.sys -- (BCMSDH43XX) [color=#E56717]========== Standard Registry (All) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}: "URL" = http://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 9E 64 02 E7 65 BD D2 01 [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 22 00 00 00 C5 D5 11 34 1C 05 7C D2 5D 35 A3 CD ED CE C8 B1 2A 7A 5F 65 16 68 52 77 36 84 8D D1 D1 F5 E2 D1 E7 CE 02 00 00 00 0E 00 00 00 36 45 6F 39 45 76 37 30 51 5A 77 25 33 64 [binary data] IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation) IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms} IE - HKCU\..\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}: "URL" = http://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.countryCode: "RE" FF - prefs.js..browser.search.region: "RE" FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:53.0.2 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_25_0_0_171.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.121.2: C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2: C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: C:\Program Files\McAfee\msc\npMcSnFFPl.dll File not found FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll File not found FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: D:\logiciel\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 53.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 53.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK [2017/04/25 05:41:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\odz-plus.com\AppData\Roaming\mozilla\Extensions [2017/04/25 21:06:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\odz-plus.com\AppData\Roaming\mozilla\Firefox\Profiles\kbtmmiw2.default\extensions [2017/05/13 16:39:21 | 000,044,954 | ---- | M] () (No name found) -- C:\Users\odz-plus.com\AppData\Roaming\mozilla\firefox\profiles\kbtmmiw2.default\features\{9d5fb80d-2aa2-43bf-8bdb-d6350c899aae}\shield-recipe-client@mozilla.org.xpi [2017/05/12 12:30:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\browser\extensions [color=#E56717]========== Chrome ==========[/color] CHR - homepage: http://www.google.com/ CHR - homepage: 7EAC86BE937D997B1DC575EFBFE095AEC90C3743952500AE7CF5A3AB8DD0C303 O1 HOSTS File: ([2013/08/22 10:13:55 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll (Oracle Corporation) O4 - HKLM..\Run: [DptfPolicyLpmServiceHelper] C:\Windows\System32\DptfPolicyLpmServiceHelper.exe (Intel Corporation) O4 - HKLM..\Run: [RtkNGUI] C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe (Realtek Semiconductor) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Oracle Corporation) O4 - HKLM..\Run: [WindowsDefender] C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Corporation) O4 - HKCU..\Run: [OneDrive] C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) O4 - Startup: C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk = C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsHistory = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13 O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation) O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{a27d1f41-b194-4583-ab5f-709868ba8e1a}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{b3c49cfe-544a-4379-91ff-a819b8f5ad78}: DhcpNameServer = 192.168.176.1 O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation) O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation) O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation) O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation) O18 - Protocol\Handler\mso-minsb.16 {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-minsb-roaming.16 {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation) O18 - Protocol\Handler\osf.16 {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation) O18 - Protocol\Handler\osf-roaming.16 {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation) O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll (Microsoft Corporation) O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation) O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll (Microsoft Corporation) O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\WINDOWS\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O29 - HKLM SecurityProviders - (credssp.dll) - C:\WINDOWS\System32\credssp.dll (Microsoft Corporation) O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation) O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013/08/22 12:16:34 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {71A5A636-652F-3BE0-BC14-02545E9F5EC7} - .NET Framework ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - U ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files\Google\Chrome\Application\58.0.3029.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\inf\unregmp2.exe /ShowWMP NetSvcs: shpamsvc - C:\Windows\System32\Windows.SharedPC.AccountManager.dll (Microsoft Corporation) NetSvcs: DcpSvc - C:\Windows\System32\dcpsvc.dll (Microsoft Corporation) NetSvcs: RetailDemo - C:\Windows\System32\RDXService.dll (Microsoft Corporation) NetSvcs: dmwappushservice - C:\Windows\System32\dmwappushsvc.dll (Microsoft Corporation) NetSvcs: DmEnrollmentSvc - C:\Windows\System32\Windows.Internal.Management.dll (Microsoft Corporation) NetSvcs: DsmSvc - C:\Windows\System32\DeviceSetupManager.dll (Microsoft Corporation) NetSvcs: NcaSvc - C:\Windows\System32\NcaSvc.dll (Microsoft Corporation) NetSvcs: XboxNetApiSvc - C:\Windows\System32\XboxNetApiSvc.dll (Microsoft Corporation) NetSvcs: lfsvc - C:\Windows\System32\lfsvc.dll (Microsoft Corporation) NetSvcs: WpnService - C:\Windows\System32\wpnservice.dll (Microsoft Corporation) NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - C:\WINDOWS\System32\ias.dll (Microsoft Corporation) NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found NetSvcs: XblGameSave - C:\Windows\System32\XblGameSave.dll (Microsoft Corporation) NetSvcs: UsoSvc - C:\Windows\System32\usocore.dll (Microsoft Corporation) NetSvcs: dosvc - C:\Windows\System32\dosvc.dll (Microsoft Corporation) NetSvcs: XblAuthManager - C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation) NetSvcs: UserManager - C:\Windows\System32\usermgr.dll (Microsoft Corporation) NetSvcs: NetSetupSvc - C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation) NetSvcs: wlidsvc - C:\Windows\System32\wlidsvc.dll (Microsoft Corporation) NetSvcs: wisvc - C:\Windows\System32\FlightSettings.dll (Microsoft Corporation) SafeBootMin: Ahcache.sys - C:\Windows\System32\drivers\ahcache.sys (Microsoft Corporation) SafeBootMin: AppMgmt - Service SafeBootMin: Base - Driver Group SafeBootMin: BasicDisplay.sys - C:\Windows\System32\drivers\BasicDisplay.sys (Microsoft Corporation) SafeBootMin: BasicRender.sys - C:\Windows\System32\drivers\BasicRender.sys (Microsoft Corporation) SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: BrokerInfrastructure - C:\Windows\System32\bisrv.dll (Microsoft Corporation) SafeBootMin: CoreMessagingRegistrar - C:\Windows\System32\CoreMessaging.dll (Microsoft Corporation) SafeBootMin: EFS - C:\Windows\System32\efssvc.dll (Microsoft Corporation) SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: HelpSvc - Service SafeBootMin: iai2c.sys - C:\Windows\System32\drivers\iai2c.sys (Intel(R) Corporation) SafeBootMin: iaioi2c.sys - C:\Windows\System32\drivers\iaioi2ce.sys (Intel Corporation) SafeBootMin: iaioi2ce.sys - Driver SafeBootMin: KeyIso - C:\Windows\System32\keyiso.dll (Microsoft Corporation) SafeBootMin: LSM - C:\Windows\System32\lsm.dll (Microsoft Corporation) SafeBootMin: NTDS - File not found SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: sacsvr - Service SafeBootMin: SCSI Class - Driver Group SafeBootMin: SpbCx.sys - C:\Windows\System32\drivers\SpbCx.sys (Microsoft Corporation) SafeBootMin: StateRepository - C:\Windows\System32\Windows.StateRepository.dll (Microsoft Corporation) SafeBootMin: System Bus Extender - Driver Group SafeBootMin: SystemEventsBroker - C:\Windows\System32\SystemEventsBrokerServer.dll (Microsoft Corporation) SafeBootMin: TBS - Service SafeBootMin: TileDataModelSvc - C:\Windows\System32\tileobjserver.dll (Microsoft Corporation) SafeBootMin: uefi.sys - C:\Windows\System32\drivers\uefi.sys (Microsoft Corporation) SafeBootMin: UserManager - C:\Windows\System32\usermgr.dll (Microsoft Corporation) SafeBootMin: vmms - Service SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootMin: {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices SafeBootMin: {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootMin: {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware SafeBootNet: Ahcache.sys - C:\Windows\System32\drivers\ahcache.sys (Microsoft Corporation) SafeBootNet: AppMgmt - Service SafeBootNet: Base - Driver Group SafeBootNet: BasicDisplay.sys - C:\Windows\System32\drivers\BasicDisplay.sys (Microsoft Corporation) SafeBootNet: BasicRender.sys - C:\Windows\System32\drivers\BasicRender.sys (Microsoft Corporation) SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: BrokerInfrastructure - C:\Windows\System32\bisrv.dll (Microsoft Corporation) SafeBootNet: CoreMessagingRegistrar - C:\Windows\System32\CoreMessaging.dll (Microsoft Corporation) SafeBootNet: EFS - C:\Windows\System32\efssvc.dll (Microsoft Corporation) SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: HelpSvc - Service SafeBootNet: KeyIso - C:\Windows\System32\keyiso.dll (Microsoft Corporation) SafeBootNet: LSM - C:\Windows\System32\lsm.dll (Microsoft Corporation) SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: netprofm - C:\Windows\System32\netprofmsvc.dll (Microsoft Corporation) SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: NTDS - File not found SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: rdpencdd.sys - Driver SafeBootNet: rdsessmgr - Service SafeBootNet: sacsvr - Service SafeBootNet: SCSI Class - Driver Group SafeBootNet: SmartcardSimulator - Driver SafeBootNet: SpbCx.sys - C:\Windows\System32\drivers\SpbCx.sys (Microsoft Corporation) SafeBootNet: StateRepository - C:\Windows\System32\Windows.StateRepository.dll (Microsoft Corporation) SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: SystemEventsBroker - C:\Windows\System32\SystemEventsBrokerServer.dll (Microsoft Corporation) SafeBootNet: TBS - Service SafeBootNet: TDI - Driver Group SafeBootNet: TileDataModelSvc - C:\Windows\System32\tileobjserver.dll (Microsoft Corporation) SafeBootNet: uefi.sys - C:\Windows\System32\drivers\uefi.sys (Microsoft Corporation) SafeBootNet: UserManager - C:\Windows\System32\usermgr.dll (Microsoft Corporation) SafeBootNet: VaultSvc - C:\Windows\System32\vaultsvc.dll (Microsoft Corporation) SafeBootNet: VirtualSmartcardReader - Driver SafeBootNet: vmms - Service SafeBootNet: Wcmsvc - C:\Windows\System32\wcmsvc.dll (Microsoft Corporation) SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) SafeBootNet: WudfUsbccidDriver - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices SafeBootNet: {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootNet: {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware CREATERESTOREPOINT Restore point Set: OTL Restore Point [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2017/05/20 19:26:25 | 000,000,000 | -H-D | C] -- C:\OneDriveTemp [2017/05/19 17:50:44 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\speech [2017/05/19 15:47:12 | 000,000,000 | ---D | C] -- C:\Program Files\OneNote [2017/05/16 12:43:03 | 000,000,000 | ---D | C] -- C:\QuickDiag [2017/05/13 17:20:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2017/05/12 12:30:23 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2017/05/12 12:30:13 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2017/05/11 19:35:10 | 006,665,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Protection.PlayReady.dll [2017/05/11 19:35:08 | 000,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll [2017/05/11 19:35:08 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UIRibbonRes.dll [2017/05/11 19:35:08 | 000,340,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll [2017/05/11 19:35:08 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe [2017/05/11 19:35:07 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieproxy.dll [2017/05/11 19:35:05 | 002,027,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl [2017/05/11 19:35:05 | 001,247,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Globalization.dll [2017/05/11 19:35:00 | 001,235,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\win32kbase.sys [2017/05/11 19:35:00 | 000,080,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpudd.dll [2017/05/11 19:34:58 | 002,994,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\win32kfull.sys [2017/05/11 19:34:57 | 005,996,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntoskrnl.exe [2017/05/11 19:34:57 | 000,342,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dxgmms1.sys [2017/05/11 19:34:54 | 000,783,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TSWorkspace.dll [2017/05/11 19:34:54 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcconf.dll [2017/05/11 19:34:53 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ExSMime.dll [2017/05/11 19:34:48 | 005,685,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Data.Pdf.dll [2017/05/11 19:34:48 | 001,488,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\diagtrack.dll [2017/05/11 19:34:46 | 006,042,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Chakra.dll [2017/05/11 19:34:44 | 000,846,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinTypes.dll [2017/05/11 19:34:43 | 005,722,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windows.storage.dll [2017/05/11 19:34:42 | 001,232,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Maps.dll [2017/05/11 19:34:41 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Phone.dll [2017/05/11 19:34:40 | 013,873,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.dll [2017/05/11 19:34:37 | 003,733,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_47.dll [2017/05/11 19:34:36 | 001,277,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfasfsrcsnk.dll [2017/05/11 19:34:36 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MCRecvSrc.dll [2017/05/11 19:34:35 | 001,851,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmp4srcsnk.dll [2017/05/11 19:34:35 | 001,360,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfnetsrc.dll [2017/05/11 19:34:35 | 001,202,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmpeg2srcsnk.dll [2017/05/11 19:34:34 | 004,023,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfcore.dll [2017/05/11 19:34:34 | 000,981,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfnetcore.dll [2017/05/11 19:34:34 | 000,484,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AudioSes.dll [2017/05/11 19:34:30 | 000,675,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.dll [2017/05/11 19:34:30 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Scanners.dll [2017/05/11 19:34:30 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Radios.dll [2017/05/11 19:34:30 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.StateRepositoryClient.dll [2017/05/11 19:34:29 | 001,077,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Editing.dll [2017/05/11 19:34:29 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.dll [2017/05/11 19:34:29 | 000,598,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Web.dll [2017/05/11 19:34:28 | 001,013,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Web.Http.dll [2017/05/11 19:34:28 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.dll [2017/05/11 19:34:28 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToManager.dll [2017/05/11 19:34:27 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CryptoWinRT.dll [2017/05/11 19:34:26 | 004,614,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.dll [2017/05/11 19:34:24 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_Flights.dll [2017/05/11 19:34:23 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RDXTaskFactory.dll [2017/05/11 19:34:23 | 000,237,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SyncSettings.dll [2017/05/11 19:34:23 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\InstallAgentUserBroker.exe [2017/05/11 19:34:23 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDeviceRegistration.dll [2017/05/11 19:34:23 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Devices.dll [2017/05/11 19:34:22 | 001,431,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Store.dll [2017/05/11 19:34:22 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToDevice.dll [2017/05/11 19:34:22 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Family.SyncEngine.dll [2017/05/11 19:34:22 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\InstallAgent.exe [2017/05/11 19:34:21 | 000,691,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TokenBroker.dll [2017/05/11 19:34:21 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Usb.dll [2017/05/11 19:34:21 | 000,262,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Picker.dll [2017/05/11 19:34:21 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dialclient.dll [2017/05/11 19:34:21 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Lights.dll [2017/05/11 19:34:20 | 001,004,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Input.Inking.dll [2017/05/11 19:34:20 | 000,557,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\StoreAgent.dll [2017/05/11 19:34:20 | 000,448,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ContentDeliveryManager.Utilities.dll [2017/05/11 19:34:20 | 000,431,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\efswrt.dll [2017/05/11 19:34:20 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.WiFiDirect.dll [2017/05/11 19:34:20 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DisplayManager.dll [2017/05/11 19:34:20 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinRtTracing.dll [2017/05/11 19:34:19 | 000,795,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MiracastReceiver.dll [2017/05/11 19:34:19 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.PointOfService.dll [2017/05/11 19:34:19 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Security.Authentication.Web.Core.dll [2017/05/11 19:34:19 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.AllJoyn.dll [2017/05/11 19:34:19 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Wallet.dll [2017/05/11 19:34:19 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataTimeUtil.dll [2017/05/11 19:34:18 | 001,534,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Graphics.Printing.3D.dll [2017/05/11 19:34:18 | 000,747,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Ocr.dll [2017/05/11 19:34:18 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.AccountsControl.dll [2017/05/11 19:34:18 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Security.Authentication.Identity.Provider.dll [2017/05/11 19:34:18 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.WiFi.dll [2017/05/11 19:34:17 | 000,901,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Bluetooth.dll [2017/05/11 19:34:17 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Gaming.Input.dll [2017/05/11 19:34:17 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Internal.Management.dll [2017/05/11 19:34:17 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.HumanInterfaceDevice.dll [2017/05/11 19:34:16 | 001,255,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AzureSettingSyncProvider.dll [2017/05/11 19:34:16 | 001,109,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SharedStartModel.dll [2017/05/11 19:34:16 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dlnashext.dll [2017/05/11 19:34:16 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AboveLockAppHost.dll [2017/05/11 19:34:15 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NaturalLanguage6.dll [2017/05/11 19:34:15 | 000,500,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Graphics.Printing.dll [2017/05/11 19:34:15 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppointmentActivation.dll [2017/05/11 19:34:14 | 000,846,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WebcamUi.dll [2017/05/11 19:34:14 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.dll [2017/05/11 19:34:14 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\deviceaccess.dll [2017/05/11 19:34:14 | 000,263,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Storage.ApplicationData.dll [2017/05/11 19:34:13 | 001,656,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Perception.dll [2017/05/11 19:34:13 | 000,517,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FlightSettings.dll [2017/05/11 19:34:11 | 003,774,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_nt.dll [2017/05/11 19:34:10 | 000,975,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twinapi.appcore.dll [2017/05/11 19:34:10 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ShareHost.dll [2017/05/11 19:34:09 | 007,626,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twinui.dll [2017/05/11 19:34:08 | 001,221,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Audio.dll [2017/05/11 19:34:08 | 000,654,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MbaeApiPublic.dll [2017/05/11 19:34:08 | 000,589,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Sensors.dll [2017/05/11 19:34:06 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\apprepapi.dll [2017/05/11 19:34:05 | 003,596,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcorets.dll [2017/05/11 19:34:05 | 001,700,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smartscreen.exe [2017/05/11 19:34:05 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\apprepsync.dll [2017/05/11 19:34:03 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuuhext.dll [2017/05/11 19:33:56 | 002,646,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CertEnroll.dll [2017/05/11 19:33:50 | 001,284,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2017/05/11 19:33:50 | 000,330,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aadcloudap.dll [2017/05/11 19:33:49 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WpAXHolder.dll [2017/05/11 19:33:48 | 018,365,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\edgehtml.dll [2017/05/11 19:33:45 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dll [2017/05/11 19:33:44 | 000,583,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CoreMessaging.dll [2017/05/11 19:33:44 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll [2017/05/11 19:33:27 | 000,890,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winresume.efi [2017/05/11 19:33:27 | 000,886,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aadtb.dll [2017/05/11 19:33:26 | 003,664,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript9.dll [2017/05/11 19:33:25 | 001,384,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sppobjs.dll [2017/05/11 19:33:21 | 001,411,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gdi32full.dll [2017/05/11 19:33:20 | 002,749,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mispace.dll [2017/05/11 19:33:17 | 004,312,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [2017/05/11 19:33:17 | 002,154,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storagewmi.dll [2017/05/11 19:33:16 | 002,168,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\combase.dll [2017/05/11 19:33:16 | 000,861,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LicenseManager.dll [2017/05/11 19:33:14 | 000,661,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WpcWebFilter.dll [2017/05/11 19:33:13 | 001,987,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll [2017/05/11 19:33:12 | 001,993,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dwmcore.dll [2017/05/11 19:33:11 | 002,747,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcore.dll [2017/05/11 19:33:09 | 002,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DWrite.dll [2017/05/11 19:33:09 | 001,584,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlidsvc.dll [2017/05/11 19:33:09 | 001,323,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_fs.dll [2017/05/11 19:33:09 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\updatepolicy.dll [2017/05/11 19:33:08 | 001,137,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_health.dll [2017/05/11 19:33:08 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usocore.dll [2017/05/11 19:33:06 | 001,136,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpncore.dll [2017/05/11 19:33:06 | 000,601,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetSetupEngine.dll [2017/05/11 19:33:05 | 000,822,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usermgr.dll [2017/05/11 19:33:05 | 000,754,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ngcsvc.dll [2017/05/11 19:33:05 | 000,525,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LogonController.dll [2017/05/11 19:33:05 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserMgrProxy.dll [2017/05/11 19:33:04 | 000,781,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WWAHost.exe [2017/05/11 19:33:04 | 000,719,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_sr.dll [2017/05/11 19:33:04 | 000,685,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Internal.Shell.Broker.dll [2017/05/11 19:33:03 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mprddm.dll [2017/05/11 19:33:03 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataAccountApis.dll [2017/05/11 19:33:03 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.LockScreen.dll [2017/05/11 19:33:03 | 000,198,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudExperienceHost.dll [2017/05/11 19:33:02 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PrintDialogs3D.dll [2017/05/11 19:33:00 | 000,798,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\authui.dll [2017/05/11 19:33:00 | 000,493,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingSyncHost.exe [2017/05/11 19:33:00 | 000,458,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\spaceport.sys [2017/05/11 19:33:00 | 000,352,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MMDevAPI.dll [2017/05/11 19:32:59 | 001,774,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkMobileSettings.dll [2017/05/11 19:32:59 | 000,277,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinSetupUI.dll [2017/05/11 19:32:58 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NgcCtnrSvc.dll [2017/05/11 19:32:57 | 001,413,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\OpcServices.dll [2017/05/11 19:32:57 | 000,784,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winresume.exe [2017/05/11 19:32:57 | 000,623,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bisrv.dll [2017/05/11 19:32:55 | 000,582,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SpaceControl.dll [2017/05/11 19:32:54 | 001,228,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usercpl.dll [2017/05/11 19:32:52 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserbroker.dll [2017/05/11 19:32:51 | 000,361,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsmf.dll [2017/05/11 19:32:50 | 000,857,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EmailApis.dll [2017/05/11 19:32:50 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Enumeration.dll [2017/05/11 19:32:50 | 000,300,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AudioEndpointBuilder.dll [2017/05/11 19:32:50 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SpaceAgent.exe [2017/05/11 19:32:47 | 001,378,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXDeploymentExtensions.onecore.dll [2017/05/11 19:32:47 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ubpm.dll [2017/05/11 19:32:46 | 001,631,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Resources.dll [2017/05/11 19:32:46 | 000,025,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browser_broker.exe [2017/05/11 19:32:45 | 000,116,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudExperienceHostCommon.dll [2017/05/11 19:32:43 | 000,294,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ConhostV2.dll [2017/05/11 19:32:42 | 000,965,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ReAgent.dll [2017/05/11 19:32:42 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spaceman.exe [2017/05/11 19:32:41 | 000,819,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppContracts.dll [2017/05/11 19:32:41 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fvewiz.dll [2017/05/11 19:32:41 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\adsnt.dll [2017/05/11 19:32:41 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dafBth.dll [2017/05/11 19:32:40 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DevicesFlowBroker.dll [2017/05/11 19:32:40 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BluetoothApis.dll [2017/05/11 19:32:39 | 000,258,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\updatehandlers.dll [2017/05/11 19:32:39 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bthprops.cpl [2017/05/11 19:32:29 | 000,525,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PrintDialogs.dll [2017/05/11 19:32:28 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RTMediaFrame.dll [2017/05/11 19:32:28 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LocationApi.dll [2017/05/11 19:32:28 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\credprovhost.dll [2017/05/11 19:32:28 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupugc.exe [2017/05/11 19:32:28 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\virtdisk.dll [2017/05/11 19:32:27 | 001,755,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DeviceFlows.DataModel.dll [2017/05/11 19:32:27 | 001,220,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RecoveryDrive.exe [2017/05/11 19:32:27 | 000,506,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DevicePairing.dll [2017/05/11 19:32:27 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.UX.EapRequestHandler.dll [2017/05/11 19:32:27 | 000,404,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsreg.dll [2017/05/11 19:32:26 | 001,438,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ResetEngine.dll [2017/05/11 19:32:26 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WwaApi.dll [2017/05/11 19:32:26 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\umpoext.dll [2017/05/11 19:32:26 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vwifimp.sys [2017/05/11 19:32:25 | 000,822,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Chakradiag.dll [2017/05/11 19:32:24 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript9diag.dll [2017/05/11 19:32:24 | 000,433,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2.dll [2017/05/11 19:32:24 | 000,368,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\puiobj.dll [2017/05/11 19:32:24 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.BlockedShutdown.dll [2017/05/11 19:32:24 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ReInfo.dll [2017/05/11 19:32:24 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Family.Client.dll [2017/05/11 19:32:24 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ConsentUX.dll [2017/05/11 19:32:23 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettings.Handlers.dll [2017/05/11 19:32:23 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rastlsext.dll [2017/05/11 19:32:23 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shutdownux.dll [2017/05/11 19:32:23 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storewuauth.dll [2017/05/11 19:32:23 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Energy.dll [2017/05/11 19:32:23 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CameraCaptureUI.dll [2017/05/11 19:32:22 | 001,243,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.FaceAnalysis.dll [2017/05/11 19:32:22 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToReceiver.dll [2017/05/11 19:32:22 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll [2017/05/11 19:32:22 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BthTelemetry.dll [2017/05/11 19:32:22 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\appidcertstorecheck.exe [2017/05/11 19:32:21 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Dxpserver.exe [2017/05/11 19:32:21 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DeveloperOptionsSettingsHandlers.dll [2017/05/11 19:32:21 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vaultcli.dll [2017/05/02 18:09:31 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\MATERIEL INSTIT90 [2017/05/01 19:39:20 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Macromedia [2017/04/28 18:20:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther [2017/04/28 08:26:55 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\CEF [2017/04/26 15:01:53 | 000,000,000 | ---D | C] -- D:\utillisateur\document\Modèles Office personnalisés [2017/04/26 11:51:12 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\PackageStaging [2017/04/26 11:34:32 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\PDFCreator [2017/04/26 11:22:57 | 000,000,000 | ---D | C] -- C:\SAUVE S2 [2017/04/26 11:15:51 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\TeamViewer [2017/04/26 11:13:55 | 000,000,000 | ---D | C] -- C:\Program Files\S2msi [2017/04/25 22:03:37 | 000,000,000 | ---D | C] -- C:\sesam [2017/04/25 22:01:03 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Soins 2000 [2017/04/25 22:00:59 | 000,559,840 | ---- | C] (LOGISURM) -- C:\WINDOWS\uninsts2.exe [2017/04/25 22:00:43 | 000,221,184 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\stsw32.dll [2017/04/25 22:00:42 | 000,532,480 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\srtw32.dll [2017/04/25 22:00:42 | 000,372,736 | ---- | C] (GIE Sesam VITALE) -- C:\WINDOWS\SSVW32.DLL [2017/04/25 22:00:42 | 000,368,640 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\sjsw32.dll [2017/04/25 22:00:42 | 000,188,416 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\stsrw32.dll [2017/04/25 22:00:42 | 000,184,320 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\stsmw32.dll [2017/04/25 22:00:42 | 000,172,032 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\sts4w32.dll [2017/04/25 22:00:42 | 000,122,880 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\sts8w32.dll [2017/04/25 22:00:42 | 000,114,688 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\stsuw32.dll [2017/04/25 22:00:42 | 000,103,936 | ---- | C] (GIE) -- C:\WINDOWS\sisw32.dll [2017/04/25 22:00:42 | 000,086,016 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\smcw32.dll [2017/04/25 22:00:42 | 000,073,728 | ---- | C] (GIP-CPS) -- C:\WINDOWS\cptabw32.dll [2017/04/25 22:00:42 | 000,061,440 | ---- | C] (GIP CPS) -- C:\WINDOWS\Sscasw32.dll [2017/04/25 22:00:42 | 000,045,056 | ---- | C] (G.I.E. SESAM VITALE) -- C:\WINDOWS\sgdw32.dll [2017/04/25 22:00:42 | 000,032,768 | ---- | C] (GIE SESAM VITALE) -- C:\WINDOWS\smsw32.dll [2017/04/25 22:00:41 | 000,217,088 | ---- | C] (GIP CPS) -- C:\WINDOWS\cpsw32.dll [2017/04/25 22:00:41 | 000,094,208 | ---- | C] (GIE) -- C:\WINDOWS\Galssw32.dll [2017/04/25 22:00:41 | 000,090,112 | ---- | C] (GIE) -- C:\WINDOWS\Pssinw32.dll [2017/04/25 22:00:41 | 000,051,808 | ---- | C] (ILEX) -- C:\WINDOWS\Galsvw32.exe [2017/04/25 22:00:41 | 000,049,152 | ---- | C] (ILEX) -- C:\WINDOWS\Galinw32.dll [2017/04/25 22:00:41 | 000,049,152 | ---- | C] (ILEX) -- C:\WINDOWS\Galclw32.dll [2017/04/25 22:00:41 | 000,049,152 | ---- | C] (GIP-CPS) -- C:\WINDOWS\Cpdicw32.dll [2017/04/25 22:00:41 | 000,030,720 | ---- | C] (GIP CPS) -- C:\WINDOWS\cpsvb432.dll [2017/04/25 22:00:40 | 000,408,160 | ---- | C] (GIP CPS) -- C:\WINDOWS\cpgesw32.exe [2017/04/25 22:00:40 | 000,368,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vbar332.dll [2017/04/25 22:00:40 | 000,251,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msrd2x35.dll [2017/04/25 22:00:39 | 001,039,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msjet35.dll [2017/04/25 22:00:39 | 000,037,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msjint35.dll [2017/04/25 22:00:39 | 000,024,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msjter35.dll [2017/04/25 22:00:39 | 000,000,000 | ---D | C] -- C:\s2000 [2017/04/25 21:33:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016 [2017/04/25 21:25:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2017/04/25 21:25:22 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office 15 [2017/04/25 09:08:11 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2017/04/25 07:43:46 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\LibreOffice [2017/04/25 07:41:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.2 [2017/04/25 07:40:14 | 000,000,000 | ---D | C] -- C:\Program Files\LibreOffice 5 [2017/04/25 06:23:31 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer [2017/04/25 06:20:23 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Google [2017/04/25 06:20:07 | 000,000,000 | ---D | C] -- C:\ProgramData\PDF Architect 5 [2017/04/25 06:20:04 | 000,097,792 | ---- | C] (pdfforge GmbH) -- C:\WINDOWS\System32\pdfcmon.dll [2017/04/25 06:19:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator [2017/04/25 06:17:39 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\vlc [2017/04/25 06:15:52 | 000,430,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe [2017/04/25 06:04:20 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2017/04/25 06:02:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2017/04/25 06:02:43 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2017/04/25 06:02:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MRT [2017/04/25 06:01:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2017/04/25 06:00:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN [2017/04/25 05:57:43 | 002,643,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll [2017/04/25 05:57:37 | 001,557,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmde.dll [2017/04/25 05:57:36 | 003,520,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsrchvw.exe [2017/04/25 05:57:35 | 001,362,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpmde.dll [2017/04/25 05:57:34 | 001,252,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataService.dll [2017/04/25 05:57:34 | 001,104,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SpeechPal.dll [2017/04/25 05:57:33 | 000,869,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SecConfig.efi [2017/04/25 05:57:29 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lsm.dll [2017/04/25 05:57:26 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nshwfp.dll [2017/04/25 05:57:26 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_Bluetooth.dll [2017/04/25 05:57:26 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Adobe [2017/04/25 05:57:23 | 000,834,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.Vpn.dll [2017/04/25 05:57:23 | 000,519,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ngccredprov.dll [2017/04/25 05:57:22 | 000,056,672 | ---- | C] (Avago Technologies) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017/04/25 05:57:21 | 000,714,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssvp.dll [2017/04/25 05:57:21 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NgcCtnr.dll [2017/04/25 05:57:21 | 000,289,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SensorService.dll [2017/04/25 05:57:20 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\StorSvc.dll [2017/04/25 05:57:20 | 000,291,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Search.ProtocolHandler.MAPI2.dll [2017/04/25 05:57:20 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MusNotification.exe [2017/04/25 05:57:18 | 000,392,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wwanconn.dll [2017/04/25 05:57:17 | 000,449,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TpmCoreProvisioning.dll [2017/04/25 05:57:16 | 000,175,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tpm.sys [2017/04/25 05:57:15 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MusUpdateHandlers.dll [2017/04/25 05:57:15 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PsmServiceExtHost.dll [2017/04/25 05:57:13 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\xboxgip.sys [2017/04/25 05:57:13 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinBioDataModel.dll [2017/04/25 05:57:13 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\manage-bde.exe [2017/04/25 05:57:13 | 000,111,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\storahci.sys [2017/04/25 05:57:12 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppointmentApis.dll [2017/04/25 05:57:12 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XblGameSaveExt.dll [2017/04/25 05:57:11 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpencom.dll [2017/04/25 05:57:11 | 000,154,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dumpsd.sys [2017/04/25 05:57:11 | 000,117,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AuthHost.exe [2017/04/25 05:57:10 | 000,711,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2017/04/25 05:57:10 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fveui.dll [2017/04/25 05:57:10 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UIAnimation.dll [2017/04/25 05:57:10 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PimIndexMaintenance.dll [2017/04/25 05:57:10 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WSManHTTPConfig.exe [2017/04/25 05:57:09 | 000,279,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bdeunlock.exe [2017/04/25 05:57:09 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll [2017/04/25 05:57:08 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VPNv2CSP.dll [2017/04/25 05:57:01 | 000,101,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys [2017/04/25 05:57:01 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\capimg.sys [2017/04/25 05:57:00 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MusNotificationUx.exe [2017/04/25 05:56:59 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidclass.sys [2017/04/25 05:56:58 | 000,866,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Cred.dll [2017/04/25 05:56:58 | 000,260,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Phoneutil.dll [2017/04/25 05:56:57 | 000,567,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ChatApis.dll [2017/04/25 05:56:57 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LicenseManagerSvc.dll [2017/04/25 05:56:56 | 001,154,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Pimstore.dll [2017/04/25 05:56:54 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fvecpl.dll [2017/04/25 05:56:54 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptngc.dll [2017/04/25 05:56:53 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettings.DeviceEncryptionHandlers.dll [2017/04/25 05:56:53 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BitLockerDeviceEncryption.exe [2017/04/25 05:56:52 | 001,293,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WMPDMC.exe [2017/04/25 05:56:52 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fvenotify.exe [2017/04/25 05:56:52 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\xinputhid.sys [2017/04/25 05:56:51 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sharemediacpl.dll [2017/04/25 05:56:50 | 000,292,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\FWPKCLNT.SYS [2017/04/25 05:56:50 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll [2017/04/25 05:56:50 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\musdialoghandlers.dll [2017/04/25 05:56:49 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Store.TestingFramework.dll [2017/04/25 05:56:46 | 006,534,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wwanmm.dll [2017/04/25 05:56:41 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\paint.net [2017/04/25 05:56:41 | 000,000,000 | ---D | C] -- C:\Program Files\paint.net [2017/04/25 05:56:33 | 001,231,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wcnwiz.dll [2017/04/25 05:56:33 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssitlb.dll [2017/04/25 05:56:33 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\BasicRender.sys [2017/04/25 05:56:32 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XblGameSave.dll [2017/04/25 05:56:32 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bdeui.dll [2017/04/25 05:56:31 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ContactApis.dll [2017/04/25 05:56:31 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Gaming.UI.GameBar.dll [2017/04/25 05:56:31 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\BasicDisplay.sys [2017/04/25 05:56:31 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmintegrator.dll [2017/04/25 05:56:30 | 000,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WsmWmiPl.dll [2017/04/25 05:56:29 | 000,531,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iprtrmgr.dll [2017/04/25 05:56:29 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wksprt.exe [2017/04/25 05:56:29 | 000,315,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Gaming.XboxLive.Storage.dll [2017/04/25 05:56:29 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RADCUI.dll [2017/04/25 05:56:28 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Unistore.dll [2017/04/25 05:56:28 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VEStoreEventHandlers.dll [2017/04/25 05:56:27 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RdpRelayTransport.dll [2017/04/25 05:56:27 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WindowsUpdateElevatedInstaller.exe [2017/04/25 05:56:26 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cemapi.dll [2017/04/25 05:56:24 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Web.Diagnostics.dll [2017/04/25 05:56:24 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll [2017/04/25 05:56:23 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VCardParser.dll [2017/04/25 05:56:20 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\POSyncServices.dll [2017/04/25 05:56:20 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AddressParser.dll [2017/04/25 05:56:20 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataTypeHelperUtil.dll [2017/04/25 05:56:20 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataLanguageUtil.dll [2017/04/25 05:56:20 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\BthMini.SYS [2017/04/25 05:56:19 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataPlatformHelperUtil.dll [2017/04/25 05:56:19 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ContactActivation.dll [2017/04/25 05:56:19 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\StorageUsage.dll [2017/04/25 05:56:19 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidparse.sys [2017/04/25 05:56:19 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ExtrasXmlParser.dll [2017/04/25 05:56:19 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataAccessRes.dll [2017/04/25 05:56:19 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PhoneutilRes.dll [2017/04/25 05:56:18 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinBioDataModelOOBE.exe [2017/04/25 05:56:18 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll [2017/04/25 05:56:18 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\NetworkTiles [2017/04/25 05:56:04 | 005,380,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BingMaps.dll [2017/04/25 05:56:03 | 003,307,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFMediaEngine.dll [2017/04/25 05:55:59 | 002,206,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msmpeg2vdec.dll [2017/04/25 05:55:58 | 002,363,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapRouter.dll [2017/04/25 05:55:57 | 002,109,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapGeocoder.dll [2017/04/25 05:55:52 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Wpc.dll [2017/04/25 05:55:52 | 000,952,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfsvr.dll [2017/04/25 05:55:50 | 006,109,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mos.dll [2017/04/25 05:55:50 | 001,123,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfplat.dll [2017/04/25 05:55:49 | 001,969,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hevcdecoder.dll [2017/04/25 05:55:49 | 000,707,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapsStore.dll [2017/04/25 05:55:49 | 000,530,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mf.dll [2017/04/25 05:55:49 | 000,529,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpnprv.dll [2017/04/25 05:55:48 | 000,747,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RemoteNaturalLanguage.dll [2017/04/25 05:55:47 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\JpMapControl.dll [2017/04/25 05:55:46 | 000,823,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nettrace.dll [2017/04/25 05:55:46 | 000,687,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvproc.dll [2017/04/25 05:55:46 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FrameServer.dll [2017/04/25 05:55:45 | 000,760,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NMAA.dll [2017/04/25 05:55:45 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WlanMediaManager.dll [2017/04/25 05:55:45 | 000,321,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LockAppHost.exe [2017/04/25 05:55:44 | 001,842,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pnidui.dll [2017/04/25 05:55:44 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSVP9DEC.dll [2017/04/25 05:55:44 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmkvsrcsnk.dll [2017/04/25 05:55:44 | 000,518,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\WdiWiFi.sys [2017/04/25 05:55:44 | 000,353,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TextInputFramework.dll [2017/04/25 05:55:44 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapConfiguration.dll [2017/04/25 05:55:43 | 001,344,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfsrcsnk.dll [2017/04/25 05:55:43 | 001,224,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WpcMon.exe [2017/04/25 05:55:43 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Playback.BackgroundMediaPlayer.dll [2017/04/25 05:55:42 | 000,976,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfds.dll [2017/04/25 05:55:42 | 000,715,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapControlCore.dll [2017/04/25 05:55:42 | 000,554,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tdh.dll [2017/04/25 05:55:42 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.BackgroundMediaPlayback.dll [2017/04/25 05:55:42 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Playback.MediaPlayer.dll [2017/04/25 05:55:41 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlansec.dll [2017/04/25 05:55:41 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\moshostcore.dll [2017/04/25 05:55:41 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FSClient.dll [2017/04/25 05:55:40 | 000,850,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasgcw.dll [2017/04/25 05:55:40 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provops.dll [2017/04/25 05:55:40 | 000,091,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfaudiocnv.dll [2017/04/25 05:55:39 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twinui.pcshell.dll [2017/04/25 05:55:39 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetSetupSvc.dll [2017/04/25 05:55:39 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfsensorgroup.dll [2017/04/25 05:55:38 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MCCSEngineShared.dll [2017/04/25 05:55:38 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NPSM.dll [2017/04/25 05:55:38 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapsBtSvc.dll [2017/04/25 05:55:37 | 000,254,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpeffects.dll [2017/04/25 05:55:37 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlancfg.dll [2017/04/25 05:55:36 | 001,299,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSVPXENC.dll [2017/04/25 05:55:36 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sppnp.dll [2017/04/25 05:55:36 | 000,092,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pdc.sys [2017/04/25 05:55:36 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MosStorage.dll [2017/04/25 05:55:36 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\moshost.dll [2017/04/25 05:55:36 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NfcRadioMedia.dll [2017/04/25 05:55:35 | 001,709,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ActiveSyncProvider.dll [2017/04/25 05:55:35 | 000,374,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFPlay.dll [2017/04/25 05:55:35 | 000,290,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettingsAdminFlows.exe [2017/04/25 05:55:35 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkBindingEngineMigPlugin.dll [2017/04/25 05:55:34 | 000,313,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll [2017/04/25 05:55:34 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\powercfg.exe [2017/04/25 05:55:34 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BackgroundMediaPolicy.dll [2017/04/25 05:55:33 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpninprc.dll [2017/04/25 05:55:32 | 001,357,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSPhotography.dll [2017/04/25 05:55:32 | 000,895,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Streaming.dll [2017/04/25 05:55:32 | 000,713,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpnapps.dll [2017/04/25 05:55:32 | 000,111,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetSetupApi.dll [2017/04/25 05:55:31 | 002,138,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\InputService.dll [2017/04/25 05:55:31 | 000,856,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfreadwrite.dll [2017/04/25 05:55:31 | 000,121,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfps.dll [2017/04/25 05:55:31 | 000,036,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfpmp.exe [2017/04/25 05:55:30 | 002,318,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettingsThresholdAdminFlowUI.dll [2017/04/25 05:55:30 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Core.TextInput.dll [2017/04/25 05:55:30 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\splwow64.exe [2017/04/25 05:55:30 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netiougc.exe [2017/04/25 05:55:29 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\das.dll [2017/04/25 05:55:29 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\indexeddbserver.dll [2017/04/25 05:55:29 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ProximityCommon.dll [2017/04/25 05:55:29 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ProvSysprep.dll [2017/04/25 05:55:27 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkUXBroker.dll [2017/04/25 05:55:27 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\puiapi.dll [2017/04/25 05:55:27 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\InputLocaleManager.dll [2017/04/25 05:55:27 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DafPrintProvider.dll [2017/04/25 05:55:27 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EditBufferTestHook.dll [2017/04/25 05:55:27 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wfdprov.dll [2017/04/25 05:55:27 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WordBreakers.dll [2017/04/25 05:55:26 | 000,700,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Storage.Search.dll [2017/04/25 05:55:26 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LockAppBroker.dll [2017/04/25 05:55:26 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KnobsCore.dll [2017/04/25 05:55:26 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KnobsCsp.dll [2017/04/25 05:55:26 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ProvPluginEng.dll [2017/04/25 05:55:25 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\internetmail.dll [2017/04/25 05:55:25 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mbsmsapi.dll [2017/04/25 05:55:23 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DavSyncProvider.dll [2017/04/25 05:55:23 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accountaccessor.dll [2017/04/25 05:55:23 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpipcfg.dll [2017/04/25 05:55:23 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\findnetprinters.dll [2017/04/25 05:55:22 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BingOnlineServices.dll [2017/04/25 05:55:22 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WMVSENCD.DLL [2017/04/25 05:55:22 | 000,289,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NmaDirect.dll [2017/04/25 05:55:22 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provengine.dll [2017/04/25 05:55:22 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provisioningcsp.dll [2017/04/25 05:55:22 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.ServiceDiscovery.Dnssd.dll [2017/04/25 05:55:22 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provtool.exe [2017/04/25 05:55:22 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapstoasttask.dll [2017/04/25 05:55:22 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapsupdatetask.dll [2017/04/25 05:55:21 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MosResource.dll [2017/04/25 05:55:21 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provhandlers.dll [2017/04/25 05:55:21 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Chakrathunk.dll [2017/04/25 05:55:21 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Microsoft-Windows-MapControls.dll [2017/04/25 05:55:21 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapsCSP.dll [2017/04/25 05:55:21 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NFCProvisioningPlugin.dll [2017/04/25 05:55:21 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provdatastore.dll [2017/04/25 05:55:21 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BarcodeProvisioningPlugin.dll [2017/04/25 05:55:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MosHostClient.dll [2017/04/25 05:55:21 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RemovableMediaProvisioningPlugin.dll [2017/04/25 05:55:21 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nativemap.dll [2017/04/25 05:55:21 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Management.Provisioning.ProxyStub.dll [2017/04/25 05:55:21 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapsBtSvcProxy.dll [2017/04/25 05:55:20 | 002,755,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.tlb [2017/04/25 05:55:20 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanmsm.dll [2017/04/25 05:55:20 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wifiprofilessettinghandler.dll [2017/04/25 05:55:20 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSAC3ENC.DLL [2017/04/25 05:55:20 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\deviceassociation.dll [2017/04/25 05:55:20 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlansvcpal.dll [2017/04/25 05:55:20 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Microsoft-Windows-MosTrace.dll [2017/04/25 05:55:20 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Microsoft-Windows-MosHost.dll [2017/04/25 05:55:20 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapControlStringsRes.dll [2017/04/25 05:55:19 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dasHost.exe [2017/04/25 05:55:19 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WiFiConfigSP.dll [2017/04/25 05:55:19 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanhlp.dll [2017/04/25 05:55:19 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spwmp.dll [2017/04/25 05:55:19 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdxm.ocx [2017/04/25 05:55:19 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxmasf.dll [2017/04/25 05:55:18 | 009,260,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmploc.DLL [2017/04/25 05:55:10 | 002,323,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d10warp.dll [2017/04/25 05:55:09 | 002,277,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d11.dll [2017/04/25 05:55:07 | 001,382,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\workfolderssvc.dll [2017/04/25 05:55:07 | 000,869,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MrmCoreR.dll [2017/04/25 05:55:05 | 001,073,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winload.efi [2017/04/25 05:55:05 | 000,513,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\generaltel.dll [2017/04/25 05:55:05 | 000,073,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CompatTelRunner.exe [2017/04/25 05:55:04 | 000,945,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winload.exe [2017/04/25 05:55:04 | 000,806,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3D12.dll [2017/04/25 05:55:03 | 000,711,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Search.dll [2017/04/25 05:55:02 | 000,598,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WpcRefreshTask.dll [2017/04/25 05:55:02 | 000,524,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxgi.dll [2017/04/25 05:55:01 | 000,699,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\uDWM.dll [2017/04/25 05:55:01 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\energy.dll [2017/04/25 05:55:00 | 001,406,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LocationFramework.dll [2017/04/25 05:55:00 | 000,468,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.InkControls.dll [2017/04/25 05:54:58 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cloudAP.dll [2017/04/25 05:54:58 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfksproxy.dll [2017/04/25 05:54:57 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkCollectionAgent.dll [2017/04/25 05:54:56 | 001,564,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\quartz.dll [2017/04/25 05:54:56 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wc_storage.dll [2017/04/25 05:54:55 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpcore6.dll [2017/04/25 05:54:55 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\biwinrt.dll [2017/04/25 05:54:54 | 000,341,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\Classpnp.sys [2017/04/25 05:54:54 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ConsoleLogon.dll [2017/04/25 05:54:53 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.CredDialogController.dll [2017/04/25 05:54:53 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WorkFoldersGPExt.dll [2017/04/25 05:54:52 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscms.dll [2017/04/25 05:54:52 | 000,356,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\halmacpi.dll [2017/04/25 05:54:52 | 000,356,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hal.dll [2017/04/25 05:54:52 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dialserver.dll [2017/04/25 05:54:51 | 000,095,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wcifs.sys [2017/04/25 05:54:50 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.Connectivity.dll [2017/04/25 05:54:50 | 000,432,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DMRServer.dll [2017/04/25 05:54:50 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\credprovs.dll [2017/04/25 05:54:50 | 000,055,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dam.sys [2017/04/25 05:54:49 | 000,746,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2017/04/25 05:54:49 | 000,083,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\devenum.dll [2017/04/25 05:54:48 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icm32.dll [2017/04/25 05:54:48 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FontProvider.dll [2017/04/25 05:54:48 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CastLaunch.dll [2017/04/25 05:54:48 | 000,021,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\cmimcext.sys [2017/04/25 05:54:47 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Internal.Bluetooth.dll [2017/04/25 05:54:46 | 000,884,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\HelpPane.exe [2017/04/25 05:54:46 | 000,433,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WWanAPI.dll [2017/04/25 05:54:46 | 000,125,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudExperienceHostBroker.dll [2017/04/25 05:54:46 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\csrsrv.dll [2017/04/25 05:54:45 | 000,455,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DolbyDecMFT.dll [2017/04/25 05:54:37 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WorkfoldersControl.dll [2017/04/25 05:54:37 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingSync.dll [2017/04/25 05:54:37 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wininetlui.dll [2017/04/25 05:54:36 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dafpos.dll [2017/04/25 05:54:36 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.SerialCommunication.dll [2017/04/25 05:54:36 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\asycfilt.dll [2017/04/25 05:54:36 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\encapi.dll [2017/04/25 05:54:35 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2017/04/25 05:54:35 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BrowserSettingSync.dll [2017/04/25 05:54:34 | 000,368,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanui.dll [2017/04/25 05:54:34 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WorkFoldersShell.dll [2017/04/25 05:54:34 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\psmsrv.dll [2017/04/25 05:54:34 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WorkFolders.exe [2017/04/25 05:54:34 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll [2017/04/25 05:54:33 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WpcTok.exe [2017/04/25 05:54:33 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Cortana.OneCore.dll [2017/04/25 05:54:33 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Shell.Search.UriHandler.dll [2017/04/25 05:54:33 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tbauth.dll [2017/04/25 05:54:33 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TokenBrokerCookies.exe [2017/04/25 05:54:32 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmjpegdec.dll [2017/04/25 05:54:30 | 000,374,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.LowLevel.dll [2017/04/25 05:54:30 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Geolocation.dll [2017/04/25 05:54:30 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudBackupSettings.dll [2017/04/25 05:54:30 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll [2017/04/25 05:54:29 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Cortana.Desktop.dll [2017/04/25 05:54:28 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qdvd.dll [2017/04/25 05:54:28 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.SmartCards.dll [2017/04/25 05:54:28 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.SmartCards.Phone.dll [2017/04/25 05:54:28 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.BioFeedback.dll [2017/04/25 05:54:28 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\apds.dll [2017/04/25 05:54:27 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\flvprophandler.dll [2017/04/25 05:54:27 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.HostName.dll [2017/04/25 05:54:27 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CbtBackgroundManagerPolicy.dll [2017/04/25 05:54:26 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Core.dll [2017/04/25 05:54:11 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iesetup.dll [2017/04/25 05:54:10 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\credprovslegacy.dll [2017/04/25 05:54:09 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ConfigureExpandedStorage.dll [2017/04/25 05:54:09 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iernonce.dll [2017/04/25 05:54:08 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\container.dll [2017/04/25 05:54:08 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wwanprotdim.dll [2017/04/25 05:53:51 | 001,127,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ClipUp.exe [2017/04/25 05:53:47 | 000,589,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ClipSp.sys [2017/04/25 05:53:43 | 004,557,824 | ---- | C] (Microsoft) -- C:\WINDOWS\System32\dbgeng.dll [2017/04/25 05:53:41 | 001,339,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\appraiser.dll [2017/04/25 05:53:41 | 000,229,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcntel.dll [2017/04/25 05:53:39 | 001,949,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXDeploymentServer.dll [2017/04/25 05:53:38 | 003,478,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UIRibbon.dll [2017/04/25 05:53:38 | 003,370,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.StateRepository.dll [2017/04/25 05:53:37 | 004,423,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ExplorerFrame.dll [2017/04/25 05:53:37 | 000,980,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aeinv.dll [2017/04/25 05:53:37 | 000,192,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aepic.dll [2017/04/25 05:53:34 | 002,740,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msftedit.dll [2017/04/25 05:53:33 | 001,425,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d9.dll [2017/04/25 05:53:32 | 002,423,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSAJApi.dll [2017/04/25 05:53:31 | 001,357,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UIAutomationCore.dll [2017/04/25 05:53:30 | 000,818,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\modernexecserver.dll [2017/04/25 05:53:30 | 000,450,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\devinv.dll [2017/04/25 05:53:30 | 000,031,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DeviceCensus.exe [2017/04/25 05:53:28 | 001,556,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Immersive.dll [2017/04/25 05:53:26 | 001,056,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wifinetworkmanager.dll [2017/04/25 05:53:25 | 000,565,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wcmsvc.dll [2017/04/25 05:53:24 | 000,579,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XblAuthManager.dll [2017/04/25 05:53:23 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XboxNetApiSvc.dll [2017/04/25 05:53:22 | 001,722,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SRHInproc.dll [2017/04/25 05:53:22 | 001,456,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GdiPlus.dll [2017/04/25 05:53:21 | 000,920,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dosvc.dll [2017/04/25 05:53:20 | 003,198,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdp.dll [2017/04/25 05:53:20 | 000,675,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sppwinob.dll [2017/04/25 05:53:20 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fveapi.dll [2017/04/25 05:53:19 | 000,551,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dxgmms2.sys [2017/04/25 05:53:19 | 000,500,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NotificationController.dll [2017/04/25 05:53:18 | 001,022,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppxPackaging.dll [2017/04/25 05:53:18 | 000,279,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\invagent.dll [2017/04/25 05:53:16 | 000,749,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drvstore.dll [2017/04/25 05:53:16 | 000,636,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PhoneService.dll [2017/04/25 05:53:16 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PCPTpm12.dll [2017/04/25 05:53:16 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppReadiness.dll [2017/04/25 05:53:15 | 000,493,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsregcmd.exe [2017/04/25 05:53:14 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CredProvDataModel.dll [2017/04/25 05:53:14 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetSetupShim.dll [2017/04/25 05:53:13 | 001,097,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpx.dll [2017/04/25 05:53:13 | 000,382,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AUDIOKSE.dll [2017/04/25 05:53:12 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CPFilters.dll [2017/04/25 05:53:12 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PhoneProviders.dll [2017/04/25 05:53:12 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ncsi.dll [2017/04/25 05:53:12 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\clfs.sys [2017/04/25 05:53:11 | 000,802,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EditionUpgradeManagerObj.dll [2017/04/25 05:53:11 | 000,328,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\daxexec.dll [2017/04/25 05:53:11 | 000,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wevtapi.dll [2017/04/25 05:53:10 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RDXService.dll [2017/04/25 05:53:10 | 000,422,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twinapi.dll [2017/04/25 05:53:10 | 000,359,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\facecredentialprovider.dll [2017/04/25 05:53:10 | 000,294,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdpsvc.dll [2017/04/25 05:53:10 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CfgSPCellular.dll [2017/04/25 05:53:10 | 000,100,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EnterpriseAPNCsp.dll [2017/04/25 05:53:10 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CspCellularSettings.dll [2017/04/25 05:53:09 | 002,484,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gameux.dll [2017/04/25 05:53:09 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vpnike.dll [2017/04/25 05:53:09 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_WorkAccess.dll [2017/04/25 05:53:08 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GamePanel.exe [2017/04/25 05:53:08 | 000,581,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ci.dll [2017/04/25 05:53:08 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rascustom.dll [2017/04/25 05:53:07 | 005,398,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aclui.dll [2017/04/25 05:53:06 | 000,461,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\webio.dll [2017/04/25 05:53:06 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fhcfg.dll [2017/04/25 05:53:06 | 000,254,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdpusersvc.dll [2017/04/25 05:53:05 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nltest.exe [2017/04/25 05:53:04 | 000,945,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reseteng.dll [2017/04/25 05:53:04 | 000,454,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\storport.sys [2017/04/25 05:53:04 | 000,315,744 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\atmfd.dll [2017/04/25 05:53:04 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ahcache.sys [2017/04/25 05:53:03 | 000,862,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingSyncCore.dll [2017/04/25 05:53:03 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ActivationManager.dll [2017/04/25 05:53:03 | 000,248,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\policymanager.dll [2017/04/25 05:53:03 | 000,247,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\domgmt.dll [2017/04/25 05:53:03 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ACPBackgroundManagerPolicy.dll [2017/04/25 05:53:02 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DXP.dll [2017/04/25 05:53:02 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ClipboardServer.dll [2017/04/25 05:53:02 | 000,152,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RTWorkQ.dll [2017/04/25 05:53:02 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXApplicabilityBlob.dll [2017/04/25 05:53:02 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BthRadioMedia.dll [2017/04/25 05:53:01 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SndVolSSO.dll [2017/04/25 05:53:01 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft-windows-system-events.dll [2017/04/25 05:53:01 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\discan.dll [2017/04/25 05:53:01 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netiohlp.dll [2017/04/25 05:53:01 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RMapi.dll [2017/04/25 05:53:01 | 000,113,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acmigration.dll [2017/04/25 05:53:00 | 001,602,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aitstatic.exe [2017/04/25 05:53:00 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ddraw.dll [2017/04/25 05:53:00 | 000,505,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bcastdvr.exe [2017/04/25 05:53:00 | 000,320,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\systemreset.exe [2017/04/25 05:53:00 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fveapibase.dll [2017/04/25 05:53:00 | 000,173,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\basecsp.dll [2017/04/25 05:53:00 | 000,117,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bcrypt.dll [2017/04/25 05:52:59 | 000,580,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hgcpl.dll [2017/04/25 05:52:59 | 000,545,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fontdrvhost.exe [2017/04/25 05:52:59 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fhengine.dll [2017/04/25 05:52:59 | 000,186,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\weretw.dll [2017/04/25 05:52:59 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdd.dll [2017/04/25 05:52:59 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpapisrv.dll [2017/04/25 05:52:58 | 000,576,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wer.dll [2017/04/25 05:52:58 | 000,313,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\audiodg.exe [2017/04/25 05:52:57 | 000,728,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\enterprisecsps.dll [2017/04/25 05:52:57 | 000,257,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DataExchange.dll [2017/04/25 05:52:57 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\scksp.dll [2017/04/25 05:52:57 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmcertinst.exe [2017/04/25 05:52:57 | 000,076,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\remoteaudioendpoint.dll [2017/04/25 05:52:57 | 000,067,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\crashdmp.sys [2017/04/25 05:52:57 | 000,042,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\iorate.sys [2017/04/25 05:52:53 | 000,790,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXDeploymentExtensions.desktop.dll [2017/04/25 05:52:53 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\input.dll [2017/04/25 05:52:53 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EnterpriseAppMgmtSvc.dll [2017/04/25 05:52:53 | 000,218,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\offlinesam.dll [2017/04/25 05:52:53 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winsrv.dll [2017/04/25 05:52:53 | 000,100,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfupgd.dll [2017/04/25 05:52:52 | 000,731,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d8.dll [2017/04/25 05:52:52 | 000,173,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wof.sys [2017/04/25 05:52:52 | 000,101,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ImplatSetup.dll [2017/04/25 05:52:51 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BootMenuUX.dll [2017/04/25 05:52:51 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXDeploymentClient.dll [2017/04/25 05:52:51 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys [2017/04/25 05:52:51 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\HttpsDataSource.dll [2017/04/25 05:52:50 | 000,827,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twinui.appcore.dll [2017/04/25 05:52:50 | 000,122,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\migisol.dll [2017/04/25 05:52:50 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmifw.dll [2017/04/25 05:52:49 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AudioSrvPolicyManager.dll [2017/04/25 05:52:49 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TpmTasks.dll [2017/04/25 05:52:49 | 000,034,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CompPkgSup.dll [2017/04/25 05:52:48 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Speech.dll [2017/04/25 05:52:48 | 000,549,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ActionCenterCPL.dll [2017/04/25 05:52:48 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fhsettingsprovider.dll [2017/04/25 05:52:48 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\autoplay.dll [2017/04/25 05:52:48 | 000,112,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gpapi.dll [2017/04/25 05:52:48 | 000,081,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DeviceReactivation.dll [2017/04/25 05:52:47 | 000,632,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sud.dll [2017/04/25 05:52:47 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bcdedit.exe [2017/04/25 05:52:47 | 000,306,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.MediaControl.dll [2017/04/25 05:52:47 | 000,136,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudExperienceHostUser.dll [2017/04/25 05:52:47 | 000,093,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\phoneactivate.exe [2017/04/25 05:52:47 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dab.dll [2017/04/25 05:52:47 | 000,036,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SysResetErr.exe [2017/04/25 05:52:46 | 000,994,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ApplicationFrame.dll [2017/04/25 05:52:46 | 000,387,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettings.UserAccountsHandlers.dll [2017/04/25 05:52:46 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DeviceEnroller.exe [2017/04/25 05:52:45 | 000,564,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GenValObj.exe [2017/04/25 05:52:45 | 000,447,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_StorageSense.dll [2017/04/25 05:52:45 | 000,315,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wifitask.exe [2017/04/25 05:52:45 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ks.sys [2017/04/25 05:52:45 | 000,099,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tm.sys [2017/04/25 05:52:45 | 000,094,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\win32u.dll [2017/04/25 05:52:45 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\offreg.dll [2017/04/25 05:52:44 | 000,939,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pidgenx.dll [2017/04/25 05:52:44 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EnterpriseModernAppMgmtCSP.dll [2017/04/25 05:52:44 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\adsmsext.dll [2017/04/25 05:52:43 | 000,894,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SensorDataService.exe [2017/04/25 05:52:43 | 000,384,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DataSenseHandlers.dll [2017/04/25 05:52:43 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RelPost.exe [2017/04/25 05:52:43 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lpremove.exe [2017/04/25 05:52:42 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\OneDriveSettingSyncProvider.dll [2017/04/25 05:52:42 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmenrollengine.dll [2017/04/25 05:52:42 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\systemcpl.dll [2017/04/25 05:52:42 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\efsext.dll [2017/04/25 05:52:41 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserLanguagesCpl.dll [2017/04/25 05:52:41 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wincorlib.dll [2017/04/25 05:52:41 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkDesktopSettings.dll [2017/04/25 05:52:41 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ErrorDetailsUpdate.dll [2017/04/25 05:52:41 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ReAgentc.exe [2017/04/25 05:52:40 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MediaFoundation.DefaultPerceptionProvider.dll [2017/04/25 05:52:40 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.System.SystemManagement.dll [2017/04/25 05:52:40 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BluetoothDesktopHandlers.dll [2017/04/25 05:52:38 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GlobCollationHost.dll [2017/04/25 05:52:38 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EditionUpgradeHelper.dll [2017/04/25 05:52:38 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BcastDVRHelper.dll [2017/04/25 05:52:38 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ScDeviceEnum.dll [2017/04/25 05:52:38 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tzautoupdate.dll [2017/04/25 05:52:38 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XInputUap.dll [2017/04/25 05:52:37 | 002,458,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\themecpl.dll [2017/04/25 05:52:37 | 000,570,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PrintRenderAPIHost.DLL [2017/04/25 05:52:37 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppCapture.dll [2017/04/25 05:52:37 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usoapi.dll [2017/04/25 05:52:37 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LaunchWinApp.exe [2017/04/25 05:52:36 | 000,336,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msinfo32.exe [2017/04/25 05:52:36 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetCfgNotifyObjectHost.exe [2017/04/25 05:52:35 | 000,705,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\taskbarcpl.dll [2017/04/25 05:52:35 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NgcCtnrGidsHandler.dll [2017/04/25 05:52:35 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LockScreenContent.dll [2017/04/25 05:52:35 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDeviceRegistration.Ngc.dll [2017/04/25 05:52:34 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chartv.dll [2017/04/25 05:52:33 | 000,824,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SRH.dll [2017/04/25 05:52:33 | 000,609,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Import.dll [2017/04/25 05:52:33 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ErrorDetails.dll [2017/04/25 05:52:33 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DuCsps.dll [2017/04/25 05:52:33 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stdole2.tlb [2017/04/25 05:52:32 | 006,474,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2017/04/25 05:52:32 | 000,631,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\main.cpl [2017/04/25 05:52:32 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Midi.dll [2017/04/25 05:52:32 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudDomainJoinDataModelServer.dll [2017/04/25 05:52:32 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fhtask.dll [2017/04/25 05:52:31 | 000,466,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sppcext.dll [2017/04/25 05:52:31 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscandui.dll [2017/04/25 05:52:31 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdmregistration.dll [2017/04/25 05:52:31 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AuthBroker.dll [2017/04/25 05:52:30 | 000,787,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sbe.dll [2017/04/25 05:52:30 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\esentutl.exe [2017/04/25 05:52:30 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AuthExt.dll [2017/04/25 05:52:30 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Family.Authentication.dll [2017/04/25 05:52:30 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.System.UserDeviceAssociation.dll [2017/04/25 05:52:30 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TokenBrokerUI.dll [2017/04/25 05:52:29 | 003,716,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bootux.dll [2017/04/25 05:52:29 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\enrollmentapi.dll [2017/04/25 05:52:29 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EDPCleanup.exe [2017/04/25 05:52:29 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msctfui.dll [2017/04/25 05:52:29 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ReportingCSP.dll [2017/04/25 05:52:29 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll [2017/04/25 05:52:29 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EAMProgressHandler.dll [2017/04/25 05:52:28 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\C_G18030.DLL [2017/04/25 05:52:28 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wificonnapi.dll [2017/04/25 05:52:28 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ddrawex.dll [2017/04/25 05:52:28 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\delegatorprovider.dll [2017/04/25 05:52:28 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storagewmi_passthru.dll [2017/04/25 05:52:28 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\C_IS2022.DLL [2017/04/25 05:52:28 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\c_GSM7.DLL [2017/04/25 05:52:28 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tzres.dll [2017/04/25 05:52:27 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sppc.dll [2017/04/25 05:52:27 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\offlinelsa.dll [2017/04/25 05:52:27 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Shell.dll [2017/04/25 05:52:27 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ffbroker.dll [2017/04/25 05:52:27 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smphost.dll [2017/04/25 05:52:27 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\slcext.dll [2017/04/25 05:52:27 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ResetEngine.exe [2017/04/25 05:52:27 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PhoneServiceRes.dll [2017/04/25 05:52:26 | 000,461,312 | ---- | C] (Microsoft) -- C:\WINDOWS\System32\DbgModel.dll [2017/04/25 05:52:26 | 000,037,376 | ---- | C] (Adobe Systems) -- C:\WINDOWS\System32\atmlib.dll [2017/04/25 05:52:26 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2017/04/25 05:52:05 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vmrdvcore.dll [2017/04/25 05:52:05 | 000,360,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DscCore.dll [2017/04/25 05:52:04 | 001,336,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsecedit.dll [2017/04/25 05:52:03 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TabletPC.cpl [2017/04/25 05:52:03 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icsvcext.dll [2017/04/25 05:52:01 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icsvc.dll [2017/04/25 05:52:01 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MDMAppInstaller.exe [2017/04/25 05:51:58 | 000,336,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroleui.dll [2017/04/25 05:51:57 | 000,086,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hvsocket.sys [2017/04/25 05:51:55 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iscsiwmi.dll [2017/04/25 05:51:53 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tabcal.exe [2017/04/25 05:51:53 | 000,060,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vmbkmcl.sys [2017/04/25 05:51:52 | 000,167,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscapi.dll [2017/04/25 05:51:52 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Tabbtn.dll [2017/04/25 05:51:51 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pwrshplugin.dll [2017/04/25 05:51:50 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscinterop.dll [2017/04/25 05:51:48 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MultiDigiMon.exe [2017/04/25 05:51:46 | 001,196,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscui.cpl [2017/04/25 05:51:45 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RjvMDMConfig.dll [2017/04/25 05:51:43 | 000,141,824 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\WINDOWS\System32\DscCoreConfProv.dll [2017/04/25 05:51:13 | 008,886,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\OneDriveSetup.exe [2017/04/25 05:47:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2017/04/25 05:46:55 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Sun [2017/04/25 05:46:39 | 000,095,808 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2017/04/25 05:46:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java [2017/04/25 05:45:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle [2017/04/25 05:45:46 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2017/04/25 05:45:27 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\poqexec.exe [2017/04/25 05:40:22 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Mozilla [2017/04/25 05:40:22 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Mozilla [2017/04/25 05:33:33 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\MicrosoftEdge [2017/04/25 05:33:29 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Canneverbe Limited [2017/04/25 05:30:18 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Programs [2017/04/25 05:29:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip [2017/04/25 05:14:08 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Acer Aspire R7 Tutorial [2017/04/25 05:08:50 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Skype [2017/04/25 05:06:39 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\OneDrive [2017/04/25 05:06:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft OneDrive [2017/04/25 05:04:36 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Publishers [2017/04/25 05:04:12 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Comms [2017/04/25 05:04:05 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\TileDataLayer [2017/04/25 05:04:03 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\ConnectedDevicesPlatform [2017/04/25 02:47:17 | 000,000,000 | -HSD | C] -- C:\Recovery [2017/04/25 02:43:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Microsoft [2017/04/25 02:42:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2017/04/25 02:42:19 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2017/04/25 02:42:19 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2017/04/25 02:41:35 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationNative_v0300.dll [2017/04/25 02:41:35 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll [2017/04/25 02:41:35 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TsWpfWrp.exe [2017/04/25 00:20:50 | 000,000,000 | ---D | C] -- C:\ProgramData\USOShared [2017/04/25 00:19:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documents [2017/04/25 00:19:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data [2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modèles [2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes vidéos [2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes images [2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Démarrer [2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Ma musique [2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs [2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Bureau [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Voisinage réseau [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Voisinage d'impression [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\AppData\Local\Temporary Internet Files [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\SendTo [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Recent [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Modèles [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Mes documents [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Menu Démarrer [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Local Settings [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\AppData\Local\Historique [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Cookies [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Application Data [2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\AppData\Local\Application Data [2017/04/24 23:54:19 | 000,000,000 | --SD | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft [2017/04/24 23:54:19 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell [2017/04/24 23:54:19 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools [2017/04/24 23:54:19 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2017/04/24 23:54:19 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility [2017/04/24 23:54:19 | 000,000,000 | -H-D | C] -- C:\Users\odz-plus.com\AppData [2017/04/24 23:54:19 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Temp [2017/04/24 23:54:19 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Microsoft [2017/04/24 23:54:19 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2017/04/24 23:48:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2017/04/24 23:48:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SleepStudy [2017/04/24 23:48:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServiceProfiles [2017/04/24 22:00:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AV [2017/04/24 21:34:48 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\CrashDumps [2017/04/24 21:20:42 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Macromedia [2017/04/24 21:19:51 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\PicStream [2017/04/24 21:19:48 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\clear.fi [2017/04/24 21:19:30 | 000,000,000 | ---D | C] -- C:\ProgramData\OEM_YAHOO [2017/04/24 21:19:27 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2017/04/24 21:19:27 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Searches [2017/04/24 21:19:27 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Contacts [2017/04/24 21:19:27 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2017/04/24 21:19:27 | 000,000,000 | -H-D | C] -- C:\Users\odz-plus.com\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned [2017/04/24 21:19:25 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\VirtualStore [2017/04/24 21:19:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\oem [2017/04/24 21:19:24 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Acer [2017/04/24 21:19:23 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\OEM [2017/04/24 21:19:23 | 000,000,000 | ---D | C] -- C:\Program Files\Accessory Store [2017/04/24 21:19:12 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Adobe [2017/04/24 21:19:11 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\IntelGraphicsProfiles [2017/04/24 21:19:11 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Packages [2017/04/24 21:19:09 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Saved Games [2017/04/24 21:19:09 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Links [2017/04/24 21:19:09 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Favorites [2017/04/24 21:19:09 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Desktop [2017/04/24 21:16:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2017/04/24 07:41:20 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\sauv [2017/04/22 16:19:05 | 000,000,000 | ---D | C] -- D:\utillisateur\document\PDF Architect [2017/04/22 16:19:04 | 000,000,000 | ---D | C] -- D:\utillisateur\document\HpReg_Backup [2017/04/22 16:19:04 | 000,000,000 | ---D | C] -- D:\utillisateur\document\Blocs-notes OneNote [2017/04/22 16:19:04 | 000,000,000 | ---D | C] -- D:\utillisateur\document\Anki [2017/04/22 16:10:42 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\PATIENTS 2016-2017 [2017/04/22 16:10:42 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\IMAGES [2017/04/22 16:10:42 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\Anciennes données de Firefox [2017/04/22 16:10:42 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\2017-03-27 [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2017/05/20 19:23:44 | 819,351,552 | -HS- | M] () -- C:\hiberfil.sys [2017/05/20 19:23:43 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2017/05/19 18:14:42 | 000,001,318 | ---- | M] () -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2017/05/18 17:09:02 | 000,509,086 | ---- | M] () -- D:\utillisateur\bureau\billet air austral juin 2017.prn [2017/05/15 10:22:52 | 000,066,720 | ---- | M] () -- D:\utillisateur\bureau\emploi-du-temps-hebdomadaire-5-jours.pdf [2017/05/13 18:37:59 | 000,820,644 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2017/05/13 18:37:59 | 000,681,770 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2017/05/13 18:37:59 | 000,211,268 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2017/05/13 18:37:59 | 000,141,454 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2017/05/12 12:54:23 | 000,405,960 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2017/05/12 12:54:15 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys [2017/05/12 12:38:50 | 000,030,764 | ---- | M] () -- D:\utillisateur\bureau\bookmarks.html [2017/04/29 04:59:38 | 000,177,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2017/04/29 04:59:37 | 000,835,576 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2017/04/28 05:33:50 | 000,448,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ContentDeliveryManager.Utilities.dll [2017/04/28 05:32:09 | 000,685,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Internal.Shell.Broker.dll [2017/04/28 05:28:15 | 000,965,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ReAgent.dll [2017/04/28 05:01:53 | 000,784,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winresume.exe [2017/04/28 05:00:07 | 005,996,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntoskrnl.exe [2017/04/28 04:56:56 | 002,048,488 | ---- | M] () -- C:\WINDOWS\System32\CoreUIComponents.dll [2017/04/28 04:55:11 | 000,583,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CoreMessaging.dll [2017/04/28 04:51:41 | 000,277,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WinSetupUI.dll [2017/04/28 04:48:25 | 000,263,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Storage.ApplicationData.dll [2017/04/28 04:46:17 | 000,342,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dxgmms1.sys [2017/04/28 04:46:06 | 001,431,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Store.dll [2017/04/28 04:46:03 | 005,722,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\windows.storage.dll [2017/04/28 04:45:54 | 000,781,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WWAHost.exe [2017/04/28 04:45:44 | 000,493,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingSyncHost.exe [2017/04/28 04:45:44 | 000,116,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudExperienceHostCommon.dll [2017/04/28 04:45:33 | 000,861,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\LicenseManager.dll [2017/04/28 04:45:29 | 000,975,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\twinapi.appcore.dll [2017/04/28 04:45:29 | 000,025,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browser_broker.exe [2017/04/28 04:43:55 | 000,458,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\spaceport.sys [2017/04/28 04:43:10 | 000,846,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WinTypes.dll [2017/04/28 04:43:09 | 002,168,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\combase.dll [2017/04/28 04:42:58 | 000,601,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\NetSetupEngine.dll [2017/04/28 04:41:08 | 000,361,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tsmf.dll [2017/04/28 04:41:07 | 000,080,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpudd.dll [2017/04/28 04:40:30 | 006,665,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Protection.PlayReady.dll [2017/04/28 04:40:19 | 004,023,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfcore.dll [2017/04/28 04:40:17 | 001,277,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfasfsrcsnk.dll [2017/04/28 04:40:15 | 001,851,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmp4srcsnk.dll [2017/04/28 04:40:15 | 001,360,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfnetsrc.dll [2017/04/28 04:40:13 | 000,981,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfnetcore.dll [2017/04/28 04:40:10 | 000,352,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MMDevAPI.dll [2017/04/28 04:40:09 | 001,202,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmpeg2srcsnk.dll [2017/04/28 04:39:22 | 004,312,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [2017/04/28 04:38:56 | 001,384,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sppobjs.dll [2017/04/28 04:35:23 | 001,411,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\gdi32full.dll [2017/04/28 04:29:28 | 005,685,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Data.Pdf.dll [2017/04/28 04:26:56 | 000,281,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\RDXTaskFactory.dll [2017/04/28 04:23:19 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataTimeUtil.dll [2017/04/28 04:23:10 | 001,631,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Resources.dll [2017/04/28 04:22:46 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcconf.dll [2017/04/28 04:22:16 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ReInfo.dll [2017/04/28 04:21:41 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\BthTelemetry.dll [2017/04/28 04:21:14 | 000,224,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ExSMime.dll [2017/04/28 04:20:50 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\virtdisk.dll [2017/04/28 04:20:47 | 000,141,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Radios.dll [2017/04/28 04:20:27 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\appidcertstorecheck.exe [2017/04/28 04:20:23 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vwifimp.sys [2017/04/28 04:19:33 | 000,119,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Family.Client.dll [2017/04/28 04:19:26 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UIRibbonRes.dll [2017/04/28 04:19:15 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDeviceRegistration.dll [2017/04/28 04:19:05 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DisplayManager.dll [2017/04/28 04:18:35 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.BlockedShutdown.dll [2017/04/28 04:17:57 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WinRtTracing.dll [2017/04/28 04:17:50 | 000,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.StateRepositoryClient.dll [2017/04/28 04:17:39 | 000,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\aadcloudap.dll [2017/04/28 04:17:36 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\BluetoothApis.dll [2017/04/28 04:17:02 | 000,186,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Family.SyncEngine.dll [2017/04/28 04:17:01 | 000,142,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.WiFi.dll [2017/04/28 04:16:49 | 000,242,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Dxpserver.exe [2017/04/28 04:16:43 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browserbroker.dll [2017/04/28 04:16:36 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UserMgrProxy.dll [2017/04/28 04:16:31 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Gaming.Input.dll [2017/04/28 04:16:31 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\credprovhost.dll [2017/04/28 04:16:24 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AppointmentActivation.dll [2017/04/28 04:16:23 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.LockScreen.dll [2017/04/28 04:16:23 | 000,113,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Lights.dll [2017/04/28 04:16:17 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dafBth.dll [2017/04/28 04:16:16 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shutdownux.dll [2017/04/28 04:16:09 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\InstallAgent.exe [2017/04/28 04:16:07 | 000,186,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_Flights.dll [2017/04/28 04:15:44 | 000,334,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rastlsext.dll [2017/04/28 04:15:41 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DeveloperOptionsSettingsHandlers.dll [2017/04/28 04:15:38 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SyncSettings.dll [2017/04/28 04:15:35 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bthprops.cpl [2017/04/28 04:15:29 | 000,404,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsreg.dll [2017/04/28 04:15:22 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll [2017/04/28 04:15:14 | 000,822,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Chakradiag.dll [2017/04/28 04:15:12 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ConsentUX.dll [2017/04/28 04:15:11 | 000,557,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\StoreAgent.dll [2017/04/28 04:15:09 | 000,774,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettings.Handlers.dll [2017/04/28 04:14:55 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll [2017/04/28 04:14:11 | 000,670,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.PointOfService.dll [2017/04/28 04:14:06 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\InstallAgentUserBroker.exe [2017/04/28 04:14:01 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.AllJoyn.dll [2017/04/28 04:14:00 | 000,445,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.UX.EapRequestHandler.dll [2017/04/28 04:14:00 | 000,306,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieproxy.dll [2017/04/28 04:13:57 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.HumanInterfaceDevice.dll [2017/04/28 04:13:55 | 001,243,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.FaceAnalysis.dll [2017/04/28 04:13:52 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\storewuauth.dll [2017/04/28 04:13:45 | 000,386,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.WiFiDirect.dll [2017/04/28 04:13:43 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Security.Authentication.Identity.Provider.dll [2017/04/28 04:13:35 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\setupugc.exe [2017/04/28 04:13:28 | 000,298,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Internal.Management.dll [2017/04/28 04:13:27 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WwaApi.dll [2017/04/28 04:13:24 | 000,426,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Wallet.dll [2017/04/28 04:13:23 | 001,755,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DeviceFlows.DataModel.dll [2017/04/28 04:13:21 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\deviceaccess.dll [2017/04/28 04:13:19 | 000,322,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WpAXHolder.dll [2017/04/28 04:13:17 | 000,506,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DevicePairing.dll [2017/04/28 04:13:15 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vaultcli.dll [2017/04/28 04:13:11 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Scanners.dll [2017/04/28 04:13:06 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\apprepapi.dll [2017/04/28 04:13:01 | 013,873,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.dll [2017/04/28 04:12:58 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\apprepsync.dll [2017/04/28 04:12:52 | 000,273,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PrintDialogs3D.dll [2017/04/28 04:12:50 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ubpm.dll [2017/04/28 04:12:39 | 000,431,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\efswrt.dll [2017/04/28 04:12:31 | 000,188,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe [2017/04/28 04:12:24 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript9diag.dll [2017/04/28 04:12:08 | 000,262,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Picker.dll [2017/04/28 04:11:50 | 000,623,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bisrv.dll [2017/04/28 04:11:50 | 000,517,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FlightSettings.dll [2017/04/28 04:11:40 | 001,774,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkMobileSettings.dll [2017/04/28 04:11:38 | 000,294,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ConhostV2.dll [2017/04/28 04:11:32 | 001,378,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXDeploymentExtensions.onecore.dll [2017/04/28 04:11:16 | 000,323,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DevicesFlowBroker.dll [2017/04/28 04:11:15 | 000,747,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Ocr.dll [2017/04/28 04:11:12 | 000,340,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll [2017/04/28 04:11:11 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\updatepolicy.dll [2017/04/28 04:11:09 | 000,846,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WebcamUi.dll [2017/04/28 04:10:54 | 000,819,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AppContracts.dll [2017/04/28 04:10:52 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Usb.dll [2017/04/28 04:10:45 | 000,238,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AboveLockAppHost.dll [2017/04/28 04:10:44 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.dll [2017/04/28 04:10:36 | 000,764,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mprddm.dll [2017/04/28 04:10:34 | 000,857,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\EmailApis.dll [2017/04/28 04:10:27 | 000,425,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usocore.dll [2017/04/28 04:10:27 | 000,242,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\NgcCtnrSvc.dll [2017/04/28 04:10:19 | 000,661,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WpcWebFilter.dll [2017/04/28 04:10:10 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usermgr.dll [2017/04/28 04:10:04 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\NaturalLanguage6.dll [2017/04/28 04:09:36 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\updatehandlers.dll [2017/04/28 04:09:33 | 000,525,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PrintDialogs.dll [2017/04/28 04:09:29 | 001,109,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SharedStartModel.dll [2017/04/28 04:09:20 | 000,368,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\puiobj.dll [2017/04/28 04:09:13 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Security.Authentication.Web.Core.dll [2017/04/28 04:09:13 | 000,352,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Enumeration.dll [2017/04/28 04:08:57 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CryptoWinRT.dll [2017/04/28 04:08:20 | 018,365,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\edgehtml.dll [2017/04/28 04:08:18 | 000,653,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.AccountsControl.dll [2017/04/28 04:08:12 | 007,626,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\twinui.dll [2017/04/28 04:08:12 | 001,534,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Graphics.Printing.3D.dll [2017/04/28 04:08:10 | 001,228,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usercpl.dll [2017/04/28 04:07:58 | 000,754,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ngcsvc.dll [2017/04/28 04:07:30 | 000,525,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\LogonController.dll [2017/04/28 04:06:49 | 004,614,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.dll [2017/04/28 04:06:49 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.dll [2017/04/28 04:06:37 | 000,901,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Bluetooth.dll [2017/04/28 04:06:11 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuuhext.dll [2017/04/28 04:06:09 | 001,488,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\diagtrack.dll [2017/04/28 04:06:01 | 000,691,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll [2017/04/28 04:05:51 | 003,733,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_47.dll [2017/04/28 04:05:24 | 000,886,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\aadtb.dll [2017/04/28 04:05:17 | 000,589,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Sensors.dll [2017/04/28 04:04:14 | 001,323,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_fs.dll [2017/04/28 04:04:09 | 001,284,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2017/04/28 04:03:57 | 001,137,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_health.dll [2017/04/28 04:03:57 | 000,355,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\RTMediaFrame.dll [2017/04/28 04:03:56 | 001,584,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wlidsvc.dll [2017/04/28 04:03:55 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Energy.dll [2017/04/28 04:03:40 | 001,077,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Editing.dll [2017/04/28 04:03:14 | 000,291,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\adsnt.dll [2017/04/28 04:03:10 | 000,318,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\LocationApi.dll [2017/04/28 04:03:08 | 001,220,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\RecoveryDrive.exe [2017/04/28 04:01:56 | 000,795,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MiracastReceiver.dll [2017/04/28 04:01:46 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToDevice.dll [2017/04/28 04:01:30 | 000,248,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dlnashext.dll [2017/04/28 04:01:09 | 000,141,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dialclient.dll [2017/04/28 04:00:58 | 000,300,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AudioEndpointBuilder.dll [2017/04/28 04:00:40 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\umpoext.dll [2017/04/28 04:00:36 | 000,582,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SpaceControl.dll [2017/04/28 04:00:26 | 002,749,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mispace.dll [2017/04/28 04:00:19 | 003,774,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_nt.dll [2017/04/28 04:00:12 | 001,255,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AzureSettingSyncProvider.dll [2017/04/28 03:59:20 | 002,154,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\storagewmi.dll [2017/04/28 03:59:07 | 000,758,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fvewiz.dll [2017/04/28 03:59:03 | 000,220,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToReceiver.dll [2017/04/28 03:58:35 | 000,433,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2.dll [2017/04/28 03:58:01 | 000,113,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SpaceAgent.exe [2017/04/28 03:57:58 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CameraCaptureUI.dll [2017/04/28 03:57:54 | 001,221,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Audio.dll [2017/04/28 03:57:40 | 001,247,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Globalization.dll [2017/04/28 03:57:38 | 001,136,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wpncore.dll [2017/04/28 03:57:35 | 000,719,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_sr.dll [2017/04/28 03:57:03 | 001,700,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smartscreen.exe [2017/04/28 03:57:03 | 000,641,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MCRecvSrc.dll [2017/04/28 03:56:35 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Devices.dll [2017/04/28 03:56:28 | 000,400,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToManager.dll [2017/04/28 03:55:18 | 001,656,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Perception.dll [2017/04/28 03:55:18 | 001,232,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Maps.dll [2017/04/28 03:55:17 | 001,987,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll [2017/04/28 03:55:10 | 006,042,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Chakra.dll [2017/04/28 03:55:06 | 001,413,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\OpcServices.dll [2017/04/28 03:55:05 | 001,993,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dwmcore.dll [2017/04/28 03:55:04 | 001,004,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Input.Inking.dll [2017/04/28 03:54:51 | 002,747,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcore.dll [2017/04/28 03:54:35 | 002,027,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl [2017/04/28 03:54:35 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ShareHost.dll [2017/04/28 03:54:34 | 003,664,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript9.dll [2017/04/28 03:54:30 | 000,654,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MbaeApiPublic.dll [2017/04/28 03:54:21 | 001,013,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Web.Http.dll [2017/04/28 03:54:11 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dll [2017/04/28 03:54:08 | 000,598,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Web.dll [2017/04/28 03:54:07 | 002,646,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CertEnroll.dll [2017/04/28 03:53:56 | 001,170,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Phone.dll [2017/04/28 03:53:56 | 000,621,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.dll [2017/04/28 03:53:45 | 001,235,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32kbase.sys [2017/04/28 03:53:34 | 000,798,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\authui.dll [2017/04/28 03:53:18 | 000,751,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.dll [2017/04/28 03:52:44 | 002,008,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DWrite.dll [2017/04/28 03:52:28 | 002,994,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32kfull.sys [2017/04/28 03:52:02 | 003,596,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcorets.dll [2017/04/28 03:50:53 | 001,438,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ResetEngine.dll [2017/04/28 03:50:53 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spaceman.exe [2017/04/28 03:50:45 | 000,783,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\TSWorkspace.dll [2017/04/26 11:34:56 | 000,010,676 | ---- | M] () -- D:\utillisateur\bureau\Facture4173.pdf [2017/04/26 11:13:58 | 000,000,578 | ---- | M] () -- D:\utillisateur\bureau\SOINS 2000.lnk [2017/04/26 11:13:54 | 000,000,497 | ---- | M] () -- C:\WINDOWS\sesam.ini [2017/04/25 22:00:59 | 000,559,840 | ---- | M] (LOGISURM) -- C:\WINDOWS\uninsts2.exe [2017/04/25 22:00:59 | 000,000,361 | ---- | M] () -- C:\WINDOWS\GALSS.INI [2017/04/25 22:00:43 | 000,221,184 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\stsw32.dll [2017/04/25 22:00:43 | 000,010,265 | ---- | M] () -- C:\WINDOWS\tablebin.ssv [2017/04/25 22:00:42 | 000,532,480 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\srtw32.dll [2017/04/25 22:00:42 | 000,372,736 | ---- | M] (GIE Sesam VITALE) -- C:\WINDOWS\SSVW32.DLL [2017/04/25 22:00:42 | 000,368,640 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\sjsw32.dll [2017/04/25 22:00:42 | 000,188,416 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\stsrw32.dll [2017/04/25 22:00:42 | 000,184,320 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\stsmw32.dll [2017/04/25 22:00:42 | 000,172,032 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\sts4w32.dll [2017/04/25 22:00:42 | 000,122,880 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\sts8w32.dll [2017/04/25 22:00:42 | 000,114,688 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\stsuw32.dll [2017/04/25 22:00:42 | 000,103,936 | ---- | M] (GIE) -- C:\WINDOWS\sisw32.dll [2017/04/25 22:00:42 | 000,086,016 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\smcw32.dll [2017/04/25 22:00:42 | 000,073,728 | ---- | M] (GIP-CPS) -- C:\WINDOWS\cptabw32.dll [2017/04/25 22:00:42 | 000,061,440 | ---- | M] (GIP CPS) -- C:\WINDOWS\Sscasw32.dll [2017/04/25 22:00:42 | 000,045,056 | ---- | M] (G.I.E. SESAM VITALE) -- C:\WINDOWS\sgdw32.dll [2017/04/25 22:00:42 | 000,032,768 | ---- | M] (GIE SESAM VITALE) -- C:\WINDOWS\smsw32.dll [2017/04/25 22:00:42 | 000,024,158 | ---- | M] () -- C:\WINDOWS\DICO-FR.GIP [2017/04/25 22:00:41 | 000,217,088 | ---- | M] (GIP CPS) -- C:\WINDOWS\cpsw32.dll [2017/04/25 22:00:41 | 000,094,208 | ---- | M] (GIE) -- C:\WINDOWS\Galssw32.dll [2017/04/25 22:00:41 | 000,090,112 | ---- | M] (GIE) -- C:\WINDOWS\Pssinw32.dll [2017/04/25 22:00:41 | 000,051,808 | ---- | M] (ILEX) -- C:\WINDOWS\Galsvw32.exe [2017/04/25 22:00:41 | 000,049,152 | ---- | M] (ILEX) -- C:\WINDOWS\Galinw32.dll [2017/04/25 22:00:41 | 000,049,152 | ---- | M] (ILEX) -- C:\WINDOWS\Galclw32.dll [2017/04/25 22:00:41 | 000,049,152 | ---- | M] (GIP-CPS) -- C:\WINDOWS\Cpdicw32.dll [2017/04/25 22:00:41 | 000,045,056 | ---- | M] () -- C:\WINDOWS\atlw32.dll [2017/04/25 22:00:41 | 000,030,720 | ---- | M] (GIP CPS) -- C:\WINDOWS\cpsvb432.dll [2017/04/25 22:00:40 | 000,408,160 | ---- | M] (GIP CPS) -- C:\WINDOWS\cpgesw32.exe [2017/04/25 22:00:40 | 000,368,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vbar332.dll [2017/04/25 22:00:40 | 000,251,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrd2x35.dll [2017/04/25 22:00:39 | 001,039,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjet35.dll [2017/04/25 22:00:39 | 000,037,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjint35.dll [2017/04/25 22:00:39 | 000,024,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjter35.dll [2017/04/25 07:41:16 | 000,001,209 | ---- | M] () -- C:\Users\Public\Desktop\LibreOffice 5.2.lnk [2017/04/25 06:41:28 | 000,000,451 | ---- | M] () -- C:\WINDOWS\System32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat [2017/04/25 06:27:54 | 000,015,425 | ---- | M] () -- C:\WINDOWS\System32\OEMDefaultAssociations.xml [2017/04/25 06:20:04 | 000,097,792 | ---- | M] (pdfforge GmbH) -- C:\WINDOWS\System32\pdfcmon.dll [2017/04/25 05:46:25 | 000,095,808 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2017/04/25 05:27:37 | 000,430,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe [2017/04/25 05:24:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_User_WpdFs_01_11_00.Wdf [2017/04/25 00:19:02 | 000,007,623 | ---- | M] () -- C:\WINDOWS\diagwrn.xml [2017/04/25 00:19:02 | 000,007,623 | ---- | M] () -- C:\WINDOWS\diagerr.xml [2017/04/25 00:15:30 | 000,021,680 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2017/04/24 21:19:11 | 000,000,144 | ---- | M] () -- C:\WINDOWS\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat [2017/04/21 21:02:32 | 000,007,334 | ---- | M] () -- D:\utillisateur\bureau\PREL.odt [2017/04/21 11:55:08 | 000,021,766 | ---- | M] () -- D:\utillisateur\bureau\anamnèse vierge.pdf [color=#E56717]========== Files Created - No Company Name ==========[/color] [2017/05/18 17:08:45 | 000,509,086 | ---- | C] () -- D:\utillisateur\bureau\billet air austral juin 2017.prn [2017/05/15 10:22:48 | 000,066,720 | ---- | C] () -- D:\utillisateur\bureau\emploi-du-temps-hebdomadaire-5-jours.pdf [2017/05/12 12:38:48 | 000,030,764 | ---- | C] () -- D:\utillisateur\bureau\bookmarks.html [2017/05/12 12:30:29 | 000,001,190 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2017/05/11 19:33:41 | 002,048,488 | ---- | C] () -- C:\WINDOWS\System32\CoreUIComponents.dll [2017/04/26 11:34:52 | 000,010,676 | ---- | C] () -- D:\utillisateur\bureau\Facture4173.pdf [2017/04/25 22:23:00 | 000,001,318 | ---- | C] () -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2017/04/25 22:01:03 | 000,000,660 | ---- | C] () -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SOINS 2000.lnk [2017/04/25 22:01:02 | 000,000,578 | ---- | C] () -- D:\utillisateur\bureau\SOINS 2000.lnk [2017/04/25 22:00:59 | 000,000,361 | ---- | C] () -- C:\WINDOWS\GALSS.INI [2017/04/25 22:00:43 | 000,010,265 | ---- | C] () -- C:\WINDOWS\tablebin.ssv [2017/04/25 22:00:42 | 000,024,158 | ---- | C] () -- C:\WINDOWS\DICO-FR.GIP [2017/04/25 22:00:42 | 000,000,497 | ---- | C] () -- C:\WINDOWS\sesam.ini [2017/04/25 22:00:41 | 000,045,056 | ---- | C] () -- C:\WINDOWS\atlw32.dll [2017/04/25 21:33:54 | 000,002,476 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk [2017/04/25 21:33:54 | 000,002,461 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk [2017/04/25 21:33:54 | 000,002,459 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk [2017/04/25 21:33:54 | 000,002,449 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk [2017/04/25 21:33:54 | 000,002,449 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk [2017/04/25 21:33:54 | 000,002,399 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk [2017/04/25 21:33:53 | 000,002,476 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk [2017/04/25 07:41:15 | 000,001,209 | ---- | C] () -- C:\Users\Public\Desktop\LibreOffice 5.2.lnk [2017/04/25 06:49:40 | 000,001,002 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk [2017/04/25 06:03:22 | 000,002,457 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk [2017/04/25 05:56:58 | 000,448,285 | ---- | C] () -- C:\WINDOWS\System32\ApnDatabase.xml [2017/04/25 05:56:53 | 000,001,144 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk [2017/04/25 05:55:29 | 000,265,728 | ---- | C] () -- C:\WINDOWS\System32\Windows.Perception.Stub.dll [2017/04/25 05:33:29 | 000,000,756 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk [2017/04/25 05:24:19 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_User_WpdFs_01_11_00.Wdf [2017/04/25 05:23:51 | 000,000,451 | ---- | C] () -- C:\WINDOWS\System32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat [2017/04/25 05:06:39 | 000,002,432 | ---- | C] () -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk [2017/04/25 02:47:15 | 000,051,148 | ---- | C] () -- C:\WINDOWS\System32\license.rtf [2017/04/25 00:18:50 | 000,007,623 | ---- | C] () -- C:\WINDOWS\diagwrn.xml [2017/04/25 00:18:50 | 000,007,623 | ---- | C] () -- C:\WINDOWS\diagerr.xml [2017/04/25 00:15:30 | 000,021,680 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2017/04/25 00:12:43 | 016,777,216 | -HS- | C] () -- C:\swapfile.sys [2017/04/25 00:05:10 | 819,351,552 | -HS- | C] () -- C:\hiberfil.sys [2017/04/25 00:02:06 | 000,001,544 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk [2017/04/24 23:54:19 | 000,000,352 | ---- | C] () -- C:\Users\odz-plus.com\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk [2017/04/24 23:54:19 | 000,000,334 | ---- | C] () -- C:\Users\odz-plus.com\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk [2017/04/24 23:49:29 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2017/04/24 23:48:23 | 000,405,960 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2017/04/24 21:19:53 | 000,001,264 | ---- | C] () -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RtkGUI.lnk [2017/04/24 21:19:11 | 000,000,144 | ---- | C] () -- C:\WINDOWS\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat [2017/04/22 16:11:10 | 000,627,327 | ---- | C] () -- D:\utillisateur\bureau\LM theo2017(1).pages.odt [2017/04/22 16:11:10 | 000,030,021 | ---- | C] () -- D:\utillisateur\bureau\PAKSA A FAIRE.odt [2017/04/22 16:11:10 | 000,007,334 | ---- | C] () -- D:\utillisateur\bureau\PREL.odt [2017/04/22 16:11:09 | 003,410,881 | ---- | C] () -- D:\utillisateur\bureau\lapin marque page.odt [2017/04/22 16:11:09 | 000,258,578 | ---- | C] () -- D:\utillisateur\bureau\bulletin-hp.pdf [2017/04/22 16:11:09 | 000,021,766 | ---- | C] () -- D:\utillisateur\bureau\anamnèse vierge.pdf [2016/07/16 21:15:41 | 000,681,770 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat [2016/07/16 21:15:41 | 000,350,774 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat [2016/07/16 21:15:41 | 000,141,454 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat [2016/07/16 21:15:41 | 000,040,528 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat [2016/07/16 12:31:24 | 000,296,742 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2016/07/16 12:31:24 | 000,033,362 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2016/07/16 12:31:21 | 000,820,644 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2016/07/16 12:31:21 | 000,211,268 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2016/07/16 12:30:03 | 000,215,943 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2016/07/16 12:30:03 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\NOISE.DAT [2016/07/16 12:25:59 | 000,055,296 | ---- | C] () -- C:\WINDOWS\System32\BWContextHandler.dll [2016/07/16 12:25:51 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\GamePanelExternalHook.dll [2016/07/16 12:25:50 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\IHDS.dll [2016/07/16 12:25:49 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\settings.dat [2016/07/16 12:25:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2016/07/16 12:25:30 | 004,227,116 | ---- | C] () -- C:\WINDOWS\System32\DefaultHrtfs.bin [2016/07/16 12:25:30 | 000,304,640 | ---- | C] () -- C:\WINDOWS\System32\HrtfApo.dll [2016/07/16 12:25:30 | 000,149,044 | ---- | C] () -- C:\WINDOWS\System32\LargeRoom.bin [2016/07/16 12:25:30 | 000,110,024 | ---- | C] () -- C:\WINDOWS\System32\MediumRoom.bin [2016/07/16 12:25:30 | 000,069,776 | ---- | C] () -- C:\WINDOWS\System32\SmallRoom.bin [2016/07/16 12:25:30 | 000,046,908 | ---- | C] () -- C:\WINDOWS\System32\OutdoorAudioEnvironment.bin [2016/07/16 12:25:21 | 000,056,119 | ---- | C] () -- C:\WINDOWS\System32\srms.dat [2016/07/16 12:25:08 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\BthpanContextHandler.dll [2016/07/16 12:25:08 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin [2016/07/16 12:25:08 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\VpnSohDesktop.dll [2016/07/16 12:25:08 | 000,002,307 | ---- | C] () -- C:\WINDOWS\System32\WimBootCompress.ini [2016/07/16 12:25:07 | 000,190,976 | ---- | C] () -- C:\WINDOWS\System32\ism32k.dll [2016/07/16 12:25:07 | 000,167,640 | ---- | C] () -- C:\WINDOWS\System32\chs_singlechar_pinyin.dat [2016/07/16 12:25:01 | 000,062,976 | ---- | C] () -- C:\WINDOWS\System32\drivers\NetAdapterCx.sys [2016/05/03 23:26:10 | 000,111,624 | ---- | C] () -- C:\WINDOWS\System32\IccLibDll.dll [2016/05/03 23:26:06 | 000,200,200 | ---- | C] () -- C:\WINDOWS\System32\igdde32.dll [2016/05/03 23:26:06 | 000,161,288 | ---- | C] () -- C:\WINDOWS\System32\igdail32.dll [2016/05/03 23:26:06 | 000,097,800 | ---- | C] () -- C:\WINDOWS\System32\igfxCUIServicePS.dll [2016/05/03 23:26:06 | 000,087,048 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDHLibv2_0.dll [2016/05/03 23:26:06 | 000,077,320 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDHLib.dll [2016/05/03 23:26:06 | 000,028,168 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDILibv2_0.dll [2016/05/03 23:26:06 | 000,028,168 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDILib.dll [2016/05/03 23:26:06 | 000,027,656 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxEMLibv2_0.dll [2016/05/03 23:26:06 | 000,027,656 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxEMLib.dll [2016/05/03 23:26:06 | 000,022,536 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxLHMLibv2_0.dll [2016/05/03 23:26:06 | 000,022,536 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxLHMLib.dll [2015/07/11 00:41:10 | 000,000,895 | ---- | C] () -- C:\WINDOWS\System32\Gfxv2_0.exe.config [2015/07/11 00:41:10 | 000,000,895 | ---- | C] () -- C:\WINDOWS\System32\DPTopologyAppv2_0.exe.config [2015/07/11 00:41:10 | 000,000,889 | ---- | C] () -- C:\WINDOWS\System32\Gfxv4_0.exe.config [2015/07/11 00:41:10 | 000,000,889 | ---- | C] () -- C:\WINDOWS\System32\DPTopologyApp.exe.config [2015/07/11 00:41:08 | 000,000,895 | ---- | C] () -- C:\WINDOWS\System32\CustomModeAppv2_0.exe.config [2015/07/11 00:41:08 | 000,000,889 | ---- | C] () -- C:\WINDOWS\System32\CustomModeApp.exe.config [color=#E56717]========== ZeroAccess Check ==========[/color] [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\windows.storage.dll -- [2017/04/28 04:46:03 | 005,722,320 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2016/07/16 12:25:47 | 000,779,776 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2016/07/16 12:25:47 | 000,404,480 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2017/04/25 05:33:29 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Canneverbe Limited [2017/04/25 07:43:46 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\LibreOffice [2017/04/26 11:15:51 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\TeamViewer [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< 1 >[/color] [2017/04/25 00:15:28 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT [color=#A23BEC]< 2 >[/color] [color=#A23BEC]< 3 >[/color] [color=#A23BEC]< 4 >[/color] [color=#A23BEC]< 5 >[/color] [color=#A23BEC]< 6 >[/color] [color=#A23BEC]< 7 >[/color] [color=#A23BEC]< 8 >[/color] [color=#A23BEC]< 9 >[/color] [color=#A23BEC]< 10 >[/color] [color=#A23BEC]< 11 >[/color] [color=#A23BEC]< 12 >[/color] [color=#A23BEC]< 13 >[/color] [color=#A23BEC]< 14 >[/color] [color=#A23BEC]< 15 >[/color] [color=#A23BEC]< 16 >[/color] [color=#A23BEC]< 17 >[/color] [color=#A23BEC]< 18 >[/color] [color=#A23BEC]< 19 >[/color] [color=#A23BEC]< 20 >[/color] [color=#A23BEC]< 21 >[/color] [color=#A23BEC]< 22 >[/color] [color=#A23BEC]< 23 >[/color] [color=#A23BEC]< 24 >[/color] [color=#A23BEC]< 25 >[/color] [color=#A23BEC]< 26 >[/color] [color=#A23BEC]< 27 >[/color] [color=#A23BEC]< 28 >[/color] [color=#A23BEC]< 29 >[/color] [color=#A23BEC]< 30 >[/color] [color=#A23BEC]< 31 >[/color] [color=#A23BEC]< 32 >[/color] [color=#A23BEC]< 33 >[/color] [color=#A23BEC]< 34 >[/color] [color=#A23BEC]< 35 >[/color] [color=#A23BEC]< 36 >[/color] [color=#A23BEC]< 37 >[/color] [color=#A23BEC]< 38 >[/color] [color=#A23BEC]< 39 >[/color] [color=#A23BEC]< 40 >[/color] [color=#A23BEC]< 41 >[/color] [color=#A23BEC]< 42 >[/color] [color=#A23BEC]< 43 >[/color] [color=#A23BEC]< 44 >[/color] [color=#A23BEC]< 45 >[/color] [color=#A23BEC]< 46 >[/color] [color=#A23BEC]< 47 >[/color] [color=#A23BEC]< 48 >[/color] [color=#A23BEC]< 49 >[/color] [color=#A23BEC]< 50 >[/color] [color=#A23BEC]< 51 >[/color] [color=#A23BEC]< 52 >[/color] [color=#A23BEC]< 53 >[/color] [color=#A23BEC]< 54 >[/color] [color=#A23BEC]< 55 >[/color] [color=#A23BEC]< 56 >[/color] [color=#A23BEC]< 57 >[/color] [color=#A23BEC]< 58 >[/color] [color=#A23BEC]< 59 >[/color] [color=#A23BEC]< 60 >[/color] [color=#A23BEC]< 61 >[/color] [color=#A23BEC]< 62 >[/color] [color=#A23BEC]< 63 >[/color] [color=#A23BEC]< 64 >[/color] [color=#A23BEC]< 65 >[/color] [color=#A23BEC]< 66 >[/color] [color=#A23BEC]< 67 >[/color] [color=#A23BEC]< 68 >[/color] [color=#A23BEC]< 69 >[/color] [color=#A23BEC]< 70 >[/color] [color=#A23BEC]< 71 >[/color] [color=#A23BEC]< 72 >[/color] [color=#A23BEC]< 73 >[/color] [color=#A23BEC]< 74 >[/color] [color=#A23BEC]< 75 >[/color] [color=#A23BEC]< 76 >[/color] [color=#A23BEC]< 77 >[/color] [color=#A23BEC]< 78 >[/color] [color=#A23BEC]< 79 >[/color] [color=#A23BEC]< 80 >[/color] [color=#A23BEC]< 81 >[/color] [color=#A23BEC]< 82 >[/color] [color=#A23BEC]< >[/color] [color=#A23BEC]< HKCU\Software >[/color] [HKEY_CURRENT_USER\Software\7-Zip] [HKEY_CURRENT_USER\Software\Acer] [HKEY_CURRENT_USER\Software\Adobe] [HKEY_CURRENT_USER\Software\AppDataLow] [HKEY_CURRENT_USER\Software\Canneverbe Limited] [HKEY_CURRENT_USER\Software\Chromium] [HKEY_CURRENT_USER\Software\Clients] [HKEY_CURRENT_USER\Software\g3n-h@ckm@n] [HKEY_CURRENT_USER\Software\Google] [HKEY_CURRENT_USER\Software\Intel] [HKEY_CURRENT_USER\Software\JavaSoft] [HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications] [HKEY_CURRENT_USER\Software\McAfee] [HKEY_CURRENT_USER\Software\Microsoft] [HKEY_CURRENT_USER\Software\Mine] [HKEY_CURRENT_USER\Software\Mozilla] [HKEY_CURRENT_USER\Software\Netscape] [HKEY_CURRENT_USER\Software\ODBC] [HKEY_CURRENT_USER\Software\OEM] [HKEY_CURRENT_USER\Software\paint.net] [HKEY_CURRENT_USER\Software\PDF Architect 5] [HKEY_CURRENT_USER\Software\pdfforge] [HKEY_CURRENT_USER\Software\Policies] [HKEY_CURRENT_USER\Software\Realtek] [HKEY_CURRENT_USER\Software\RegisteredApplications] [HKEY_CURRENT_USER\Software\SyncEngines] [HKEY_CURRENT_USER\Software\sysinternals] [HKEY_CURRENT_USER\Software\TeamViewer] [HKEY_CURRENT_USER\Software\The Document Foundation] [HKEY_CURRENT_USER\Software\Wow6432Node] [HKEY_CURRENT_USER\Software\Classes] [color=#A23BEC]< HKCU\Software\AppDataLow /s >[/color] [HKEY_CURRENT_USER\Software\AppDataLow\Software] [HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft] [HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft\Internet Explorer] [HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft\RepService] "i" = {7E4F416C-EFB1-4095-A6A9-9B188B439787} [binary data] "NN" = 131396530275820239 [binary data] [HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft\Windows] [HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft\Windows\CurrentVersion] [HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft\Windows\CurrentVersion\Lock Screen] [color=#A23BEC]< HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /s >[/color] [color=#A23BEC]< HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /s >[/color] [color=#A23BEC]< HKLM\Software >[/color] [HKEY_LOCAL_MACHINE\Software\7-Zip] [HKEY_LOCAL_MACHINE\Software\acer] [HKEY_LOCAL_MACHINE\Software\Adobe] [HKEY_LOCAL_MACHINE\Software\Apple Inc.] [HKEY_LOCAL_MACHINE\Software\Canneverbe Limited] [HKEY_LOCAL_MACHINE\Software\Classes] [HKEY_LOCAL_MACHINE\Software\Clients] [HKEY_LOCAL_MACHINE\Software\Foxit Software] [HKEY_LOCAL_MACHINE\Software\g3n-h@ckm@n] [HKEY_LOCAL_MACHINE\Software\Google] [HKEY_LOCAL_MACHINE\Software\Intel] [HKEY_LOCAL_MACHINE\Software\JavaSoft] [HKEY_LOCAL_MACHINE\Software\JreMetrics] [HKEY_LOCAL_MACHINE\Software\Khronos] [HKEY_LOCAL_MACHINE\Software\LibreOffice] [HKEY_LOCAL_MACHINE\Software\LOGISURM] [HKEY_LOCAL_MACHINE\Software\Macromedia] [HKEY_LOCAL_MACHINE\Software\Microsoft] [HKEY_LOCAL_MACHINE\Software\Mozilla] [HKEY_LOCAL_MACHINE\Software\mozilla.org] [HKEY_LOCAL_MACHINE\Software\MozillaPlugins] [HKEY_LOCAL_MACHINE\Software\ODBC] [HKEY_LOCAL_MACHINE\Software\OEM] [HKEY_LOCAL_MACHINE\Software\OldTimer Tools] [HKEY_LOCAL_MACHINE\Software\paint.net] [HKEY_LOCAL_MACHINE\Software\Partner] [HKEY_LOCAL_MACHINE\Software\PDF Architect 5] [HKEY_LOCAL_MACHINE\Software\pdfforge] [HKEY_LOCAL_MACHINE\Software\Policies] [HKEY_LOCAL_MACHINE\Software\Realtek] [HKEY_LOCAL_MACHINE\Software\REALTEK Semiconductor Corp.] [HKEY_LOCAL_MACHINE\Software\RegisteredApplications] [HKEY_LOCAL_MACHINE\Software\RtWLan] [HKEY_LOCAL_MACHINE\Software\SyncIntegrationClients] [HKEY_LOCAL_MACHINE\Software\sysinternals] [HKEY_LOCAL_MACHINE\Software\TeamViewer] [HKEY_LOCAL_MACHINE\Software\The Document Foundation] [HKEY_LOCAL_MACHINE\Software\VideoLAN] [HKEY_LOCAL_MACHINE\Software\WOW6432Node] [color=#A23BEC]< HKCU\Software\Microsoft\Command Processor /s >[/color] "CompletionChar" = 9 "DefaultColor" = 0 "EnableExtensions" = 1 "PathCompletionChar" = 9 [color=#A23BEC]< HKLM\Software\Microsoft\Command Processor /s >[/color] "CompletionChar" = 64 "DefaultColor" = 0 "EnableExtensions" = 1 "PathCompletionChar" = 64 [color=#A23BEC]< HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /s >[/color] "NoRecentDocsHistory" = 0 [color=#A23BEC]< HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System /s >[/color] "ConsentPromptBehaviorAdmin" = 5 "ConsentPromptBehaviorUser" = 3 "DSCAutomationHostEnabled" = 2 "EnableCursorSuppression" = 1 "EnableInstallerDetection" = 1 "EnableLUA" = 1 "EnableSecureUIAPaths" = 1 "EnableUIADesktopToggle" = 0 "EnableVirtualization" = 1 "PromptOnSecureDesktop" = 1 "ValidateAdminCodeSignatures" = 0 "undockwithoutlogon" = 1 "dontdisplaylastusername" = 0 "legalnoticecaption" = "legalnoticetext" = "scforceoption" = 0 "shutdownwithoutlogon" = 1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI\Clipboard] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI\Clipboard\ExceptionFormats] "CF_BITMAP" = 2 "CF_DIB" = 8 "CF_DIBV5" = 17 "CF_OEMTEXT" = 7 "CF_PALETTE" = 9 "CF_TEXT" = 1 "CF_UNICODETEXT" = 13 [color=#A23BEC]< HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU /s >[/color] [color=#A23BEC]< HKLM\System\CurrentControlSet\Control\Session Manager\AppcertDlls /s >[/color] [color=#A23BEC]< %Homedrive%\* >[/color] [2013/08/22 12:16:34 | 000,000,024 | ---- | M] () -- C:\autoexec.bat [2014/03/18 11:39:03 | 000,398,356 | RHS- | M] () -- C:\bootmgr [2013/06/18 16:18:29 | 000,000,001 | -HS- | M] () -- C:\BOOTNXT [2013/08/22 12:16:34 | 000,000,010 | ---- | M] () -- C:\config.sys [2017/05/21 08:09:36 | 819,351,552 | -HS- | M] () -- C:\hiberfil.sys [2017/05/20 19:56:14 | 1251,028,992 | -HS- | M] () -- C:\pagefile.sys [2017/05/16 12:52:59 | 000,144,427 | ---- | M] () -- C:\QuickDiag.txt [2017/04/25 09:12:20 | 000,000,000 | ---- | M] () -- C:\Recovery.txt [2017/05/12 12:54:15 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys [color=#A23BEC]< %Homedrive%\*. >[/color] [2017/04/25 06:41:25 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin [2013/08/22 11:23:42 | 000,000,000 | -HSD | M] -- C:\Documents and Settings [2015/01/27 00:08:16 | 000,000,000 | -H-D | M] -- C:\Intel [2017/04/25 05:42:25 | 000,000,000 | -H-D | M] -- C:\OEM [2017/05/20 19:26:25 | 000,000,000 | -H-D | M] -- C:\OneDriveTemp [2016/07/16 12:29:57 | 000,000,000 | ---D | M] -- C:\PerfLogs [2017/05/19 15:47:12 | 000,000,000 | R--D | M] -- C:\Program Files [2017/04/25 06:20:07 | 000,000,000 | -H-D | M] -- C:\ProgramData [2017/05/16 12:52:19 | 000,000,000 | ---D | M] -- C:\QuickDiag [2017/04/24 23:51:51 | 000,000,000 | -HSD | M] -- C:\Recovery [2017/05/19 23:06:13 | 000,000,000 | ---D | M] -- C:\s2000 [2017/05/19 18:55:07 | 000,000,000 | ---D | M] -- C:\SAUVE S2 [2017/04/25 22:03:37 | 000,000,000 | ---D | M] -- C:\sesam [2017/05/20 20:00:49 | 000,000,000 | -HSD | M] -- C:\System Volume Information [2017/04/24 23:58:18 | 000,000,000 | R--D | M] -- C:\Users [2017/05/12 12:52:55 | 000,000,000 | ---D | M] -- C:\Windows [color=#A23BEC]< %Homedrive%\Recycler\*.exe /s >[/color] [color=#A23BEC]< %Homedrive%\Recycler\*.scr /s >[/color] [color=#A23BEC]< %Homedrive%\Recycler\*.pif /s >[/color] [color=#A23BEC]< %Homedrive%\Recycler\*.vb* /s >[/color] [color=#A23BEC]< %Homedrive%\$Recycle.bin\*.exe /s >[/color] [color=#A23BEC]< %Homedrive%\$Recycle.bin\*.scr /s >[/color] [color=#A23BEC]< %Homedrive%\$Recycle.bin\*.pif /s >[/color] [color=#A23BEC]< %Homedrive%\$Recycle.bin\*.vb* /s >[/color] [color=#A23BEC]< %Userprofile%\* >[/color] [2017/05/19 23:14:33 | 003,932,160 | -H-- | M] () -- C:\Users\odz-plus.com\NTUSER.DAT [2017/04/24 23:54:20 | 000,319,488 | -HS- | M] () -- C:\Users\odz-plus.com\ntuser.dat.LOG1 [2017/04/24 23:54:20 | 000,997,376 | -HS- | M] () -- C:\Users\odz-plus.com\ntuser.dat.LOG2 [2017/04/26 18:13:38 | 000,065,536 | -HS- | M] () -- C:\Users\odz-plus.com\NTUSER.DAT{e1646c95-2926-11e7-8091-a813502677fc}.TM.blf [2017/04/26 18:13:38 | 000,524,288 | -HS- | M] () -- C:\Users\odz-plus.com\NTUSER.DAT{e1646c95-2926-11e7-8091-a813502677fc}.TMContainer00000000000000000001.regtrans-ms [2017/04/24 23:54:20 | 000,524,288 | -HS- | M] () -- C:\Users\odz-plus.com\NTUSER.DAT{e1646c95-2926-11e7-8091-a813502677fc}.TMContainer00000000000000000002.regtrans-ms [2017/04/25 05:04:02 | 000,000,020 | -HS- | M] () -- C:\Users\odz-plus.com\ntuser.ini [color=#A23BEC]< %Userprofile%\*. >[/color] [2017/04/24 23:54:54 | 000,000,000 | -H-D | M] -- C:\Users\odz-plus.com\AppData [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Application Data [2017/05/11 22:17:31 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Contacts [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Cookies [2017/04/25 05:49:21 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Desktop [2017/05/12 13:08:01 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Favorites [2017/05/20 19:25:54 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\IntelGraphicsProfiles [2017/05/11 22:17:33 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Links [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Local Settings [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Menu Démarrer [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Mes documents [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Modèles [2017/05/20 19:26:25 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\OneDrive [2017/04/24 21:19:51 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\PicStream [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Recent [2017/05/11 22:17:33 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Saved Games [2017/05/11 22:17:32 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Searches [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\SendTo [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Voisinage d'impression [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Voisinage réseau [color=#A23BEC]< %Allusersprofile%\* >[/color] [color=#A23BEC]< %Allusersprofile%\*. >[/color] [2017/04/25 05:42:34 | 000,000,000 | ---D | M] -- C:\ProgramData\Acer [2017/04/25 06:53:28 | 000,000,000 | ---D | M] -- C:\ProgramData\Adobe [2017/04/25 00:19:37 | 000,000,000 | -HSD | M] -- C:\ProgramData\Application Data [2017/04/25 00:13:17 | 000,000,000 | -HSD | M] -- C:\ProgramData\Bureau [2016/07/16 12:29:57 | 000,000,000 | ---D | M] -- C:\ProgramData\Comms [2017/04/25 00:19:37 | 000,000,000 | -HSD | M] -- C:\ProgramData\Documents [2017/04/24 23:57:38 | 000,000,000 | ---D | M] -- C:\ProgramData\McAfee [2017/04/25 00:13:17 | 000,000,000 | -HSD | M] -- C:\ProgramData\Menu Démarrer [2017/05/15 09:51:59 | 000,000,000 | --SD | M] -- C:\ProgramData\Microsoft [2017/04/25 05:06:13 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft OneDrive [2017/04/25 00:13:17 | 000,000,000 | -HSD | M] -- C:\ProgramData\Modèles [2017/04/25 05:48:41 | 000,000,000 | ---D | M] -- C:\ProgramData\OEM [2017/04/24 21:19:30 | 000,000,000 | ---D | M] -- C:\ProgramData\OEM_YAHOO [2017/04/25 05:47:25 | 000,000,000 | ---D | M] -- C:\ProgramData\Oracle [2017/05/19 18:13:26 | 000,000,000 | ---D | M] -- C:\ProgramData\Package Cache [2017/04/25 06:20:07 | 000,000,000 | ---D | M] -- C:\ProgramData\PDF Architect 5 [2017/05/13 17:20:31 | 000,000,000 | ---D | M] -- C:\ProgramData\regid.1991-06.com.microsoft [2016/07/16 12:29:57 | 000,000,000 | ---D | M] -- C:\ProgramData\SoftwareDistribution [2017/04/25 00:20:50 | 000,000,000 | ---D | M] -- C:\ProgramData\USOPrivate [2017/04/25 00:20:50 | 000,000,000 | ---D | M] -- C:\ProgramData\USOShared [color=#A23BEC]< %LocalAppData%\* >[/color] [2017/05/19 23:14:30 | 000,189,788 | -H-- | M] () -- C:\Users\odz-plus.com\AppData\Local\IconCache.db [color=#A23BEC]< %LocalAppData%\*. >[/color] [2017/04/25 05:48:07 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Acer [2017/04/25 05:14:08 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Acer Aspire R7 Tutorial [2017/05/01 19:31:46 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Adobe [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\AppData\Local\Application Data [2017/04/28 08:26:55 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\CEF [2017/04/25 05:44:46 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\clear.fi [2017/04/26 16:25:58 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Comms [2017/04/25 05:24:27 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\ConnectedDevicesPlatform [2017/05/20 19:36:01 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\CrashDumps [2017/04/25 06:20:23 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Google [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\AppData\Local\Historique [2017/05/01 19:39:20 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Macromedia [2017/05/15 09:57:06 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Microsoft [2017/04/25 05:33:33 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\MicrosoftEdge [2017/04/25 21:02:14 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Mozilla [2017/04/25 05:56:18 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\NetworkTiles [2017/04/24 21:19:23 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\OEM [2017/05/17 16:29:57 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Packages [2017/04/26 11:51:21 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\PackageStaging [2017/04/25 05:59:38 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\paint.net [2017/04/26 11:34:32 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\PDFCreator [2017/04/25 05:30:18 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Programs [2017/04/25 05:04:36 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Publishers [2017/05/19 17:50:44 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\speech [2017/05/21 08:13:08 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Temp [2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\AppData\Local\Temporary Internet Files [2017/04/25 05:04:05 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\TileDataLayer [2017/04/26 11:34:03 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\VirtualStore [color=#A23BEC]< %AppData%\* >[/color] [color=#A23BEC]< %AppData%\*. >[/color] [2017/04/28 08:26:44 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Adobe [2017/04/25 05:33:29 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Canneverbe Limited [2017/04/25 07:43:46 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\LibreOffice [2017/04/24 21:20:42 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Macromedia [2017/05/16 17:36:50 | 000,000,000 | --SD | M] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft [2017/04/25 05:41:40 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Mozilla [2017/04/25 05:08:50 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Skype [2017/04/25 05:46:55 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Sun [2017/04/26 11:15:51 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\TeamViewer [2017/04/25 06:17:41 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\vlc [color=#A23BEC]< %Userprofile%\Local Settings\* >[/color] [color=#A23BEC]< %Userprofile%\Local Settings\*. >[/color] [color=#A23BEC]< %Userprofile%\Local Settings\Application Data\* >[/color] [color=#A23BEC]< %Userprofile%\Local Settings\Application Data\*. >[/color] [color=#A23BEC]< %Userprofile%\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave\FlashWritableRoot\#SharedObjects\* >[/color] [color=#A23BEC]< %Userprofile%\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave\FlashWritableRoot\#SharedObjects\*. >[/color] [color=#A23BEC]< %Userprofile%\Local Settings\Application Data\Google\Chrome\User Data\Default\Pepper Data\Shockwave FlashWritableRoot\#SharedObjects\* >[/color] [color=#A23BEC]< %Userprofile%\Local Settings\Application Data\Google\Chrome\User Data\Default\Pepper Data\Shockwave FlashWritableRoot\#SharedObjects\*. >[/color] [color=#A23BEC]< %programFiles%\* >[/color] [2016/07/16 12:27:55 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini [color=#A23BEC]< %programFiles%\*. >[/color] [2017/04/24 21:19:23 | 000,000,000 | ---D | M] -- C:\Program Files\Accessory Store [2017/04/25 05:52:45 | 000,000,000 | ---D | M] -- C:\Program Files\Acer [2017/04/25 06:02:43 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe [2017/04/24 23:56:40 | 000,000,000 | ---D | M] -- C:\Program Files\Booking.COM [2017/04/24 23:56:41 | 000,000,000 | ---D | M] -- C:\Program Files\Cisco [2017/05/13 17:20:06 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files [2017/04/24 23:57:02 | 000,000,000 | ---D | M] -- C:\Program Files\Dropbox [2017/04/25 00:13:17 | 000,000,000 | -HSD | M] -- C:\Program Files\Fichiers communs [2017/04/25 05:54:12 | 000,000,000 | ---D | M] -- C:\Program Files\Foxit PhantomPDF [2017/05/12 12:21:43 | 000,000,000 | ---D | M] -- C:\Program Files\Google [2017/04/24 23:57:23 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information [2017/04/24 23:57:24 | 000,000,000 | ---D | M] -- C:\Program Files\Intel [2017/04/25 06:29:14 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer [2017/04/25 05:45:46 | 000,000,000 | ---D | M] -- C:\Program Files\Java [2017/04/25 07:41:15 | 000,000,000 | ---D | M] -- C:\Program Files\LibreOffice 5 [2017/05/13 17:18:21 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office [2017/04/25 21:25:22 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office 15 [2017/04/25 22:04:41 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET [2017/05/13 17:00:00 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox [2017/05/12 12:30:28 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Maintenance Service [2017/04/25 02:42:19 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild [2017/05/19 15:47:12 | 000,000,000 | ---D | M] -- C:\Program Files\OneNote [2017/04/25 06:17:09 | 000,000,000 | ---D | M] -- C:\Program Files\paint.net [2017/04/24 23:57:29 | 000,000,000 | ---D | M] -- C:\Program Files\Realtek [2017/04/24 23:57:30 | 000,000,000 | ---D | M] -- C:\Program Files\REALTEK SD Wireless LAN Driver [2017/04/25 02:42:19 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies [2017/04/26 11:13:55 | 000,000,000 | ---D | M] -- C:\Program Files\S2msi [2017/04/25 06:49:50 | 000,000,000 | ---D | M] -- C:\Program Files\TeamViewer [2013/08/22 11:24:44 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information [2017/05/12 12:52:55 | 000,000,000 | R--D | M] -- C:\Program Files\Windows Defender [2017/04/25 06:29:17 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail [2017/04/25 06:29:18 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player [2016/07/16 12:29:59 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Multimedia Platform [2017/04/25 00:19:37 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT [2017/05/12 12:52:55 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Viewer [2016/07/16 12:29:59 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices [2016/07/16 12:29:57 | 000,000,000 | -HSD | M] -- C:\Program Files\Windows Sidebar [2017/05/20 19:28:50 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsApps [2016/07/16 12:29:57 | 000,000,000 | ---D | M] -- C:\Program Files\WindowsPowerShell [color=#A23BEC]< %programfiles%\Google\Desktop\*. >[/color] [color=#A23BEC]< %ProgramFiles%\Common Files\* >[/color] [color=#A23BEC]< %ProgramFiles%\Common Files\*. >[/color] [2017/04/25 06:03:06 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Adobe [2017/04/24 22:00:48 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\AV [2017/05/13 17:20:06 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\DESIGNER [2017/04/24 23:56:41 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\InstallShield [2017/04/24 23:56:41 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Intel [2017/04/25 05:47:00 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Java [2017/05/13 17:20:07 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\microsoft shared [2016/07/16 12:29:59 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Services [2016/07/16 21:15:31 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\System Invalid Environment Variable: ProgramFiles(X86) Invalid Environment Variable: ProgramFiles(X86) [color=#A23BEC]< %Systemroot%\Installer\* >[/color] [2008/08/09 01:11:02 | 000,232,960 | ---- | M] () -- C:\WINDOWS\Installer\1e179.msi [2017/03/22 16:35:00 | 066,686,976 | ---- | M] () -- C:\WINDOWS\Installer\24aadf9f.msi [2017/05/11 19:12:48 | 000,876,032 | ---- | M] () -- C:\WINDOWS\Installer\2f9869.msi [2017/04/17 01:26:00 | 030,345,216 | ---- | M] () -- C:\WINDOWS\Installer\2fab52.msi [2012/11/07 11:05:48 | 001,559,552 | ---- | M] () -- C:\WINDOWS\Installer\31a62.msi [2012/11/07 11:11:40 | 001,304,064 | ---- | M] () -- C:\WINDOWS\Installer\31a66.msi [2012/11/07 11:09:42 | 000,836,608 | ---- | M] () -- C:\WINDOWS\Installer\31a6a.msi [2014/07/23 18:58:26 | 000,328,704 | ---- | M] () -- C:\WINDOWS\Installer\31a6e.msi [2017/04/25 21:32:08 | 000,540,672 | ---- | M] () -- C:\WINDOWS\Installer\34e6955.msi [2017/02/07 18:10:16 | 223,776,768 | ---- | M] () -- C:\WINDOWS\Installer\3b7254.msi [2017/04/25 05:45:37 | 055,508,992 | ---- | M] () -- C:\WINDOWS\Installer\3dca7.msi [2017/04/25 05:45:14 | 000,761,856 | ---- | M] () -- C:\WINDOWS\Installer\3dcab.msi [2015/03/17 12:41:29 | 002,805,760 | ---- | M] () -- C:\WINDOWS\Installer\3e2ba.msi [2017/04/05 06:14:24 | 092,508,160 | R--- | M] () -- C:\WINDOWS\Installer\3e2bb.msp [2017/05/13 16:53:01 | 013,205,504 | ---- | M] () -- C:\WINDOWS\Installer\619b7b1.msi [2017/05/13 16:53:04 | 009,224,192 | ---- | M] () -- C:\WINDOWS\Installer\619b7c1.msi [2017/04/26 11:13:51 | 000,151,552 | ---- | M] () -- C:\WINDOWS\Installer\62637b7.msi [2014/09/10 13:22:40 | 007,614,464 | ---- | M] () -- C:\WINDOWS\Installer\b33e.msi [2014/06/26 09:37:34 | 008,646,656 | ---- | M] () -- C:\WINDOWS\Installer\b342.msi [2014/02/18 02:42:24 | 069,541,888 | ---- | M] () -- C:\WINDOWS\Installer\b34a.msi [2014/06/27 13:21:32 | 008,912,896 | ---- | M] () -- C:\WINDOWS\Installer\d01c.msi [2010/03/19 20:19:04 | 000,155,136 | ---- | M] () -- C:\WINDOWS\Installer\d024.msi [2017/04/25 06:17:06 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{1F895C18-6A2F-4A9E-BBE9-246783070F36} [2017/04/25 05:45:44 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{26A24AE4-039D-4CA4-87B4-2F32180121F0} [2017/04/26 11:13:55 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{309F81C1-5633-4E3E-8259-0F0FA156E110} [2017/04/25 05:47:00 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{4A03706F-666A-4037-7777-5F2748764D10} [2017/04/25 07:39:53 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{79CD8EA1-DEB1-4582-9E41-8634223BDCD4} [2017/05/19 15:47:11 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{7DD75D49-B6C1-4793-AB7A-D87137681627} [2017/04/25 21:58:58 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{90160000-007E-0000-0000-0000000FF1CE} [2017/04/25 22:04:37 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{90160000-008C-0000-0000-0000000FF1CE} [2017/04/25 22:05:06 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{90160000-008C-040C-0000-0000000FF1CE} [2017/05/11 19:13:01 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{AC76BA86-0804-1033-1959-001824225037} [2017/04/25 06:02:37 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{AC76BA86-7AD7-1036-7B44-AC0F074E4100} [50 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ] [color=#A23BEC]< %Systemroot%\Installer\*. >[/color] [2015/01/27 00:32:57 | 000,000,000 | -HSD | M] -- C:\WINDOWS\Installer\$PatchCache$ [2017/05/19 18:13:37 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1576.tmp- [2017/04/25 05:33:30 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI15E9.tmp- [2015/01/27 00:26:11 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1726.tmp- [2017/05/19 18:13:38 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1865.tmp- [2015/01/27 00:28:23 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1CF8.tmp- [2017/05/19 15:47:28 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1D37.tmp- [2015/01/27 00:26:13 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1EA9.tmp- [2017/05/19 18:13:55 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI240E.tmp- [2017/04/25 05:42:21 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI2E08.tmp- [2015/01/27 00:28:30 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI311D.tmp- [2015/01/27 00:32:54 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI3A5E.tmp- [2017/05/19 15:47:30 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI4C37.tmp- [2014/10/17 05:54:06 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI4C97.tmp- [2017/05/19 15:47:30 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5020.tmp- [2017/05/19 15:47:31 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5244.tmp- [2017/05/19 15:47:32 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5543.tmp- [2017/05/19 15:47:32 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5766.tmp- [2014/10/17 05:55:16 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5CE9.tmp- [2014/10/17 05:53:05 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5E75.tmp- [2014/10/17 05:53:05 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5FAE.tmp- [2017/04/25 05:13:35 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI6708.tmp- [2017/04/25 05:10:23 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI7CE9.tmp- [2017/05/19 18:14:15 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI7F70.tmp- [2015/01/27 00:27:51 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI9E19.tmp- [2015/01/27 00:27:52 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIA221.tmp- [2015/01/27 00:27:52 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIA484.tmp- [2017/04/25 05:16:03 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIAB37.tmp- [2017/05/19 18:14:16 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIAD66.tmp- [2017/04/25 05:48:44 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIAF4.tmp- [2017/05/19 18:14:17 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIAF5B.tmp- [2017/05/19 18:14:18 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIB25A.tmp- [2017/05/19 18:14:18 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIB604.tmp- [2017/05/19 18:14:19 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIB819.tmp- [2017/04/25 05:48:26 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIC556.tmp- [2017/04/25 05:48:26 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIC816.tmp- [2017/04/25 05:48:27 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIC9BD.tmp- [2017/04/25 05:43:01 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSICF32.tmp- [2017/04/25 05:43:02 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSID398.tmp- [2017/04/25 05:43:03 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSID713.tmp- [2017/04/25 05:14:09 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIDD65.tmp- [2017/04/25 05:48:45 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIDF3.tmp- [2017/04/25 05:37:40 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIE2A5.tmp- [2017/04/25 05:43:07 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIE486.tmp- [2015/01/27 00:20:31 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIE690.tmp- [2015/01/27 00:20:31 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIE943.tmp- [2017/04/25 05:48:36 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIED56.tmp- [2015/01/27 00:20:33 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIED5B.tmp- [2017/04/25 05:48:37 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIF045.tmp- [2017/05/19 15:47:07 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIF0E2.tmp- [2017/05/19 15:47:07 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIF5D5.tmp- [2017/05/19 15:47:09 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIFA0C.tmp- [2014/10/17 05:52:40 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIFB0F.tmp- [2017/04/25 05:48:43 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIFBFF.tmp- [2014/10/17 05:52:40 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIFC58.tmp- [2017/04/25 05:09:52 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIFF1A.tmp- [2017/04/24 23:59:20 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{192979A0-37F4-4703-B1BB-62052142CE44} [2017/04/25 06:17:09 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{1F895C18-6A2F-4A9E-BBE9-246783070F36} [2017/04/25 07:41:15 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{79CD8EA1-DEB1-4582-9E41-8634223BDCD4} [2017/05/19 18:14:19 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{7DD75D49-B6C1-4793-AB7A-D87137681627} [2017/05/11 19:13:02 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{AC76BA86-0804-1033-1959-001824225037} [2017/04/25 06:03:22 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100} [2017/04/24 23:59:21 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{D6B57AF2-2406-49E4-B219-EAA8B0B9F3CF} [color=#A23BEC]< %Systemroot%\Temp\*.exe /s >[/color] [2016/08/30 11:05:42 | 000,310,016 | ---- | M] () -- C:\WINDOWS\Temp\AOP\AcerCloudTaskScheduler.exe [2016/08/30 11:09:26 | 002,267,352 | ---- | M] (Acer Incorporated) -- C:\WINDOWS\Temp\AOP\CCDMonitorService.exe [2016/08/30 11:05:35 | 001,409,536 | ---- | M] () -- C:\WINDOWS\Temp\AOP\ClientOperation.exe [2016/08/30 11:05:42 | 005,073,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Temp\AOP\vcredist_x86.exe [2016/08/30 11:10:54 | 000,065,240 | ---- | M] () -- C:\WINDOWS\Temp\AOP\acer\actool_win.exe [2016/08/30 11:10:54 | 009,105,112 | ---- | M] (Acer Cloud Technology) -- C:\WINDOWS\Temp\AOP\acer\ccd.exe [1 C:\WINDOWS\Temp\AOP\acer\*.tmp files -> C:\WINDOWS\Temp\AOP\acer\*.tmp -> ] [2016/07/26 15:01:10 | 011,925,904 | ---- | M] (Acer Incorporated) -- C:\WINDOWS\Temp\clear.fi_media_AOP\AcerOpenPlatformSetup.exe [2016/07/26 15:01:10 | 000,175,616 | ---- | M] (TODO: ) -- C:\WINDOWS\Temp\clear.fi_media_AOP\newshortcut.exe [2016/07/26 15:01:10 | 005,073,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Temp\clear.fi_media_AOP\vcredist_x86.exe [2016/08/15 13:36:47 | 011,927,768 | ---- | M] (Acer Incorporated) -- C:\WINDOWS\Temp\clear.fi_photo_AOP\AcerOpenPlatformSetup.exe [2016/08/15 13:36:47 | 000,175,616 | ---- | M] (TODO: ) -- C:\WINDOWS\Temp\clear.fi_photo_AOP\newshortcut.exe [2016/08/15 13:36:47 | 005,073,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Temp\clear.fi_photo_AOP\vcredist_x86.exe [2017/05/11 19:10:19 | 001,371,480 | ---- | M] (Google Inc.) -- C:\WINDOWS\Temp\CR_296DA.tmp\setup.exe [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\system32\*.exe /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\system32\*.in* >[/color] [2016/07/16 12:26:04 | 000,003,458 | ---- | M] () -- C:\WINDOWS\system32\ieuinit.inf [2016/07/16 12:26:56 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Microsoft.Management.Infrastructure.Native.Unmanaged.dll [2017/05/13 18:37:59 | 001,850,738 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI [2016/07/16 12:25:57 | 000,060,124 | ---- | M] () -- C:\WINDOWS\system32\tcpmon.ini [2016/07/16 12:25:08 | 000,002,307 | ---- | M] () -- C:\WINDOWS\system32\WimBootCompress.ini [2017/04/28 04:16:31 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Gaming.Input.dll [2017/03/28 09:32:27 | 000,332,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll [2017/04/28 04:13:28 | 000,298,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Internal.Management.dll [2017/04/28 05:32:09 | 000,685,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll [2016/07/16 12:25:41 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Internal.UI.BioEnrollment.ProxyStub.dll [2016/12/14 08:40:16 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll [2017/04/28 03:55:04 | 001,004,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll [2016/09/15 20:49:12 | 000,468,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll [color=#A23BEC]< %systemroot%\PSS\* /s >[/color] [color=#A23BEC]< %systemroot%\Tasks\* >[/color] [2017/05/12 12:54:25 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT [color=#A23BEC]< %systemroot%\Tasks\*. >[/color] [color=#A23BEC]< %systemroot%\system32\Tasks\* >[/color] [2017/05/11 19:13:03 | 000,004,550 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task [2017/05/11 19:10:23 | 000,004,594 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater [2017/04/25 05:17:17 | 000,003,484 | ---- | M] () -- C:\WINDOWS\system32\Tasks\BacKGroundAgent [2017/04/25 00:15:29 | 000,002,070 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Launch Manager [2017/04/25 05:10:25 | 000,003,280 | ---- | M] () -- C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2 [2014/10/17 06:11:23 | 000,003,596 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1165333638-3007278546-2958497533-500 [2017/04/25 00:15:30 | 000,002,750 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1577643618-752554310-1775702440-1001 [2017/04/25 00:15:30 | 000,002,748 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1577643618-752554310-1775702440-500 [2015/01/27 00:41:03 | 000,003,596 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2268194884-2211555271-2513400786-500 [2017/04/25 00:15:28 | 000,002,062 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Quick Access [2017/04/25 00:15:29 | 000,002,182 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Quick Access Quick Launcher [2017/04/25 00:15:29 | 000,004,154 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Software Update Application [2017/05/21 08:13:08 | 000,004,166 | ---- | M] () -- C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3E053EF3-1436-47C8-B91C-3604AF60C0CF} [color=#A23BEC]< %systemroot%\system32\Tasks\*. >[/color] [2017/04/25 21:46:28 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\Tasks\Microsoft [2017/04/25 00:15:28 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\Tasks\Recovery Management [2017/04/25 00:15:30 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\Tasks\WPD [color=#A23BEC]< %systemroot%\syswow64\Tasks\* >[/color] [color=#A23BEC]< %systemroot%\syswow64\Tasks\*. >[/color] [color=#A23BEC]< %systemroot%\system32\drivers\*.sy* /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\system32\config\*.exe /s >[/color] [color=#A23BEC]< %Systemroot%\ServiceProfiles\*.exe /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.sys >[/color] [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ANSI.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\country.sys [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\HIMEM.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\KEY01.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\KEYBOARD.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTDOS.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTDOS404.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTDOS411.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTDOS412.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTDOS804.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTIO.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTIO404.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTIO411.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTIO412.SYS [2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTIO804.SYS [2016/12/14 08:45:35 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32k.sys [2017/04/28 03:53:45 | 001,235,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32kbase.sys [2017/04/28 03:52:28 | 002,994,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32kfull.sys [color=#A23BEC]< dir %Homedrive%\* /S /A:L /C >[/color] Le volume dans le lecteur C s'appelle Acer Le num‚ro de s‚rie du volume est BCEE-47CB R‚pertoire de C:\ 22/08/2013 11:23 Documents and Settings [C:\Users] 0 fichier(s) 0 octets R‚pertoire de C:\Program Files 25/04/2017 00:13 Fichiers communs [C:\Program Files\Common Files] 0 fichier(s) 0 octets R‚pertoire de C:\Program Files\Microsoft Office\root\client 25/04/2017 21:25 AppvIsvStream32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvStream32.dll] 25/04/2017 21:25 AppvIsvSubsystems32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] 25/04/2017 21:25 C2R32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] 3 fichier(s) 0 octets R‚pertoire de C:\Program Files\Microsoft Office\root\Office16 25/04/2017 21:26 AppvIsvStream32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvStream32.dll] 25/04/2017 21:26 AppvIsvSubsystems32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] 25/04/2017 21:26 C2R32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] 3 fichier(s) 0 octets R‚pertoire de C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\EQUATION 25/04/2017 21:34 AppvIsvStream32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvStream32.dll] 25/04/2017 21:34 AppvIsvSubsystems32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] 25/04/2017 21:34 C2R32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] 3 fichier(s) 0 octets R‚pertoire de C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16 25/04/2017 21:32 AppvIsvStream32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvStream32.dll] 25/04/2017 21:32 AppvIsvSubsystems32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] 25/04/2017 21:32 C2R32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] 3 fichier(s) 0 octets R‚pertoire de C:\Program Files\Windows NT 25/04/2017 00:19 Accessoires [C:\Program Files\Windows NT\Accessories] 0 fichier(s) 0 octets R‚pertoire de C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8107.7600.0_x86__8wekyb3d8bbwe\VFS 25/04/2017 06:17 ProgramFilesCommonX86 25/04/2017 06:17 SystemX86 0 fichier(s) 0 octets R‚pertoire de C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8107.7600.0_x86__8wekyb3d8bbwe\VFS\ProgramFilesCommonX86 25/04/2017 06:17 Microsoft Shared 0 fichier(s) 0 octets R‚pertoire de C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8107.7600.0_x86__8wekyb3d8bbwe\VFS\ProgramFilesCommonX86\Microsoft Shared 25/04/2017 06:17 DW 25/04/2017 06:17 OFFICE16 0 fichier(s) 0 octets R‚pertoire de C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8107.7600.0_x86__8wekyb3d8bbwe\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16 25/04/2017 06:17 1033 25/04/2017 06:17 Cultures 0 fichier(s) 0 octets R‚pertoire de C:\ProgramData 25/04/2017 00:19 Application Data [C:\ProgramData] 25/04/2017 00:13 Bureau [C:\Users\Public\Desktop] 25/04/2017 00:19 Documents [C:\Users\Public\Documents] 25/04/2017 00:13 Menu D‚marrer [C:\ProgramData\Microsoft\Windows\Start Menu] 25/04/2017 00:13 ModŠles [C:\ProgramData\Microsoft\Windows\Templates] 0 fichier(s) 0 octets R‚pertoire de C:\ProgramData\Microsoft\Windows\Start Menu 25/04/2017 00:13 Programmes [C:\ProgramData\Microsoft\Windows\Start Menu\Programs] 0 fichier(s) 0 octets R‚pertoire de C:\ProgramData\Oracle\Java 25/04/2017 05:46 javapath [C:\ProgramData\Oracle\Java\javapath_target_1385921] 0 fichier(s) 0 octets R‚pertoire de C:\Users 16/07/2016 12:58 All Users [C:\ProgramData] 16/07/2016 12:58 Default User [C:\Users\Default] 0 fichier(s) 0 octets R‚pertoire de C:\Users\All Users 25/04/2017 00:19 Application Data [C:\ProgramData] 25/04/2017 00:13 Bureau [C:\Users\Public\Desktop] 25/04/2017 00:19 Documents [C:\Users\Public\Documents] 25/04/2017 00:13 Menu D‚marrer [C:\ProgramData\Microsoft\Windows\Start Menu] 25/04/2017 00:13 ModŠles [C:\ProgramData\Microsoft\Windows\Templates] 0 fichier(s) 0 octets R‚pertoire de C:\Users\All Users\Microsoft\Windows\Start Menu 25/04/2017 00:13 Programmes [C:\ProgramData\Microsoft\Windows\Start Menu\Programs] 0 fichier(s) 0 octets R‚pertoire de C:\Users\All Users\Oracle\Java 25/04/2017 05:46 javapath [C:\ProgramData\Oracle\Java\javapath_target_1385921] 0 fichier(s) 0 octets R‚pertoire de C:\Users\Default 25/04/2017 00:19 Application Data [C:\Users\Default\AppData\Roaming] 25/04/2017 00:19 Cookies [C:\Users\Default\AppData\Local\Microsoft\Windows\INetCookies] 25/04/2017 00:19 Local Settings [C:\Users\Default\AppData\Local] 25/04/2017 00:19 Menu D‚marrer [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu] 25/04/2017 00:19 Mes documents [C:\Users\Default\Documents] 25/04/2017 00:19 ModŠles [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates] 25/04/2017 00:19 Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent] 25/04/2017 00:19 SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo] 25/04/2017 00:19 Voisinage d'impression [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 25/04/2017 00:19 Voisinage r‚seau [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 0 fichier(s) 0 octets R‚pertoire de C:\Users\Default\AppData\Local 25/04/2017 00:19 Application Data [C:\Users\Default\AppData\Local] 25/04/2017 00:19 Historique [C:\Users\Default\AppData\Local\Microsoft\Windows\History] 25/04/2017 00:19 Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache] 0 fichier(s) 0 octets R‚pertoire de C:\Users\Default\AppData\Local\Microsoft\Windows 25/04/2017 00:19 Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache] 0 fichier(s) 0 octets R‚pertoire de C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu 25/04/2017 00:19 Programmes [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs] 0 fichier(s) 0 octets R‚pertoire de C:\Users\Default\Documents 25/04/2017 00:19 Ma musique [C:\Users\Default\Music] 25/04/2017 00:19 Mes images [C:\Users\Default\Pictures] 25/04/2017 00:19 Mes vid‚os [C:\Users\Default\Videos] 0 fichier(s) 0 octets R‚pertoire de C:\Users\Default.migrated 25/04/2017 00:13 Menu D‚marrer [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu] 25/04/2017 00:13 Mes documents [C:\Users\Default\Documents] 25/04/2017 00:13 ModŠles [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates] 25/04/2017 00:13 Voisinage d'impression [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 25/04/2017 00:13 Voisinage r‚seau [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 0 fichier(s) 0 octets R‚pertoire de C:\Users\Default.migrated\AppData\Local 25/04/2017 00:13 Historique [C:\Users\Default\AppData\Local\Microsoft\Windows\History] 0 fichier(s) 0 octets R‚pertoire de C:\Users\Default.migrated\AppData\Local\Microsoft\Windows 22/08/2013 11:23 Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache] 0 fichier(s) 0 octets R‚pertoire de C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu 25/04/2017 00:13 Programmes [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs] 0 fichier(s) 0 octets R‚pertoire de C:\Users\Default.migrated\Documents 25/04/2017 00:13 Ma musique [C:\Users\Default\Music] 25/04/2017 00:13 Mes images [C:\Users\Default\Pictures] 25/04/2017 00:13 Mes vid‚os [C:\Users\Default\Videos] 22/08/2013 11:23 My Music [C:\Users\Default\Music] 22/08/2013 11:23 My Pictures [C:\Users\Default\Pictures] 22/08/2013 11:23 My Videos [C:\Users\Default\Videos] 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com 24/04/2017 23:54 Application Data [C:\Users\odz-plus.com\AppData\Roaming] 24/04/2017 23:54 Cookies [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCookies] 24/04/2017 23:54 Local Settings [C:\Users\odz-plus.com\AppData\Local] 24/04/2017 23:54 Menu D‚marrer [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu] 24/04/2017 23:54 Mes documents [C:\Users\odz-plus.com\Documents] 24/04/2017 23:54 ModŠles [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Templates] 24/04/2017 23:54 Recent [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Recent] 24/04/2017 23:54 SendTo [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\SendTo] 24/04/2017 23:54 Voisinage d'impression [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 24/04/2017 23:54 Voisinage r‚seau [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local 24/04/2017 23:54 Application Data [C:\Users\odz-plus.com\AppData\Local] 24/04/2017 23:54 Historique [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\History] 24/04/2017 23:54 Temporary Internet Files [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCache] 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows 24/04/2017 23:54 Temporary Internet Files [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCache] 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCache 25/04/2017 05:04 Content.IE5 [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCache\IE] 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe 24/04/2017 23:54 LocalCache 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache 25/04/2017 06:20 Local 25/04/2017 22:15 LocalLow 25/04/2017 22:15 Roaming 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local 25/04/2017 05:48 Acer 25/04/2017 05:14 Acer Aspire R7 Tutorial 25/04/2017 06:16 Adobe 24/04/2017 23:54 Application Data [C:\Users\odz-plus.com\AppData\Local] 25/04/2017 05:44 clear.fi 25/04/2017 05:04 Comms 25/04/2017 05:24 ConnectedDevicesPlatform 25/04/2017 22:15 CrashDumps 25/04/2017 06:20 Google 24/04/2017 23:54 Historique [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\History] 25/04/2017 22:06 (122ÿ163) IconCache.db 25/04/2017 21:24 Microsoft 25/04/2017 05:33 MicrosoftEdge 25/04/2017 21:02 Mozilla 25/04/2017 05:56 NetworkTiles 24/04/2017 21:19 OEM 25/04/2017 07:16 Packages 25/04/2017 05:59 paint.net 25/04/2017 05:30 Programs 25/04/2017 05:04 Publishers 25/04/2017 22:15 Temp 24/04/2017 23:54 Temporary Internet Files [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCache] 25/04/2017 05:04 TileDataLayer 24/04/2017 21:19 VirtualStore 1 fichier(s) 122ÿ163 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft 24/04/2017 21:34 CLR_v2.0_32 24/04/2017 21:29 CLR_v4.0_32 25/04/2017 22:15 Credentials 25/04/2017 05:47 Feeds 25/04/2017 05:47 Feeds Cache 25/04/2017 05:06 GameDVR 25/04/2017 21:46 InputPersonalization 25/04/2017 05:04 InstallAgent 25/04/2017 22:15 Internet Explorer 25/04/2017 05:27 Media Player 25/04/2017 21:25 Office 25/04/2017 22:15 OneDrive 25/04/2017 05:22 PenWorkspace 25/04/2017 05:04 PlayReady 25/04/2017 20:49 TokenBroker 25/04/2017 05:06 Vault 25/04/2017 22:15 Windows 25/04/2017 05:06 Windows Live 24/04/2017 21:26 Windows Services 24/04/2017 23:54 Windows Sidebar 16/07/2016 12:29 WindowsApps 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Internet Explorer 25/04/2017 22:15 IECompatData 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Internet Explorer\IECompatData 25/04/2017 05:47 (281ÿ088) iecompatdata.xml 1 fichier(s) 281ÿ088 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Office 25/04/2017 22:07 16.0 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Office\16.0 25/04/2017 22:07 (122ÿ858) csisyncclient.exe_Rules.xml 25/04/2017 22:05 Floodgate 25/04/2017 22:15 MruServiceCache 25/04/2017 22:07 (122ÿ858) msosync.exe_Rules.xml 25/04/2017 21:25 (61ÿ958) officec2rclient.exe_Rules.xml 25/04/2017 21:25 (61ÿ958) officeclicktorun.exe_Rules.xml 25/04/2017 22:07 OfficeFileCache 25/04/2017 21:24 (62ÿ811) setup.x86.fr-fr_o365homepremretail_08c5826b-c461-47be-ad20-6ca50f344b6c_tx_db_.exe_Rules.xml 25/04/2017 22:15 WebServiceCache 25/04/2017 22:04 Wef 25/04/2017 22:04 (305ÿ625) winword.exe_Rules.xml 6 fichier(s) 738ÿ068 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Office\16.0\MruServiceCache 25/04/2017 22:15 e514090225344366_LiveId 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Office\16.0\WebServiceCache 25/04/2017 22:15 AllUsers 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Office\16.0\WebServiceCache\AllUsers 25/04/2017 22:15 officeclient.microsoft.com 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\OneDrive 25/04/2017 05:08 (1ÿ518ÿ808) OneDrive.exe 1 fichier(s) 1ÿ518ÿ808 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Windows 25/04/2017 22:15 Caches 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Windows\Caches 25/04/2017 05:22 (16ÿ384) cversions.1.db 25/04/2017 22:06 (140ÿ328) {AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000005.db 2 fichier(s) 156ÿ712 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Packages 25/04/2017 05:20 4DF9E0F8.Netflix_mcm4njqhnhss8 25/04/2017 05:48 9E2F88E3.Twitter_wgeqdkkx372wm 25/04/2017 06:56 A278AB0D.MarchofEmpires_h6adky7gbf63m 25/04/2017 05:22 AcerIncorporated.AcerExplorer_48frkmn4z8aw4 25/04/2017 05:06 ActiveSync 24/04/2017 23:54 CheckPoint.VPN_cw5n1h2txyewy 25/04/2017 05:22 eBayInc.eBay_1618n3s9xq8tw 25/04/2017 05:22 Evernote.Evernote_q4d96b2w5wcc2 24/04/2017 23:54 f5.vpn.client_cw5n1h2txyewy 25/04/2017 05:48 Facebook.Facebook_8xx8rvfyw5nnt 24/04/2017 23:54 FileManager_cw5n1h2txyewy 25/04/2017 07:16 flaregamesGmbH.RoyalRevolt2_g0q0z3kw54rap 25/04/2017 05:22 Flipboard.Flipboard_3f5azkryzdbc4 24/04/2017 23:54 JuniperNetworks.JunosPulseVpn_cw5n1h2txyewy 25/04/2017 05:48 KeeperSecurityInc.Keeper_kejf07qmg0jnm 25/04/2017 07:05 king.com.CandyCrushSodaSaga_kgqvnymyfvs32 25/04/2017 05:22 KoboInc.KoboBooks_vk8qsnw174y90 25/04/2017 05:22 Microsoft.3DBuilder_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy 25/04/2017 05:04 Microsoft.AccountsControl_cw5n1h2txyewy 25/04/2017 05:21 Microsoft.Advertising.Xaml_8wekyb3d8bbwe 25/04/2017 05:22 Microsoft.BingFinance_8wekyb3d8bbwe 25/04/2017 05:22 Microsoft.BingFoodAndDrink_8wekyb3d8bbwe 25/04/2017 05:22 Microsoft.BingHealthAndFitness_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.BingNews_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.BingSports_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.BingTravel_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.BingWeather_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.BioEnrollment_cw5n1h2txyewy 25/04/2017 05:04 Microsoft.DesktopAppInstaller_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.FreshPaint_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.Getstarted_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.LockApp_cw5n1h2txyewy 24/04/2017 23:54 Microsoft.Media.PlayReadyClient.2_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.Messaging_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.MicrosoftEdge_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe 25/04/2017 07:00 Microsoft.MinecraftUWP_8wekyb3d8bbwe 24/04/2017 23:54 Microsoft.MoCamera_cw5n1h2txyewy 25/04/2017 05:21 Microsoft.MovieMoments_8wekyb3d8bbwe 25/04/2017 06:06 Microsoft.NET.Native.Framework.1.2_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.NET.Native.Framework.1.3_8wekyb3d8bbwe 25/04/2017 06:06 Microsoft.NET.Native.Runtime.1.1_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.NET.Native.Runtime.1.3_8wekyb3d8bbwe 25/04/2017 05:48 Microsoft.NET.Native.Runtime.1.4_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.Office.OneNote_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.OneConnect_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.People_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.PPIProjection_cw5n1h2txyewy 25/04/2017 05:21 Microsoft.Reader_8wekyb3d8bbwe 25/04/2017 05:48 Microsoft.Services.Store.Engagement_8wekyb3d8bbwe 25/04/2017 05:20 Microsoft.SkypeApp_kzf8qxf38zg5c 25/04/2017 05:21 Microsoft.StorePurchaseApp_8wekyb3d8bbwe 25/04/2017 06:08 Microsoft.VCLibs.120.00.Universal_8wekyb3d8bbwe 24/04/2017 23:54 Microsoft.VCLibs.120.00_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.VCLibs.140.00_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy 25/04/2017 05:04 Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy 25/04/2017 05:04 Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy 25/04/2017 05:04 Microsoft.Windows.Cortana_cw5n1h2txyewy 25/04/2017 05:04 Microsoft.Windows.ParentalControls_cw5n1h2txyewy 25/04/2017 05:04 Microsoft.Windows.Photos_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.Windows.SecondaryTileExperience_cw5n1h2txyewy 25/04/2017 05:04 Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy 25/04/2017 05:20 Microsoft.WindowsAlarms_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.WindowsCalculator_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.WindowsCamera_8wekyb3d8bbwe 25/04/2017 05:04 microsoft.windowscommunicationsapps_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.WindowsMaps_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.WindowsReadingList_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.WindowsScan_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.WindowsStore_8wekyb3d8bbwe 24/04/2017 23:54 Microsoft.WinJS.2.0_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.XboxApp_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.XboxGameCallableUI_cw5n1h2txyewy 25/04/2017 05:04 Microsoft.XboxIdentityProvider_8wekyb3d8bbwe 25/04/2017 05:04 Microsoft.ZuneMusic_8wekyb3d8bbwe 25/04/2017 05:21 Microsoft.ZuneVideo_8wekyb3d8bbwe 24/04/2017 23:54 SonicWALL.MobileConnect_cw5n1h2txyewy 25/04/2017 05:04 Windows.ContactSupport_cw5n1h2txyewy 25/04/2017 05:04 windows.immersivecontrolpanel_cw5n1h2txyewy 25/04/2017 05:04 Windows.MiracastView_cw5n1h2txyewy 25/04/2017 05:04 Windows.PrintDialog_cw5n1h2txyewy 24/04/2017 23:54 windows_ie_ac_001 24/04/2017 23:54 winstore_cw5n1h2txyewy 25/04/2017 05:20 ZinioLLC.Zinio_0q6dqzpp40p2e 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow 25/04/2017 22:15 Microsoft 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft 25/04/2017 22:15 CryptnetUrlCache 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache 25/04/2017 22:15 Content 25/04/2017 22:15 MetaData 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\Content 24/04/2017 21:20 (2ÿ920) 40E450F7CE13419A2CCC2A5445035A0A_06F02B1F13AB4B11B8FC669BDE565AF1 1 fichier(s) 2ÿ920 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\MetaData 24/04/2017 21:20 (400) 40E450F7CE13419A2CCC2A5445035A0A_06F02B1F13AB4B11B8FC669BDE565AF1 1 fichier(s) 400 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Roaming 25/04/2017 22:15 Microsoft 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Roaming\Microsoft 25/04/2017 22:15 SystemCertificates 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Roaming\Microsoft\SystemCertificates 25/04/2017 22:15 My 0 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Roaming\Microsoft\SystemCertificates\My 25/04/2017 05:04 (0) AppContainerUserCertRead 24/04/2017 21:19 Certificates 25/04/2017 05:04 CRLs 25/04/2017 05:04 CTLs 1 fichier(s) 0 octets R‚pertoire de C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu 24/04/2017 23:54 Programmes [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs] 0 fichier(s) 0 octets R‚pertoire de C:\Users\Public\Documents 25/04/2017 00:13 Ma musique [C:\Users\Public\Music] 25/04/2017 00:13 Mes images [C:\Users\Public\Pictures] 25/04/2017 00:13 Mes vid‚os [C:\Users\Public\Videos] 22/08/2013 11:23 My Music [C:\Users\Public\Music] 22/08/2013 11:23 My Pictures [C:\Users\Public\Pictures] 22/08/2013 11:23 My Videos [C:\Users\Public\Videos] 0 fichier(s) 0 octets R‚pertoire de C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache 25/04/2017 00:22 Content.IE5 [C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE] 0 fichier(s) 0 octets Total des fichiers list‚sÿ: 26 fichier(s) 2ÿ820ÿ159 octets 240 R‚p(s) 12ÿ145ÿ917ÿ952 octets libres [color=#A23BEC]< MD5 for: AFD.SYS >[/color] [2016/10/15 08:10:16 | 000,482,656 | ---- | M] (Microsoft Corporation) MD5=3B5BE5B3D3CE8D9834C2C9B325AC6A29 -- C:\Windows\System32\drivers\afd.sys [2016/10/15 08:10:16 | 000,482,656 | ---- | M] (Microsoft Corporation) MD5=3B5BE5B3D3CE8D9834C2C9B325AC6A29 -- C:\Windows\WinSxS\x86_microsoft-windows-winsock-core_31bf3856ad364e35_10.0.14393.351_none_b592d4f94405d28e\afd.sys [2017/05/03 15:07:38 | 000,019,477 | ---- | M] () MD5=74C234C0C832A081E1E881EC0D0331F8 -- C:\Windows\WinSxS\x86_microsoft-windows-winsock-core_31bf3856ad364e35_10.0.14393.0_none_a93e1289bcc25281\afd.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2016/07/16 12:24:55 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=1D8B6976EC75698485A195A06B2DEBAC -- C:\Windows\System32\drivers\atapi.sys [2016/07/16 12:24:55 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=1D8B6976EC75698485A195A06B2DEBAC -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_9279a50c05c1192f\atapi.sys [2016/07/16 12:24:55 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=1D8B6976EC75698485A195A06B2DEBAC -- C:\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_10.0.14393.953_none_bae4c6790720a372\atapi.sys [2017/05/03 15:15:26 | 000,000,012 | ---- | M] () MD5=D7E77A67DB9E24D7DB964C88AE694C71 -- C:\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_10.0.14393.0_none_ae8df8117fdf01cd\atapi.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2016/07/16 12:24:54 | 000,130,560 | ---- | M] (Microsoft Corporation) MD5=67B188419B7018D7956A38C89EFCC70A -- C:\Windows\System32\drivers\cdrom.sys [2016/07/16 12:24:54 | 000,130,560 | ---- | M] (Microsoft Corporation) MD5=67B188419B7018D7956A38C89EFCC70A -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_7ef47a3c886c2492\cdrom.sys [2016/07/16 12:24:54 | 000,130,560 | ---- | M] (Microsoft Corporation) MD5=67B188419B7018D7956A38C89EFCC70A -- C:\Windows\WinSxS\x86_cdrom.inf_31bf3856ad364e35_10.0.14393.0_none_30ff2bda021c9d7b\cdrom.sys [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color] [2017/05/12 15:41:07 | 000,280,065 | ---- | M] () MD5=2CC5F24D455B91F29785861737BE44EB -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_10.0.14393.0_none_230a7709d811a1f0\explorer.exe [2017/04/28 04:39:22 | 004,312,248 | ---- | M] (Microsoft Corporation) MD5=6E46F7CBC16009E381015C69F4FA22B1 -- C:\Windows\explorer.exe [2017/04/28 04:39:22 | 004,312,248 | ---- | M] (Microsoft Corporation) MD5=6E46F7CBC16009E381015C69F4FA22B1 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_10.0.14393.1198_none_6b5b33f41bebb98b\explorer.exe [color=#A23BEC]< MD5 for: I8042PRT.SYS >[/color] [2017/05/02 16:55:42 | 000,000,012 | ---- | M] () MD5=71CEAB07D94C8DE1EB4663C0ED3D50B8 -- C:\Windows\WinSxS\x86_dual_keyboard.inf_31bf3856ad364e35_10.0.14393.0_none_dd7d567997f2b35e\i8042prt.sys [2016/07/16 12:24:57 | 000,090,624 | ---- | M] (Microsoft Corporation) MD5=7D889F2D2464940C2DA8A218F5282F21 -- C:\Windows\System32\drivers\i8042prt.sys [2016/07/16 12:24:57 | 000,090,624 | ---- | M] (Microsoft Corporation) MD5=7D889F2D2464940C2DA8A218F5282F21 -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_x86_113e67458566ab9b\i8042prt.sys [2016/07/16 12:24:57 | 000,090,624 | ---- | M] (Microsoft Corporation) MD5=7D889F2D2464940C2DA8A218F5282F21 -- C:\Windows\WinSxS\x86_dual_keyboard.inf_31bf3856ad364e35_10.0.14393.206_none_ea0d28111f092942\i8042prt.sys [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2017/05/03 14:10:37 | 000,062,779 | ---- | M] () MD5=28BAC748F01851474D6BF52130B91B0B -- C:\Windows\WinSxS\x86_microsoft-windows-ndis-minwin_31bf3856ad364e35_10.0.14393.0_none_2aab4e2c86613eee\ndis.sys [2017/03/28 10:13:10 | 000,950,624 | ---- | M] (Microsoft Corporation) MD5=D05756943783CC83F38EDD5678B720A2 -- C:\Windows\System32\drivers\ndis.sys [2017/03/28 10:13:10 | 000,950,624 | ---- | M] (Microsoft Corporation) MD5=D05756943783CC83F38EDD5678B720A2 -- C:\Windows\WinSxS\x86_microsoft-windows-ndis-minwin_31bf3856ad364e35_10.0.14393.1066_none_730407b4ca35bb51\ndis.sys [color=#A23BEC]< MD5 for: NETBT.SYS >[/color] [2016/07/16 12:25:50 | 000,217,088 | ---- | M] (Microsoft Corporation) MD5=19B3776EE853B95924BAEDEF14702135 -- C:\Windows\System32\drivers\netbt.sys [2016/07/16 12:25:50 | 000,217,088 | ---- | M] (Microsoft Corporation) MD5=19B3776EE853B95924BAEDEF14702135 -- C:\Windows\WinSxS\x86_microsoft-windows-netbt-minwin_31bf3856ad364e35_10.0.14393.0_none_bd0251393634f90f\netbt.sys [color=#A23BEC]< MD5 for: TDX.SYS >[/color] [2017/03/04 11:02:34 | 000,095,584 | ---- | M] (Microsoft Corporation) MD5=1CD4B4D747348FAA7205D80E7BDAFD36 -- C:\Windows\System32\drivers\tdx.sys [2017/03/04 11:02:34 | 000,095,584 | ---- | M] (Microsoft Corporation) MD5=1CD4B4D747348FAA7205D80E7BDAFD36 -- C:\Windows\WinSxS\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_10.0.14393.953_none_c7ea66aac1ac7d8d\tdx.sys [2017/05/03 14:29:24 | 000,007,162 | ---- | M] () MD5=85F70AA24A9210B79B0A5041C1497A9E -- C:\Windows\WinSxS\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_10.0.14393.0_none_bb9398433a6adbe8\tdx.sys [color=#A23BEC]< MD5 for: VOLSNAP.SYS >[/color] [2016/07/16 12:25:50 | 000,353,120 | ---- | M] (Microsoft Corporation) MD5=8FC38A2B3D7A58A69065F43479E848FA -- C:\Windows\System32\drivers\volsnap.sys [2016/07/16 12:25:50 | 000,353,120 | ---- | M] (Microsoft Corporation) MD5=8FC38A2B3D7A58A69065F43479E848FA -- C:\Windows\WinSxS\x86_microsoft-windows-volsnap_31bf3856ad364e35_10.0.14393.0_none_307fc57fffc572f8\volsnap.sys [color=#A23BEC]< MD5 for: WININIT.EXE >[/color] [2016/07/16 12:25:39 | 000,205,112 | ---- | M] (Microsoft Corporation) MD5=B315D888C2AC5007D0F87880CE92102A -- C:\Windows\System32\wininit.exe [2016/07/16 12:25:39 | 000,205,112 | ---- | M] (Microsoft Corporation) MD5=B315D888C2AC5007D0F87880CE92102A -- C:\Windows\WinSxS\x86_microsoft-windows-wininit_31bf3856ad364e35_10.0.14393.0_none_024888c662a5d9d3\wininit.exe [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2017/04/28 03:54:51 | 000,578,560 | ---- | M] (Microsoft Corporation) MD5=307573EA60EAC5AFBAB358F80D066047 -- C:\Windows\System32\winlogon.exe [2017/04/28 03:54:51 | 000,578,560 | ---- | M] (Microsoft Corporation) MD5=307573EA60EAC5AFBAB358F80D066047 -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_10.0.14393.1198_none_89698df87720c6c1\winlogon.exe [2017/05/12 16:05:30 | 000,063,387 | ---- | M] () MD5=523DF49B570F72A695A689E4E104BE2F -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_10.0.14393.0_none_4118d10e3346af26\winlogon.exe [2016/07/28 02:38:59 | 000,074,240 | ---- | M] () MD5=A6C645EF2F30ABF61FCDBE5E76999730 -- C:\QuickDiag\MBR\Winlogon.exe < End of report >