cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 20/05/2017 19:56:59 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = D:\utillisateur\telechargements
An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.14393.0)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1,91 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 20,19% Memory free
3,07 Gb Paging File | 1,12 Gb Available in Paging File | 36,34% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 28,46 Gb Total Space | 11,57 Gb Free Space | 40,64% Space Free | Partition Type: NTFS
Drive D: | 58,23 Gb Total Space | 51,66 Gb Free Space | 88,71% Space Free | Partition Type: exFAT

Computer Name: ODZ | User Name: odz-plus.com | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2017/05/20 19:30:20 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\utillisateur\telechargements\OTL.exe
PRC - [2017/05/13 16:53:37 | 000,169,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
PRC - [2017/05/11 19:23:45 | 000,064,512 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeHost.exe
PRC - [2017/05/05 05:20:29 | 000,517,064 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2017/05/04 06:56:38 | 002,603,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
PRC - [2017/04/28 04:45:44 | 000,493,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncHost.exe
PRC - [2017/04/28 04:44:11 | 000,328,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpCmdRun.exe
PRC - [2017/04/28 04:39:22 | 004,312,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2017/04/28 04:07:07 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCuiL.exe
PRC - [2017/04/28 03:54:51 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winlogon.exe
PRC - [2017/04/28 03:51:04 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
PRC - [2017/04/25 09:12:12 | 000,083,056 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2017/04/25 05:08:52 | 001,518,808 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\OneDrive.exe
PRC - [2017/03/17 19:12:05 | 010,883,824 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe
PRC - [2017/03/04 10:47:15 | 000,330,568 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
PRC - [2017/03/04 10:22:19 | 000,183,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchFilterHost.exe
PRC - [2017/03/04 10:17:59 | 000,297,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchProtocolHost.exe
PRC - [2017/03/04 10:01:07 | 000,773,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe
PRC - [2017/03/04 10:00:54 | 000,529,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spoolsv.exe
PRC - [2016/12/12 19:21:48 | 000,587,288 | ---- | M] (Oracle Corporation) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2016/12/12 19:21:34 | 000,925,720 | ---- | M] (Oracle Corporation) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2016/11/02 15:29:48 | 000,947,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
PRC - [2016/11/02 15:05:45 | 000,313,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
PRC - [2016/09/07 09:07:57 | 000,043,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe
PRC - [2016/08/06 07:47:34 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dasHost.exe
PRC - [2016/07/16 21:17:58 | 000,304,640 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
PRC - [2016/07/16 12:25:55 | 000,072,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostw.exe
PRC - [2016/07/16 12:25:50 | 000,217,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
PRC - [2016/07/16 12:25:47 | 000,416,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe
PRC - [2016/07/16 12:25:47 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2016/07/16 12:25:31 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
PRC - [2016/07/16 12:25:07 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sihost.exe
PRC - [2016/07/16 12:25:03 | 000,029,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RuntimeBroker.exe
PRC - [2016/05/25 14:03:26 | 000,043,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
PRC - [2016/05/03 23:26:06 | 000,434,648 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxEM.exe
PRC - [2016/05/03 23:26:06 | 000,415,200 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxTray.exe
PRC - [2016/05/03 23:26:06 | 000,292,832 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxCUIService.exe
PRC - [2016/05/03 23:26:06 | 000,228,320 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxHK.exe
PRC - [2014/09/22 11:17:27 | 007,761,920 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe
PRC - [2014/09/10 20:21:48 | 000,458,472 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
PRC - [2014/09/10 20:21:40 | 000,461,544 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
PRC - [2014/09/10 20:21:36 | 000,450,792 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
PRC - [2014/09/10 20:21:30 | 000,480,488 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
PRC - [2014/06/26 16:36:30 | 000,451,816 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Quick Access\QASvc.exe
PRC - [2014/06/26 16:36:28 | 000,441,576 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
PRC - [2014/06/26 16:36:26 | 000,502,504 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
PRC - [2014/05/08 12:15:08 | 000,081,336 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
PRC - [2014/05/08 12:15:06 | 000,097,208 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DptfPolicyCriticalService.exe
PRC - [2014/05/08 12:15:06 | 000,090,552 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DptfPolicyLpmService.exe
PRC - [2014/05/08 12:03:42 | 000,083,384 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DptfParticipantProcessorService.exe
PRC - [2014/03/12 16:31:58 | 000,070,144 | ---- | M] () -- C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe
PRC - [2014/01/08 22:54:12 | 000,247,040 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer Touch Tools\TouchToolsLaunchSvc.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2017/05/20 19:30:20 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\utillisateur\telechargements\OTL.exe
MOD - [2017/05/13 16:54:11 | 000,219,840 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Root\Office16\1036\ONINTL.DLL
MOD - [2017/05/13 16:53:37 | 000,169,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
MOD - [2017/05/11 19:23:48 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\ssScreenVVS2.dll
MOD - [2017/05/11 19:23:47 | 031,002,624 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkyWrap.dll
MOD - [2017/05/11 19:23:45 | 001,741,824 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\skypert.dll
MOD - [2017/05/11 19:23:45 | 000,168,960 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
MOD - [2017/05/11 19:23:45 | 000,064,512 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeHost.exe
MOD - [2017/05/11 19:23:43 | 009,655,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\RtmPltfm.dll
MOD - [2017/05/11 19:23:42 | 000,482,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\RtmPal.dll
MOD - [2017/05/11 19:23:41 | 002,366,976 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\RtmCodecs.dll
MOD - [2017/05/11 19:23:41 | 000,757,760 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\RtmMediaManager.dll
MOD - [2017/05/05 05:22:37 | 051,657,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xul.dll
MOD - [2017/05/05 05:21:35 | 000,146,888 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\softokn3.dll
MOD - [2017/05/05 05:21:17 | 000,093,640 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssdbm3.dll
MOD - [2017/05/05 05:21:14 | 000,414,152 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssckbi.dll
MOD - [2017/05/05 05:21:10 | 001,222,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nss3.dll
MOD - [2017/05/05 05:21:06 | 000,124,360 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozglue.dll
MOD - [2017/05/05 05:21:03 | 000,155,080 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozavutil.dll
MOD - [2017/05/05 05:21:00 | 001,448,904 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozavcodec.dll
MOD - [2017/05/05 05:20:44 | 001,381,320 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\libGLESv2.dll
MOD - [2017/05/05 05:20:40 | 000,026,568 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\libEGL.dll
MOD - [2017/05/05 05:20:37 | 000,052,168 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\lgpllibs.dll
MOD - [2017/05/05 05:20:32 | 000,319,944 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\freebl3.dll
MOD - [2017/05/05 05:20:29 | 000,517,064 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
MOD - [2017/05/05 03:49:19 | 003,747,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\d3dcompiler_47.dll
MOD - [2017/05/05 03:49:18 | 000,028,864 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-math-l1-1-0.dll
MOD - [2017/05/05 03:49:18 | 000,025,792 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-multibyte-l1-1-0.dll
MOD - [2017/05/05 03:49:18 | 000,024,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-string-l1-1-0.dll
MOD - [2017/05/05 03:49:18 | 000,024,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-stdio-l1-1-0.dll
MOD - [2017/05/05 03:49:18 | 000,022,720 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-runtime-l1-1-0.dll
MOD - [2017/05/05 03:49:18 | 000,022,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-convert-l1-1-0.dll
MOD - [2017/05/05 03:49:18 | 000,020,672 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-time-l1-1-0.dll
MOD - [2017/05/05 03:49:18 | 000,020,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-filesystem-l1-1-0.dll
MOD - [2017/05/05 03:49:18 | 000,018,624 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-utility-l1-1-0.dll
MOD - [2017/05/05 03:49:18 | 000,018,624 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-locale-l1-1-0.dll
MOD - [2017/05/05 03:49:18 | 000,018,624 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-heap-l1-1-0.dll
MOD - [2017/05/05 03:49:18 | 000,018,624 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\api-ms-win-crt-environment-l1-1-0.dll
MOD - [2017/05/05 03:49:00 | 000,440,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\MSVCP140.dll
MOD - [2017/05/05 03:49:00 | 000,083,784 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll
MOD - [2017/04/28 05:33:50 | 000,448,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ContentDeliveryManager.Utilities.dll
MOD - [2017/04/28 05:32:09 | 000,685,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Internal.Shell.Broker.dll
MOD - [2017/04/28 05:00:14 | 001,725,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2017/04/28 05:00:07 | 005,996,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
MOD - [2017/04/28 04:59:55 | 000,601,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaut32.dll
MOD - [2017/04/28 04:56:56 | 002,048,488 | ---- | M] () -- C:\Windows\System32\CoreUIComponents.dll
MOD - [2017/04/28 04:55:33 | 000,628,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll
MOD - [2017/04/28 04:55:11 | 000,583,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CoreMessaging.dll
MOD - [2017/04/28 04:48:25 | 000,263,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Storage.ApplicationData.dll
MOD - [2017/04/28 04:46:09 | 001,504,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
MOD - [2017/04/28 04:46:03 | 005,722,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\windows.storage.dll
MOD - [2017/04/28 04:45:44 | 002,263,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
MOD - [2017/04/28 04:45:44 | 000,493,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncHost.exe
MOD - [2017/04/28 04:45:44 | 000,116,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CloudExperienceHostCommon.dll
MOD - [2017/04/28 04:45:29 | 000,975,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twinapi.appcore.dll
MOD - [2017/04/28 04:43:59 | 001,980,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6.dll
MOD - [2017/04/28 04:43:48 | 001,557,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\crypt32.dll
MOD - [2017/04/28 04:43:10 | 000,846,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinTypes.dll
MOD - [2017/04/28 04:43:09 | 002,168,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\combase.dll
MOD - [2017/04/28 04:40:19 | 004,023,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfcore.dll
MOD - [2017/04/28 04:40:10 | 000,352,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
MOD - [2017/04/28 04:39:51 | 020,967,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll
MOD - [2017/04/28 04:39:48 | 000,962,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole32.dll
MOD - [2017/04/28 04:39:22 | 004,312,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
MOD - [2017/04/28 04:35:23 | 001,411,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32full.dll
MOD - [2017/04/28 04:23:19 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserDataTimeUtil.dll
MOD - [2017/04/28 04:21:14 | 000,224,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExSMime.dll
MOD - [2017/04/28 04:17:36 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BluetoothApis.dll
MOD - [2017/04/28 04:16:36 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserMgrProxy.dll
MOD - [2017/04/28 04:16:24 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AppointmentActivation.dll
MOD - [2017/04/28 04:15:35 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
MOD - [2017/04/28 04:15:29 | 000,404,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsreg.dll
MOD - [2017/04/28 04:14:00 | 000,306,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieproxy.dll
MOD - [2017/04/28 04:13:21 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\deviceaccess.dll
MOD - [2017/04/28 04:13:15 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vaultcli.dll
MOD - [2017/04/28 04:13:11 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleacc.dll
MOD - [2017/04/28 04:13:01 | 013,873,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Xaml.dll
MOD - [2017/04/28 04:11:50 | 000,517,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FlightSettings.dll
MOD - [2017/04/28 04:10:54 | 000,819,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AppContracts.dll
MOD - [2017/04/28 04:10:45 | 000,238,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AboveLockAppHost.dll
MOD - [2017/04/28 04:10:44 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.ApplicationModel.dll
MOD - [2017/04/28 04:10:04 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
MOD - [2017/04/28 04:09:29 | 001,109,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SharedStartModel.dll
MOD - [2017/04/28 04:09:13 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll
MOD - [2017/04/28 04:09:13 | 000,352,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Devices.Enumeration.dll
MOD - [2017/04/28 04:08:57 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CryptoWinRT.dll
MOD - [2017/04/28 04:08:12 | 007,626,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twinui.dll
MOD - [2017/04/28 04:07:41 | 000,256,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\thumbcache.dll
MOD - [2017/04/28 04:07:21 | 003,689,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msi.dll
MOD - [2017/04/28 04:07:07 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCuiL.exe
MOD - [2017/04/28 04:06:49 | 004,614,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Media.dll
MOD - [2017/04/28 04:06:49 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.dll
MOD - [2017/04/28 04:05:51 | 003,733,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_47.dll
MOD - [2017/04/28 04:05:19 | 000,700,928 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpclient.dll
MOD - [2017/04/28 04:05:17 | 000,589,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Devices.Sensors.dll
MOD - [2017/04/28 04:03:57 | 000,355,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RTMediaFrame.dll
MOD - [2017/04/28 03:58:53 | 000,090,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olepro32.dll
MOD - [2017/04/28 03:58:35 | 000,433,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
MOD - [2017/04/28 03:57:40 | 001,247,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Globalization.dll
MOD - [2017/04/28 03:57:38 | 001,136,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpncore.dll
MOD - [2017/04/28 03:57:29 | 003,702,272 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\tabskb.dll
MOD - [2017/04/28 03:56:35 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Media.Devices.dll
MOD - [2017/04/28 03:55:05 | 002,701,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Speech_OneCore\Common\sapi_onecore.dll
MOD - [2017/04/28 03:54:35 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ShareHost.dll
MOD - [2017/04/28 03:54:30 | 000,654,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MbaeApiPublic.dll
MOD - [2017/04/28 03:54:26 | 002,483,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
MOD - [2017/04/28 03:54:08 | 000,598,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Web.dll
MOD - [2017/04/28 03:53:56 | 000,621,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.dll
MOD - [2017/04/28 03:52:44 | 002,008,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
MOD - [2017/04/28 03:52:40 | 001,600,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
MOD - [2017/04/28 03:51:38 | 000,705,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Reminders.dll
MOD - [2017/04/28 03:51:04 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
MOD - [2017/04/25 21:26:38 | 000,000,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\root\Office16\c2r32.dll
MOD - [2017/04/25 21:26:38 | 000,000,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
MOD - [2017/04/25 21:26:38 | 000,000,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\root\Office16\AppVIsvStream32.dll
MOD - [2017/04/25 05:19:29 | 000,416,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.24123.0_x86__8wekyb3d8bbwe\MSVCP140_APP.dll
MOD - [2017/04/25 05:19:29 | 000,256,528 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.24123.0_x86__8wekyb3d8bbwe\vccorlib140_app.DLL
MOD - [2017/04/25 05:19:29 | 000,221,704 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.24123.0_x86__8wekyb3d8bbwe\CONCRT140_APP.dll
MOD - [2017/04/25 05:19:29 | 000,075,792 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.24123.0_x86__8wekyb3d8bbwe\VCRUNTIME140_APP.dll
MOD - [2017/04/25 05:09:31 | 000,317,144 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Telemetry.dll
MOD - [2017/04/25 05:09:29 | 004,586,712 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\SyncEngine.DLL
MOD - [2017/04/25 05:09:25 | 000,196,416 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\sqmapi.dll
MOD - [2017/04/25 05:09:21 | 000,613,592 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\RemoteAccess.dll
MOD - [2017/04/25 05:09:17 | 001,004,248 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\platforms\qwindows.dll
MOD - [2017/04/25 05:09:12 | 004,502,744 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Widgets.dll
MOD - [2017/04/25 05:09:06 | 002,606,296 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Quick.dll
MOD - [2017/04/25 05:09:04 | 002,528,472 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Qml.dll
MOD - [2017/04/25 05:09:04 | 000,970,912 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\MSVCR120.dll
MOD - [2017/04/25 05:09:03 | 000,455,328 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\MSVCP120.dll
MOD - [2017/04/25 05:09:02 | 000,099,032 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\LoggingPlatform.DLL
MOD - [2017/04/25 05:09:01 | 000,865,496 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Network.dll
MOD - [2017/04/25 05:08:59 | 004,884,184 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Gui.dll
MOD - [2017/04/25 05:08:59 | 000,462,040 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncViews.dll
MOD - [2017/04/25 05:08:58 | 002,094,808 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll
MOD - [2017/04/25 05:08:57 | 001,480,408 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncSessions.dll
MOD - [2017/04/25 05:08:56 | 004,689,624 | ---- | M] (The Qt Company Ltd) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\Qt5Core.dll
MOD - [2017/04/25 05:08:56 | 002,797,784 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncClient.dll
MOD - [2017/04/25 05:08:55 | 002,805,976 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSync.Resources.dll
MOD - [2017/04/25 05:08:53 | 000,390,872 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\WnsClientApi.dll
MOD - [2017/04/25 05:08:52 | 001,518,808 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\OneDrive.exe
MOD - [2017/04/25 05:08:51 | 000,784,088 | ---- | M] (Microsoft Corporation) -- C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\ADAL.dll
MOD - [2017/04/19 02:13:56 | 000,083,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vcruntime140.dll
MOD - [2017/03/28 10:21:27 | 000,167,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
MOD - [2017/03/28 10:02:55 | 000,576,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
MOD - [2017/03/28 09:58:53 | 001,344,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfsrcsnk.dll
MOD - [2017/03/28 09:52:00 | 000,306,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Media.MediaControl.dll
MOD - [2017/03/28 09:37:46 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.HostName.dll
MOD - [2017/03/28 09:35:48 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
MOD - [2017/03/28 09:34:01 | 000,117,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuthBroker.dll
MOD - [2017/03/28 09:25:54 | 001,196,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
MOD - [2017/03/28 09:20:14 | 003,307,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFMediaEngine.dll
MOD - [2017/03/28 09:19:47 | 000,713,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpnapps.dll
MOD - [2017/03/28 09:16:38 | 003,198,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdp.dll
MOD - [2017/03/28 09:14:20 | 000,357,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Geolocation.dll
MOD - [2017/03/28 09:13:49 | 002,138,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InputService.dll
MOD - [2017/03/28 09:12:42 | 000,827,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twinui.appcore.dll
MOD - [2017/03/28 09:12:21 | 002,682,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netshell.dll
MOD - [2017/03/28 09:12:02 | 000,542,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.Connectivity.dll
MOD - [2017/03/28 09:12:01 | 000,862,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncCore.dll
MOD - [2017/03/28 09:08:52 | 001,564,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
MOD - [2017/03/16 08:38:49 | 000,034,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CompPkgSup.dll
MOD - [2017/03/04 11:57:40 | 000,484,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
MOD - [2017/03/04 11:09:33 | 000,497,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnsapi.dll
MOD - [2017/03/04 11:09:27 | 002,206,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
MOD - [2017/03/04 11:02:53 | 000,184,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IPHLPAPI.DLL
MOD - [2017/03/04 10:56:03 | 000,248,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\policymanager.dll
MOD - [2017/03/04 10:54:12 | 002,277,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
MOD - [2017/03/04 10:54:03 | 000,524,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
MOD - [2017/03/04 10:53:07 | 000,313,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
MOD - [2017/03/04 10:52:02 | 000,272,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wintrust.dll
MOD - [2017/03/04 10:47:41 | 001,123,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
MOD - [2017/03/04 10:47:32 | 000,530,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
MOD - [2017/03/04 10:47:15 | 000,330,568 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
MOD - [2017/03/04 10:46:47 | 002,121,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171\comctl32.dll
MOD - [2017/03/04 10:45:07 | 000,112,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
MOD - [2017/03/04 10:42:29 | 001,260,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll
MOD - [2017/03/04 10:27:46 | 000,275,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\accountaccessor.dll
MOD - [2017/03/04 10:25:57 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MCCSEngineShared.dll
MOD - [2017/03/04 10:25:47 | 000,167,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PimIndexMaintenance.dll
MOD - [2017/03/04 10:25:17 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDShServiceObj.dll
MOD - [2017/03/04 10:24:45 | 000,328,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\daxexec.dll
MOD - [2017/03/04 10:24:30 | 000,321,536 | ---- | M] () -- C:\Windows\ShellExperiences\QuickActions.dll
MOD - [2017/03/04 10:24:10 | 000,331,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\apppatch\AcLayers.dll
MOD - [2017/03/04 10:22:48 | 000,212,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cemapi.dll
MOD - [2017/03/04 10:22:19 | 000,183,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchFilterHost.exe
MOD - [2017/03/04 10:21:02 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll
MOD - [2017/03/04 10:20:49 | 000,424,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msutb.dll
MOD - [2017/03/04 10:20:10 | 000,426,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OneDriveSettingSyncProvider.dll
MOD - [2017/03/04 10:19:06 | 000,414,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winspool.drv
MOD - [2017/03/04 10:18:41 | 000,567,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ChatApis.dll
MOD - [2017/03/04 10:18:17 | 000,493,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WlanMediaManager.dll
MOD - [2017/03/04 10:18:10 | 000,548,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddraw.dll
MOD - [2017/03/04 10:17:52 | 000,529,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StructuredQuery.dll
MOD - [2017/03/04 10:17:52 | 000,427,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DXP.dll
MOD - [2017/03/04 10:16:41 | 000,994,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ApplicationFrame.dll
MOD - [2017/03/04 10:16:39 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
MOD - [2017/03/04 10:16:28 | 000,636,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll
MOD - [2017/03/04 10:16:22 | 001,456,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.953_none_baad48403594ab3f\GdiPlus.dll
MOD - [2017/03/04 10:16:20 | 000,968,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Unistore.dll
MOD - [2017/03/04 10:12:59 | 000,700,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Storage.Search.dll
MOD - [2017/03/04 10:12:36 | 001,842,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
MOD - [2017/03/04 10:12:33 | 000,818,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\modernexecserver.dll
MOD - [2017/03/04 10:10:34 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Tabbtn.dll
MOD - [2017/03/04 10:07:19 | 002,643,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
MOD - [2017/03/04 10:07:04 | 000,871,424 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\tipskins.dll
MOD - [2017/03/04 10:05:38 | 001,133,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssapi.dll
MOD - [2017/03/04 10:05:11 | 005,455,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\ShellExperiences\StartUI.dll
MOD - [2017/03/04 10:02:51 | 004,423,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
MOD - [2017/03/04 10:02:32 | 001,709,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActiveSyncProvider.dll
MOD - [2017/03/04 10:02:19 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hgcpl.dll
MOD - [2017/03/04 10:01:24 | 001,556,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Immersive.dll
MOD - [2017/03/04 10:01:24 | 000,422,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twinapi.dll
MOD - [2017/03/04 10:01:11 | 001,154,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Pimstore.dll
MOD - [2017/03/04 10:00:50 | 001,998,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\ShellExperiences\Windows.UI.ActionCenter.dll
MOD - [2017/03/04 10:00:42 | 000,691,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TokenBroker.dll
MOD - [2017/03/04 10:00:22 | 000,850,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ContactApis.dll
MOD - [2017/03/04 09:59:52 | 001,252,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserDataService.dll
MOD - [2017/03/04 09:59:29 | 001,748,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesService.dll
MOD - [2017/03/04 09:59:01 | 000,353,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TextInputFramework.dll
MOD - [2017/03/04 09:59:01 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Core.TextInput.dll
MOD - [2017/03/04 09:58:30 | 000,688,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesBackgroundTasks.dll
MOD - [2017/03/04 09:58:20 | 001,150,464 | ---- | M] () -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
MOD - [2017/03/04 09:57:54 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SignalsManager.dll
MOD - [2017/03/04 09:57:48 | 000,264,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.ContactPermissions.dll
MOD - [2017/03/04 09:57:35 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.DoNotDisturb.dll
MOD - [2017/03/04 09:57:28 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\OnlineServices.dll
MOD - [2016/12/14 09:08:54 | 000,341,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msv1_0.dll
MOD - [2016/12/12 19:21:48 | 000,587,288 | ---- | M] (Oracle Corporation) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
MOD - [2016/12/12 19:21:34 | 000,925,720 | ---- | M] (Oracle Corporation) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
MOD - [2016/12/09 14:09:25 | 000,133,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2016/12/09 14:00:53 | 000,117,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
MOD - [2016/12/09 13:52:24 | 001,344,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\user32.dll
MOD - [2016/12/09 13:15:51 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EditBufferTestHook.dll
MOD - [2016/12/09 13:15:49 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InputLocaleManager.dll
MOD - [2016/11/11 11:59:56 | 001,586,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll
MOD - [2016/11/11 11:49:42 | 000,869,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MrmCoreR.dll
MOD - [2016/11/11 11:42:44 | 000,152,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RTWorkQ.dll
MOD - [2016/11/11 11:23:13 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdpusersvc.dll
MOD - [2016/11/11 11:20:46 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wincorlib.dll
MOD - [2016/11/11 11:18:13 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscinterop.dll
MOD - [2016/11/11 11:17:24 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActivationManager.dll
MOD - [2016/11/11 11:15:26 | 001,357,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
MOD - [2016/11/11 11:12:21 | 000,529,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpnprv.dll
MOD - [2016/11/11 11:05:12 | 003,370,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.StateRepository.dll
MOD - [2016/11/11 11:03:58 | 000,772,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntshrui.dll
MOD - [2016/11/02 15:29:48 | 000,947,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
MOD - [2016/11/02 15:08:01 | 000,111,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NetSetupApi.dll
MOD - [2016/11/02 15:01:37 | 001,425,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
MOD - [2016/11/02 14:45:09 | 000,182,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfsensorgroup.dll
MOD - [2016/11/02 14:42:39 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NetworkUXBroker.dll
MOD - [2016/11/02 14:39:53 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
MOD - [2016/11/02 14:29:14 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NPSM.dll
MOD - [2016/11/02 14:26:46 | 000,912,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.dll
MOD - [2016/11/02 14:23:43 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\GlobCollationHost.dll
MOD - [2016/10/15 08:00:47 | 000,254,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twinui.pcshell.dll
MOD - [2016/10/15 07:54:00 | 000,410,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVolSSO.dll
MOD - [2016/10/15 07:43:47 | 000,500,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NotificationController.dll
MOD - [2016/10/15 07:36:59 | 000,358,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\stobject.dll
MOD - [2016/10/15 07:35:18 | 002,708,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\esent.dll
MOD - [2016/09/15 21:37:05 | 000,402,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ws2_32.dll
MOD - [2016/09/15 21:23:19 | 000,170,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll
MOD - [2016/09/15 21:18:22 | 000,856,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
MOD - [2016/09/15 21:13:51 | 000,113,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2016/09/15 20:57:05 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ClipboardServer.dll
MOD - [2016/09/15 20:56:50 | 000,262,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pdh.dll
MOD - [2016/09/15 20:56:42 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DataExchange.dll
MOD - [2016/09/15 20:55:43 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\biwinrt.dll
MOD - [2016/09/15 20:54:36 | 000,461,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
MOD - [2016/09/07 08:58:51 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserDataLanguageUtil.dll
MOD - [2016/09/07 08:58:35 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserDataTypeHelperUtil.dll
MOD - [2016/09/07 08:58:13 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\POSyncServices.dll
MOD - [2016/09/07 08:56:55 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ContactActivation.dll
MOD - [2016/09/07 08:54:52 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserDataPlatformHelperUtil.dll
MOD - [2016/09/07 08:49:42 | 000,260,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Phoneutil.dll
MOD - [2016/09/07 08:34:21 | 000,444,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSync.dll
MOD - [2016/08/06 08:16:01 | 000,798,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll
MOD - [2016/08/06 07:45:49 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\container.dll
MOD - [2016/08/06 07:44:11 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\deviceassociation.dll
MOD - [2016/08/06 07:40:04 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Shell.dll
MOD - [2016/08/06 07:28:53 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samlib.dll
MOD - [2016/08/06 07:21:15 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionMgr.dll
MOD - [2016/08/06 07:21:13 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll
MOD - [2016/08/06 07:21:12 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Sync.dll
MOD - [2016/08/06 07:21:10 | 000,054,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\JsonReader.dll
MOD - [2016/08/06 07:21:07 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersProxyStub.dll
MOD - [2016/08/06 07:21:06 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ContactPermissionsProxyStub.dll
MOD - [2016/08/06 07:21:05 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\DoNotDisturbProxyStub.dll
MOD - [2016/08/06 07:21:03 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriProxyStub.dll
MOD - [2016/08/05 12:23:12 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppc.dll
MOD - [2016/08/05 12:18:23 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slc.dll
MOD - [2016/08/02 08:47:21 | 000,094,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32u.dll
MOD - [2016/07/22 05:18:36 | 000,297,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
MOD - [2016/07/16 21:18:01 | 000,491,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
MOD - [2016/07/16 21:17:58 | 001,085,440 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\TipRes.dll
MOD - [2016/07/16 21:17:58 | 000,304,640 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
MOD - [2016/07/16 21:17:58 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Ink\TabIpsps.dll
MOD - [2016/07/16 21:17:55 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsApi.dll
MOD - [2016/07/16 21:15:50 | 006,238,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll
MOD - [2016/07/16 21:15:50 | 002,269,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll
MOD - [2016/07/16 12:26:53 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srclient.dll
MOD - [2016/07/16 12:26:51 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
MOD - [2016/07/16 12:26:51 | 000,154,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
MOD - [2016/07/16 12:26:43 | 000,265,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActionCenter.dll
MOD - [2016/07/16 12:26:43 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hcproviders.dll
MOD - [2016/07/16 12:26:42 | 003,309,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
MOD - [2016/07/16 12:26:42 | 000,732,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.dll
MOD - [2016/07/16 12:26:42 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlaapi.dll
MOD - [2016/07/16 12:26:42 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ELSCore.dll
MOD - [2016/07/16 12:26:42 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msauserext.dll
MOD - [2016/07/16 12:26:42 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vsstrace.dll
MOD - [2016/07/16 12:26:41 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceSetupManagerAPI.dll
MOD - [2016/07/16 12:26:40 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spp.dll
MOD - [2016/07/16 12:26:05 | 002,231,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
MOD - [2016/07/16 12:26:05 | 000,385,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\provsvc.dll
MOD - [2016/07/16 12:26:05 | 000,330,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
MOD - [2016/07/16 12:26:05 | 000,273,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL
MOD - [2016/07/16 12:26:05 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpnsp.dll
MOD - [2016/07/16 12:26:02 | 000,724,480 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\EppManifest.dll
MOD - [2016/07/16 12:26:02 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Cortana.PAL.Desktop.dll
MOD - [2016/07/16 12:26:01 | 000,786,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\opengl32.dll
MOD - [2016/07/16 12:26:01 | 000,141,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\glu32.dll
MOD - [2016/07/16 12:26:01 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
MOD - [2016/07/16 12:26:01 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IconCodecService.dll
MOD - [2016/07/16 12:26:00 | 001,453,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dui70.dll
MOD - [2016/07/16 12:26:00 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\werconcpl.dll
MOD - [2016/07/16 12:26:00 | 000,482,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\duser.dll
MOD - [2016/07/16 12:26:00 | 000,354,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
MOD - [2016/07/16 12:26:00 | 000,257,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsta.dll
MOD - [2016/07/16 12:26:00 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
MOD - [2016/07/16 12:26:00 | 000,053,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll
MOD - [2016/07/16 12:25:58 | 001,660,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batmeter.dll
MOD - [2016/07/16 12:25:58 | 000,479,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll
MOD - [2016/07/16 12:25:58 | 000,305,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InputSwitch.dll
MOD - [2016/07/16 12:25:58 | 000,284,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shlwapi.dll
MOD - [2016/07/16 12:25:58 | 000,225,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shdocvw.dll
MOD - [2016/07/16 12:25:58 | 000,027,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\version.dll
MOD - [2016/07/16 12:25:57 | 000,477,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prnfldr.dll
MOD - [2016/07/16 12:25:56 | 000,232,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\edputil.dll
MOD - [2016/07/16 12:25:56 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HNetCfgClient.dll
MOD - [2016/07/16 12:25:56 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TetheringStation.dll
MOD - [2016/07/16 12:25:56 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wcmapi.dll
MOD - [2016/07/16 12:25:56 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VoipRT.dll
MOD - [2016/07/16 12:25:55 | 000,566,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
MOD - [2016/07/16 12:25:55 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.System.Profile.RetailInfo.dll
MOD - [2016/07/16 12:25:55 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2016/07/16 12:25:55 | 000,072,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostw.exe
MOD - [2016/07/16 12:25:55 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wldp.dll
MOD - [2016/07/16 12:25:55 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InprocLogger.dll
MOD - [2016/07/16 12:25:55 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
MOD - [2016/07/16 12:25:55 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontgroupsoverride.dll
MOD - [2016/07/16 12:25:55 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MCCSPal.dll
MOD - [2016/07/16 12:25:51 | 000,185,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmllite.dll
MOD - [2016/07/16 12:25:51 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usermgrcli.dll
MOD - [2016/07/16 12:25:50 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MTFServer.dll
MOD - [2016/07/16 12:25:50 | 000,141,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ContactHarvesterDS.dll
MOD - [2016/07/16 12:25:50 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\qasf.dll
MOD - [2016/07/16 12:25:50 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDFR.DLL
MOD - [2016/07/16 12:25:49 | 000,159,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AppxAllUserStore.dll
MOD - [2016/07/16 12:25:49 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingMonitor.dll
MOD - [2016/07/16 12:25:49 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncPolicy.dll
MOD - [2016/07/16 12:25:49 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drprov.dll
MOD - [2016/07/16 12:25:47 | 000,779,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\fastprox.dll
MOD - [2016/07/16 12:25:47 | 000,524,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxs.dll
MOD - [2016/07/16 12:25:47 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbemcomn.dll
MOD - [2016/07/16 12:25:47 | 000,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\framedynos.dll
MOD - [2016/07/16 12:25:47 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QuickActionsDataModel.dll
MOD - [2016/07/16 12:25:47 | 000,108,032 | ---- | M] () -- C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
MOD - [2016/07/16 12:25:47 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll
MOD - [2016/07/16 12:25:47 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemsvc.dll
MOD - [2016/07/16 12:25:47 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemprox.dll
MOD - [2016/07/16 12:25:47 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\linkinfo.dll
MOD - [2016/07/16 12:25:47 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NotificationControllerPS.dll
MOD - [2016/07/16 12:25:46 | 001,220,608 | ---- | M] (Microsoft) -- C:\Windows\System32\dbghelp.dll
MOD - [2016/07/16 12:25:46 | 000,339,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
MOD - [2016/07/16 12:25:46 | 000,135,680 | ---- | M] (Microsoft) -- C:\Windows\System32\dbgcore.dll
MOD - [2016/07/16 12:25:46 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EthernetMediaManager.dll
MOD - [2016/07/16 12:25:41 | 000,367,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcryptprimitives.dll
MOD - [2016/07/16 12:25:41 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsNativeApi.V2.dll
MOD - [2016/07/16 12:25:41 | 000,054,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsNativeApi.dll
MOD - [2016/07/16 12:25:41 | 000,044,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsUtilsV2.dll
MOD - [2016/07/16 12:25:41 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fltLib.dll
MOD - [2016/07/16 12:25:40 | 000,773,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt.dll
MOD - [2016/07/16 12:25:40 | 000,255,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2016/07/16 12:25:40 | 000,093,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imagehlp.dll
MOD - [2016/07/16 12:25:40 | 000,082,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcd.dll
MOD - [2016/07/16 12:25:40 | 000,054,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2016/07/16 12:25:40 | 000,031,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2016/07/16 12:25:40 | 000,026,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll
MOD - [2016/07/16 12:25:40 | 000,020,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nsi.dll
MOD - [2016/07/16 12:25:39 | 000,918,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ucrtbase.dll
MOD - [2016/07/16 12:25:39 | 000,498,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcp_win.dll
MOD - [2016/07/16 12:25:39 | 000,415,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcp110_win.dll
MOD - [2016/07/16 12:25:39 | 000,315,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mswsock.dll
MOD - [2016/07/16 12:25:39 | 000,275,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powrprof.dll
MOD - [2016/07/16 12:25:39 | 000,268,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncryptprov.dll
MOD - [2016/07/16 12:25:39 | 000,213,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2016/07/16 12:25:39 | 000,200,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mlang.dll
MOD - [2016/07/16 12:25:39 | 000,184,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rsaenh.dll
MOD - [2016/07/16 12:25:39 | 000,183,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logoncli.dll
MOD - [2016/07/16 12:25:39 | 000,173,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntasn1.dll
MOD - [2016/07/16 12:25:39 | 000,154,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntmarta.dll
MOD - [2016/07/16 12:25:39 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OneCoreCommonProxyStub.dll
MOD - [2016/07/16 12:25:39 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptnet.dll
MOD - [2016/07/16 12:25:39 | 000,132,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2016/07/16 12:25:39 | 000,120,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
MOD - [2016/07/16 12:25:39 | 000,104,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncryptsslp.dll
MOD - [2016/07/16 12:25:39 | 000,094,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userenv.dll
MOD - [2016/07/16 12:25:39 | 000,086,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpr.dll
MOD - [2016/07/16 12:25:39 | 000,075,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srvcli.dll
MOD - [2016/07/16 12:25:39 | 000,068,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptsp.dll
MOD - [2016/07/16 12:25:39 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc.dll
MOD - [2016/07/16 12:25:39 | 000,060,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptdll.dll
MOD - [2016/07/16 12:25:39 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wkscli.dll
MOD - [2016/07/16 12:25:39 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
MOD - [2016/07/16 12:25:39 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devrtl.dll
MOD - [2016/07/16 12:25:39 | 000,049,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msasn1.dll
MOD - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe
MOD - [2016/07/16 12:25:39 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmiclnt.dll
MOD - [2016/07/16 12:25:39 | 000,036,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2016/07/16 12:25:39 | 000,033,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NtlmShared.dll
MOD - [2016/07/16 12:25:39 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tokenbinding.dll
MOD - [2016/07/16 12:25:39 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsparse.dll
MOD - [2016/07/16 12:25:39 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpapi.dll
MOD - [2016/07/16 12:25:31 | 001,122,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dcomp.dll
MOD - [2016/07/16 12:25:31 | 000,513,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncController.dll
MOD - [2016/07/16 12:25:31 | 000,384,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\syncutil.dll
MOD - [2016/07/16 12:25:31 | 000,371,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AccountsRt.dll
MOD - [2016/07/16 12:25:31 | 000,330,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\APHostService.dll
MOD - [2016/07/16 12:25:31 | 000,149,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imm32.dll
MOD - [2016/07/16 12:25:31 | 000,124,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cabinet.dll
MOD - [2016/07/16 12:25:31 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\networkhelper.dll
MOD - [2016/07/16 12:25:31 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usp10.dll
MOD - [2016/07/16 12:25:31 | 000,069,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netapi32.dll
MOD - [2016/07/16 12:25:31 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Syncreg.dll
MOD - [2016/07/16 12:25:31 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntlanman.dll
MOD - [2016/07/16 12:25:31 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncProxy.dll
MOD - [2016/07/16 12:25:31 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\APHostClient.dll
MOD - [2016/07/16 12:25:31 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hid.dll
MOD - [2016/07/16 12:25:31 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
MOD - [2016/07/16 12:25:31 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimg32.dll
MOD - [2016/07/16 12:25:30 | 000,538,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
MOD - [2016/07/16 12:25:30 | 000,482,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\advapi32.dll
MOD - [2016/07/16 12:25:30 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.System.Profile.HardwareId.dll
MOD - [2016/07/16 12:25:30 | 000,135,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winmm.dll
MOD - [2016/07/16 12:25:30 | 000,131,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winmmbase.dll
MOD - [2016/07/16 12:25:30 | 000,090,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.dll
MOD - [2016/07/16 12:25:30 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll
MOD - [2016/07/16 12:25:30 | 000,029,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll
MOD - [2016/07/16 12:25:30 | 000,028,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdmo.dll
MOD - [2016/07/16 12:25:30 | 000,020,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll
MOD - [2016/07/16 12:25:28 | 001,368,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Speech\Common\sapi.dll
MOD - [2016/07/16 12:25:28 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll
MOD - [2016/07/16 12:25:24 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrnr.dll
MOD - [2016/07/16 12:25:22 | 001,515,520 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Ink\InkObj.dll
MOD - [2016/07/16 12:25:22 | 000,528,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clbcatq.dll
MOD - [2016/07/16 12:25:22 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\es.dll
MOD - [2016/07/16 12:25:22 | 000,299,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ninput.dll
MOD - [2016/07/16 12:25:22 | 000,196,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorShell.dll
MOD - [2016/07/16 12:25:22 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TabbtnEx.dll
MOD - [2016/07/16 12:25:22 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\TipResX.dll
MOD - [2016/07/16 12:25:21 | 000,581,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apphelp.dll
MOD - [2016/07/16 12:25:21 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\davclnt.dll
MOD - [2016/07/16 12:25:21 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc_os.dll
MOD - [2016/07/16 12:25:21 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc.dll
MOD - [2016/07/16 12:25:16 | 015,048,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DDORes.dll
MOD - [2016/07/16 12:25:16 | 004,268,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupapi.dll
MOD - [2016/07/16 12:25:16 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscapi.dll
MOD - [2016/07/16 12:25:16 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcacli.dll
MOD - [2016/07/16 12:25:16 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\davhlpr.dll
MOD - [2016/07/16 12:25:16 | 000,017,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psapi.dll
MOD - [2016/07/16 12:25:16 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FamilySafetyExt.dll
MOD - [2016/07/16 12:25:16 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DefaultDeviceManager.dll
MOD - [2016/07/16 12:25:15 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msiltcfg.dll
MOD - [2016/07/16 12:25:10 | 000,067,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwapi.dll
MOD - [2016/07/16 12:25:09 | 000,295,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hnetcfg.dll
MOD - [2016/07/16 12:25:09 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netprofm.dll
MOD - [2016/07/16 12:25:09 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NapiNSP.dll
MOD - [2016/07/16 12:25:09 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\npmproxy.dll
MOD - [2016/07/16 12:25:09 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsock32.dll
MOD - [2016/07/16 12:25:08 | 000,549,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SHCore.dll
MOD - [2016/07/16 12:25:07 | 000,702,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSync.dll
MOD - [2016/07/16 12:25:07 | 000,651,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MessagingDataModel2.dll
MOD - [2016/07/16 12:25:07 | 000,362,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\coml2.dll
MOD - [2016/07/16 12:25:07 | 000,295,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Graphics.dll
MOD - [2016/07/16 12:25:07 | 000,279,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
MOD - [2016/07/16 12:25:07 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VEEventDispatcher.dll
MOD - [2016/07/16 12:25:07 | 000,250,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NotificationObjFactory.dll
MOD - [2016/07/16 12:25:07 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowManagement.dll
MOD - [2016/07/16 12:25:07 | 000,084,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rmclient.dll
MOD - [2016/07/16 12:25:07 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EventAggregation.dll
MOD - [2016/07/16 12:25:07 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll
MOD - [2016/07/16 12:25:07 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\keepaliveprovider.dll
MOD - [2016/07/16 12:25:07 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sihost.exe
MOD - [2016/07/16 12:25:07 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.System.Diagnostics.dll
MOD - [2016/07/16 12:25:07 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PimIndexMaintenanceClient.dll
MOD - [2016/07/16 12:25:07 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.System.Profile.SystemId.dll
MOD - [2016/07/16 12:25:07 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\notificationplatformcomponent.dll
MOD - [2016/07/16 12:25:07 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll
MOD - [2016/07/16 12:25:07 | 000,025,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LocationFrameworkPS.dll
MOD - [2016/07/16 12:25:07 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemEventsBrokerClient.dll
MOD - [2016/07/16 12:25:05 | 005,061,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
MOD - [2016/07/16 12:25:05 | 001,575,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\actxprxy.dll
MOD - [2016/07/16 12:25:05 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
MOD - [2016/07/16 12:25:05 | 000,335,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
MOD - [2016/07/16 12:25:05 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fwbase.dll
MOD - [2016/07/16 12:25:05 | 000,114,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxva2.dll
MOD - [2016/07/16 12:25:05 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Query.dll
MOD - [2016/07/16 12:25:05 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LicenseManagerApi.dll
MOD - [2016/07/16 12:25:05 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
MOD - [2016/07/16 12:25:05 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BitsProxy.dll
MOD - [2016/07/16 12:25:04 | 001,375,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\propsys.dll
MOD - [2016/07/16 12:25:04 | 000,528,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StateRepository.Core.dll
MOD - [2016/07/16 12:25:04 | 000,328,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BCP47Langs.dll
MOD - [2016/07/16 12:25:04 | 000,080,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ResourcePolicyClient.dll
MOD - [2016/07/16 12:25:04 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profext.dll
MOD - [2016/07/16 12:25:04 | 000,043,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel.appcore.dll
MOD - [2016/07/16 12:25:03 | 000,807,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll
MOD - [2016/07/16 12:25:03 | 000,798,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OneCoreUAPCommonProxyStub.dll
MOD - [2016/07/16 12:25:03 | 000,584,664 | ---- | M] (SQLite Development Team) -- C:\Windows\System32\winsqlite3.dll
MOD - [2016/07/16 12:25:03 | 000,480,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\directmanipulation.dll
MOD - [2016/07/16 12:25:03 | 000,458,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlidprov.dll
MOD - [2016/07/16 12:25:03 | 000,416,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.System.Launcher.dll
MOD - [2016/07/16 12:25:03 | 000,298,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
MOD - [2016/07/16 12:25:03 | 000,201,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExecModelClient.dll
MOD - [2016/07/16 12:25:03 | 000,184,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdprt.dll
MOD - [2016/07/16 12:25:03 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PackageStateRoaming.dll
MOD - [2016/07/16 12:25:03 | 000,175,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rometadata.dll
MOD - [2016/07/16 12:25:03 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MicrosoftAccountTokenProvider.dll
MOD - [2016/07/16 12:25:03 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mskeyprotcli.dll
MOD - [2016/07/16 12:25:03 | 000,124,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll
MOD - [2016/07/16 12:25:03 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IDStore.dll
MOD - [2016/07/16 12:25:03 | 000,102,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Clipc.dll
MOD - [2016/07/16 12:25:03 | 000,090,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DevDispItemProvider.dll
MOD - [2016/07/16 12:25:03 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DesktopShellExt.dll
MOD - [2016/07/16 12:25:03 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Windows.Globalization.Fontgroups.dll
MOD - [2016/07/16 12:25:03 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\threadpoolwinrt.dll
MOD - [2016/07/16 12:25:03 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mskeyprotect.dll
MOD - [2016/07/16 12:25:03 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OnDemandConnRouteHelper.dll
MOD - [2016/07/16 12:25:03 | 000,042,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsclient.dll
MOD - [2016/07/16 12:25:03 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\execmodelproxy.dll
MOD - [2016/07/16 12:25:03 | 000,029,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RuntimeBroker.exe
MOD - [2016/07/16 12:25:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atlthunk.dll
MOD - [2016/07/16 12:25:03 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WpPortingLibrary.dll
MOD - [2016/07/16 12:25:01 | 001,088,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfperfhelper.dll
MOD - [2016/07/16 12:25:01 | 000,640,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
MOD - [2016/07/16 12:25:01 | 000,455,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSAudDecMFT.dll
MOD - [2016/07/16 12:25:01 | 000,232,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RESAMPLEDMO.DLL
MOD - [2016/07/16 12:25:01 | 000,098,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MP3DMOD.DLL
MOD - [2016/07/16 12:25:01 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasadhlp.dll
MOD - [2016/05/03 23:26:54 | 012,007,936 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igd10iumd32.dll
MOD - [2016/05/03 23:26:54 | 003,726,232 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igdusc32.dll
MOD - [2016/05/03 23:26:06 | 000,623,112 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxDH.dll
MOD - [2016/05/03 23:26:06 | 000,434,648 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxEM.exe
MOD - [2016/05/03 23:26:06 | 000,415,200 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxTray.exe
MOD - [2016/05/03 23:26:06 | 000,267,784 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxDI.dll
MOD - [2016/05/03 23:26:06 | 000,232,968 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxLHM.dll
MOD - [2016/05/03 23:26:06 | 000,228,320 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxHK.exe
MOD - [2014/09/22 11:17:27 | 007,761,920 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe
MOD - [2014/09/10 20:21:48 | 000,458,472 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
MOD - [2014/06/26 16:36:28 | 000,441,576 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
MOD - [2014/06/26 16:36:26 | 000,502,504 | ---- | M] (Acer Incorporate) -- C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
MOD - [2014/05/08 12:15:08 | 000,081,336 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DptfPolicyLpmServiceHelper.exe


[color=#E56717]========== Services (All) ==========[/color]

SRV - [2017/05/11 19:10:23 | 000,271,864 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2017/05/05 05:20:48 | 000,173,512 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2017/05/04 06:56:38 | 002,603,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe -- (ClickToRunSvc)
SRV - [2017/05/04 01:30:08 | 000,207,056 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2017/04/28 05:02:55 | 000,271,488 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV - [2017/04/28 05:01:16 | 002,717,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll -- (PrintNotify)
SRV - [2017/04/28 04:55:11 | 000,583,128 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2017/04/28 04:44:10 | 000,084,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2017/04/28 04:19:24 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2017/04/28 04:16:44 | 000,121,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\bthserv.dll -- (bthserv)
SRV - [2017/04/28 04:13:28 | 000,298,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2017/04/28 04:11:50 | 000,623,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\bisrv.dll -- (BrokerInfrastructure)
SRV - [2017/04/28 04:11:50 | 000,517,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FlightSettings.dll -- (wisvc)
SRV - [2017/04/28 04:11:30 | 000,713,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2017/04/28 04:11:30 | 000,713,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2017/04/28 04:10:54 | 000,518,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wiaservc.dll -- (StiSvc)
SRV - [2017/04/28 04:10:27 | 000,425,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\usocore.dll -- (UsoSvc)
SRV - [2017/04/28 04:10:27 | 000,242,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV - [2017/04/28 04:10:10 | 000,822,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\usermgr.dll -- (UserManager)
SRV - [2017/04/28 04:09:44 | 000,561,152 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2017/04/28 04:07:58 | 000,754,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ngcsvc.dll -- (NgcSvc)
SRV - [2017/04/28 04:06:48 | 002,333,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WsmSvc.dll -- (WinRM)
SRV - [2017/04/28 04:06:09 | 001,488,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\diagtrack.dll -- (DiagTrack)
SRV - [2017/04/28 04:03:56 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\wlidsvc.dll -- (wlidsvc)
SRV - [2017/04/28 04:03:08 | 001,098,752 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\gpsvc.dll -- (gpsvc)
SRV - [2017/04/28 04:00:58 | 000,300,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV - [2017/04/28 03:59:40 | 000,786,432 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2017/04/28 03:59:15 | 001,017,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2017/04/28 03:53:25 | 001,525,760 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2017/04/28 03:52:53 | 001,887,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2017/04/28 03:52:47 | 000,846,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\termsrv.dll -- (TermService)
SRV - [2017/04/25 09:12:12 | 000,083,056 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2017/03/28 09:12:13 | 000,920,064 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\dosvc.dll -- (DoSvc)
SRV - [2017/03/18 20:45:32 | 001,949,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AppXDeploymentServer.dll -- (AppXSvc)
SRV - [2017/03/17 19:12:05 | 010,883,824 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\TeamViewer_Service.exe -- (TeamViewer)
SRV - [2017/03/04 10:25:47 | 000,167,936 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV - [2017/03/04 10:25:43 | 000,063,488 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\moshost.dll -- (MapsBroker)
SRV - [2017/03/04 10:25:40 | 000,073,216 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\tzautoupdate.dll -- (tzautoupdate)
SRV - [2017/03/04 10:23:25 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2017/03/04 10:21:12 | 000,579,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\XblAuthManager.dll -- (XblAuthManager)
SRV - [2017/03/04 10:20:12 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\certprop.dll -- (SCPolicySvc)
SRV - [2017/03/04 10:20:12 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\certprop.dll -- (CertPropSvc)
SRV - [2017/03/04 10:19:45 | 000,277,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvcext.dll -- (vmicvss)
SRV - [2017/03/04 10:19:45 | 000,277,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvcext.dll -- (vmicrdv)
SRV - [2017/03/04 10:19:30 | 000,203,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2017/03/04 10:19:15 | 000,704,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\XblGameSave.dll -- (XblGameSave)
SRV - [2017/03/04 10:18:14 | 000,828,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\XboxNetApiSvc.dll -- (XboxNetApiSvc)
SRV - [2017/03/04 10:17:05 | 000,827,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\iphlpsvc.dll -- (iphlpsvc)
SRV - [2017/03/04 10:17:00 | 000,482,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2017/03/04 10:16:45 | 001,013,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2017/03/04 10:16:41 | 000,565,248 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wcmsvc.dll -- (Wcmsvc)
SRV - [2017/03/04 10:16:38 | 000,473,600 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\RDXService.dll -- (RetailDemo)
SRV - [2017/03/04 10:16:28 | 000,636,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2017/03/04 10:16:20 | 000,968,704 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\Unistore.dll -- (UnistoreSvc)
SRV - [2017/03/04 10:12:46 | 000,894,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\SensorDataService.exe -- (SensorDataService)
SRV - [2017/03/04 10:07:41 | 000,551,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\vds.exe -- (vds)
SRV - [2017/03/04 10:06:40 | 001,382,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\workfolderssvc.dll -- (workfolderssvc)
SRV - [2017/03/04 10:02:00 | 001,997,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2017/03/04 10:01:07 | 000,773,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\System32\SearchIndexer.exe -- (WSearch)
SRV - [2017/03/04 10:00:54 | 000,529,408 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2017/03/04 09:59:52 | 001,252,352 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\UserDataService.dll -- (UserDataSvc)
SRV - [2016/12/14 08:41:53 | 000,137,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV - [2016/12/14 08:36:46 | 000,497,664 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2016/11/11 11:25:33 | 000,110,080 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\servicing\TrustedInstaller.exe -- (TrustedInstaller)
SRV - [2016/11/11 11:23:13 | 000,254,976 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\System32\cdpusersvc.dll -- (CDPUserSvc)
SRV - [2016/11/11 11:21:08 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV - [2016/11/11 11:18:41 | 000,294,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cdpsvc.dll -- (CDPSvc)
SRV - [2016/11/11 11:18:22 | 000,142,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2016/11/11 11:15:02 | 000,441,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AppReadiness.dll -- (AppReadiness)
SRV - [2016/11/11 11:11:36 | 000,309,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2016/11/11 11:05:12 | 003,370,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\Windows.StateRepository.dll -- (StateRepository)
SRV - [2016/11/11 11:04:11 | 000,241,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)
SRV - [2016/11/11 11:02:40 | 000,612,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsm.dll -- (LSM)
SRV - [2016/11/02 14:29:05 | 000,503,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FrameServer.dll -- (FrameServer)
SRV - [2016/11/02 14:26:13 | 000,182,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NetSetupSvc.dll -- (NetSetupSvc)
SRV - [2016/10/15 08:36:04 | 004,970,224 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2016/10/15 08:27:58 | 000,421,216 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pcasvc.dll -- (PcaSvc)
SRV - [2016/10/15 07:48:56 | 000,797,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2016/10/05 13:20:04 | 000,303,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2016/09/15 20:57:56 | 000,268,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2016/09/15 20:56:50 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\RMapi.dll -- (RmSvc)
SRV - [2016/09/15 20:56:09 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\SensorService.dll -- (SensorService)
SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicvmsession)
SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmictimesync)
SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicshutdown)
SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmickvpexchange)
SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicheartbeat)
SRV - [2016/09/15 20:54:28 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicguestinterface)
SRV - [2016/09/15 20:54:09 | 000,431,104 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\mprdim.dll -- (RemoteAccess)
SRV - [2016/09/15 20:53:11 | 001,344,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (EventLog)
SRV - [2016/09/15 20:48:30 | 000,310,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2016/09/15 20:44:41 | 000,057,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\Sens.dll -- (SENS)
SRV - [2016/09/15 20:35:53 | 000,331,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\SessEnv.dll -- (SessionEnv)
SRV - [2016/09/07 09:07:57 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2016/09/07 08:50:07 | 000,636,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PhoneService.dll -- (PhoneSvc)
SRV - [2016/09/07 08:32:03 | 000,960,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV - [2016/08/20 09:11:31 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\LicenseManagerSvc.dll -- (LicenseManager)
SRV - [2016/08/06 07:37:40 | 000,366,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\das.dll -- (DeviceAssociationService)
SRV - [2016/08/06 07:33:24 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\smphost.dll -- (smphost)
SRV - [2016/08/06 07:23:40 | 000,448,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\w32time.dll -- (W32Time)
SRV - [2016/07/16 21:17:58 | 000,234,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\umrdp.dll -- (UmRdpService)
SRV - [2016/07/16 21:17:56 | 000,154,624 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2016/07/16 12:26:58 | 000,527,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FXSSVC.exe -- (Fax)
SRV - [2016/07/16 12:26:53 | 001,310,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbengine.exe -- (wbengine)
SRV - [2016/07/16 12:26:51 | 000,071,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wpdbusenum.dll -- (WPDBusEnum)
SRV - [2016/07/16 12:26:45 | 000,136,360 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2016/07/16 12:26:42 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiarpc.dll -- (WiaRpc)
SRV - [2016/07/16 12:26:40 | 000,373,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WalletService.dll -- (WalletService)
SRV - [2016/07/16 12:26:40 | 000,124,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2016/07/16 12:26:15 | 000,144,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcaSvc.dll -- (NcaSvc)
SRV - [2016/07/16 12:26:05 | 000,385,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2016/07/16 12:26:05 | 000,353,280 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\p2psvc.dll -- (p2psvc)
SRV - [2016/07/16 12:26:05 | 000,285,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2016/07/16 12:26:05 | 000,285,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2016/07/16 12:26:05 | 000,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2016/07/16 12:26:05 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2016/07/16 12:26:05 | 000,023,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2016/07/16 12:26:00 | 000,068,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wercplsupport.dll -- (wercplsupport)
SRV - [2016/07/16 12:25:58 | 000,566,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
SRV - [2016/07/16 12:25:58 | 000,076,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV - [2016/07/16 12:25:58 | 000,055,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2016/07/16 12:25:57 | 000,254,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2016/07/16 12:25:57 | 000,120,320 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll -- (shpamsvc)
SRV - [2016/07/16 12:25:57 | 000,075,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2016/07/16 12:25:57 | 000,047,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dmwappushsvc.dll -- (dmwappushservice)
SRV - [2016/07/16 12:25:56 | 000,328,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\upnphost.dll -- (upnphost)
SRV - [2016/07/16 12:25:56 | 000,096,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\eapsvc.dll -- (Eaphost)
SRV - [2016/07/16 12:25:56 | 000,036,864 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\efssvc.dll -- (EFS)
SRV - [2016/07/16 12:25:55 | 000,733,184 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2016/07/16 12:25:55 | 000,155,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dcpsvc.dll -- (DcpSvc)
SRV - [2016/07/16 12:25:55 | 000,117,248 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\regsvc.dll -- (RemoteRegistry)
SRV - [2016/07/16 12:25:51 | 000,772,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\sysmain.dll -- (SysMain)
SRV - [2016/07/16 12:25:51 | 000,396,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2016/07/16 12:25:51 | 000,096,256 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2016/07/16 12:25:51 | 000,096,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\umpnpmgr.dll -- (DeviceInstall)
SRV - [2016/07/16 12:25:50 | 000,083,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\WUDFSvc.dll -- (wudfsvc)
SRV - [2016/07/16 12:25:47 | 000,146,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbem\WmiApSrv.exe -- (wmiApSrv)
SRV - [2016/07/16 12:25:46 | 000,188,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ssdpsrv.dll -- (SSDPSRV)
SRV - [2016/07/16 12:25:46 | 000,184,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (winmgmt)
SRV - [2016/07/16 12:25:46 | 000,126,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wersvc.dll -- (WerSvc)
SRV - [2016/07/16 12:25:40 | 000,059,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2016/07/16 12:25:40 | 000,023,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2016/07/16 12:25:39 | 000,670,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\netlogon.dll -- (Netlogon)
SRV - [2016/07/16 12:25:39 | 000,292,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2016/07/16 12:25:39 | 000,234,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2016/07/16 12:25:39 | 000,105,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2016/07/16 12:25:39 | 000,070,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\keyiso.dll -- (KeyIso)
SRV - [2016/07/16 12:25:39 | 000,069,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV - [2016/07/16 12:25:39 | 000,065,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svchost.exe -- (WpnUserService_7c273d7)
SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\svchost.exe -- (UserDataSvc_7c273d7)
SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\svchost.exe -- (UnistoreSvc_7c273d7)
SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\svchost.exe -- (PimIndexMaintenanceSvc_7c273d7)
SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\svchost.exe -- (OneSyncSvc_7c273d7)
SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svchost.exe -- (MessagingService_7c273d7)
SRV - [2016/07/16 12:25:39 | 000,038,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\svchost.exe -- (CDPUserSvc_7c273d7)
SRV - [2016/07/16 12:25:39 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2016/07/16 12:25:39 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lmhsvc.dll -- (lmhosts)
SRV - [2016/07/16 12:25:39 | 000,019,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\System32\dllhost.exe -- (COMSysApp)
SRV - [2016/07/16 12:25:31 | 000,330,240 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\System32\APHostService.dll -- (OneSyncSvc)
SRV - [2016/07/16 12:25:24 | 000,183,808 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\SCardSvr.dll -- (SCardSvr)
SRV - [2016/07/16 12:25:24 | 000,092,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV)
SRV - [2016/07/16 12:25:24 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\UI0Detect.exe -- (UI0Detect)
SRV - [2016/07/16 12:25:23 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2016/07/16 12:25:23 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wephostsvc.dll -- (WEPHOSTSVC)
SRV - [2016/07/16 12:25:22 | 000,347,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2016/07/16 12:25:22 | 000,329,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msdtckrm.dll -- (KtmRm)
SRV - [2016/07/16 12:25:22 | 000,139,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msdtc.exe -- (MSDTC)
SRV - [2016/07/16 12:25:22 | 000,134,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\TabSvc.dll -- (TabletInputService)
SRV - [2016/07/16 12:25:22 | 000,117,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\iscsiexe.dll -- (MSiSCSI)
SRV - [2016/07/16 12:25:22 | 000,088,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\trkwks.dll -- (TrkWks)
SRV - [2016/07/16 12:25:22 | 000,009,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Locator.exe -- (RpcLocator)
SRV - [2016/07/16 12:25:21 | 000,328,704 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2016/07/16 12:25:21 | 000,253,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\TieringEngineService.exe -- (TieringEngineService)
SRV - [2016/07/16 12:25:21 | 000,137,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dps.dll -- (DPS)
SRV - [2016/07/16 12:25:21 | 000,104,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\fhsvc.dll -- (fhsvc)
SRV - [2016/07/16 12:25:21 | 000,017,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\fdPHost.dll -- (fdPHost)
SRV - [2016/07/16 12:25:21 | 000,011,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svsvc.dll -- (svsvc)
SRV - [2016/07/16 12:25:16 | 001,536,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pla.dll -- (pla)
SRV - [2016/07/16 12:25:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FDResPub.dll -- (FDResPub)
SRV - [2016/07/16 12:25:15 | 000,198,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\WebClnt.dll -- (WebClient)
SRV - [2016/07/16 12:25:15 | 000,149,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wecsvc.dll -- (Wecsvc)
SRV - [2016/07/16 12:25:15 | 000,089,088 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\wdi.dll -- (WdiSystemHost)
SRV - [2016/07/16 12:25:15 | 000,089,088 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\wdi.dll -- (WdiServiceHost)
SRV - [2016/07/16 12:25:15 | 000,058,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\System32\msiexec.exe -- (msiserver)
SRV - [2016/07/16 12:25:10 | 000,413,184 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\SmsRouterSvc.dll -- (SmsRouter)
SRV - [2016/07/16 12:25:10 | 000,230,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2016/07/16 12:25:09 | 000,432,640 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofmsvc.dll -- (netprofm)
SRV - [2016/07/16 12:25:09 | 000,379,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wcncsvc.dll -- (wcncsvc)
SRV - [2016/07/16 12:25:09 | 000,212,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lltdsvc.dll -- (lltdsvc)
SRV - [2016/07/16 12:25:09 | 000,204,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2016/07/16 12:25:09 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\irmon.dll -- (irmon)
SRV - [2016/07/16 12:25:08 | 000,317,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
SRV - [2016/07/16 12:25:08 | 000,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\sstpsvc.dll -- (SstpSvc)
SRV - [2016/07/16 12:25:08 | 000,046,080 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\MessagingService.dll -- (MessagingService)
SRV - [2016/07/16 12:25:08 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\snmptrap.exe -- (SNMPTRAP)
SRV - [2016/07/16 12:25:07 | 000,740,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IKEEXT.DLL -- (IKEEXT)
SRV - [2016/07/16 12:25:07 | 000,553,984 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2016/07/16 12:25:07 | 000,446,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\tileobjserver.dll -- (tiledatamodelsvc)
SRV - [2016/07/16 12:25:07 | 000,294,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ncbservice.dll -- (NcbService)
SRV - [2016/07/16 12:25:07 | 000,280,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV - [2016/07/16 12:25:07 | 000,259,072 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\vaultsvc.dll -- (VaultSvc)
SRV - [2016/07/16 12:25:07 | 000,195,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wpnservice.dll -- (WpnService)
SRV - [2016/07/16 12:25:07 | 000,167,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\tetheringservice.dll -- (icssvc)
SRV - [2016/07/16 12:25:07 | 000,129,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\TimeBrokerServer.dll -- (TimeBrokerSvc)
SRV - [2016/07/16 12:25:07 | 000,058,368 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\WpnUserService.dll -- (WpnUserService)
SRV - [2016/07/16 12:25:07 | 000,030,208 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lfsvc.dll -- (lfsvc)
SRV - [2016/07/16 12:25:07 | 000,024,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DevQueryBroker.dll -- (DevQueryBroker)
SRV - [2016/07/16 12:25:05 | 000,693,248 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2016/07/16 12:25:04 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AJRouter.dll -- (AJRouter)
SRV - [2016/07/16 12:25:03 | 000,591,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ClipSVC.dll -- (ClipSVC)
SRV - [2016/07/16 12:25:03 | 000,159,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc)
SRV - [2016/07/16 12:25:03 | 000,121,344 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\dssvc.dll -- (DsSvc)
SRV - [2016/07/16 12:25:03 | 000,101,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\embeddedmodesvc.dll -- (embeddedmode)
SRV - [2016/07/16 12:25:01 | 000,234,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\qwave.dll -- (QWAVE)
SRV - [2016/07/16 12:25:01 | 000,093,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2016/07/16 12:24:52 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\BthHFSrv.dll -- (BthHFSrv)
SRV - [2016/05/25 14:03:26 | 000,043,696 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0)
SRV - [2016/05/03 23:26:06 | 000,299,488 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IntelCpHeciSvc.exe -- (cphs)
SRV - [2016/05/03 23:26:06 | 000,292,832 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\System32\igfxCUIService.exe -- (igfxCUIService1.0.0.0)
SRV - [2014/09/10 20:21:40 | 000,461,544 | ---- | M] (Acer Incorporate) [Auto | Running] -- C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe -- (LMSvc)
SRV - [2014/06/26 16:36:30 | 000,451,816 | ---- | M] (Acer Incorporate) [On_Demand | Running] -- C:\Program Files\Acer\Acer Quick Access\QASvc.exe -- (QASvc)
SRV - [2014/05/08 12:15:06 | 000,097,208 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\System32\DptfPolicyCriticalService.exe -- (DptfPolicyCriticalService)
SRV - [2014/05/08 12:15:06 | 000,090,552 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\System32\DptfPolicyLpmService.exe -- (DptfPolicyLpmService)
SRV - [2014/05/08 12:03:42 | 000,083,384 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\System32\DptfParticipantProcessorService.exe -- (DptfParticipantProcessorService)
SRV - [2014/03/12 16:31:58 | 000,070,144 | ---- | M] () [Auto | Running] -- C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe -- (BTDevManager)
SRV - [2014/01/08 22:54:12 | 000,247,040 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer Touch Tools\TouchToolsLaunchSvc.exe -- (TouchToolsLaunchService)


[color=#E56717]========== Driver Services (All) ==========[/color]

DRV - [2017/04/28 04:58:41 | 001,956,704 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\System32\drivers\ntfs.sys -- (NTFS)
DRV - [2017/04/28 04:49:54 | 000,053,080 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2017/04/28 04:46:29 | 001,896,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl)
DRV - [2017/04/28 04:45:00 | 000,545,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vhdmp.sys -- (vhdmp)
DRV - [2017/04/28 04:43:55 | 000,458,592 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\spaceport.sys -- (spaceport)
DRV - [2017/04/28 04:43:27 | 000,355,168 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\rdbss.sys -- (rdbss)
DRV - [2017/04/28 04:22:08 | 000,069,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\raspppoe.sys -- (RasPppoe)
DRV - [2017/04/28 04:20:23 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2017/04/28 04:19:07 | 000,094,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bridge.sys -- (MsBridge)
DRV - [2017/04/28 04:12:10 | 000,755,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bthport.sys -- (BTHPORT)
DRV - [2017/04/28 04:04:29 | 000,626,688 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\srv2.sys -- (srv2)
DRV - [2017/04/28 04:04:28 | 000,344,576 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\srv.sys -- (srv)
DRV - [2017/03/28 10:13:10 | 000,950,624 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ndis.sys -- (NDIS)
DRV - [2017/03/28 09:58:34 | 000,240,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\msiscsi.sys -- (iScsiPrt)
DRV - [2017/03/28 09:52:22 | 001,966,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip6)
DRV - [2017/03/28 09:52:22 | 001,966,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip)
DRV - [2017/03/28 09:41:48 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\BasicRender.sys -- (BasicRender)
DRV - [2017/03/28 09:40:27 | 000,046,080 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV - [2017/03/04 11:41:26 | 000,078,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\IPMIDrv.sys -- (IPMIDRV)
DRV - [2017/03/04 11:09:41 | 000,092,000 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pdc.sys -- (pdc)
DRV - [2017/03/04 11:06:18 | 000,106,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\partmgr.sys -- (partmgr)
DRV - [2017/03/04 11:02:34 | 000,095,584 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\tdx.sys -- (tdx)
DRV - [2017/03/04 10:59:36 | 000,055,136 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\dam.sys -- (dam)
DRV - [2017/03/04 10:52:45 | 000,111,968 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\storahci.sys -- (storahci)
DRV - [2017/03/04 10:51:59 | 000,523,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\cng.sys -- (CNG)
DRV - [2017/03/04 10:51:46 | 000,186,720 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mrxsmb20.sys -- (mrxsmb20)
DRV - [2017/03/04 10:51:45 | 000,399,712 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mrxsmb.sys -- (mrxsmb)
DRV - [2017/03/04 10:29:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mskssrv.sys -- (MSKSSRV)
DRV - [2017/03/04 10:28:22 | 000,216,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\xboxgip.sys -- (xboxgip)
DRV - [2017/03/04 10:26:38 | 000,430,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nwifi.sys -- (NativeWifiP)
DRV - [2017/03/04 10:24:04 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg)
DRV - [2017/03/04 10:22:18 | 000,113,152 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\dfsc.sys -- (Dfsc)
DRV - [2017/03/04 10:20:10 | 000,518,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WdiWiFi.sys -- (wdiwifi)
DRV - [2016/12/14 09:04:26 | 000,261,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pci.sys -- (pci)
DRV - [2016/12/09 14:12:28 | 000,276,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\clfs.sys -- (CLFS)
DRV - [2016/11/11 11:59:57 | 000,292,192 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\System32\drivers\fastfat.sys -- (fastfat)
DRV - [2016/11/11 11:45:26 | 000,175,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2016/11/11 11:25:16 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\modem.sys -- (Modem)
DRV - [2016/11/11 11:13:27 | 000,230,400 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\mrxsmb10.sys -- (mrxsmb10)
DRV - [2016/11/02 15:21:20 | 000,570,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\acpi.sys -- (ACPI)
DRV - [2016/11/02 15:00:03 | 000,042,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\iorate.sys -- (iorate)
DRV - [2016/11/02 14:36:08 | 000,078,336 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\bowser.sys -- (bowser)
DRV - [2016/10/15 08:10:16 | 000,482,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\afd.sys -- (AFD)
DRV - [2016/10/15 08:10:14 | 000,781,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\http.sys -- (HTTP)
DRV - [2016/10/15 07:46:06 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\capimg.sys -- (CapImg)
DRV - [2016/10/15 07:33:33 | 000,188,928 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\ahcache.sys -- (ahcache)
DRV - [2016/10/05 14:10:29 | 000,231,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\sdbus.sys -- (sdbus)
DRV - [2016/10/05 13:46:02 | 000,056,672 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\MegaSas2i.sys -- (megasas2i)
DRV - [2016/10/05 13:11:38 | 000,125,440 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mrxdav.sys -- (MRxDAV)
DRV - [2016/09/15 21:21:08 | 000,557,920 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\fvevol.sys -- (fvevol)
DRV - [2016/09/15 21:20:51 | 000,095,072 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\wcifs.sys -- (wcifs)
DRV - [2016/09/15 21:00:53 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbdhid.sys -- (kbdhid)
DRV - [2016/09/07 09:33:44 | 000,102,752 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ksecdd.sys -- (KSecDD)
DRV - [2016/09/07 09:13:09 | 000,101,216 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV - [2016/09/07 08:39:11 | 000,196,608 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\srvnet.sys -- (srvnet)
DRV - [2016/08/20 09:15:11 | 000,034,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\xinputhid.sys -- (xinputhid)
DRV - [2016/08/20 09:13:17 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BthMini.SYS -- (BthMini)
DRV - [2016/08/06 08:22:32 | 000,173,408 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\System32\drivers\wof.sys -- (Wof)
DRV - [2016/08/06 08:14:00 | 000,145,248 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2016/08/06 07:47:47 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hidusb.sys -- (HidUsb)
DRV - [2016/07/16 21:18:00 | 000,131,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpdr.sys -- (RDPDR)
DRV - [2016/07/16 21:18:00 | 000,023,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2016/07/16 21:17:57 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt)
DRV - [2016/07/16 21:17:57 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2016/07/16 12:26:51 | 000,024,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV - [2016/07/16 12:26:02 | 000,244,576 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\WdFilter.sys -- (WdFilter)
DRV - [2016/07/16 12:26:02 | 000,100,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV - [2016/07/16 12:26:02 | 000,037,912 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\WdBoot.sys -- (WdBoot)
DRV - [2016/07/16 12:25:57 | 000,188,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ipnat.sys -- (IPNAT)
DRV - [2016/07/16 12:25:57 | 000,095,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn)
DRV - [2016/07/16 12:25:56 | 000,166,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiswan.sys -- (ndiswanlegacy)
DRV - [2016/07/16 12:25:56 | 000,166,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndiswan.sys -- (NdisWan)
DRV - [2016/07/16 12:25:56 | 000,106,496 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\Ndu.sys -- (Ndu)
DRV - [2016/07/16 12:25:55 | 000,711,168 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\PEAuth.sys -- (PEAuth)
DRV - [2016/07/16 12:25:55 | 000,109,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV - [2016/07/16 12:25:55 | 000,080,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rasl2tp.sys -- (Rasl2tp)
DRV - [2016/07/16 12:25:55 | 000,074,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\raspptp.sys -- (PptpMiniport)
DRV - [2016/07/16 12:25:55 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\mslldp.sys -- (MsLldp)
DRV - [2016/07/16 12:25:55 | 000,065,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rassstp.sys -- (RasSstp)
DRV - [2016/07/16 12:25:55 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wanarp.sys -- (wanarpv6)
DRV - [2016/07/16 12:25:55 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\wanarp.sys -- (wanarp)
DRV - [2016/07/16 12:25:55 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndproxy.sys -- (ndproxy)
DRV - [2016/07/16 12:25:55 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndistapi.sys -- (NdisTapi)
DRV - [2016/07/16 12:25:55 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mstee.sys -- (MSTEE)
DRV - [2016/07/16 12:25:55 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mspqm.sys -- (MSPQM)
DRV - [2016/07/16 12:25:55 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mspclock.sys -- (MSPCLOCK)
DRV - [2016/07/16 12:25:51 | 000,262,144 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\udfs.sys -- (udfs)
DRV - [2016/07/16 12:25:51 | 000,215,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2016/07/16 12:25:51 | 000,147,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\appid.sys -- (AppID)
DRV - [2016/07/16 12:25:51 | 000,069,984 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo)
DRV - [2016/07/16 12:25:51 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\applockerfltr.sys -- (applockerfltr)
DRV - [2016/07/16 12:25:50 | 000,353,120 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volsnap.sys -- (volsnap)
DRV - [2016/07/16 12:25:50 | 000,312,160 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx)
DRV - [2016/07/16 12:25:50 | 000,217,088 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\netbt.sys -- (NetBT)
DRV - [2016/07/16 12:25:50 | 000,161,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFRd.sys -- (WUDFWpdFs)
DRV - [2016/07/16 12:25:50 | 000,161,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFRd.sys -- (WUDFRd)
DRV - [2016/07/16 12:25:50 | 000,161,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFRd.sys -- (INVN_MotionApps)
DRV - [2016/07/16 12:25:50 | 000,161,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFRd.sys -- (CM3218x)
DRV - [2016/07/16 12:25:50 | 000,076,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFPf.sys -- (WudfPf)
DRV - [2016/07/16 12:25:50 | 000,074,752 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\cdfs.sys -- (cdfs)
DRV - [2016/07/16 12:25:50 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2016/07/16 12:25:47 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2016/07/16 12:25:41 | 000,205,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ufx01000.sys -- (Ufx01000)
DRV - [2016/07/16 12:25:41 | 000,194,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\msrpc.sys -- (MsRPC)
DRV - [2016/07/16 12:25:41 | 000,117,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SerCx2.sys -- (SerCx2)
DRV - [2016/07/16 12:25:41 | 000,086,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV - [2016/07/16 12:25:41 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UcmTcpciCx.sys -- (UcmTcpciCx0101)
DRV - [2016/07/16 12:25:41 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UcmCx.sys -- (UcmCx0101)
DRV - [2016/07/16 12:25:41 | 000,060,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SpbCx.sys -- (SpbCx)
DRV - [2016/07/16 12:25:41 | 000,059,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\SerCx.sys -- (SerCx)
DRV - [2016/07/16 12:25:41 | 000,042,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\urscx01000.sys -- (UrsCx01000)
DRV - [2016/07/16 12:25:41 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\IndirectKmd.sys -- (IndirectKmd)
DRV - [2016/07/16 12:25:41 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidumdf.sys -- (mshidumdf)
DRV - [2016/07/16 12:25:41 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV - [2016/07/16 12:25:40 | 000,584,296 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000)
DRV - [2016/07/16 12:25:40 | 000,293,728 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\fltMgr.sys -- (FltMgr)
DRV - [2016/07/16 12:25:40 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VerifierExt.sys -- (VerifierExt)
DRV - [2016/07/16 12:25:40 | 000,087,392 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\mountmgr.sys -- (mountmgr)
DRV - [2016/07/16 12:25:40 | 000,062,976 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\storqosflt.sys -- (storqosflt)
DRV - [2016/07/16 12:25:40 | 000,051,712 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\npfs.sys -- (Npfs)
DRV - [2016/07/16 12:25:40 | 000,042,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\condrv.sys -- (condrv)
DRV - [2016/07/16 12:25:40 | 000,028,160 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy)
DRV - [2016/07/16 12:25:40 | 000,026,464 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\System32\drivers\fs_rec.sys -- (Fs_Rec)
DRV - [2016/07/16 12:25:40 | 000,024,576 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\msfs.sys -- (Msfs)
DRV - [2016/07/16 12:25:40 | 000,005,120 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\null.sys -- (Null)
DRV - [2016/07/16 12:25:39 | 000,279,040 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\System32\drivers\exfat.sys -- (exfat)
DRV - [2016/07/16 12:25:39 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndisuio.sys -- (Ndisuio)
DRV - [2016/07/16 12:25:39 | 000,042,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2016/07/16 12:25:31 | 000,101,216 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\mup.sys -- (Mup)
DRV - [2016/07/16 12:25:31 | 000,033,120 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\cnghwassist.sys -- (cnghwassist)
DRV - [2016/07/16 12:25:31 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2016/07/16 12:25:30 | 000,037,376 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\mmcss.sys -- (MMCSS)
DRV - [2016/07/16 12:25:24 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2016/07/16 12:25:22 | 000,075,104 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\EhStorClass.sys -- (EhStorClass)
DRV - [2016/07/16 12:25:22 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\beep.sys -- (Beep)
DRV - [2016/07/16 12:25:21 | 000,029,184 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace)
DRV - [2016/07/16 12:25:15 | 000,099,328 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\luafv.sys -- (luafv)
DRV - [2016/07/16 12:25:10 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\vwififlt.sys -- (vwififlt)
DRV - [2016/07/16 12:25:10 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2016/07/16 12:25:09 | 000,131,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tunnel.sys -- (tunnel)
DRV - [2016/07/16 12:25:09 | 000,094,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\irda.sys -- (irda)
DRV - [2016/07/16 12:25:09 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rspndr.sys -- (rspndr)
DRV - [2016/07/16 12:25:09 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lltdio.sys -- (lltdio)
DRV - [2016/07/16 12:25:09 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\ws2ifsl.sys -- (ws2ifsl)
DRV - [2016/07/16 12:25:08 | 000,048,480 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\netbios.sys -- (NetBIOS)
DRV - [2016/07/16 12:25:08 | 000,030,048 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2016/07/16 12:25:08 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\asyncmac.sys -- (AsyncMac)
DRV - [2016/07/16 12:25:08 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV - [2016/07/16 12:25:08 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\irenum.sys -- (IRENUM)
DRV - [2016/07/16 12:25:07 | 000,135,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV - [2016/07/16 12:25:07 | 000,088,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\wfplwfs.sys -- (WFPLWFS)
DRV - [2016/07/16 12:25:07 | 000,058,368 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\registry.sys -- (clreg)
DRV - [2016/07/16 12:25:07 | 000,052,736 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\wcnfs.sys -- (wcnfs)
DRV - [2016/07/16 12:25:05 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv)
DRV - [2016/07/16 12:25:01 | 000,173,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Ucx01000.sys -- (Ucx01000)
DRV - [2016/07/16 12:25:01 | 000,131,424 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\pacer.sys -- (Psched)
DRV - [2016/07/16 12:25:01 | 000,091,488 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\acpiex.sys -- (acpiex)
DRV - [2016/07/16 12:25:01 | 000,077,312 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\filecrypt.sys -- (FileCrypt)
DRV - [2016/07/16 12:25:01 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ipfltdrv.sys -- (IpFilterDriver)
DRV - [2016/07/16 12:25:01 | 000,062,976 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NetAdapterCx.sys -- (NetAdapterCx)
DRV - [2016/07/16 12:25:01 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2016/07/16 12:25:01 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Udecx.sys -- (UdeCx)
DRV - [2016/07/16 12:25:01 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\qwavedrv.sys -- (QWAVEdrv)
DRV - [2016/07/16 12:25:01 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vhf.sys -- (vhf)
DRV - [2016/07/16 12:25:01 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rasacd.sys -- (RasAcd)
DRV - [2016/07/16 12:24:57 | 000,430,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\USBHUB3.SYS -- (USBHUB3)
DRV - [2016/07/16 12:24:57 | 000,370,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbhub.sys -- (usbhub)
DRV - [2016/07/16 12:24:57 | 000,289,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\USBXHCI.SYS -- (USBXHCI)
DRV - [2016/07/16 12:24:57 | 000,126,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbccgp.sys -- (usbccgp)
DRV - [2016/07/16 12:24:57 | 000,108,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBSTOR.SYS -- (USBSTOR)
DRV - [2016/07/16 12:24:57 | 000,107,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV - [2016/07/16 12:24:57 | 000,091,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidbth.sys -- (HidBth)
DRV - [2016/07/16 12:24:57 | 000,090,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\i8042prt.sys -- (i8042prt)
DRV - [2016/07/16 12:24:57 | 000,076,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\sdstor.sys -- (sdstor)
DRV - [2016/07/16 12:24:57 | 000,075,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UfxChipidea.sys -- (UfxChipidea)
DRV - [2016/07/16 12:24:57 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbehci.sys -- (usbehci)
DRV - [2016/07/16 12:24:57 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WINUSB)
DRV - [2016/07/16 12:24:57 | 000,066,560 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\iai2c.sys -- (iai2c)
DRV - [2016/07/16 12:24:57 | 000,047,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbdclass.sys -- (kbdclass)
DRV - [2016/07/16 12:24:57 | 000,044,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mouclass.sys -- (mouclass)
DRV - [2016/07/16 12:24:57 | 000,039,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV - [2016/07/16 12:24:57 | 000,038,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidinterrupt.sys -- (hidinterrupt)
DRV - [2016/07/16 12:24:57 | 000,037,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hidi2c.sys -- (hidi2c)
DRV - [2016/07/16 12:24:57 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UcmUcsi.sys -- (UcmUcsi)
DRV - [2016/07/16 12:24:57 | 000,027,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\buttonconverter.sys -- (buttonconverter)
DRV - [2016/07/16 12:24:57 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2016/07/16 12:24:57 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbuhci.sys -- (usbuhci)
DRV - [2016/07/16 12:24:57 | 000,025,600 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\iagpio.sys -- (iagpio)
DRV - [2016/07/16 12:24:57 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mouhid.sys -- (mouhid)
DRV - [2016/07/16 12:24:57 | 000,022,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\urschipidea.sys -- (UrsChipidea)
DRV - [2016/07/16 12:24:57 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbohci.sys -- (usbohci)
DRV - [2016/07/16 12:24:57 | 000,021,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\urssynopsys.sys -- (UrsSynopsys)
DRV - [2016/07/16 12:24:57 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sermouse.sys -- (sermouse)
DRV - [2016/07/16 12:24:57 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\npsvctrig.sys -- (npsvctrig)
DRV - [2016/07/16 12:24:57 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\genericusbfn.sys -- (genericusbfn)
DRV - [2016/07/16 12:24:57 | 000,017,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kdnic.sys -- (kdnic)
DRV - [2016/07/16 12:24:57 | 000,016,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\swenum.sys -- (swenum)
DRV - [2016/07/16 12:24:57 | 000,015,384 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV - [2016/07/16 12:24:57 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\umpass.sys -- (UmPass)
DRV - [2016/07/16 12:24:55 | 000,276,832 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV - [2016/07/16 12:24:55 | 000,149,856 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2016/07/16 12:24:55 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\intelppm.sys -- (intelppm)
DRV - [2016/07/16 12:24:55 | 000,108,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdk8.sys -- (AmdK8)
DRV - [2016/07/16 12:24:55 | 000,105,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\viac7.sys -- (ViaC7)
DRV - [2016/07/16 12:24:55 | 000,105,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdppm.sys -- (AmdPPM)
DRV - [2016/07/16 12:24:55 | 000,105,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\processr.sys -- (Processor)
DRV - [2016/07/16 12:24:55 | 000,085,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\disk.sys -- (disk)
DRV - [2016/07/16 12:24:55 | 000,081,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\parport.sys -- (Parport)
DRV - [2016/07/16 12:24:55 | 000,077,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2016/07/16 12:24:55 | 000,066,912 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\stornvme.sys -- (stornvme)
DRV - [2016/07/16 12:24:55 | 000,064,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volmgr.sys -- (volmgr)
DRV - [2016/07/16 12:24:55 | 000,059,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\uaspstor.sys -- (UASPStor)
DRV - [2016/07/16 12:24:55 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser.sys -- (usbser)
DRV - [2016/07/16 12:24:55 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\umbus.sys -- (umbus)
DRV - [2016/07/16 12:24:55 | 000,048,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vdrvroot.sys -- (vdrvroot)
DRV - [2016/07/16 12:24:55 | 000,035,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\mssmbios.sys -- (mssmbios)
DRV - [2016/07/16 12:24:55 | 000,026,976 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\stexstor.sys -- (stexstor)
DRV - [2016/07/16 12:24:55 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\storufs.sys -- (storufs)
DRV - [2016/07/16 12:24:55 | 000,023,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\uefi.sys -- (UEFI)
DRV - [2016/07/16 12:24:55 | 000,023,392 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\atapi.sys -- (atapi)
DRV - [2016/07/16 12:24:55 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CmBatt.sys -- (CmBatt)
DRV - [2016/07/16 12:24:55 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serenum.sys -- (Serenum)
DRV - [2016/07/16 12:24:55 | 000,017,760 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\intelide.sys -- (intelide)
DRV - [2016/07/16 12:24:55 | 000,014,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volume.sys -- (volume)
DRV - [2016/07/16 12:24:55 | 000,014,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\pciide.sys -- (pciide)
DRV - [2016/07/16 12:24:55 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\acpitime.sys -- (acpitime)
DRV - [2016/07/16 12:24:55 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\parvdm.sys -- (Parvdm)
DRV - [2016/07/16 12:24:55 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\acpipagr.sys -- (acpipagr)
DRV - [2016/07/16 12:24:54 | 001,038,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\adp80xx.sys -- (ADP80XX)
DRV - [2016/07/16 12:24:54 | 000,524,640 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\iaStorAV.sys -- (iaStorAV)
DRV - [2016/07/16 12:24:54 | 000,464,736 | ---- | M] (LSI Corporation, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\megasr.sys -- (megasr)
DRV - [2016/07/16 12:24:54 | 000,333,664 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\iaStorV.sys -- (iaStorV)
DRV - [2016/07/16 12:24:54 | 000,215,392 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\amdsbs.sys -- (amdsbs)
DRV - [2016/07/16 12:24:54 | 000,172,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\1394ohci.sys -- (1394ohci)
DRV - [2016/07/16 12:24:54 | 000,142,176 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\nvstor.sys -- (nvstor)
DRV - [2016/07/16 12:24:54 | 000,130,560 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\cdrom.sys -- (cdrom)
DRV - [2016/07/16 12:24:54 | 000,119,136 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\nvraid.sys -- (nvraid)
DRV - [2016/07/16 12:24:54 | 000,116,576 | ---- | M] (PMC-Sierra, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\arcsas.sys -- (arcsas)
DRV - [2016/07/16 12:24:54 | 000,094,048 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2016/07/16 12:24:54 | 000,090,976 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sbp2port.sys -- (sbp2port)
DRV - [2016/07/16 12:24:54 | 000,089,952 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV - [2016/07/16 12:24:54 | 000,085,856 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\3ware.sys -- (3ware)
DRV - [2016/07/16 12:24:54 | 000,085,856 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV - [2016/07/16 12:24:54 | 000,079,200 | ---- | M] (Silicon Integrated Systems) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2016/07/16 12:24:54 | 000,075,104 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\amdsata.sys -- (amdsata)
DRV - [2016/07/16 12:24:54 | 000,069,472 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\lsi_sss.sys -- (LSI_SSS)
DRV - [2016/07/16 12:24:54 | 000,058,208 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\mvumis.sys -- (mvumis)
DRV - [2016/07/16 12:24:54 | 000,056,672 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\HpSAMD.sys -- (HpSAMD)
DRV - [2016/07/16 12:24:54 | 000,054,624 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\percsas3i.sys -- (percsas3i)
DRV - [2016/07/16 12:24:54 | 000,052,064 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\megasas.sys -- (megasas)
DRV - [2016/07/16 12:24:54 | 000,051,552 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\percsas2i.sys -- (percsas2i)
DRV - [2016/07/16 12:24:54 | 000,048,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\isapnp.sys -- (isapnp)
DRV - [2016/07/16 12:24:54 | 000,041,312 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2016/07/16 12:24:54 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidbatt.sys -- (HidBatt)
DRV - [2016/07/16 12:24:54 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\fdc.sys -- (fdc)
DRV - [2016/07/16 12:24:54 | 000,022,880 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\amdxata.sys -- (amdxata)
DRV - [2016/07/16 12:24:54 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wacompen.sys -- (WacomPen)
DRV - [2016/07/16 12:24:54 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\flpydisk.sys -- (flpydisk)
DRV - [2016/07/16 12:24:54 | 000,016,224 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\msisadrv.sys -- (msisadrv)
DRV - [2016/07/16 12:24:54 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sfloppy.sys -- (sfloppy)
DRV - [2016/07/16 12:24:54 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AcpiDev.sys -- (AcpiDev)
DRV - [2016/07/16 12:24:54 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wmiacpi.sys -- (WmiAcpi)
DRV - [2016/07/16 12:24:54 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MTConfig.sys -- (MTConfig)
DRV - [2016/07/16 12:24:54 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\errdev.sys -- (ErrDev)
DRV - [2016/07/16 12:24:54 | 000,008,192 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bcmfn2.sys -- (bcmfn2)
DRV - [2016/07/16 12:24:54 | 000,008,192 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bcmfn.sys -- (bcmfn)
DRV - [2016/07/16 12:24:53 | 004,304,384 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rtwlans.sys -- (RtlWlans)
DRV - [2016/07/16 12:24:53 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2016/07/16 12:24:53 | 000,042,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\intelpep.sys -- (intelpep)
DRV - [2016/07/16 12:24:53 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\monitor.sys -- (monitor)
DRV - [2016/07/16 12:24:53 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV - [2016/07/16 12:24:53 | 000,014,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\drmkaud.sys -- (drmkaud)
DRV - [2016/07/16 12:24:52 | 000,089,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbcir.sys -- (usbcir)
DRV - [2016/07/16 12:24:52 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bthhfenum.sys -- (BthHFEnum)
DRV - [2016/07/16 12:24:52 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bthmodem.sys -- (BTHMODEM)
DRV - [2016/07/16 12:24:52 | 000,039,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\circlass.sys -- (circlass)
DRV - [2016/07/16 12:24:52 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidir.sys -- (HidIr)
DRV - [2016/07/16 12:24:52 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV - [2016/07/16 12:24:52 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_x86_ed148199964e21c5\CompositeBus.sys -- (CompositeBus)
DRV - [2016/07/16 12:24:52 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BthhfHid.sys -- (bthhfhid)
DRV - [2016/07/16 12:24:52 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbprint.sys -- (usbprint)
DRV - [2016/07/16 12:24:52 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDScan.sys -- (WSDScan)
DRV - [2016/07/16 12:24:51 | 000,098,656 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\pcmcia.sys -- (pcmcia)
DRV - [2016/07/16 12:24:51 | 000,083,296 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2016/07/16 12:24:51 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV - [2016/07/16 12:24:51 | 000,039,776 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2016/07/16 12:24:51 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2016/07/16 12:24:51 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2016/07/16 12:24:51 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2016/07/16 12:24:51 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hyperkbd.sys -- (hyperkbd)
DRV - [2016/07/16 12:24:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmgencounter.sys -- (gencounter)
DRV - [2016/07/16 12:24:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\acpipmi.sys -- (AcpiPmi)
DRV - [2016/07/16 12:24:51 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmgid.sys -- (vmgid)
DRV - [2016/07/16 12:24:51 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2016/05/03 23:26:06 | 003,048,928 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2015/12/01 23:46:03 | 000,044,016 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV - [2015/12/01 23:46:03 | 000,035,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iwdbus.sys -- (iwdbus)
DRV - [2014/08/14 13:33:52 | 000,462,336 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\camera.sys -- (camera)
DRV - [2014/08/14 13:33:14 | 000,049,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ov2722.sys -- (ov2722)
DRV - [2014/07/11 09:28:26 | 000,507,608 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtkUart.sys -- (RtkUart)
DRV - [2014/05/12 13:13:00 | 000,174,808 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rtii2sac.sys -- (rtii2sac)
DRV - [2014/05/08 12:14:40 | 000,182,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DptfManager.sys -- (DptfManager)
DRV - [2014/05/08 12:14:34 | 000,080,824 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DptfDevProc.sys -- (DptfDevProc)
DRV - [2014/05/08 12:14:30 | 000,025,528 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DptfDevPower.sys -- (DptfDevDBPT)
DRV - [2014/05/08 12:14:26 | 000,036,280 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DptfDevGen.sys -- (DptfDevGen)
DRV - [2014/05/08 12:14:24 | 000,044,472 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\DptfDevAmbient.sys -- (DptfDevAmbient)
DRV - [2014/05/08 12:14:24 | 000,028,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DptfDevDisplay.sys -- (DptfDevDisplay)
DRV - [2014/05/06 00:04:50 | 000,023,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iaiogpioe.sys -- (GPIO)
DRV - [2014/04/04 04:49:34 | 000,066,408 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2014/03/22 17:10:16 | 000,016,896 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iaiogpiovirtual.sys -- (GpioVirtual)
DRV - [2014/03/22 10:10:16 | 000,087,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iaiouart.sys -- (iaiouart)
DRV - [2014/03/22 10:10:16 | 000,058,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iaioi2ce.sys -- (iaioi2c)
DRV - [2014/03/21 19:10:16 | 000,257,024 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\isstrtc.sys -- (IntelSST)
DRV - [2014/03/16 20:08:12 | 000,048,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PMIC.sys -- (PMIC)
DRV - [2014/03/16 13:09:30 | 000,021,968 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\MBI.sys -- (MBI)
DRV - [2014/02/20 06:22:02 | 000,036,080 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynRMIHID.sys -- (SynRMIHID)
DRV - [2014/01/10 15:54:42 | 000,075,792 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\TXEI.sys -- (TXEI)
DRV - [2013/09/07 22:25:18 | 000,016,488 | ---- | M] (Capella Microsystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPLMACPI.sys -- (CPLMACPI)
DRV - [2013/08/13 03:25:32 | 000,296,664 | ---- | M] (Broadcom Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bcmdhd63.sys -- (BCMSDH43XX)


[color=#E56717]========== Standard Registry (All) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}: "URL" = http://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 9E 64 02 E7 65 BD D2 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 22 00 00 00 C5 D5 11 34 1C 05 7C D2 5D 35 A3 CD ED CE C8 B1 2A 7A 5F 65 16 68 52 77 36 84 8D D1 D1 F5 E2 D1 E7 CE 02 00 00 00 0E 00 00 00 36 45 6F 39 45 76 37 30 51 5A 77 25 33 64 [binary data]
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
IE - HKCU\..\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}: "URL" = http://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.countryCode: "RE"
FF - prefs.js..browser.search.region: "RE"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:53.0.2
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_25_0_0_171.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.121.2: C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2: C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: C:\Program Files\McAfee\msc\npMcSnFFPl.dll File not found
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: D:\logiciel\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 53.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 53.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK

[2017/04/25 05:41:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\odz-plus.com\AppData\Roaming\mozilla\Extensions
[2017/04/25 21:06:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\odz-plus.com\AppData\Roaming\mozilla\Firefox\Profiles\kbtmmiw2.default\extensions
[2017/05/13 16:39:21 | 000,044,954 | ---- | M] () (No name found) -- C:\Users\odz-plus.com\AppData\Roaming\mozilla\firefox\profiles\kbtmmiw2.default\features\{9d5fb80d-2aa2-43bf-8bdb-d6350c899aae}\shield-recipe-client@mozilla.org.xpi
[2017/05/12 12:30:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\browser\extensions

[color=#E56717]========== Chrome ==========[/color]

CHR - homepage: http://www.google.com/
CHR - homepage: 7EAC86BE937D997B1DC575EFBFE095AEC90C3743952500AE7CF5A3AB8DD0C303

O1 HOSTS File: ([2013/08/22 10:13:55 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [DptfPolicyLpmServiceHelper] C:\Windows\System32\DptfPolicyLpmServiceHelper.exe (Intel Corporation)
O4 - HKLM..\Run: [RtkNGUI] C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Oracle Corporation)
O4 - HKLM..\Run: [WindowsDefender] C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Corporation)
O4 - HKCU..\Run: [OneDrive] C:\Users\odz-plus.com\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - Startup: C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk = C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsHistory = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{a27d1f41-b194-4583-ab5f-709868ba8e1a}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{b3c49cfe-544a-4379-91ff-a819b8f5ad78}: DhcpNameServer = 192.168.176.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-minsb.16 {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-minsb-roaming.16 {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\osf.16 {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\osf-roaming.16 {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\WINDOWS\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29 - HKLM SecurityProviders - (credssp.dll) - C:\WINDOWS\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013/08/22 12:16:34 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {71A5A636-652F-3BE0-BC14-02545E9F5EC7} - .NET Framework
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files\Google\Chrome\Application\58.0.3029.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\inf\unregmp2.exe /ShowWMP

NetSvcs: shpamsvc - C:\Windows\System32\Windows.SharedPC.AccountManager.dll (Microsoft Corporation)
NetSvcs: DcpSvc - C:\Windows\System32\dcpsvc.dll (Microsoft Corporation)
NetSvcs: RetailDemo - C:\Windows\System32\RDXService.dll (Microsoft Corporation)
NetSvcs: dmwappushservice - C:\Windows\System32\dmwappushsvc.dll (Microsoft Corporation)
NetSvcs: DmEnrollmentSvc - C:\Windows\System32\Windows.Internal.Management.dll (Microsoft Corporation)
NetSvcs: DsmSvc - C:\Windows\System32\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs: NcaSvc - C:\Windows\System32\NcaSvc.dll (Microsoft Corporation)
NetSvcs: XboxNetApiSvc - C:\Windows\System32\XboxNetApiSvc.dll (Microsoft Corporation)
NetSvcs: lfsvc - C:\Windows\System32\lfsvc.dll (Microsoft Corporation)
NetSvcs: WpnService - C:\Windows\System32\wpnservice.dll (Microsoft Corporation)
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\WINDOWS\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
NetSvcs: XblGameSave - C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NetSvcs: UsoSvc - C:\Windows\System32\usocore.dll (Microsoft Corporation)
NetSvcs: dosvc - C:\Windows\System32\dosvc.dll (Microsoft Corporation)
NetSvcs: XblAuthManager - C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NetSvcs: UserManager - C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NetSvcs: NetSetupSvc - C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)
NetSvcs: wlidsvc - C:\Windows\System32\wlidsvc.dll (Microsoft Corporation)
NetSvcs: wisvc - C:\Windows\System32\FlightSettings.dll (Microsoft Corporation)

SafeBootMin: Ahcache.sys - C:\Windows\System32\drivers\ahcache.sys (Microsoft Corporation)
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: BasicDisplay.sys - C:\Windows\System32\drivers\BasicDisplay.sys (Microsoft Corporation)
SafeBootMin: BasicRender.sys - C:\Windows\System32\drivers\BasicRender.sys (Microsoft Corporation)
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: BrokerInfrastructure - C:\Windows\System32\bisrv.dll (Microsoft Corporation)
SafeBootMin: CoreMessagingRegistrar - C:\Windows\System32\CoreMessaging.dll (Microsoft Corporation)
SafeBootMin: EFS - C:\Windows\System32\efssvc.dll (Microsoft Corporation)
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: iai2c.sys - C:\Windows\System32\drivers\iai2c.sys (Intel(R) Corporation)
SafeBootMin: iaioi2c.sys - C:\Windows\System32\drivers\iaioi2ce.sys (Intel Corporation)
SafeBootMin: iaioi2ce.sys - Driver
SafeBootMin: KeyIso - C:\Windows\System32\keyiso.dll (Microsoft Corporation)
SafeBootMin: LSM - C:\Windows\System32\lsm.dll (Microsoft Corporation)
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: SpbCx.sys - C:\Windows\System32\drivers\SpbCx.sys (Microsoft Corporation)
SafeBootMin: StateRepository - C:\Windows\System32\Windows.StateRepository.dll (Microsoft Corporation)
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: SystemEventsBroker - C:\Windows\System32\SystemEventsBrokerServer.dll (Microsoft Corporation)
SafeBootMin: TBS - Service
SafeBootMin: TileDataModelSvc - C:\Windows\System32\tileobjserver.dll (Microsoft Corporation)
SafeBootMin: uefi.sys - C:\Windows\System32\drivers\uefi.sys (Microsoft Corporation)
SafeBootMin: UserManager - C:\Windows\System32\usermgr.dll (Microsoft Corporation)
SafeBootMin: vmms - Service
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices
SafeBootMin: {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware

SafeBootNet: Ahcache.sys - C:\Windows\System32\drivers\ahcache.sys (Microsoft Corporation)
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: BasicDisplay.sys - C:\Windows\System32\drivers\BasicDisplay.sys (Microsoft Corporation)
SafeBootNet: BasicRender.sys - C:\Windows\System32\drivers\BasicRender.sys (Microsoft Corporation)
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: BrokerInfrastructure - C:\Windows\System32\bisrv.dll (Microsoft Corporation)
SafeBootNet: CoreMessagingRegistrar - C:\Windows\System32\CoreMessaging.dll (Microsoft Corporation)
SafeBootNet: EFS - C:\Windows\System32\efssvc.dll (Microsoft Corporation)
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: KeyIso - C:\Windows\System32\keyiso.dll (Microsoft Corporation)
SafeBootNet: LSM - C:\Windows\System32\lsm.dll (Microsoft Corporation)
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: netprofm - C:\Windows\System32\netprofmsvc.dll (Microsoft Corporation)
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdpencdd.sys - Driver
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: SmartcardSimulator - Driver
SafeBootNet: SpbCx.sys - C:\Windows\System32\drivers\SpbCx.sys (Microsoft Corporation)
SafeBootNet: StateRepository - C:\Windows\System32\Windows.StateRepository.dll (Microsoft Corporation)
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: SystemEventsBroker - C:\Windows\System32\SystemEventsBrokerServer.dll (Microsoft Corporation)
SafeBootNet: TBS - Service
SafeBootNet: TDI - Driver Group
SafeBootNet: TileDataModelSvc - C:\Windows\System32\tileobjserver.dll (Microsoft Corporation)
SafeBootNet: uefi.sys - C:\Windows\System32\drivers\uefi.sys (Microsoft Corporation)
SafeBootNet: UserManager - C:\Windows\System32\usermgr.dll (Microsoft Corporation)
SafeBootNet: VaultSvc - C:\Windows\System32\vaultsvc.dll (Microsoft Corporation)
SafeBootNet: VirtualSmartcardReader - Driver
SafeBootNet: vmms - Service
SafeBootNet: Wcmsvc - C:\Windows\System32\wcmsvc.dll (Microsoft Corporation)
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {9DA2B80F-F89F-4A49-A5C2-511B085B9E8A} - Enhanced Storage Devices
SafeBootNet: {A0A588A4-C46F-4B37-B7EA-C82FE89870C6} - SDA Standard Compliant SD Host Controller
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: {F2E7DD72-6468-4E36-B6F1-6488F42C1B52} - Firmware

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2017/05/20 19:26:25 | 000,000,000 | -H-D | C] -- C:\OneDriveTemp
[2017/05/19 17:50:44 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\speech
[2017/05/19 15:47:12 | 000,000,000 | ---D | C] -- C:\Program Files\OneNote
[2017/05/16 12:43:03 | 000,000,000 | ---D | C] -- C:\QuickDiag
[2017/05/13 17:20:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2017/05/12 12:30:23 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2017/05/12 12:30:13 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2017/05/11 19:35:10 | 006,665,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Protection.PlayReady.dll
[2017/05/11 19:35:08 | 000,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2017/05/11 19:35:08 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UIRibbonRes.dll
[2017/05/11 19:35:08 | 000,340,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll
[2017/05/11 19:35:08 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2017/05/11 19:35:07 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieproxy.dll
[2017/05/11 19:35:05 | 002,027,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl
[2017/05/11 19:35:05 | 001,247,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Globalization.dll
[2017/05/11 19:35:00 | 001,235,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\win32kbase.sys
[2017/05/11 19:35:00 | 000,080,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpudd.dll
[2017/05/11 19:34:58 | 002,994,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\win32kfull.sys
[2017/05/11 19:34:57 | 005,996,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntoskrnl.exe
[2017/05/11 19:34:57 | 000,342,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dxgmms1.sys
[2017/05/11 19:34:54 | 000,783,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TSWorkspace.dll
[2017/05/11 19:34:54 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcconf.dll
[2017/05/11 19:34:53 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ExSMime.dll
[2017/05/11 19:34:48 | 005,685,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Data.Pdf.dll
[2017/05/11 19:34:48 | 001,488,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\diagtrack.dll
[2017/05/11 19:34:46 | 006,042,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Chakra.dll
[2017/05/11 19:34:44 | 000,846,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinTypes.dll
[2017/05/11 19:34:43 | 005,722,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windows.storage.dll
[2017/05/11 19:34:42 | 001,232,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Maps.dll
[2017/05/11 19:34:41 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Phone.dll
[2017/05/11 19:34:40 | 013,873,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.dll
[2017/05/11 19:34:37 | 003,733,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_47.dll
[2017/05/11 19:34:36 | 001,277,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfasfsrcsnk.dll
[2017/05/11 19:34:36 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MCRecvSrc.dll
[2017/05/11 19:34:35 | 001,851,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmp4srcsnk.dll
[2017/05/11 19:34:35 | 001,360,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfnetsrc.dll
[2017/05/11 19:34:35 | 001,202,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmpeg2srcsnk.dll
[2017/05/11 19:34:34 | 004,023,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfcore.dll
[2017/05/11 19:34:34 | 000,981,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfnetcore.dll
[2017/05/11 19:34:34 | 000,484,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AudioSes.dll
[2017/05/11 19:34:30 | 000,675,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.dll
[2017/05/11 19:34:30 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Scanners.dll
[2017/05/11 19:34:30 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Radios.dll
[2017/05/11 19:34:30 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.StateRepositoryClient.dll
[2017/05/11 19:34:29 | 001,077,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Editing.dll
[2017/05/11 19:34:29 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.dll
[2017/05/11 19:34:29 | 000,598,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Web.dll
[2017/05/11 19:34:28 | 001,013,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Web.Http.dll
[2017/05/11 19:34:28 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.dll
[2017/05/11 19:34:28 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToManager.dll
[2017/05/11 19:34:27 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CryptoWinRT.dll
[2017/05/11 19:34:26 | 004,614,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.dll
[2017/05/11 19:34:24 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_Flights.dll
[2017/05/11 19:34:23 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RDXTaskFactory.dll
[2017/05/11 19:34:23 | 000,237,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SyncSettings.dll
[2017/05/11 19:34:23 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\InstallAgentUserBroker.exe
[2017/05/11 19:34:23 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDeviceRegistration.dll
[2017/05/11 19:34:23 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Devices.dll
[2017/05/11 19:34:22 | 001,431,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Store.dll
[2017/05/11 19:34:22 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToDevice.dll
[2017/05/11 19:34:22 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Family.SyncEngine.dll
[2017/05/11 19:34:22 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\InstallAgent.exe
[2017/05/11 19:34:21 | 000,691,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TokenBroker.dll
[2017/05/11 19:34:21 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Usb.dll
[2017/05/11 19:34:21 | 000,262,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Picker.dll
[2017/05/11 19:34:21 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dialclient.dll
[2017/05/11 19:34:21 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Lights.dll
[2017/05/11 19:34:20 | 001,004,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Input.Inking.dll
[2017/05/11 19:34:20 | 000,557,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\StoreAgent.dll
[2017/05/11 19:34:20 | 000,448,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ContentDeliveryManager.Utilities.dll
[2017/05/11 19:34:20 | 000,431,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\efswrt.dll
[2017/05/11 19:34:20 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.WiFiDirect.dll
[2017/05/11 19:34:20 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DisplayManager.dll
[2017/05/11 19:34:20 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinRtTracing.dll
[2017/05/11 19:34:19 | 000,795,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MiracastReceiver.dll
[2017/05/11 19:34:19 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.PointOfService.dll
[2017/05/11 19:34:19 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Security.Authentication.Web.Core.dll
[2017/05/11 19:34:19 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.AllJoyn.dll
[2017/05/11 19:34:19 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Wallet.dll
[2017/05/11 19:34:19 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataTimeUtil.dll
[2017/05/11 19:34:18 | 001,534,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Graphics.Printing.3D.dll
[2017/05/11 19:34:18 | 000,747,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Ocr.dll
[2017/05/11 19:34:18 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.AccountsControl.dll
[2017/05/11 19:34:18 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Security.Authentication.Identity.Provider.dll
[2017/05/11 19:34:18 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.WiFi.dll
[2017/05/11 19:34:17 | 000,901,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Bluetooth.dll
[2017/05/11 19:34:17 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Gaming.Input.dll
[2017/05/11 19:34:17 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Internal.Management.dll
[2017/05/11 19:34:17 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.HumanInterfaceDevice.dll
[2017/05/11 19:34:16 | 001,255,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AzureSettingSyncProvider.dll
[2017/05/11 19:34:16 | 001,109,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SharedStartModel.dll
[2017/05/11 19:34:16 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dlnashext.dll
[2017/05/11 19:34:16 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AboveLockAppHost.dll
[2017/05/11 19:34:15 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NaturalLanguage6.dll
[2017/05/11 19:34:15 | 000,500,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Graphics.Printing.dll
[2017/05/11 19:34:15 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppointmentActivation.dll
[2017/05/11 19:34:14 | 000,846,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WebcamUi.dll
[2017/05/11 19:34:14 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.dll
[2017/05/11 19:34:14 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\deviceaccess.dll
[2017/05/11 19:34:14 | 000,263,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Storage.ApplicationData.dll
[2017/05/11 19:34:13 | 001,656,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Perception.dll
[2017/05/11 19:34:13 | 000,517,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FlightSettings.dll
[2017/05/11 19:34:11 | 003,774,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_nt.dll
[2017/05/11 19:34:10 | 000,975,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twinapi.appcore.dll
[2017/05/11 19:34:10 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ShareHost.dll
[2017/05/11 19:34:09 | 007,626,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twinui.dll
[2017/05/11 19:34:08 | 001,221,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Audio.dll
[2017/05/11 19:34:08 | 000,654,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MbaeApiPublic.dll
[2017/05/11 19:34:08 | 000,589,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Sensors.dll
[2017/05/11 19:34:06 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\apprepapi.dll
[2017/05/11 19:34:05 | 003,596,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcorets.dll
[2017/05/11 19:34:05 | 001,700,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smartscreen.exe
[2017/05/11 19:34:05 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\apprepsync.dll
[2017/05/11 19:34:03 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuuhext.dll
[2017/05/11 19:33:56 | 002,646,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CertEnroll.dll
[2017/05/11 19:33:50 | 001,284,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2017/05/11 19:33:50 | 000,330,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aadcloudap.dll
[2017/05/11 19:33:49 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WpAXHolder.dll
[2017/05/11 19:33:48 | 018,365,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\edgehtml.dll
[2017/05/11 19:33:45 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dll
[2017/05/11 19:33:44 | 000,583,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CoreMessaging.dll
[2017/05/11 19:33:44 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll
[2017/05/11 19:33:27 | 000,890,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winresume.efi
[2017/05/11 19:33:27 | 000,886,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aadtb.dll
[2017/05/11 19:33:26 | 003,664,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript9.dll
[2017/05/11 19:33:25 | 001,384,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sppobjs.dll
[2017/05/11 19:33:21 | 001,411,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gdi32full.dll
[2017/05/11 19:33:20 | 002,749,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mispace.dll
[2017/05/11 19:33:17 | 004,312,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2017/05/11 19:33:17 | 002,154,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storagewmi.dll
[2017/05/11 19:33:16 | 002,168,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\combase.dll
[2017/05/11 19:33:16 | 000,861,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LicenseManager.dll
[2017/05/11 19:33:14 | 000,661,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WpcWebFilter.dll
[2017/05/11 19:33:13 | 001,987,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll
[2017/05/11 19:33:12 | 001,993,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dwmcore.dll
[2017/05/11 19:33:11 | 002,747,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcore.dll
[2017/05/11 19:33:09 | 002,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DWrite.dll
[2017/05/11 19:33:09 | 001,584,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlidsvc.dll
[2017/05/11 19:33:09 | 001,323,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_fs.dll
[2017/05/11 19:33:09 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\updatepolicy.dll
[2017/05/11 19:33:08 | 001,137,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_health.dll
[2017/05/11 19:33:08 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usocore.dll
[2017/05/11 19:33:06 | 001,136,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpncore.dll
[2017/05/11 19:33:06 | 000,601,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetSetupEngine.dll
[2017/05/11 19:33:05 | 000,822,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usermgr.dll
[2017/05/11 19:33:05 | 000,754,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ngcsvc.dll
[2017/05/11 19:33:05 | 000,525,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LogonController.dll
[2017/05/11 19:33:05 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserMgrProxy.dll
[2017/05/11 19:33:04 | 000,781,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WWAHost.exe
[2017/05/11 19:33:04 | 000,719,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_sr.dll
[2017/05/11 19:33:04 | 000,685,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Internal.Shell.Broker.dll
[2017/05/11 19:33:03 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mprddm.dll
[2017/05/11 19:33:03 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataAccountApis.dll
[2017/05/11 19:33:03 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.LockScreen.dll
[2017/05/11 19:33:03 | 000,198,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudExperienceHost.dll
[2017/05/11 19:33:02 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PrintDialogs3D.dll
[2017/05/11 19:33:00 | 000,798,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\authui.dll
[2017/05/11 19:33:00 | 000,493,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingSyncHost.exe
[2017/05/11 19:33:00 | 000,458,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\spaceport.sys
[2017/05/11 19:33:00 | 000,352,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MMDevAPI.dll
[2017/05/11 19:32:59 | 001,774,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkMobileSettings.dll
[2017/05/11 19:32:59 | 000,277,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinSetupUI.dll
[2017/05/11 19:32:58 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NgcCtnrSvc.dll
[2017/05/11 19:32:57 | 001,413,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\OpcServices.dll
[2017/05/11 19:32:57 | 000,784,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winresume.exe
[2017/05/11 19:32:57 | 000,623,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bisrv.dll
[2017/05/11 19:32:55 | 000,582,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SpaceControl.dll
[2017/05/11 19:32:54 | 001,228,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usercpl.dll
[2017/05/11 19:32:52 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserbroker.dll
[2017/05/11 19:32:51 | 000,361,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsmf.dll
[2017/05/11 19:32:50 | 000,857,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EmailApis.dll
[2017/05/11 19:32:50 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Enumeration.dll
[2017/05/11 19:32:50 | 000,300,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AudioEndpointBuilder.dll
[2017/05/11 19:32:50 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SpaceAgent.exe
[2017/05/11 19:32:47 | 001,378,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXDeploymentExtensions.onecore.dll
[2017/05/11 19:32:47 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ubpm.dll
[2017/05/11 19:32:46 | 001,631,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Resources.dll
[2017/05/11 19:32:46 | 000,025,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browser_broker.exe
[2017/05/11 19:32:45 | 000,116,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudExperienceHostCommon.dll
[2017/05/11 19:32:43 | 000,294,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ConhostV2.dll
[2017/05/11 19:32:42 | 000,965,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ReAgent.dll
[2017/05/11 19:32:42 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spaceman.exe
[2017/05/11 19:32:41 | 000,819,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppContracts.dll
[2017/05/11 19:32:41 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fvewiz.dll
[2017/05/11 19:32:41 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\adsnt.dll
[2017/05/11 19:32:41 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dafBth.dll
[2017/05/11 19:32:40 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DevicesFlowBroker.dll
[2017/05/11 19:32:40 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BluetoothApis.dll
[2017/05/11 19:32:39 | 000,258,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\updatehandlers.dll
[2017/05/11 19:32:39 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bthprops.cpl
[2017/05/11 19:32:29 | 000,525,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PrintDialogs.dll
[2017/05/11 19:32:28 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RTMediaFrame.dll
[2017/05/11 19:32:28 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LocationApi.dll
[2017/05/11 19:32:28 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\credprovhost.dll
[2017/05/11 19:32:28 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupugc.exe
[2017/05/11 19:32:28 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\virtdisk.dll
[2017/05/11 19:32:27 | 001,755,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DeviceFlows.DataModel.dll
[2017/05/11 19:32:27 | 001,220,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RecoveryDrive.exe
[2017/05/11 19:32:27 | 000,506,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DevicePairing.dll
[2017/05/11 19:32:27 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.UX.EapRequestHandler.dll
[2017/05/11 19:32:27 | 000,404,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsreg.dll
[2017/05/11 19:32:26 | 001,438,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ResetEngine.dll
[2017/05/11 19:32:26 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WwaApi.dll
[2017/05/11 19:32:26 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\umpoext.dll
[2017/05/11 19:32:26 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vwifimp.sys
[2017/05/11 19:32:25 | 000,822,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Chakradiag.dll
[2017/05/11 19:32:24 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript9diag.dll
[2017/05/11 19:32:24 | 000,433,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2.dll
[2017/05/11 19:32:24 | 000,368,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\puiobj.dll
[2017/05/11 19:32:24 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.BlockedShutdown.dll
[2017/05/11 19:32:24 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ReInfo.dll
[2017/05/11 19:32:24 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Family.Client.dll
[2017/05/11 19:32:24 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ConsentUX.dll
[2017/05/11 19:32:23 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettings.Handlers.dll
[2017/05/11 19:32:23 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rastlsext.dll
[2017/05/11 19:32:23 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shutdownux.dll
[2017/05/11 19:32:23 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storewuauth.dll
[2017/05/11 19:32:23 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Energy.dll
[2017/05/11 19:32:23 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CameraCaptureUI.dll
[2017/05/11 19:32:22 | 001,243,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.FaceAnalysis.dll
[2017/05/11 19:32:22 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToReceiver.dll
[2017/05/11 19:32:22 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll
[2017/05/11 19:32:22 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BthTelemetry.dll
[2017/05/11 19:32:22 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\appidcertstorecheck.exe
[2017/05/11 19:32:21 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Dxpserver.exe
[2017/05/11 19:32:21 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DeveloperOptionsSettingsHandlers.dll
[2017/05/11 19:32:21 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vaultcli.dll
[2017/05/02 18:09:31 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\MATERIEL INSTIT90
[2017/05/01 19:39:20 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Macromedia
[2017/04/28 18:20:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther
[2017/04/28 08:26:55 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\CEF
[2017/04/26 15:01:53 | 000,000,000 | ---D | C] -- D:\utillisateur\document\Modèles Office personnalisés
[2017/04/26 11:51:12 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\PackageStaging
[2017/04/26 11:34:32 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\PDFCreator
[2017/04/26 11:22:57 | 000,000,000 | ---D | C] -- C:\SAUVE S2
[2017/04/26 11:15:51 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\TeamViewer
[2017/04/26 11:13:55 | 000,000,000 | ---D | C] -- C:\Program Files\S2msi
[2017/04/25 22:03:37 | 000,000,000 | ---D | C] -- C:\sesam
[2017/04/25 22:01:03 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Soins 2000
[2017/04/25 22:00:59 | 000,559,840 | ---- | C] (LOGISURM) -- C:\WINDOWS\uninsts2.exe
[2017/04/25 22:00:43 | 000,221,184 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\stsw32.dll
[2017/04/25 22:00:42 | 000,532,480 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\srtw32.dll
[2017/04/25 22:00:42 | 000,372,736 | ---- | C] (GIE Sesam VITALE) -- C:\WINDOWS\SSVW32.DLL
[2017/04/25 22:00:42 | 000,368,640 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\sjsw32.dll
[2017/04/25 22:00:42 | 000,188,416 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\stsrw32.dll
[2017/04/25 22:00:42 | 000,184,320 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\stsmw32.dll
[2017/04/25 22:00:42 | 000,172,032 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\sts4w32.dll
[2017/04/25 22:00:42 | 000,122,880 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\sts8w32.dll
[2017/04/25 22:00:42 | 000,114,688 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\stsuw32.dll
[2017/04/25 22:00:42 | 000,103,936 | ---- | C] (GIE) -- C:\WINDOWS\sisw32.dll
[2017/04/25 22:00:42 | 000,086,016 | ---- | C] (GIE SESAM-VITALE) -- C:\WINDOWS\smcw32.dll
[2017/04/25 22:00:42 | 000,073,728 | ---- | C] (GIP-CPS) -- C:\WINDOWS\cptabw32.dll
[2017/04/25 22:00:42 | 000,061,440 | ---- | C] (GIP CPS) -- C:\WINDOWS\Sscasw32.dll
[2017/04/25 22:00:42 | 000,045,056 | ---- | C] (G.I.E. SESAM VITALE) -- C:\WINDOWS\sgdw32.dll
[2017/04/25 22:00:42 | 000,032,768 | ---- | C] (GIE SESAM VITALE) -- C:\WINDOWS\smsw32.dll
[2017/04/25 22:00:41 | 000,217,088 | ---- | C] (GIP CPS) -- C:\WINDOWS\cpsw32.dll
[2017/04/25 22:00:41 | 000,094,208 | ---- | C] (GIE) -- C:\WINDOWS\Galssw32.dll
[2017/04/25 22:00:41 | 000,090,112 | ---- | C] (GIE) -- C:\WINDOWS\Pssinw32.dll
[2017/04/25 22:00:41 | 000,051,808 | ---- | C] (ILEX) -- C:\WINDOWS\Galsvw32.exe
[2017/04/25 22:00:41 | 000,049,152 | ---- | C] (ILEX) -- C:\WINDOWS\Galinw32.dll
[2017/04/25 22:00:41 | 000,049,152 | ---- | C] (ILEX) -- C:\WINDOWS\Galclw32.dll
[2017/04/25 22:00:41 | 000,049,152 | ---- | C] (GIP-CPS) -- C:\WINDOWS\Cpdicw32.dll
[2017/04/25 22:00:41 | 000,030,720 | ---- | C] (GIP CPS) -- C:\WINDOWS\cpsvb432.dll
[2017/04/25 22:00:40 | 000,408,160 | ---- | C] (GIP CPS) -- C:\WINDOWS\cpgesw32.exe
[2017/04/25 22:00:40 | 000,368,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vbar332.dll
[2017/04/25 22:00:40 | 000,251,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msrd2x35.dll
[2017/04/25 22:00:39 | 001,039,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msjet35.dll
[2017/04/25 22:00:39 | 000,037,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msjint35.dll
[2017/04/25 22:00:39 | 000,024,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msjter35.dll
[2017/04/25 22:00:39 | 000,000,000 | ---D | C] -- C:\s2000
[2017/04/25 21:33:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016
[2017/04/25 21:25:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2017/04/25 21:25:22 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office 15
[2017/04/25 09:08:11 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2017/04/25 07:43:46 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\LibreOffice
[2017/04/25 07:41:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.2
[2017/04/25 07:40:14 | 000,000,000 | ---D | C] -- C:\Program Files\LibreOffice 5
[2017/04/25 06:23:31 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2017/04/25 06:20:23 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Google
[2017/04/25 06:20:07 | 000,000,000 | ---D | C] -- C:\ProgramData\PDF Architect 5
[2017/04/25 06:20:04 | 000,097,792 | ---- | C] (pdfforge GmbH) -- C:\WINDOWS\System32\pdfcmon.dll
[2017/04/25 06:19:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
[2017/04/25 06:17:39 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\vlc
[2017/04/25 06:15:52 | 000,430,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2017/04/25 06:04:20 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2017/04/25 06:02:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2017/04/25 06:02:43 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2017/04/25 06:02:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MRT
[2017/04/25 06:01:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2017/04/25 06:00:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2017/04/25 05:57:43 | 002,643,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tquery.dll
[2017/04/25 05:57:37 | 001,557,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmde.dll
[2017/04/25 05:57:36 | 003,520,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsrchvw.exe
[2017/04/25 05:57:35 | 001,362,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpmde.dll
[2017/04/25 05:57:34 | 001,252,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataService.dll
[2017/04/25 05:57:34 | 001,104,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SpeechPal.dll
[2017/04/25 05:57:33 | 000,869,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SecConfig.efi
[2017/04/25 05:57:29 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lsm.dll
[2017/04/25 05:57:26 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nshwfp.dll
[2017/04/25 05:57:26 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_Bluetooth.dll
[2017/04/25 05:57:26 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Adobe
[2017/04/25 05:57:23 | 000,834,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.Vpn.dll
[2017/04/25 05:57:23 | 000,519,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ngccredprov.dll
[2017/04/25 05:57:22 | 000,056,672 | ---- | C] (Avago Technologies) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys
[2017/04/25 05:57:21 | 000,714,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssvp.dll
[2017/04/25 05:57:21 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NgcCtnr.dll
[2017/04/25 05:57:21 | 000,289,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SensorService.dll
[2017/04/25 05:57:20 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\StorSvc.dll
[2017/04/25 05:57:20 | 000,291,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Search.ProtocolHandler.MAPI2.dll
[2017/04/25 05:57:20 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MusNotification.exe
[2017/04/25 05:57:18 | 000,392,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wwanconn.dll
[2017/04/25 05:57:17 | 000,449,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TpmCoreProvisioning.dll
[2017/04/25 05:57:16 | 000,175,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tpm.sys
[2017/04/25 05:57:15 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MusUpdateHandlers.dll
[2017/04/25 05:57:15 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PsmServiceExtHost.dll
[2017/04/25 05:57:13 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\xboxgip.sys
[2017/04/25 05:57:13 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinBioDataModel.dll
[2017/04/25 05:57:13 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\manage-bde.exe
[2017/04/25 05:57:13 | 000,111,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\storahci.sys
[2017/04/25 05:57:12 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppointmentApis.dll
[2017/04/25 05:57:12 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XblGameSaveExt.dll
[2017/04/25 05:57:11 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpencom.dll
[2017/04/25 05:57:11 | 000,154,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dumpsd.sys
[2017/04/25 05:57:11 | 000,117,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AuthHost.exe
[2017/04/25 05:57:10 | 000,711,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2017/04/25 05:57:10 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fveui.dll
[2017/04/25 05:57:10 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UIAnimation.dll
[2017/04/25 05:57:10 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PimIndexMaintenance.dll
[2017/04/25 05:57:10 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WSManHTTPConfig.exe
[2017/04/25 05:57:09 | 000,279,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bdeunlock.exe
[2017/04/25 05:57:09 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssph.dll
[2017/04/25 05:57:08 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VPNv2CSP.dll
[2017/04/25 05:57:01 | 000,101,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys
[2017/04/25 05:57:01 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\capimg.sys
[2017/04/25 05:57:00 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MusNotificationUx.exe
[2017/04/25 05:56:59 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidclass.sys
[2017/04/25 05:56:58 | 000,866,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Cred.dll
[2017/04/25 05:56:58 | 000,260,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Phoneutil.dll
[2017/04/25 05:56:57 | 000,567,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ChatApis.dll
[2017/04/25 05:56:57 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LicenseManagerSvc.dll
[2017/04/25 05:56:56 | 001,154,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Pimstore.dll
[2017/04/25 05:56:54 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fvecpl.dll
[2017/04/25 05:56:54 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptngc.dll
[2017/04/25 05:56:53 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettings.DeviceEncryptionHandlers.dll
[2017/04/25 05:56:53 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BitLockerDeviceEncryption.exe
[2017/04/25 05:56:52 | 001,293,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WMPDMC.exe
[2017/04/25 05:56:52 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fvenotify.exe
[2017/04/25 05:56:52 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\xinputhid.sys
[2017/04/25 05:56:51 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sharemediacpl.dll
[2017/04/25 05:56:50 | 000,292,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\FWPKCLNT.SYS
[2017/04/25 05:56:50 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssphtb.dll
[2017/04/25 05:56:50 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\musdialoghandlers.dll
[2017/04/25 05:56:49 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Store.TestingFramework.dll
[2017/04/25 05:56:46 | 006,534,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wwanmm.dll
[2017/04/25 05:56:41 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\paint.net
[2017/04/25 05:56:41 | 000,000,000 | ---D | C] -- C:\Program Files\paint.net
[2017/04/25 05:56:33 | 001,231,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wcnwiz.dll
[2017/04/25 05:56:33 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssitlb.dll
[2017/04/25 05:56:33 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\BasicRender.sys
[2017/04/25 05:56:32 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XblGameSave.dll
[2017/04/25 05:56:32 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bdeui.dll
[2017/04/25 05:56:31 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ContactApis.dll
[2017/04/25 05:56:31 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Gaming.UI.GameBar.dll
[2017/04/25 05:56:31 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\BasicDisplay.sys
[2017/04/25 05:56:31 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmintegrator.dll
[2017/04/25 05:56:30 | 000,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WsmWmiPl.dll
[2017/04/25 05:56:29 | 000,531,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iprtrmgr.dll
[2017/04/25 05:56:29 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wksprt.exe
[2017/04/25 05:56:29 | 000,315,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Gaming.XboxLive.Storage.dll
[2017/04/25 05:56:29 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RADCUI.dll
[2017/04/25 05:56:28 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Unistore.dll
[2017/04/25 05:56:28 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VEStoreEventHandlers.dll
[2017/04/25 05:56:27 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RdpRelayTransport.dll
[2017/04/25 05:56:27 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WindowsUpdateElevatedInstaller.exe
[2017/04/25 05:56:26 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cemapi.dll
[2017/04/25 05:56:24 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Web.Diagnostics.dll
[2017/04/25 05:56:24 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
[2017/04/25 05:56:23 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VCardParser.dll
[2017/04/25 05:56:20 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\POSyncServices.dll
[2017/04/25 05:56:20 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AddressParser.dll
[2017/04/25 05:56:20 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataTypeHelperUtil.dll
[2017/04/25 05:56:20 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataLanguageUtil.dll
[2017/04/25 05:56:20 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\BthMini.SYS
[2017/04/25 05:56:19 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataPlatformHelperUtil.dll
[2017/04/25 05:56:19 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ContactActivation.dll
[2017/04/25 05:56:19 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\StorageUsage.dll
[2017/04/25 05:56:19 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidparse.sys
[2017/04/25 05:56:19 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ExtrasXmlParser.dll
[2017/04/25 05:56:19 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataAccessRes.dll
[2017/04/25 05:56:19 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PhoneutilRes.dll
[2017/04/25 05:56:18 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinBioDataModelOOBE.exe
[2017/04/25 05:56:18 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll
[2017/04/25 05:56:18 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\NetworkTiles
[2017/04/25 05:56:04 | 005,380,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BingMaps.dll
[2017/04/25 05:56:03 | 003,307,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFMediaEngine.dll
[2017/04/25 05:55:59 | 002,206,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msmpeg2vdec.dll
[2017/04/25 05:55:58 | 002,363,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapRouter.dll
[2017/04/25 05:55:57 | 002,109,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapGeocoder.dll
[2017/04/25 05:55:52 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Wpc.dll
[2017/04/25 05:55:52 | 000,952,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfsvr.dll
[2017/04/25 05:55:50 | 006,109,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mos.dll
[2017/04/25 05:55:50 | 001,123,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfplat.dll
[2017/04/25 05:55:49 | 001,969,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hevcdecoder.dll
[2017/04/25 05:55:49 | 000,707,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapsStore.dll
[2017/04/25 05:55:49 | 000,530,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mf.dll
[2017/04/25 05:55:49 | 000,529,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpnprv.dll
[2017/04/25 05:55:48 | 000,747,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RemoteNaturalLanguage.dll
[2017/04/25 05:55:47 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\JpMapControl.dll
[2017/04/25 05:55:46 | 000,823,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nettrace.dll
[2017/04/25 05:55:46 | 000,687,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvproc.dll
[2017/04/25 05:55:46 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FrameServer.dll
[2017/04/25 05:55:45 | 000,760,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NMAA.dll
[2017/04/25 05:55:45 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WlanMediaManager.dll
[2017/04/25 05:55:45 | 000,321,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LockAppHost.exe
[2017/04/25 05:55:44 | 001,842,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pnidui.dll
[2017/04/25 05:55:44 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSVP9DEC.dll
[2017/04/25 05:55:44 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmkvsrcsnk.dll
[2017/04/25 05:55:44 | 000,518,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\WdiWiFi.sys
[2017/04/25 05:55:44 | 000,353,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TextInputFramework.dll
[2017/04/25 05:55:44 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapConfiguration.dll
[2017/04/25 05:55:43 | 001,344,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfsrcsnk.dll
[2017/04/25 05:55:43 | 001,224,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WpcMon.exe
[2017/04/25 05:55:43 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Playback.BackgroundMediaPlayer.dll
[2017/04/25 05:55:42 | 000,976,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfds.dll
[2017/04/25 05:55:42 | 000,715,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapControlCore.dll
[2017/04/25 05:55:42 | 000,554,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tdh.dll
[2017/04/25 05:55:42 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.BackgroundMediaPlayback.dll
[2017/04/25 05:55:42 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Playback.MediaPlayer.dll
[2017/04/25 05:55:41 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlansec.dll
[2017/04/25 05:55:41 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\moshostcore.dll
[2017/04/25 05:55:41 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FSClient.dll
[2017/04/25 05:55:40 | 000,850,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasgcw.dll
[2017/04/25 05:55:40 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provops.dll
[2017/04/25 05:55:40 | 000,091,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfaudiocnv.dll
[2017/04/25 05:55:39 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twinui.pcshell.dll
[2017/04/25 05:55:39 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetSetupSvc.dll
[2017/04/25 05:55:39 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfsensorgroup.dll
[2017/04/25 05:55:38 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MCCSEngineShared.dll
[2017/04/25 05:55:38 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NPSM.dll
[2017/04/25 05:55:38 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapsBtSvc.dll
[2017/04/25 05:55:37 | 000,254,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpeffects.dll
[2017/04/25 05:55:37 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlancfg.dll
[2017/04/25 05:55:36 | 001,299,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSVPXENC.dll
[2017/04/25 05:55:36 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sppnp.dll
[2017/04/25 05:55:36 | 000,092,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pdc.sys
[2017/04/25 05:55:36 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MosStorage.dll
[2017/04/25 05:55:36 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\moshost.dll
[2017/04/25 05:55:36 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NfcRadioMedia.dll
[2017/04/25 05:55:35 | 001,709,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ActiveSyncProvider.dll
[2017/04/25 05:55:35 | 000,374,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFPlay.dll
[2017/04/25 05:55:35 | 000,290,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettingsAdminFlows.exe
[2017/04/25 05:55:35 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkBindingEngineMigPlugin.dll
[2017/04/25 05:55:34 | 000,313,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2017/04/25 05:55:34 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\powercfg.exe
[2017/04/25 05:55:34 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BackgroundMediaPolicy.dll
[2017/04/25 05:55:33 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpninprc.dll
[2017/04/25 05:55:32 | 001,357,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSPhotography.dll
[2017/04/25 05:55:32 | 000,895,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Streaming.dll
[2017/04/25 05:55:32 | 000,713,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpnapps.dll
[2017/04/25 05:55:32 | 000,111,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetSetupApi.dll
[2017/04/25 05:55:31 | 002,138,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\InputService.dll
[2017/04/25 05:55:31 | 000,856,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfreadwrite.dll
[2017/04/25 05:55:31 | 000,121,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfps.dll
[2017/04/25 05:55:31 | 000,036,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfpmp.exe
[2017/04/25 05:55:30 | 002,318,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettingsThresholdAdminFlowUI.dll
[2017/04/25 05:55:30 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Core.TextInput.dll
[2017/04/25 05:55:30 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\splwow64.exe
[2017/04/25 05:55:30 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netiougc.exe
[2017/04/25 05:55:29 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\das.dll
[2017/04/25 05:55:29 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\indexeddbserver.dll
[2017/04/25 05:55:29 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ProximityCommon.dll
[2017/04/25 05:55:29 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ProvSysprep.dll
[2017/04/25 05:55:27 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkUXBroker.dll
[2017/04/25 05:55:27 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\puiapi.dll
[2017/04/25 05:55:27 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\InputLocaleManager.dll
[2017/04/25 05:55:27 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DafPrintProvider.dll
[2017/04/25 05:55:27 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EditBufferTestHook.dll
[2017/04/25 05:55:27 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wfdprov.dll
[2017/04/25 05:55:27 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WordBreakers.dll
[2017/04/25 05:55:26 | 000,700,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Storage.Search.dll
[2017/04/25 05:55:26 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LockAppBroker.dll
[2017/04/25 05:55:26 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KnobsCore.dll
[2017/04/25 05:55:26 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KnobsCsp.dll
[2017/04/25 05:55:26 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ProvPluginEng.dll
[2017/04/25 05:55:25 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\internetmail.dll
[2017/04/25 05:55:25 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mbsmsapi.dll
[2017/04/25 05:55:23 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DavSyncProvider.dll
[2017/04/25 05:55:23 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accountaccessor.dll
[2017/04/25 05:55:23 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpipcfg.dll
[2017/04/25 05:55:23 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\findnetprinters.dll
[2017/04/25 05:55:22 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BingOnlineServices.dll
[2017/04/25 05:55:22 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WMVSENCD.DLL
[2017/04/25 05:55:22 | 000,289,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NmaDirect.dll
[2017/04/25 05:55:22 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provengine.dll
[2017/04/25 05:55:22 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provisioningcsp.dll
[2017/04/25 05:55:22 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.ServiceDiscovery.Dnssd.dll
[2017/04/25 05:55:22 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provtool.exe
[2017/04/25 05:55:22 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapstoasttask.dll
[2017/04/25 05:55:22 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapsupdatetask.dll
[2017/04/25 05:55:21 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MosResource.dll
[2017/04/25 05:55:21 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provhandlers.dll
[2017/04/25 05:55:21 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Chakrathunk.dll
[2017/04/25 05:55:21 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Microsoft-Windows-MapControls.dll
[2017/04/25 05:55:21 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapsCSP.dll
[2017/04/25 05:55:21 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NFCProvisioningPlugin.dll
[2017/04/25 05:55:21 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\provdatastore.dll
[2017/04/25 05:55:21 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BarcodeProvisioningPlugin.dll
[2017/04/25 05:55:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MosHostClient.dll
[2017/04/25 05:55:21 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RemovableMediaProvisioningPlugin.dll
[2017/04/25 05:55:21 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nativemap.dll
[2017/04/25 05:55:21 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Management.Provisioning.ProxyStub.dll
[2017/04/25 05:55:21 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapsBtSvcProxy.dll
[2017/04/25 05:55:20 | 002,755,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.tlb
[2017/04/25 05:55:20 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanmsm.dll
[2017/04/25 05:55:20 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wifiprofilessettinghandler.dll
[2017/04/25 05:55:20 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSAC3ENC.DLL
[2017/04/25 05:55:20 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\deviceassociation.dll
[2017/04/25 05:55:20 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlansvcpal.dll
[2017/04/25 05:55:20 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Microsoft-Windows-MosTrace.dll
[2017/04/25 05:55:20 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Microsoft-Windows-MosHost.dll
[2017/04/25 05:55:20 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MapControlStringsRes.dll
[2017/04/25 05:55:19 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dasHost.exe
[2017/04/25 05:55:19 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WiFiConfigSP.dll
[2017/04/25 05:55:19 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanhlp.dll
[2017/04/25 05:55:19 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spwmp.dll
[2017/04/25 05:55:19 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdxm.ocx
[2017/04/25 05:55:19 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxmasf.dll
[2017/04/25 05:55:18 | 009,260,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmploc.DLL
[2017/04/25 05:55:10 | 002,323,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d10warp.dll
[2017/04/25 05:55:09 | 002,277,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d11.dll
[2017/04/25 05:55:07 | 001,382,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\workfolderssvc.dll
[2017/04/25 05:55:07 | 000,869,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MrmCoreR.dll
[2017/04/25 05:55:05 | 001,073,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winload.efi
[2017/04/25 05:55:05 | 000,513,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\generaltel.dll
[2017/04/25 05:55:05 | 000,073,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CompatTelRunner.exe
[2017/04/25 05:55:04 | 000,945,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winload.exe
[2017/04/25 05:55:04 | 000,806,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3D12.dll
[2017/04/25 05:55:03 | 000,711,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Search.dll
[2017/04/25 05:55:02 | 000,598,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WpcRefreshTask.dll
[2017/04/25 05:55:02 | 000,524,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxgi.dll
[2017/04/25 05:55:01 | 000,699,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\uDWM.dll
[2017/04/25 05:55:01 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\energy.dll
[2017/04/25 05:55:00 | 001,406,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LocationFramework.dll
[2017/04/25 05:55:00 | 000,468,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.InkControls.dll
[2017/04/25 05:54:58 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cloudAP.dll
[2017/04/25 05:54:58 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfksproxy.dll
[2017/04/25 05:54:57 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkCollectionAgent.dll
[2017/04/25 05:54:56 | 001,564,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\quartz.dll
[2017/04/25 05:54:56 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wc_storage.dll
[2017/04/25 05:54:55 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpcore6.dll
[2017/04/25 05:54:55 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\biwinrt.dll
[2017/04/25 05:54:54 | 000,341,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\Classpnp.sys
[2017/04/25 05:54:54 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ConsoleLogon.dll
[2017/04/25 05:54:53 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.CredDialogController.dll
[2017/04/25 05:54:53 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WorkFoldersGPExt.dll
[2017/04/25 05:54:52 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscms.dll
[2017/04/25 05:54:52 | 000,356,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\halmacpi.dll
[2017/04/25 05:54:52 | 000,356,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hal.dll
[2017/04/25 05:54:52 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dialserver.dll
[2017/04/25 05:54:51 | 000,095,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wcifs.sys
[2017/04/25 05:54:50 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.Connectivity.dll
[2017/04/25 05:54:50 | 000,432,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DMRServer.dll
[2017/04/25 05:54:50 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\credprovs.dll
[2017/04/25 05:54:50 | 000,055,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dam.sys
[2017/04/25 05:54:49 | 000,746,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2017/04/25 05:54:49 | 000,083,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\devenum.dll
[2017/04/25 05:54:48 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icm32.dll
[2017/04/25 05:54:48 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FontProvider.dll
[2017/04/25 05:54:48 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CastLaunch.dll
[2017/04/25 05:54:48 | 000,021,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\cmimcext.sys
[2017/04/25 05:54:47 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Internal.Bluetooth.dll
[2017/04/25 05:54:46 | 000,884,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\HelpPane.exe
[2017/04/25 05:54:46 | 000,433,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WWanAPI.dll
[2017/04/25 05:54:46 | 000,125,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudExperienceHostBroker.dll
[2017/04/25 05:54:46 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\csrsrv.dll
[2017/04/25 05:54:45 | 000,455,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DolbyDecMFT.dll
[2017/04/25 05:54:37 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WorkfoldersControl.dll
[2017/04/25 05:54:37 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingSync.dll
[2017/04/25 05:54:37 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wininetlui.dll
[2017/04/25 05:54:36 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dafpos.dll
[2017/04/25 05:54:36 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.SerialCommunication.dll
[2017/04/25 05:54:36 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\asycfilt.dll
[2017/04/25 05:54:36 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\encapi.dll
[2017/04/25 05:54:35 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2017/04/25 05:54:35 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BrowserSettingSync.dll
[2017/04/25 05:54:34 | 000,368,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanui.dll
[2017/04/25 05:54:34 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WorkFoldersShell.dll
[2017/04/25 05:54:34 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\psmsrv.dll
[2017/04/25 05:54:34 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WorkFolders.exe
[2017/04/25 05:54:34 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
[2017/04/25 05:54:33 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WpcTok.exe
[2017/04/25 05:54:33 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Cortana.OneCore.dll
[2017/04/25 05:54:33 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Shell.Search.UriHandler.dll
[2017/04/25 05:54:33 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tbauth.dll
[2017/04/25 05:54:33 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TokenBrokerCookies.exe
[2017/04/25 05:54:32 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmjpegdec.dll
[2017/04/25 05:54:30 | 000,374,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.LowLevel.dll
[2017/04/25 05:54:30 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Geolocation.dll
[2017/04/25 05:54:30 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudBackupSettings.dll
[2017/04/25 05:54:30 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2017/04/25 05:54:29 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Cortana.Desktop.dll
[2017/04/25 05:54:28 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qdvd.dll
[2017/04/25 05:54:28 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.SmartCards.dll
[2017/04/25 05:54:28 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.SmartCards.Phone.dll
[2017/04/25 05:54:28 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.BioFeedback.dll
[2017/04/25 05:54:28 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\apds.dll
[2017/04/25 05:54:27 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\flvprophandler.dll
[2017/04/25 05:54:27 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.HostName.dll
[2017/04/25 05:54:27 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CbtBackgroundManagerPolicy.dll
[2017/04/25 05:54:26 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Core.dll
[2017/04/25 05:54:11 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iesetup.dll
[2017/04/25 05:54:10 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\credprovslegacy.dll
[2017/04/25 05:54:09 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ConfigureExpandedStorage.dll
[2017/04/25 05:54:09 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iernonce.dll
[2017/04/25 05:54:08 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\container.dll
[2017/04/25 05:54:08 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wwanprotdim.dll
[2017/04/25 05:53:51 | 001,127,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ClipUp.exe
[2017/04/25 05:53:47 | 000,589,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ClipSp.sys
[2017/04/25 05:53:43 | 004,557,824 | ---- | C] (Microsoft) -- C:\WINDOWS\System32\dbgeng.dll
[2017/04/25 05:53:41 | 001,339,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\appraiser.dll
[2017/04/25 05:53:41 | 000,229,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcntel.dll
[2017/04/25 05:53:39 | 001,949,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXDeploymentServer.dll
[2017/04/25 05:53:38 | 003,478,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UIRibbon.dll
[2017/04/25 05:53:38 | 003,370,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.StateRepository.dll
[2017/04/25 05:53:37 | 004,423,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ExplorerFrame.dll
[2017/04/25 05:53:37 | 000,980,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aeinv.dll
[2017/04/25 05:53:37 | 000,192,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aepic.dll
[2017/04/25 05:53:34 | 002,740,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msftedit.dll
[2017/04/25 05:53:33 | 001,425,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d9.dll
[2017/04/25 05:53:32 | 002,423,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSAJApi.dll
[2017/04/25 05:53:31 | 001,357,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UIAutomationCore.dll
[2017/04/25 05:53:30 | 000,818,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\modernexecserver.dll
[2017/04/25 05:53:30 | 000,450,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\devinv.dll
[2017/04/25 05:53:30 | 000,031,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DeviceCensus.exe
[2017/04/25 05:53:28 | 001,556,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Immersive.dll
[2017/04/25 05:53:26 | 001,056,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wifinetworkmanager.dll
[2017/04/25 05:53:25 | 000,565,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wcmsvc.dll
[2017/04/25 05:53:24 | 000,579,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XblAuthManager.dll
[2017/04/25 05:53:23 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XboxNetApiSvc.dll
[2017/04/25 05:53:22 | 001,722,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SRHInproc.dll
[2017/04/25 05:53:22 | 001,456,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GdiPlus.dll
[2017/04/25 05:53:21 | 000,920,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dosvc.dll
[2017/04/25 05:53:20 | 003,198,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdp.dll
[2017/04/25 05:53:20 | 000,675,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sppwinob.dll
[2017/04/25 05:53:20 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fveapi.dll
[2017/04/25 05:53:19 | 000,551,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dxgmms2.sys
[2017/04/25 05:53:19 | 000,500,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NotificationController.dll
[2017/04/25 05:53:18 | 001,022,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppxPackaging.dll
[2017/04/25 05:53:18 | 000,279,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\invagent.dll
[2017/04/25 05:53:16 | 000,749,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drvstore.dll
[2017/04/25 05:53:16 | 000,636,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PhoneService.dll
[2017/04/25 05:53:16 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PCPTpm12.dll
[2017/04/25 05:53:16 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppReadiness.dll
[2017/04/25 05:53:15 | 000,493,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsregcmd.exe
[2017/04/25 05:53:14 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CredProvDataModel.dll
[2017/04/25 05:53:14 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetSetupShim.dll
[2017/04/25 05:53:13 | 001,097,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpx.dll
[2017/04/25 05:53:13 | 000,382,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AUDIOKSE.dll
[2017/04/25 05:53:12 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CPFilters.dll
[2017/04/25 05:53:12 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PhoneProviders.dll
[2017/04/25 05:53:12 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ncsi.dll
[2017/04/25 05:53:12 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\clfs.sys
[2017/04/25 05:53:11 | 000,802,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EditionUpgradeManagerObj.dll
[2017/04/25 05:53:11 | 000,328,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\daxexec.dll
[2017/04/25 05:53:11 | 000,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wevtapi.dll
[2017/04/25 05:53:10 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RDXService.dll
[2017/04/25 05:53:10 | 000,422,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twinapi.dll
[2017/04/25 05:53:10 | 000,359,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\facecredentialprovider.dll
[2017/04/25 05:53:10 | 000,294,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdpsvc.dll
[2017/04/25 05:53:10 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CfgSPCellular.dll
[2017/04/25 05:53:10 | 000,100,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EnterpriseAPNCsp.dll
[2017/04/25 05:53:10 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CspCellularSettings.dll
[2017/04/25 05:53:09 | 002,484,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gameux.dll
[2017/04/25 05:53:09 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vpnike.dll
[2017/04/25 05:53:09 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_WorkAccess.dll
[2017/04/25 05:53:08 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GamePanel.exe
[2017/04/25 05:53:08 | 000,581,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ci.dll
[2017/04/25 05:53:08 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rascustom.dll
[2017/04/25 05:53:07 | 005,398,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aclui.dll
[2017/04/25 05:53:06 | 000,461,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\webio.dll
[2017/04/25 05:53:06 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fhcfg.dll
[2017/04/25 05:53:06 | 000,254,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdpusersvc.dll
[2017/04/25 05:53:05 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nltest.exe
[2017/04/25 05:53:04 | 000,945,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reseteng.dll
[2017/04/25 05:53:04 | 000,454,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\storport.sys
[2017/04/25 05:53:04 | 000,315,744 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\atmfd.dll
[2017/04/25 05:53:04 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ahcache.sys
[2017/04/25 05:53:03 | 000,862,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingSyncCore.dll
[2017/04/25 05:53:03 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ActivationManager.dll
[2017/04/25 05:53:03 | 000,248,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\policymanager.dll
[2017/04/25 05:53:03 | 000,247,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\domgmt.dll
[2017/04/25 05:53:03 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ACPBackgroundManagerPolicy.dll
[2017/04/25 05:53:02 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DXP.dll
[2017/04/25 05:53:02 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ClipboardServer.dll
[2017/04/25 05:53:02 | 000,152,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RTWorkQ.dll
[2017/04/25 05:53:02 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXApplicabilityBlob.dll
[2017/04/25 05:53:02 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BthRadioMedia.dll
[2017/04/25 05:53:01 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SndVolSSO.dll
[2017/04/25 05:53:01 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft-windows-system-events.dll
[2017/04/25 05:53:01 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\discan.dll
[2017/04/25 05:53:01 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netiohlp.dll
[2017/04/25 05:53:01 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RMapi.dll
[2017/04/25 05:53:01 | 000,113,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acmigration.dll
[2017/04/25 05:53:00 | 001,602,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aitstatic.exe
[2017/04/25 05:53:00 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ddraw.dll
[2017/04/25 05:53:00 | 000,505,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bcastdvr.exe
[2017/04/25 05:53:00 | 000,320,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\systemreset.exe
[2017/04/25 05:53:00 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fveapibase.dll
[2017/04/25 05:53:00 | 000,173,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\basecsp.dll
[2017/04/25 05:53:00 | 000,117,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bcrypt.dll
[2017/04/25 05:52:59 | 000,580,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hgcpl.dll
[2017/04/25 05:52:59 | 000,545,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fontdrvhost.exe
[2017/04/25 05:52:59 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fhengine.dll
[2017/04/25 05:52:59 | 000,186,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\weretw.dll
[2017/04/25 05:52:59 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdd.dll
[2017/04/25 05:52:59 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpapisrv.dll
[2017/04/25 05:52:58 | 000,576,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wer.dll
[2017/04/25 05:52:58 | 000,313,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\audiodg.exe
[2017/04/25 05:52:57 | 000,728,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\enterprisecsps.dll
[2017/04/25 05:52:57 | 000,257,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DataExchange.dll
[2017/04/25 05:52:57 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\scksp.dll
[2017/04/25 05:52:57 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmcertinst.exe
[2017/04/25 05:52:57 | 000,076,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\remoteaudioendpoint.dll
[2017/04/25 05:52:57 | 000,067,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\crashdmp.sys
[2017/04/25 05:52:57 | 000,042,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\iorate.sys
[2017/04/25 05:52:53 | 000,790,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXDeploymentExtensions.desktop.dll
[2017/04/25 05:52:53 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\input.dll
[2017/04/25 05:52:53 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EnterpriseAppMgmtSvc.dll
[2017/04/25 05:52:53 | 000,218,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\offlinesam.dll
[2017/04/25 05:52:53 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winsrv.dll
[2017/04/25 05:52:53 | 000,100,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfupgd.dll
[2017/04/25 05:52:52 | 000,731,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d8.dll
[2017/04/25 05:52:52 | 000,173,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wof.sys
[2017/04/25 05:52:52 | 000,101,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ImplatSetup.dll
[2017/04/25 05:52:51 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BootMenuUX.dll
[2017/04/25 05:52:51 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXDeploymentClient.dll
[2017/04/25 05:52:51 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys
[2017/04/25 05:52:51 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\HttpsDataSource.dll
[2017/04/25 05:52:50 | 000,827,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twinui.appcore.dll
[2017/04/25 05:52:50 | 000,122,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\migisol.dll
[2017/04/25 05:52:50 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmifw.dll
[2017/04/25 05:52:49 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AudioSrvPolicyManager.dll
[2017/04/25 05:52:49 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TpmTasks.dll
[2017/04/25 05:52:49 | 000,034,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CompPkgSup.dll
[2017/04/25 05:52:48 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Speech.dll
[2017/04/25 05:52:48 | 000,549,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ActionCenterCPL.dll
[2017/04/25 05:52:48 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fhsettingsprovider.dll
[2017/04/25 05:52:48 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\autoplay.dll
[2017/04/25 05:52:48 | 000,112,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gpapi.dll
[2017/04/25 05:52:48 | 000,081,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DeviceReactivation.dll
[2017/04/25 05:52:47 | 000,632,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sud.dll
[2017/04/25 05:52:47 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bcdedit.exe
[2017/04/25 05:52:47 | 000,306,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.MediaControl.dll
[2017/04/25 05:52:47 | 000,136,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudExperienceHostUser.dll
[2017/04/25 05:52:47 | 000,093,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\phoneactivate.exe
[2017/04/25 05:52:47 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dab.dll
[2017/04/25 05:52:47 | 000,036,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SysResetErr.exe
[2017/04/25 05:52:46 | 000,994,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ApplicationFrame.dll
[2017/04/25 05:52:46 | 000,387,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettings.UserAccountsHandlers.dll
[2017/04/25 05:52:46 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DeviceEnroller.exe
[2017/04/25 05:52:45 | 000,564,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GenValObj.exe
[2017/04/25 05:52:45 | 000,447,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_StorageSense.dll
[2017/04/25 05:52:45 | 000,315,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wifitask.exe
[2017/04/25 05:52:45 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ks.sys
[2017/04/25 05:52:45 | 000,099,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tm.sys
[2017/04/25 05:52:45 | 000,094,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\win32u.dll
[2017/04/25 05:52:45 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\offreg.dll
[2017/04/25 05:52:44 | 000,939,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pidgenx.dll
[2017/04/25 05:52:44 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EnterpriseModernAppMgmtCSP.dll
[2017/04/25 05:52:44 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\adsmsext.dll
[2017/04/25 05:52:43 | 000,894,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SensorDataService.exe
[2017/04/25 05:52:43 | 000,384,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DataSenseHandlers.dll
[2017/04/25 05:52:43 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RelPost.exe
[2017/04/25 05:52:43 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lpremove.exe
[2017/04/25 05:52:42 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\OneDriveSettingSyncProvider.dll
[2017/04/25 05:52:42 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmenrollengine.dll
[2017/04/25 05:52:42 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\systemcpl.dll
[2017/04/25 05:52:42 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\efsext.dll
[2017/04/25 05:52:41 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserLanguagesCpl.dll
[2017/04/25 05:52:41 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wincorlib.dll
[2017/04/25 05:52:41 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkDesktopSettings.dll
[2017/04/25 05:52:41 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ErrorDetailsUpdate.dll
[2017/04/25 05:52:41 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ReAgentc.exe
[2017/04/25 05:52:40 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MediaFoundation.DefaultPerceptionProvider.dll
[2017/04/25 05:52:40 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.System.SystemManagement.dll
[2017/04/25 05:52:40 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BluetoothDesktopHandlers.dll
[2017/04/25 05:52:38 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GlobCollationHost.dll
[2017/04/25 05:52:38 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EditionUpgradeHelper.dll
[2017/04/25 05:52:38 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\BcastDVRHelper.dll
[2017/04/25 05:52:38 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ScDeviceEnum.dll
[2017/04/25 05:52:38 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tzautoupdate.dll
[2017/04/25 05:52:38 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XInputUap.dll
[2017/04/25 05:52:37 | 002,458,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\themecpl.dll
[2017/04/25 05:52:37 | 000,570,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PrintRenderAPIHost.DLL
[2017/04/25 05:52:37 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AppCapture.dll
[2017/04/25 05:52:37 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usoapi.dll
[2017/04/25 05:52:37 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LaunchWinApp.exe
[2017/04/25 05:52:36 | 000,336,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msinfo32.exe
[2017/04/25 05:52:36 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NetCfgNotifyObjectHost.exe
[2017/04/25 05:52:35 | 000,705,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\taskbarcpl.dll
[2017/04/25 05:52:35 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\NgcCtnrGidsHandler.dll
[2017/04/25 05:52:35 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\LockScreenContent.dll
[2017/04/25 05:52:35 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDeviceRegistration.Ngc.dll
[2017/04/25 05:52:34 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chartv.dll
[2017/04/25 05:52:33 | 000,824,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SRH.dll
[2017/04/25 05:52:33 | 000,609,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Import.dll
[2017/04/25 05:52:33 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ErrorDetails.dll
[2017/04/25 05:52:33 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DuCsps.dll
[2017/04/25 05:52:33 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stdole2.tlb
[2017/04/25 05:52:32 | 006,474,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2017/04/25 05:52:32 | 000,631,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\main.cpl
[2017/04/25 05:52:32 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Midi.dll
[2017/04/25 05:52:32 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudDomainJoinDataModelServer.dll
[2017/04/25 05:52:32 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fhtask.dll
[2017/04/25 05:52:31 | 000,466,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sppcext.dll
[2017/04/25 05:52:31 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscandui.dll
[2017/04/25 05:52:31 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdmregistration.dll
[2017/04/25 05:52:31 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AuthBroker.dll
[2017/04/25 05:52:30 | 000,787,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sbe.dll
[2017/04/25 05:52:30 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\esentutl.exe
[2017/04/25 05:52:30 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\AuthExt.dll
[2017/04/25 05:52:30 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Family.Authentication.dll
[2017/04/25 05:52:30 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.System.UserDeviceAssociation.dll
[2017/04/25 05:52:30 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TokenBrokerUI.dll
[2017/04/25 05:52:29 | 003,716,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bootux.dll
[2017/04/25 05:52:29 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\enrollmentapi.dll
[2017/04/25 05:52:29 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EDPCleanup.exe
[2017/04/25 05:52:29 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msctfui.dll
[2017/04/25 05:52:29 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ReportingCSP.dll
[2017/04/25 05:52:29 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll
[2017/04/25 05:52:29 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\EAMProgressHandler.dll
[2017/04/25 05:52:28 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\C_G18030.DLL
[2017/04/25 05:52:28 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wificonnapi.dll
[2017/04/25 05:52:28 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ddrawex.dll
[2017/04/25 05:52:28 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\delegatorprovider.dll
[2017/04/25 05:52:28 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storagewmi_passthru.dll
[2017/04/25 05:52:28 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\C_IS2022.DLL
[2017/04/25 05:52:28 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\c_GSM7.DLL
[2017/04/25 05:52:28 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tzres.dll
[2017/04/25 05:52:27 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sppc.dll
[2017/04/25 05:52:27 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\offlinelsa.dll
[2017/04/25 05:52:27 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Shell.dll
[2017/04/25 05:52:27 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ffbroker.dll
[2017/04/25 05:52:27 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smphost.dll
[2017/04/25 05:52:27 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\slcext.dll
[2017/04/25 05:52:27 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ResetEngine.exe
[2017/04/25 05:52:27 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PhoneServiceRes.dll
[2017/04/25 05:52:26 | 000,461,312 | ---- | C] (Microsoft) -- C:\WINDOWS\System32\DbgModel.dll
[2017/04/25 05:52:26 | 000,037,376 | ---- | C] (Adobe Systems) -- C:\WINDOWS\System32\atmlib.dll
[2017/04/25 05:52:26 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2017/04/25 05:52:05 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vmrdvcore.dll
[2017/04/25 05:52:05 | 000,360,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DscCore.dll
[2017/04/25 05:52:04 | 001,336,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsecedit.dll
[2017/04/25 05:52:03 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TabletPC.cpl
[2017/04/25 05:52:03 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icsvcext.dll
[2017/04/25 05:52:01 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icsvc.dll
[2017/04/25 05:52:01 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MDMAppInstaller.exe
[2017/04/25 05:51:58 | 000,336,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroleui.dll
[2017/04/25 05:51:57 | 000,086,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hvsocket.sys
[2017/04/25 05:51:55 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iscsiwmi.dll
[2017/04/25 05:51:53 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tabcal.exe
[2017/04/25 05:51:53 | 000,060,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vmbkmcl.sys
[2017/04/25 05:51:52 | 000,167,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscapi.dll
[2017/04/25 05:51:52 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Tabbtn.dll
[2017/04/25 05:51:51 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pwrshplugin.dll
[2017/04/25 05:51:50 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscinterop.dll
[2017/04/25 05:51:48 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MultiDigiMon.exe
[2017/04/25 05:51:46 | 001,196,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscui.cpl
[2017/04/25 05:51:45 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RjvMDMConfig.dll
[2017/04/25 05:51:43 | 000,141,824 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\WINDOWS\System32\DscCoreConfProv.dll
[2017/04/25 05:51:13 | 008,886,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\OneDriveSetup.exe
[2017/04/25 05:47:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2017/04/25 05:46:55 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Sun
[2017/04/25 05:46:39 | 000,095,808 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2017/04/25 05:46:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2017/04/25 05:45:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2017/04/25 05:45:46 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2017/04/25 05:45:27 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\poqexec.exe
[2017/04/25 05:40:22 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Mozilla
[2017/04/25 05:40:22 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Mozilla
[2017/04/25 05:33:33 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\MicrosoftEdge
[2017/04/25 05:33:29 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Canneverbe Limited
[2017/04/25 05:30:18 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Programs
[2017/04/25 05:29:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2017/04/25 05:14:08 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Acer Aspire R7 Tutorial
[2017/04/25 05:08:50 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Skype
[2017/04/25 05:06:39 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\OneDrive
[2017/04/25 05:06:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft OneDrive
[2017/04/25 05:04:36 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Publishers
[2017/04/25 05:04:12 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Comms
[2017/04/25 05:04:05 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\TileDataLayer
[2017/04/25 05:04:03 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\ConnectedDevicesPlatform
[2017/04/25 02:47:17 | 000,000,000 | -HSD | C] -- C:\Recovery
[2017/04/25 02:43:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Microsoft
[2017/04/25 02:42:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2017/04/25 02:42:19 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2017/04/25 02:42:19 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2017/04/25 02:41:35 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationNative_v0300.dll
[2017/04/25 02:41:35 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll
[2017/04/25 02:41:35 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TsWpfWrp.exe
[2017/04/25 00:20:50 | 000,000,000 | ---D | C] -- C:\ProgramData\USOShared
[2017/04/25 00:19:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documents
[2017/04/25 00:19:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data
[2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modèles
[2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes vidéos
[2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes images
[2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Démarrer
[2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Ma musique
[2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs
[2017/04/25 00:13:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Bureau
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Voisinage réseau
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Voisinage d'impression
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\AppData\Local\Temporary Internet Files
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\SendTo
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Recent
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Modèles
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Mes documents
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Menu Démarrer
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Local Settings
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\AppData\Local\Historique
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Cookies
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\Application Data
[2017/04/24 23:54:20 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\AppData\Local\Application Data
[2017/04/24 23:54:19 | 000,000,000 | --SD | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft
[2017/04/24 23:54:19 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
[2017/04/24 23:54:19 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2017/04/24 23:54:19 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2017/04/24 23:54:19 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2017/04/24 23:54:19 | 000,000,000 | -H-D | C] -- C:\Users\odz-plus.com\AppData
[2017/04/24 23:54:19 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Temp
[2017/04/24 23:54:19 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Microsoft
[2017/04/24 23:54:19 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2017/04/24 23:48:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2017/04/24 23:48:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SleepStudy
[2017/04/24 23:48:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServiceProfiles
[2017/04/24 22:00:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AV
[2017/04/24 21:34:48 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\CrashDumps
[2017/04/24 21:20:42 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Macromedia
[2017/04/24 21:19:51 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\PicStream
[2017/04/24 21:19:48 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\clear.fi
[2017/04/24 21:19:30 | 000,000,000 | ---D | C] -- C:\ProgramData\OEM_YAHOO
[2017/04/24 21:19:27 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2017/04/24 21:19:27 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Searches
[2017/04/24 21:19:27 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Contacts
[2017/04/24 21:19:27 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2017/04/24 21:19:27 | 000,000,000 | -H-D | C] -- C:\Users\odz-plus.com\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2017/04/24 21:19:25 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\VirtualStore
[2017/04/24 21:19:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\oem
[2017/04/24 21:19:24 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Acer
[2017/04/24 21:19:23 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\OEM
[2017/04/24 21:19:23 | 000,000,000 | ---D | C] -- C:\Program Files\Accessory Store
[2017/04/24 21:19:12 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Roaming\Adobe
[2017/04/24 21:19:11 | 000,000,000 | -HSD | C] -- C:\Users\odz-plus.com\IntelGraphicsProfiles
[2017/04/24 21:19:11 | 000,000,000 | ---D | C] -- C:\Users\odz-plus.com\AppData\Local\Packages
[2017/04/24 21:19:09 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Saved Games
[2017/04/24 21:19:09 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Links
[2017/04/24 21:19:09 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Favorites
[2017/04/24 21:19:09 | 000,000,000 | R--D | C] -- C:\Users\odz-plus.com\Desktop
[2017/04/24 21:16:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2017/04/24 07:41:20 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\sauv
[2017/04/22 16:19:05 | 000,000,000 | ---D | C] -- D:\utillisateur\document\PDF Architect
[2017/04/22 16:19:04 | 000,000,000 | ---D | C] -- D:\utillisateur\document\HpReg_Backup
[2017/04/22 16:19:04 | 000,000,000 | ---D | C] -- D:\utillisateur\document\Blocs-notes OneNote
[2017/04/22 16:19:04 | 000,000,000 | ---D | C] -- D:\utillisateur\document\Anki
[2017/04/22 16:10:42 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\PATIENTS 2016-2017
[2017/04/22 16:10:42 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\IMAGES
[2017/04/22 16:10:42 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\Anciennes données de Firefox
[2017/04/22 16:10:42 | 000,000,000 | ---D | C] -- D:\utillisateur\bureau\2017-03-27

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2017/05/20 19:23:44 | 819,351,552 | -HS- | M] () -- C:\hiberfil.sys
[2017/05/20 19:23:43 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2017/05/19 18:14:42 | 000,001,318 | ---- | M] () -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk
[2017/05/18 17:09:02 | 000,509,086 | ---- | M] () -- D:\utillisateur\bureau\billet air austral juin 2017.prn
[2017/05/15 10:22:52 | 000,066,720 | ---- | M] () -- D:\utillisateur\bureau\emploi-du-temps-hebdomadaire-5-jours.pdf
[2017/05/13 18:37:59 | 000,820,644 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2017/05/13 18:37:59 | 000,681,770 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2017/05/13 18:37:59 | 000,211,268 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2017/05/13 18:37:59 | 000,141,454 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2017/05/12 12:54:23 | 000,405,960 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2017/05/12 12:54:15 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2017/05/12 12:38:50 | 000,030,764 | ---- | M] () -- D:\utillisateur\bureau\bookmarks.html
[2017/04/29 04:59:38 | 000,177,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2017/04/29 04:59:37 | 000,835,576 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2017/04/28 05:33:50 | 000,448,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ContentDeliveryManager.Utilities.dll
[2017/04/28 05:32:09 | 000,685,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Internal.Shell.Broker.dll
[2017/04/28 05:28:15 | 000,965,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ReAgent.dll
[2017/04/28 05:01:53 | 000,784,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winresume.exe
[2017/04/28 05:00:07 | 005,996,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntoskrnl.exe
[2017/04/28 04:56:56 | 002,048,488 | ---- | M] () -- C:\WINDOWS\System32\CoreUIComponents.dll
[2017/04/28 04:55:11 | 000,583,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CoreMessaging.dll
[2017/04/28 04:51:41 | 000,277,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WinSetupUI.dll
[2017/04/28 04:48:25 | 000,263,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Storage.ApplicationData.dll
[2017/04/28 04:46:17 | 000,342,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dxgmms1.sys
[2017/04/28 04:46:06 | 001,431,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Store.dll
[2017/04/28 04:46:03 | 005,722,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\windows.storage.dll
[2017/04/28 04:45:54 | 000,781,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WWAHost.exe
[2017/04/28 04:45:44 | 000,493,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingSyncHost.exe
[2017/04/28 04:45:44 | 000,116,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CloudExperienceHostCommon.dll
[2017/04/28 04:45:33 | 000,861,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\LicenseManager.dll
[2017/04/28 04:45:29 | 000,975,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\twinapi.appcore.dll
[2017/04/28 04:45:29 | 000,025,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browser_broker.exe
[2017/04/28 04:43:55 | 000,458,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\spaceport.sys
[2017/04/28 04:43:10 | 000,846,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WinTypes.dll
[2017/04/28 04:43:09 | 002,168,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\combase.dll
[2017/04/28 04:42:58 | 000,601,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\NetSetupEngine.dll
[2017/04/28 04:41:08 | 000,361,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tsmf.dll
[2017/04/28 04:41:07 | 000,080,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpudd.dll
[2017/04/28 04:40:30 | 006,665,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Protection.PlayReady.dll
[2017/04/28 04:40:19 | 004,023,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfcore.dll
[2017/04/28 04:40:17 | 001,277,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfasfsrcsnk.dll
[2017/04/28 04:40:15 | 001,851,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmp4srcsnk.dll
[2017/04/28 04:40:15 | 001,360,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfnetsrc.dll
[2017/04/28 04:40:13 | 000,981,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfnetcore.dll
[2017/04/28 04:40:10 | 000,352,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MMDevAPI.dll
[2017/04/28 04:40:09 | 001,202,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfmpeg2srcsnk.dll
[2017/04/28 04:39:22 | 004,312,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2017/04/28 04:38:56 | 001,384,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sppobjs.dll
[2017/04/28 04:35:23 | 001,411,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\gdi32full.dll
[2017/04/28 04:29:28 | 005,685,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Data.Pdf.dll
[2017/04/28 04:26:56 | 000,281,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\RDXTaskFactory.dll
[2017/04/28 04:23:19 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDataTimeUtil.dll
[2017/04/28 04:23:10 | 001,631,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Resources.dll
[2017/04/28 04:22:46 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcconf.dll
[2017/04/28 04:22:16 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ReInfo.dll
[2017/04/28 04:21:41 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\BthTelemetry.dll
[2017/04/28 04:21:14 | 000,224,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ExSMime.dll
[2017/04/28 04:20:50 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\virtdisk.dll
[2017/04/28 04:20:47 | 000,141,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Radios.dll
[2017/04/28 04:20:27 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\appidcertstorecheck.exe
[2017/04/28 04:20:23 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vwifimp.sys
[2017/04/28 04:19:33 | 000,119,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Family.Client.dll
[2017/04/28 04:19:26 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UIRibbonRes.dll
[2017/04/28 04:19:15 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UserDeviceRegistration.dll
[2017/04/28 04:19:05 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DisplayManager.dll
[2017/04/28 04:18:35 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.BlockedShutdown.dll
[2017/04/28 04:17:57 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WinRtTracing.dll
[2017/04/28 04:17:50 | 000,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.StateRepositoryClient.dll
[2017/04/28 04:17:39 | 000,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\aadcloudap.dll
[2017/04/28 04:17:36 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\BluetoothApis.dll
[2017/04/28 04:17:02 | 000,186,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Family.SyncEngine.dll
[2017/04/28 04:17:01 | 000,142,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.WiFi.dll
[2017/04/28 04:16:49 | 000,242,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Dxpserver.exe
[2017/04/28 04:16:43 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browserbroker.dll
[2017/04/28 04:16:36 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\UserMgrProxy.dll
[2017/04/28 04:16:31 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Gaming.Input.dll
[2017/04/28 04:16:31 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\credprovhost.dll
[2017/04/28 04:16:24 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AppointmentActivation.dll
[2017/04/28 04:16:23 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.LockScreen.dll
[2017/04/28 04:16:23 | 000,113,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Lights.dll
[2017/04/28 04:16:17 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dafBth.dll
[2017/04/28 04:16:16 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shutdownux.dll
[2017/04/28 04:16:09 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\InstallAgent.exe
[2017/04/28 04:16:07 | 000,186,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_Flights.dll
[2017/04/28 04:15:44 | 000,334,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rastlsext.dll
[2017/04/28 04:15:41 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DeveloperOptionsSettingsHandlers.dll
[2017/04/28 04:15:38 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SyncSettings.dll
[2017/04/28 04:15:35 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bthprops.cpl
[2017/04/28 04:15:29 | 000,404,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsreg.dll
[2017/04/28 04:15:22 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll
[2017/04/28 04:15:14 | 000,822,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Chakradiag.dll
[2017/04/28 04:15:12 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ConsentUX.dll
[2017/04/28 04:15:11 | 000,557,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\StoreAgent.dll
[2017/04/28 04:15:09 | 000,774,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SystemSettings.Handlers.dll
[2017/04/28 04:14:55 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll
[2017/04/28 04:14:11 | 000,670,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.PointOfService.dll
[2017/04/28 04:14:06 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\InstallAgentUserBroker.exe
[2017/04/28 04:14:01 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.AllJoyn.dll
[2017/04/28 04:14:00 | 000,445,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.UX.EapRequestHandler.dll
[2017/04/28 04:14:00 | 000,306,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieproxy.dll
[2017/04/28 04:13:57 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.HumanInterfaceDevice.dll
[2017/04/28 04:13:55 | 001,243,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.FaceAnalysis.dll
[2017/04/28 04:13:52 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\storewuauth.dll
[2017/04/28 04:13:45 | 000,386,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.WiFiDirect.dll
[2017/04/28 04:13:43 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Security.Authentication.Identity.Provider.dll
[2017/04/28 04:13:35 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\setupugc.exe
[2017/04/28 04:13:28 | 000,298,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Internal.Management.dll
[2017/04/28 04:13:27 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WwaApi.dll
[2017/04/28 04:13:24 | 000,426,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.Wallet.dll
[2017/04/28 04:13:23 | 001,755,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DeviceFlows.DataModel.dll
[2017/04/28 04:13:21 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\deviceaccess.dll
[2017/04/28 04:13:19 | 000,322,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WpAXHolder.dll
[2017/04/28 04:13:17 | 000,506,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DevicePairing.dll
[2017/04/28 04:13:15 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vaultcli.dll
[2017/04/28 04:13:11 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Scanners.dll
[2017/04/28 04:13:06 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\apprepapi.dll
[2017/04/28 04:13:01 | 013,873,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.dll
[2017/04/28 04:12:58 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\apprepsync.dll
[2017/04/28 04:12:52 | 000,273,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PrintDialogs3D.dll
[2017/04/28 04:12:50 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ubpm.dll
[2017/04/28 04:12:39 | 000,431,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\efswrt.dll
[2017/04/28 04:12:31 | 000,188,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2017/04/28 04:12:24 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript9diag.dll
[2017/04/28 04:12:08 | 000,262,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Picker.dll
[2017/04/28 04:11:50 | 000,623,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bisrv.dll
[2017/04/28 04:11:50 | 000,517,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FlightSettings.dll
[2017/04/28 04:11:40 | 001,774,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\NetworkMobileSettings.dll
[2017/04/28 04:11:38 | 000,294,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ConhostV2.dll
[2017/04/28 04:11:32 | 001,378,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AppXDeploymentExtensions.onecore.dll
[2017/04/28 04:11:16 | 000,323,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DevicesFlowBroker.dll
[2017/04/28 04:11:15 | 000,747,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Ocr.dll
[2017/04/28 04:11:12 | 000,340,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll
[2017/04/28 04:11:11 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\updatepolicy.dll
[2017/04/28 04:11:09 | 000,846,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WebcamUi.dll
[2017/04/28 04:10:54 | 000,819,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AppContracts.dll
[2017/04/28 04:10:52 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Usb.dll
[2017/04/28 04:10:45 | 000,238,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AboveLockAppHost.dll
[2017/04/28 04:10:44 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.ApplicationModel.dll
[2017/04/28 04:10:36 | 000,764,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mprddm.dll
[2017/04/28 04:10:34 | 000,857,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\EmailApis.dll
[2017/04/28 04:10:27 | 000,425,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usocore.dll
[2017/04/28 04:10:27 | 000,242,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\NgcCtnrSvc.dll
[2017/04/28 04:10:19 | 000,661,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WpcWebFilter.dll
[2017/04/28 04:10:10 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usermgr.dll
[2017/04/28 04:10:04 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\NaturalLanguage6.dll
[2017/04/28 04:09:36 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\updatehandlers.dll
[2017/04/28 04:09:33 | 000,525,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PrintDialogs.dll
[2017/04/28 04:09:29 | 001,109,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SharedStartModel.dll
[2017/04/28 04:09:20 | 000,368,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\puiobj.dll
[2017/04/28 04:09:13 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Security.Authentication.Web.Core.dll
[2017/04/28 04:09:13 | 000,352,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Enumeration.dll
[2017/04/28 04:08:57 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CryptoWinRT.dll
[2017/04/28 04:08:20 | 018,365,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\edgehtml.dll
[2017/04/28 04:08:18 | 000,653,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.AccountsControl.dll
[2017/04/28 04:08:12 | 007,626,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\twinui.dll
[2017/04/28 04:08:12 | 001,534,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Graphics.Printing.3D.dll
[2017/04/28 04:08:10 | 001,228,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usercpl.dll
[2017/04/28 04:07:58 | 000,754,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ngcsvc.dll
[2017/04/28 04:07:30 | 000,525,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\LogonController.dll
[2017/04/28 04:06:49 | 004,614,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.dll
[2017/04/28 04:06:49 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.dll
[2017/04/28 04:06:37 | 000,901,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Bluetooth.dll
[2017/04/28 04:06:11 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuuhext.dll
[2017/04/28 04:06:09 | 001,488,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\diagtrack.dll
[2017/04/28 04:06:01 | 000,691,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2017/04/28 04:05:51 | 003,733,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_47.dll
[2017/04/28 04:05:24 | 000,886,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\aadtb.dll
[2017/04/28 04:05:17 | 000,589,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Sensors.dll
[2017/04/28 04:04:14 | 001,323,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_fs.dll
[2017/04/28 04:04:09 | 001,284,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2017/04/28 04:03:57 | 001,137,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_health.dll
[2017/04/28 04:03:57 | 000,355,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\RTMediaFrame.dll
[2017/04/28 04:03:56 | 001,584,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wlidsvc.dll
[2017/04/28 04:03:55 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Energy.dll
[2017/04/28 04:03:40 | 001,077,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Editing.dll
[2017/04/28 04:03:14 | 000,291,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\adsnt.dll
[2017/04/28 04:03:10 | 000,318,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\LocationApi.dll
[2017/04/28 04:03:08 | 001,220,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\RecoveryDrive.exe
[2017/04/28 04:01:56 | 000,795,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MiracastReceiver.dll
[2017/04/28 04:01:46 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToDevice.dll
[2017/04/28 04:01:30 | 000,248,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dlnashext.dll
[2017/04/28 04:01:09 | 000,141,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dialclient.dll
[2017/04/28 04:00:58 | 000,300,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AudioEndpointBuilder.dll
[2017/04/28 04:00:40 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\umpoext.dll
[2017/04/28 04:00:36 | 000,582,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SpaceControl.dll
[2017/04/28 04:00:26 | 002,749,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mispace.dll
[2017/04/28 04:00:19 | 003,774,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SettingsHandlers_nt.dll
[2017/04/28 04:00:12 | 001,255,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\AzureSettingSyncProvider.dll
[2017/04/28 03:59:20 | 002,154,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\storagewmi.dll
[2017/04/28 03:59:07 | 000,758,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fvewiz.dll
[2017/04/28 03:59:03 | 000,220,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToReceiver.dll
[2017/04/28 03:58:35 | 000,433,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2.dll
[2017/04/28 03:58:01 | 000,113,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SpaceAgent.exe
[2017/04/28 03:57:58 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CameraCaptureUI.dll
[2017/04/28 03:57:54 | 001,221,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Audio.dll
[2017/04/28 03:57:40 | 001,247,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Globalization.dll
[2017/04/28 03:57:38 | 001,136,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wpncore.dll
[2017/04/28 03:57:35 | 000,719,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wsp_sr.dll
[2017/04/28 03:57:03 | 001,700,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smartscreen.exe
[2017/04/28 03:57:03 | 000,641,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MCRecvSrc.dll
[2017/04/28 03:56:35 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Media.Devices.dll
[2017/04/28 03:56:28 | 000,400,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\PlayToManager.dll
[2017/04/28 03:55:18 | 001,656,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Devices.Perception.dll
[2017/04/28 03:55:18 | 001,232,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Maps.dll
[2017/04/28 03:55:17 | 001,987,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssrch.dll
[2017/04/28 03:55:10 | 006,042,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Chakra.dll
[2017/04/28 03:55:06 | 001,413,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\OpcServices.dll
[2017/04/28 03:55:05 | 001,993,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dwmcore.dll
[2017/04/28 03:55:04 | 001,004,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Input.Inking.dll
[2017/04/28 03:54:51 | 002,747,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcore.dll
[2017/04/28 03:54:35 | 002,027,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl
[2017/04/28 03:54:35 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ShareHost.dll
[2017/04/28 03:54:34 | 003,664,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript9.dll
[2017/04/28 03:54:30 | 000,654,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MbaeApiPublic.dll
[2017/04/28 03:54:21 | 001,013,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Web.Http.dll
[2017/04/28 03:54:11 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dll
[2017/04/28 03:54:08 | 000,598,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Web.dll
[2017/04/28 03:54:07 | 002,646,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CertEnroll.dll
[2017/04/28 03:53:56 | 001,170,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.Xaml.Phone.dll
[2017/04/28 03:53:56 | 000,621,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.UI.dll
[2017/04/28 03:53:45 | 001,235,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32kbase.sys
[2017/04/28 03:53:34 | 000,798,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\authui.dll
[2017/04/28 03:53:18 | 000,751,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.dll
[2017/04/28 03:52:44 | 002,008,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DWrite.dll
[2017/04/28 03:52:28 | 002,994,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32kfull.sys
[2017/04/28 03:52:02 | 003,596,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcorets.dll
[2017/04/28 03:50:53 | 001,438,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ResetEngine.dll
[2017/04/28 03:50:53 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spaceman.exe
[2017/04/28 03:50:45 | 000,783,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\TSWorkspace.dll
[2017/04/26 11:34:56 | 000,010,676 | ---- | M] () -- D:\utillisateur\bureau\Facture4173.pdf
[2017/04/26 11:13:58 | 000,000,578 | ---- | M] () -- D:\utillisateur\bureau\SOINS 2000.lnk
[2017/04/26 11:13:54 | 000,000,497 | ---- | M] () -- C:\WINDOWS\sesam.ini
[2017/04/25 22:00:59 | 000,559,840 | ---- | M] (LOGISURM) -- C:\WINDOWS\uninsts2.exe
[2017/04/25 22:00:59 | 000,000,361 | ---- | M] () -- C:\WINDOWS\GALSS.INI
[2017/04/25 22:00:43 | 000,221,184 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\stsw32.dll
[2017/04/25 22:00:43 | 000,010,265 | ---- | M] () -- C:\WINDOWS\tablebin.ssv
[2017/04/25 22:00:42 | 000,532,480 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\srtw32.dll
[2017/04/25 22:00:42 | 000,372,736 | ---- | M] (GIE Sesam VITALE) -- C:\WINDOWS\SSVW32.DLL
[2017/04/25 22:00:42 | 000,368,640 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\sjsw32.dll
[2017/04/25 22:00:42 | 000,188,416 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\stsrw32.dll
[2017/04/25 22:00:42 | 000,184,320 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\stsmw32.dll
[2017/04/25 22:00:42 | 000,172,032 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\sts4w32.dll
[2017/04/25 22:00:42 | 000,122,880 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\sts8w32.dll
[2017/04/25 22:00:42 | 000,114,688 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\stsuw32.dll
[2017/04/25 22:00:42 | 000,103,936 | ---- | M] (GIE) -- C:\WINDOWS\sisw32.dll
[2017/04/25 22:00:42 | 000,086,016 | ---- | M] (GIE SESAM-VITALE) -- C:\WINDOWS\smcw32.dll
[2017/04/25 22:00:42 | 000,073,728 | ---- | M] (GIP-CPS) -- C:\WINDOWS\cptabw32.dll
[2017/04/25 22:00:42 | 000,061,440 | ---- | M] (GIP CPS) -- C:\WINDOWS\Sscasw32.dll
[2017/04/25 22:00:42 | 000,045,056 | ---- | M] (G.I.E. SESAM VITALE) -- C:\WINDOWS\sgdw32.dll
[2017/04/25 22:00:42 | 000,032,768 | ---- | M] (GIE SESAM VITALE) -- C:\WINDOWS\smsw32.dll
[2017/04/25 22:00:42 | 000,024,158 | ---- | M] () -- C:\WINDOWS\DICO-FR.GIP
[2017/04/25 22:00:41 | 000,217,088 | ---- | M] (GIP CPS) -- C:\WINDOWS\cpsw32.dll
[2017/04/25 22:00:41 | 000,094,208 | ---- | M] (GIE) -- C:\WINDOWS\Galssw32.dll
[2017/04/25 22:00:41 | 000,090,112 | ---- | M] (GIE) -- C:\WINDOWS\Pssinw32.dll
[2017/04/25 22:00:41 | 000,051,808 | ---- | M] (ILEX) -- C:\WINDOWS\Galsvw32.exe
[2017/04/25 22:00:41 | 000,049,152 | ---- | M] (ILEX) -- C:\WINDOWS\Galinw32.dll
[2017/04/25 22:00:41 | 000,049,152 | ---- | M] (ILEX) -- C:\WINDOWS\Galclw32.dll
[2017/04/25 22:00:41 | 000,049,152 | ---- | M] (GIP-CPS) -- C:\WINDOWS\Cpdicw32.dll
[2017/04/25 22:00:41 | 000,045,056 | ---- | M] () -- C:\WINDOWS\atlw32.dll
[2017/04/25 22:00:41 | 000,030,720 | ---- | M] (GIP CPS) -- C:\WINDOWS\cpsvb432.dll
[2017/04/25 22:00:40 | 000,408,160 | ---- | M] (GIP CPS) -- C:\WINDOWS\cpgesw32.exe
[2017/04/25 22:00:40 | 000,368,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vbar332.dll
[2017/04/25 22:00:40 | 000,251,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrd2x35.dll
[2017/04/25 22:00:39 | 001,039,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjet35.dll
[2017/04/25 22:00:39 | 000,037,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjint35.dll
[2017/04/25 22:00:39 | 000,024,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjter35.dll
[2017/04/25 07:41:16 | 000,001,209 | ---- | M] () -- C:\Users\Public\Desktop\LibreOffice 5.2.lnk
[2017/04/25 06:41:28 | 000,000,451 | ---- | M] () -- C:\WINDOWS\System32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
[2017/04/25 06:27:54 | 000,015,425 | ---- | M] () -- C:\WINDOWS\System32\OEMDefaultAssociations.xml
[2017/04/25 06:20:04 | 000,097,792 | ---- | M] (pdfforge GmbH) -- C:\WINDOWS\System32\pdfcmon.dll
[2017/04/25 05:46:25 | 000,095,808 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2017/04/25 05:27:37 | 000,430,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2017/04/25 05:24:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2017/04/25 00:19:02 | 000,007,623 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2017/04/25 00:19:02 | 000,007,623 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2017/04/25 00:15:30 | 000,021,680 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2017/04/24 21:19:11 | 000,000,144 | ---- | M] () -- C:\WINDOWS\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
[2017/04/21 21:02:32 | 000,007,334 | ---- | M] () -- D:\utillisateur\bureau\PREL.odt
[2017/04/21 11:55:08 | 000,021,766 | ---- | M] () -- D:\utillisateur\bureau\anamnèse vierge.pdf

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2017/05/18 17:08:45 | 000,509,086 | ---- | C] () -- D:\utillisateur\bureau\billet air austral juin 2017.prn
[2017/05/15 10:22:48 | 000,066,720 | ---- | C] () -- D:\utillisateur\bureau\emploi-du-temps-hebdomadaire-5-jours.pdf
[2017/05/12 12:38:48 | 000,030,764 | ---- | C] () -- D:\utillisateur\bureau\bookmarks.html
[2017/05/12 12:30:29 | 000,001,190 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2017/05/11 19:33:41 | 002,048,488 | ---- | C] () -- C:\WINDOWS\System32\CoreUIComponents.dll
[2017/04/26 11:34:52 | 000,010,676 | ---- | C] () -- D:\utillisateur\bureau\Facture4173.pdf
[2017/04/25 22:23:00 | 000,001,318 | ---- | C] () -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk
[2017/04/25 22:01:03 | 000,000,660 | ---- | C] () -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SOINS 2000.lnk
[2017/04/25 22:01:02 | 000,000,578 | ---- | C] () -- D:\utillisateur\bureau\SOINS 2000.lnk
[2017/04/25 22:00:59 | 000,000,361 | ---- | C] () -- C:\WINDOWS\GALSS.INI
[2017/04/25 22:00:43 | 000,010,265 | ---- | C] () -- C:\WINDOWS\tablebin.ssv
[2017/04/25 22:00:42 | 000,024,158 | ---- | C] () -- C:\WINDOWS\DICO-FR.GIP
[2017/04/25 22:00:42 | 000,000,497 | ---- | C] () -- C:\WINDOWS\sesam.ini
[2017/04/25 22:00:41 | 000,045,056 | ---- | C] () -- C:\WINDOWS\atlw32.dll
[2017/04/25 21:33:54 | 000,002,476 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
[2017/04/25 21:33:54 | 000,002,461 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
[2017/04/25 21:33:54 | 000,002,459 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
[2017/04/25 21:33:54 | 000,002,449 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
[2017/04/25 21:33:54 | 000,002,449 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
[2017/04/25 21:33:54 | 000,002,399 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
[2017/04/25 21:33:53 | 000,002,476 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
[2017/04/25 07:41:15 | 000,001,209 | ---- | C] () -- C:\Users\Public\Desktop\LibreOffice 5.2.lnk
[2017/04/25 06:49:40 | 000,001,002 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
[2017/04/25 06:03:22 | 000,002,457 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
[2017/04/25 05:56:58 | 000,448,285 | ---- | C] () -- C:\WINDOWS\System32\ApnDatabase.xml
[2017/04/25 05:56:53 | 000,001,144 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
[2017/04/25 05:55:29 | 000,265,728 | ---- | C] () -- C:\WINDOWS\System32\Windows.Perception.Stub.dll
[2017/04/25 05:33:29 | 000,000,756 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
[2017/04/25 05:24:19 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2017/04/25 05:23:51 | 000,000,451 | ---- | C] () -- C:\WINDOWS\System32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
[2017/04/25 05:06:39 | 000,002,432 | ---- | C] () -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
[2017/04/25 02:47:15 | 000,051,148 | ---- | C] () -- C:\WINDOWS\System32\license.rtf
[2017/04/25 00:18:50 | 000,007,623 | ---- | C] () -- C:\WINDOWS\diagwrn.xml
[2017/04/25 00:18:50 | 000,007,623 | ---- | C] () -- C:\WINDOWS\diagerr.xml
[2017/04/25 00:15:30 | 000,021,680 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2017/04/25 00:12:43 | 016,777,216 | -HS- | C] () -- C:\swapfile.sys
[2017/04/25 00:05:10 | 819,351,552 | -HS- | C] () -- C:\hiberfil.sys
[2017/04/25 00:02:06 | 000,001,544 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2017/04/24 23:54:19 | 000,000,352 | ---- | C] () -- C:\Users\odz-plus.com\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2017/04/24 23:54:19 | 000,000,334 | ---- | C] () -- C:\Users\odz-plus.com\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2017/04/24 23:49:29 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2017/04/24 23:48:23 | 000,405,960 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2017/04/24 21:19:53 | 000,001,264 | ---- | C] () -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RtkGUI.lnk
[2017/04/24 21:19:11 | 000,000,144 | ---- | C] () -- C:\WINDOWS\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
[2017/04/22 16:11:10 | 000,627,327 | ---- | C] () -- D:\utillisateur\bureau\LM theo2017(1).pages.odt
[2017/04/22 16:11:10 | 000,030,021 | ---- | C] () -- D:\utillisateur\bureau\PAKSA A FAIRE.odt
[2017/04/22 16:11:10 | 000,007,334 | ---- | C] () -- D:\utillisateur\bureau\PREL.odt
[2017/04/22 16:11:09 | 003,410,881 | ---- | C] () -- D:\utillisateur\bureau\lapin marque page.odt
[2017/04/22 16:11:09 | 000,258,578 | ---- | C] () -- D:\utillisateur\bureau\bulletin-hp.pdf
[2017/04/22 16:11:09 | 000,021,766 | ---- | C] () -- D:\utillisateur\bureau\anamnèse vierge.pdf
[2016/07/16 21:15:41 | 000,681,770 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat
[2016/07/16 21:15:41 | 000,350,774 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat
[2016/07/16 21:15:41 | 000,141,454 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat
[2016/07/16 21:15:41 | 000,040,528 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat
[2016/07/16 12:31:24 | 000,296,742 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2016/07/16 12:31:24 | 000,033,362 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2016/07/16 12:31:21 | 000,820,644 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2016/07/16 12:31:21 | 000,211,268 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2016/07/16 12:30:03 | 000,215,943 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2016/07/16 12:30:03 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\NOISE.DAT
[2016/07/16 12:25:59 | 000,055,296 | ---- | C] () -- C:\WINDOWS\System32\BWContextHandler.dll
[2016/07/16 12:25:51 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\GamePanelExternalHook.dll
[2016/07/16 12:25:50 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\IHDS.dll
[2016/07/16 12:25:49 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\settings.dat
[2016/07/16 12:25:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2016/07/16 12:25:30 | 004,227,116 | ---- | C] () -- C:\WINDOWS\System32\DefaultHrtfs.bin
[2016/07/16 12:25:30 | 000,304,640 | ---- | C] () -- C:\WINDOWS\System32\HrtfApo.dll
[2016/07/16 12:25:30 | 000,149,044 | ---- | C] () -- C:\WINDOWS\System32\LargeRoom.bin
[2016/07/16 12:25:30 | 000,110,024 | ---- | C] () -- C:\WINDOWS\System32\MediumRoom.bin
[2016/07/16 12:25:30 | 000,069,776 | ---- | C] () -- C:\WINDOWS\System32\SmallRoom.bin
[2016/07/16 12:25:30 | 000,046,908 | ---- | C] () -- C:\WINDOWS\System32\OutdoorAudioEnvironment.bin
[2016/07/16 12:25:21 | 000,056,119 | ---- | C] () -- C:\WINDOWS\System32\srms.dat
[2016/07/16 12:25:08 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\BthpanContextHandler.dll
[2016/07/16 12:25:08 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2016/07/16 12:25:08 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\VpnSohDesktop.dll
[2016/07/16 12:25:08 | 000,002,307 | ---- | C] () -- C:\WINDOWS\System32\WimBootCompress.ini
[2016/07/16 12:25:07 | 000,190,976 | ---- | C] () -- C:\WINDOWS\System32\ism32k.dll
[2016/07/16 12:25:07 | 000,167,640 | ---- | C] () -- C:\WINDOWS\System32\chs_singlechar_pinyin.dat
[2016/07/16 12:25:01 | 000,062,976 | ---- | C] () -- C:\WINDOWS\System32\drivers\NetAdapterCx.sys
[2016/05/03 23:26:10 | 000,111,624 | ---- | C] () -- C:\WINDOWS\System32\IccLibDll.dll
[2016/05/03 23:26:06 | 000,200,200 | ---- | C] () -- C:\WINDOWS\System32\igdde32.dll
[2016/05/03 23:26:06 | 000,161,288 | ---- | C] () -- C:\WINDOWS\System32\igdail32.dll
[2016/05/03 23:26:06 | 000,097,800 | ---- | C] () -- C:\WINDOWS\System32\igfxCUIServicePS.dll
[2016/05/03 23:26:06 | 000,087,048 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDHLibv2_0.dll
[2016/05/03 23:26:06 | 000,077,320 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDHLib.dll
[2016/05/03 23:26:06 | 000,028,168 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDILibv2_0.dll
[2016/05/03 23:26:06 | 000,028,168 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxDILib.dll
[2016/05/03 23:26:06 | 000,027,656 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxEMLibv2_0.dll
[2016/05/03 23:26:06 | 000,027,656 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxEMLib.dll
[2016/05/03 23:26:06 | 000,022,536 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxLHMLibv2_0.dll
[2016/05/03 23:26:06 | 000,022,536 | ---- | C] ( ) -- C:\WINDOWS\System32\igfxLHMLib.dll
[2015/07/11 00:41:10 | 000,000,895 | ---- | C] () -- C:\WINDOWS\System32\Gfxv2_0.exe.config
[2015/07/11 00:41:10 | 000,000,895 | ---- | C] () -- C:\WINDOWS\System32\DPTopologyAppv2_0.exe.config
[2015/07/11 00:41:10 | 000,000,889 | ---- | C] () -- C:\WINDOWS\System32\Gfxv4_0.exe.config
[2015/07/11 00:41:10 | 000,000,889 | ---- | C] () -- C:\WINDOWS\System32\DPTopologyApp.exe.config
[2015/07/11 00:41:08 | 000,000,895 | ---- | C] () -- C:\WINDOWS\System32\CustomModeAppv2_0.exe.config
[2015/07/11 00:41:08 | 000,000,889 | ---- | C] () -- C:\WINDOWS\System32\CustomModeApp.exe.config

[color=#E56717]========== ZeroAccess Check ==========[/color]


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2017/04/28 04:46:03 | 005,722,320 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2016/07/16 12:25:47 | 000,779,776 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2016/07/16 12:25:47 | 000,404,480 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== LOP Check ==========[/color]

[2017/04/25 05:33:29 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Canneverbe Limited
[2017/04/25 07:43:46 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\LibreOffice
[2017/04/26 11:15:51 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\TeamViewer

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< 1 >[/color]
[2017/04/25 00:15:28 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT

[color=#A23BEC]< 2 >[/color]

[color=#A23BEC]< 3 >[/color]

[color=#A23BEC]< 4 >[/color]

[color=#A23BEC]< 5 >[/color]

[color=#A23BEC]< 6 >[/color]

[color=#A23BEC]< 7 >[/color]

[color=#A23BEC]< 8 >[/color]

[color=#A23BEC]< 9 >[/color]

[color=#A23BEC]< 10 >[/color]

[color=#A23BEC]< 11 >[/color]

[color=#A23BEC]< 12 >[/color]

[color=#A23BEC]< 13 >[/color]

[color=#A23BEC]< 14 >[/color]

[color=#A23BEC]< 15 >[/color]

[color=#A23BEC]< 16 >[/color]

[color=#A23BEC]< 17 >[/color]

[color=#A23BEC]< 18 >[/color]

[color=#A23BEC]< 19 >[/color]

[color=#A23BEC]< 20 >[/color]

[color=#A23BEC]< 21 >[/color]

[color=#A23BEC]< 22 >[/color]

[color=#A23BEC]< 23 >[/color]

[color=#A23BEC]< 24 >[/color]

[color=#A23BEC]< 25 >[/color]

[color=#A23BEC]< 26 >[/color]

[color=#A23BEC]< 27 >[/color]

[color=#A23BEC]< 28 >[/color]

[color=#A23BEC]< 29 >[/color]

[color=#A23BEC]< 30 >[/color]

[color=#A23BEC]< 31 >[/color]

[color=#A23BEC]< 32 >[/color]

[color=#A23BEC]< 33 >[/color]

[color=#A23BEC]< 34 >[/color]

[color=#A23BEC]< 35 >[/color]

[color=#A23BEC]< 36 >[/color]

[color=#A23BEC]< 37 >[/color]

[color=#A23BEC]< 38 >[/color]

[color=#A23BEC]< 39 >[/color]

[color=#A23BEC]< 40 >[/color]

[color=#A23BEC]< 41 >[/color]

[color=#A23BEC]< 42 >[/color]

[color=#A23BEC]< 43 >[/color]

[color=#A23BEC]< 44 >[/color]

[color=#A23BEC]< 45 >[/color]

[color=#A23BEC]< 46 >[/color]

[color=#A23BEC]< 47 >[/color]

[color=#A23BEC]< 48 >[/color]

[color=#A23BEC]< 49 >[/color]

[color=#A23BEC]< 50 >[/color]

[color=#A23BEC]< 51 >[/color]

[color=#A23BEC]< 52 >[/color]

[color=#A23BEC]< 53 >[/color]

[color=#A23BEC]< 54 >[/color]

[color=#A23BEC]< 55 >[/color]

[color=#A23BEC]< 56 >[/color]

[color=#A23BEC]< 57 >[/color]

[color=#A23BEC]< 58 >[/color]

[color=#A23BEC]< 59 >[/color]

[color=#A23BEC]< 60 >[/color]

[color=#A23BEC]< 61 >[/color]

[color=#A23BEC]< 62 >[/color]

[color=#A23BEC]< 63 >[/color]

[color=#A23BEC]< 64 >[/color]

[color=#A23BEC]< 65 >[/color]

[color=#A23BEC]< 66 >[/color]

[color=#A23BEC]< 67 >[/color]

[color=#A23BEC]< 68 >[/color]

[color=#A23BEC]< 69 >[/color]

[color=#A23BEC]< 70 >[/color]

[color=#A23BEC]< 71 >[/color]

[color=#A23BEC]< 72 >[/color]

[color=#A23BEC]< 73 >[/color]

[color=#A23BEC]< 74 >[/color]

[color=#A23BEC]< 75 >[/color]

[color=#A23BEC]< 76 >[/color]

[color=#A23BEC]< 77 >[/color]

[color=#A23BEC]< 78 >[/color]

[color=#A23BEC]< 79 >[/color]

[color=#A23BEC]< 80 >[/color]

[color=#A23BEC]< 81 >[/color]

[color=#A23BEC]< 82 >[/color]

[color=#A23BEC]< >[/color]

[color=#A23BEC]< HKCU\Software >[/color]

[HKEY_CURRENT_USER\Software\7-Zip]

[HKEY_CURRENT_USER\Software\Acer]

[HKEY_CURRENT_USER\Software\Adobe]

[HKEY_CURRENT_USER\Software\AppDataLow]

[HKEY_CURRENT_USER\Software\Canneverbe Limited]

[HKEY_CURRENT_USER\Software\Chromium]

[HKEY_CURRENT_USER\Software\Clients]

[HKEY_CURRENT_USER\Software\g3n-h@ckm@n]

[HKEY_CURRENT_USER\Software\Google]

[HKEY_CURRENT_USER\Software\Intel]

[HKEY_CURRENT_USER\Software\JavaSoft]

[HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications]

[HKEY_CURRENT_USER\Software\McAfee]

[HKEY_CURRENT_USER\Software\Microsoft]

[HKEY_CURRENT_USER\Software\Mine]

[HKEY_CURRENT_USER\Software\Mozilla]

[HKEY_CURRENT_USER\Software\Netscape]

[HKEY_CURRENT_USER\Software\ODBC]

[HKEY_CURRENT_USER\Software\OEM]

[HKEY_CURRENT_USER\Software\paint.net]

[HKEY_CURRENT_USER\Software\PDF Architect 5]

[HKEY_CURRENT_USER\Software\pdfforge]

[HKEY_CURRENT_USER\Software\Policies]

[HKEY_CURRENT_USER\Software\Realtek]

[HKEY_CURRENT_USER\Software\RegisteredApplications]

[HKEY_CURRENT_USER\Software\SyncEngines]

[HKEY_CURRENT_USER\Software\sysinternals]

[HKEY_CURRENT_USER\Software\TeamViewer]

[HKEY_CURRENT_USER\Software\The Document Foundation]

[HKEY_CURRENT_USER\Software\Wow6432Node]

[HKEY_CURRENT_USER\Software\Classes]

[color=#A23BEC]< HKCU\Software\AppDataLow /s >[/color]
[HKEY_CURRENT_USER\Software\AppDataLow\Software]
[HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft]
[HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft\Internet Explorer]
[HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft\RepService]
"i" = {7E4F416C-EFB1-4095-A6A9-9B188B439787} [binary data]
"NN" = 131396530275820239 [binary data]
[HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft\Windows]
[HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft\Windows\CurrentVersion]
[HKEY_CURRENT_USER\Software\AppDataLow\Software\Microsoft\Windows\CurrentVersion\Lock Screen]

[color=#A23BEC]< HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /s >[/color]

[color=#A23BEC]< HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /s >[/color]

[color=#A23BEC]< HKLM\Software >[/color]

[HKEY_LOCAL_MACHINE\Software\7-Zip]

[HKEY_LOCAL_MACHINE\Software\acer]

[HKEY_LOCAL_MACHINE\Software\Adobe]

[HKEY_LOCAL_MACHINE\Software\Apple Inc.]

[HKEY_LOCAL_MACHINE\Software\Canneverbe Limited]

[HKEY_LOCAL_MACHINE\Software\Classes]

[HKEY_LOCAL_MACHINE\Software\Clients]

[HKEY_LOCAL_MACHINE\Software\Foxit Software]

[HKEY_LOCAL_MACHINE\Software\g3n-h@ckm@n]

[HKEY_LOCAL_MACHINE\Software\Google]

[HKEY_LOCAL_MACHINE\Software\Intel]

[HKEY_LOCAL_MACHINE\Software\JavaSoft]

[HKEY_LOCAL_MACHINE\Software\JreMetrics]

[HKEY_LOCAL_MACHINE\Software\Khronos]

[HKEY_LOCAL_MACHINE\Software\LibreOffice]

[HKEY_LOCAL_MACHINE\Software\LOGISURM]

[HKEY_LOCAL_MACHINE\Software\Macromedia]

[HKEY_LOCAL_MACHINE\Software\Microsoft]

[HKEY_LOCAL_MACHINE\Software\Mozilla]

[HKEY_LOCAL_MACHINE\Software\mozilla.org]

[HKEY_LOCAL_MACHINE\Software\MozillaPlugins]

[HKEY_LOCAL_MACHINE\Software\ODBC]

[HKEY_LOCAL_MACHINE\Software\OEM]

[HKEY_LOCAL_MACHINE\Software\OldTimer Tools]

[HKEY_LOCAL_MACHINE\Software\paint.net]

[HKEY_LOCAL_MACHINE\Software\Partner]

[HKEY_LOCAL_MACHINE\Software\PDF Architect 5]

[HKEY_LOCAL_MACHINE\Software\pdfforge]

[HKEY_LOCAL_MACHINE\Software\Policies]

[HKEY_LOCAL_MACHINE\Software\Realtek]

[HKEY_LOCAL_MACHINE\Software\REALTEK Semiconductor Corp.]

[HKEY_LOCAL_MACHINE\Software\RegisteredApplications]

[HKEY_LOCAL_MACHINE\Software\RtWLan]

[HKEY_LOCAL_MACHINE\Software\SyncIntegrationClients]

[HKEY_LOCAL_MACHINE\Software\sysinternals]

[HKEY_LOCAL_MACHINE\Software\TeamViewer]

[HKEY_LOCAL_MACHINE\Software\The Document Foundation]

[HKEY_LOCAL_MACHINE\Software\VideoLAN]

[HKEY_LOCAL_MACHINE\Software\WOW6432Node]

[color=#A23BEC]< HKCU\Software\Microsoft\Command Processor /s >[/color]
"CompletionChar" = 9
"DefaultColor" = 0
"EnableExtensions" = 1
"PathCompletionChar" = 9

[color=#A23BEC]< HKLM\Software\Microsoft\Command Processor /s >[/color]
"CompletionChar" = 64
"DefaultColor" = 0
"EnableExtensions" = 1
"PathCompletionChar" = 64

[color=#A23BEC]< HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /s >[/color]
"NoRecentDocsHistory" = 0

[color=#A23BEC]< HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System /s >[/color]
"ConsentPromptBehaviorAdmin" = 5
"ConsentPromptBehaviorUser" = 3
"DSCAutomationHostEnabled" = 2
"EnableCursorSuppression" = 1
"EnableInstallerDetection" = 1
"EnableLUA" = 1
"EnableSecureUIAPaths" = 1
"EnableUIADesktopToggle" = 0
"EnableVirtualization" = 1
"PromptOnSecureDesktop" = 1
"ValidateAdminCodeSignatures" = 0
"undockwithoutlogon" = 1
"dontdisplaylastusername" = 0
"legalnoticecaption" =
"legalnoticetext" =
"scforceoption" = 0
"shutdownwithoutlogon" = 1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI\Clipboard]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI\Clipboard\ExceptionFormats]
"CF_BITMAP" = 2
"CF_DIB" = 8
"CF_DIBV5" = 17
"CF_OEMTEXT" = 7
"CF_PALETTE" = 9
"CF_TEXT" = 1
"CF_UNICODETEXT" = 13

[color=#A23BEC]< HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU /s >[/color]

[color=#A23BEC]< HKLM\System\CurrentControlSet\Control\Session Manager\AppcertDlls /s >[/color]

[color=#A23BEC]< %Homedrive%\* >[/color]
[2013/08/22 12:16:34 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2014/03/18 11:39:03 | 000,398,356 | RHS- | M] () -- C:\bootmgr
[2013/06/18 16:18:29 | 000,000,001 | -HS- | M] () -- C:\BOOTNXT
[2013/08/22 12:16:34 | 000,000,010 | ---- | M] () -- C:\config.sys
[2017/05/21 08:09:36 | 819,351,552 | -HS- | M] () -- C:\hiberfil.sys
[2017/05/20 19:56:14 | 1251,028,992 | -HS- | M] () -- C:\pagefile.sys
[2017/05/16 12:52:59 | 000,144,427 | ---- | M] () -- C:\QuickDiag.txt
[2017/04/25 09:12:20 | 000,000,000 | ---- | M] () -- C:\Recovery.txt
[2017/05/12 12:54:15 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys

[color=#A23BEC]< %Homedrive%\*. >[/color]
[2017/04/25 06:41:25 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin
[2013/08/22 11:23:42 | 000,000,000 | -HSD | M] -- C:\Documents and Settings
[2015/01/27 00:08:16 | 000,000,000 | -H-D | M] -- C:\Intel
[2017/04/25 05:42:25 | 000,000,000 | -H-D | M] -- C:\OEM
[2017/05/20 19:26:25 | 000,000,000 | -H-D | M] -- C:\OneDriveTemp
[2016/07/16 12:29:57 | 000,000,000 | ---D | M] -- C:\PerfLogs
[2017/05/19 15:47:12 | 000,000,000 | R--D | M] -- C:\Program Files
[2017/04/25 06:20:07 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2017/05/16 12:52:19 | 000,000,000 | ---D | M] -- C:\QuickDiag
[2017/04/24 23:51:51 | 000,000,000 | -HSD | M] -- C:\Recovery
[2017/05/19 23:06:13 | 000,000,000 | ---D | M] -- C:\s2000
[2017/05/19 18:55:07 | 000,000,000 | ---D | M] -- C:\SAUVE S2
[2017/04/25 22:03:37 | 000,000,000 | ---D | M] -- C:\sesam
[2017/05/20 20:00:49 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2017/04/24 23:58:18 | 000,000,000 | R--D | M] -- C:\Users
[2017/05/12 12:52:55 | 000,000,000 | ---D | M] -- C:\Windows

[color=#A23BEC]< %Homedrive%\Recycler\*.exe /s >[/color]

[color=#A23BEC]< %Homedrive%\Recycler\*.scr /s >[/color]

[color=#A23BEC]< %Homedrive%\Recycler\*.pif /s >[/color]

[color=#A23BEC]< %Homedrive%\Recycler\*.vb* /s >[/color]

[color=#A23BEC]< %Homedrive%\$Recycle.bin\*.exe /s >[/color]

[color=#A23BEC]< %Homedrive%\$Recycle.bin\*.scr /s >[/color]

[color=#A23BEC]< %Homedrive%\$Recycle.bin\*.pif /s >[/color]

[color=#A23BEC]< %Homedrive%\$Recycle.bin\*.vb* /s >[/color]

[color=#A23BEC]< %Userprofile%\* >[/color]
[2017/05/19 23:14:33 | 003,932,160 | -H-- | M] () -- C:\Users\odz-plus.com\NTUSER.DAT
[2017/04/24 23:54:20 | 000,319,488 | -HS- | M] () -- C:\Users\odz-plus.com\ntuser.dat.LOG1
[2017/04/24 23:54:20 | 000,997,376 | -HS- | M] () -- C:\Users\odz-plus.com\ntuser.dat.LOG2
[2017/04/26 18:13:38 | 000,065,536 | -HS- | M] () -- C:\Users\odz-plus.com\NTUSER.DAT{e1646c95-2926-11e7-8091-a813502677fc}.TM.blf
[2017/04/26 18:13:38 | 000,524,288 | -HS- | M] () -- C:\Users\odz-plus.com\NTUSER.DAT{e1646c95-2926-11e7-8091-a813502677fc}.TMContainer00000000000000000001.regtrans-ms
[2017/04/24 23:54:20 | 000,524,288 | -HS- | M] () -- C:\Users\odz-plus.com\NTUSER.DAT{e1646c95-2926-11e7-8091-a813502677fc}.TMContainer00000000000000000002.regtrans-ms
[2017/04/25 05:04:02 | 000,000,020 | -HS- | M] () -- C:\Users\odz-plus.com\ntuser.ini

[color=#A23BEC]< %Userprofile%\*. >[/color]
[2017/04/24 23:54:54 | 000,000,000 | -H-D | M] -- C:\Users\odz-plus.com\AppData
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Application Data
[2017/05/11 22:17:31 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Contacts
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Cookies
[2017/04/25 05:49:21 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Desktop
[2017/05/12 13:08:01 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Favorites
[2017/05/20 19:25:54 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\IntelGraphicsProfiles
[2017/05/11 22:17:33 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Links
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Local Settings
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Menu Démarrer
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Mes documents
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Modèles
[2017/05/20 19:26:25 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\OneDrive
[2017/04/24 21:19:51 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\PicStream
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Recent
[2017/05/11 22:17:33 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Saved Games
[2017/05/11 22:17:32 | 000,000,000 | R--D | M] -- C:\Users\odz-plus.com\Searches
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\SendTo
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Voisinage d'impression
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\Voisinage réseau

[color=#A23BEC]< %Allusersprofile%\* >[/color]

[color=#A23BEC]< %Allusersprofile%\*. >[/color]
[2017/04/25 05:42:34 | 000,000,000 | ---D | M] -- C:\ProgramData\Acer
[2017/04/25 06:53:28 | 000,000,000 | ---D | M] -- C:\ProgramData\Adobe
[2017/04/25 00:19:37 | 000,000,000 | -HSD | M] -- C:\ProgramData\Application Data
[2017/04/25 00:13:17 | 000,000,000 | -HSD | M] -- C:\ProgramData\Bureau
[2016/07/16 12:29:57 | 000,000,000 | ---D | M] -- C:\ProgramData\Comms
[2017/04/25 00:19:37 | 000,000,000 | -HSD | M] -- C:\ProgramData\Documents
[2017/04/24 23:57:38 | 000,000,000 | ---D | M] -- C:\ProgramData\McAfee
[2017/04/25 00:13:17 | 000,000,000 | -HSD | M] -- C:\ProgramData\Menu Démarrer
[2017/05/15 09:51:59 | 000,000,000 | --SD | M] -- C:\ProgramData\Microsoft
[2017/04/25 05:06:13 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft OneDrive
[2017/04/25 00:13:17 | 000,000,000 | -HSD | M] -- C:\ProgramData\Modèles
[2017/04/25 05:48:41 | 000,000,000 | ---D | M] -- C:\ProgramData\OEM
[2017/04/24 21:19:30 | 000,000,000 | ---D | M] -- C:\ProgramData\OEM_YAHOO
[2017/04/25 05:47:25 | 000,000,000 | ---D | M] -- C:\ProgramData\Oracle
[2017/05/19 18:13:26 | 000,000,000 | ---D | M] -- C:\ProgramData\Package Cache
[2017/04/25 06:20:07 | 000,000,000 | ---D | M] -- C:\ProgramData\PDF Architect 5
[2017/05/13 17:20:31 | 000,000,000 | ---D | M] -- C:\ProgramData\regid.1991-06.com.microsoft
[2016/07/16 12:29:57 | 000,000,000 | ---D | M] -- C:\ProgramData\SoftwareDistribution
[2017/04/25 00:20:50 | 000,000,000 | ---D | M] -- C:\ProgramData\USOPrivate
[2017/04/25 00:20:50 | 000,000,000 | ---D | M] -- C:\ProgramData\USOShared

[color=#A23BEC]< %LocalAppData%\* >[/color]
[2017/05/19 23:14:30 | 000,189,788 | -H-- | M] () -- C:\Users\odz-plus.com\AppData\Local\IconCache.db

[color=#A23BEC]< %LocalAppData%\*. >[/color]
[2017/04/25 05:48:07 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Acer
[2017/04/25 05:14:08 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Acer Aspire R7 Tutorial
[2017/05/01 19:31:46 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Adobe
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\AppData\Local\Application Data
[2017/04/28 08:26:55 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\CEF
[2017/04/25 05:44:46 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\clear.fi
[2017/04/26 16:25:58 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Comms
[2017/04/25 05:24:27 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\ConnectedDevicesPlatform
[2017/05/20 19:36:01 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\CrashDumps
[2017/04/25 06:20:23 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Google
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\AppData\Local\Historique
[2017/05/01 19:39:20 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Macromedia
[2017/05/15 09:57:06 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Microsoft
[2017/04/25 05:33:33 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\MicrosoftEdge
[2017/04/25 21:02:14 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Mozilla
[2017/04/25 05:56:18 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\NetworkTiles
[2017/04/24 21:19:23 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\OEM
[2017/05/17 16:29:57 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Packages
[2017/04/26 11:51:21 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\PackageStaging
[2017/04/25 05:59:38 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\paint.net
[2017/04/26 11:34:32 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\PDFCreator
[2017/04/25 05:30:18 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Programs
[2017/04/25 05:04:36 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Publishers
[2017/05/19 17:50:44 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\speech
[2017/05/21 08:13:08 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\Temp
[2017/04/24 23:54:20 | 000,000,000 | -HSD | M] -- C:\Users\odz-plus.com\AppData\Local\Temporary Internet Files
[2017/04/25 05:04:05 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\TileDataLayer
[2017/04/26 11:34:03 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Local\VirtualStore

[color=#A23BEC]< %AppData%\* >[/color]

[color=#A23BEC]< %AppData%\*. >[/color]
[2017/04/28 08:26:44 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Adobe
[2017/04/25 05:33:29 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Canneverbe Limited
[2017/04/25 07:43:46 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\LibreOffice
[2017/04/24 21:20:42 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Macromedia
[2017/05/16 17:36:50 | 000,000,000 | --SD | M] -- C:\Users\odz-plus.com\AppData\Roaming\Microsoft
[2017/04/25 05:41:40 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Mozilla
[2017/04/25 05:08:50 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Skype
[2017/04/25 05:46:55 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\Sun
[2017/04/26 11:15:51 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\TeamViewer
[2017/04/25 06:17:41 | 000,000,000 | ---D | M] -- C:\Users\odz-plus.com\AppData\Roaming\vlc

[color=#A23BEC]< %Userprofile%\Local Settings\* >[/color]

[color=#A23BEC]< %Userprofile%\Local Settings\*. >[/color]

[color=#A23BEC]< %Userprofile%\Local Settings\Application Data\* >[/color]

[color=#A23BEC]< %Userprofile%\Local Settings\Application Data\*. >[/color]

[color=#A23BEC]< %Userprofile%\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave\FlashWritableRoot\#SharedObjects\* >[/color]

[color=#A23BEC]< %Userprofile%\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave\FlashWritableRoot\#SharedObjects\*. >[/color]

[color=#A23BEC]< %Userprofile%\Local Settings\Application Data\Google\Chrome\User Data\Default\Pepper Data\Shockwave FlashWritableRoot\#SharedObjects\* >[/color]

[color=#A23BEC]< %Userprofile%\Local Settings\Application Data\Google\Chrome\User Data\Default\Pepper Data\Shockwave FlashWritableRoot\#SharedObjects\*. >[/color]

[color=#A23BEC]< %programFiles%\* >[/color]
[2016/07/16 12:27:55 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini

[color=#A23BEC]< %programFiles%\*. >[/color]
[2017/04/24 21:19:23 | 000,000,000 | ---D | M] -- C:\Program Files\Accessory Store
[2017/04/25 05:52:45 | 000,000,000 | ---D | M] -- C:\Program Files\Acer
[2017/04/25 06:02:43 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2017/04/24 23:56:40 | 000,000,000 | ---D | M] -- C:\Program Files\Booking.COM
[2017/04/24 23:56:41 | 000,000,000 | ---D | M] -- C:\Program Files\Cisco
[2017/05/13 17:20:06 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2017/04/24 23:57:02 | 000,000,000 | ---D | M] -- C:\Program Files\Dropbox
[2017/04/25 00:13:17 | 000,000,000 | -HSD | M] -- C:\Program Files\Fichiers communs
[2017/04/25 05:54:12 | 000,000,000 | ---D | M] -- C:\Program Files\Foxit PhantomPDF
[2017/05/12 12:21:43 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2017/04/24 23:57:23 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2017/04/24 23:57:24 | 000,000,000 | ---D | M] -- C:\Program Files\Intel
[2017/04/25 06:29:14 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2017/04/25 05:45:46 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2017/04/25 07:41:15 | 000,000,000 | ---D | M] -- C:\Program Files\LibreOffice 5
[2017/05/13 17:18:21 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2017/04/25 21:25:22 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office 15
[2017/04/25 22:04:41 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2017/05/13 17:00:00 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2017/05/12 12:30:28 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Maintenance Service
[2017/04/25 02:42:19 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2017/05/19 15:47:12 | 000,000,000 | ---D | M] -- C:\Program Files\OneNote
[2017/04/25 06:17:09 | 000,000,000 | ---D | M] -- C:\Program Files\paint.net
[2017/04/24 23:57:29 | 000,000,000 | ---D | M] -- C:\Program Files\Realtek
[2017/04/24 23:57:30 | 000,000,000 | ---D | M] -- C:\Program Files\REALTEK SD Wireless LAN Driver
[2017/04/25 02:42:19 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2017/04/26 11:13:55 | 000,000,000 | ---D | M] -- C:\Program Files\S2msi
[2017/04/25 06:49:50 | 000,000,000 | ---D | M] -- C:\Program Files\TeamViewer
[2013/08/22 11:24:44 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2017/05/12 12:52:55 | 000,000,000 | R--D | M] -- C:\Program Files\Windows Defender
[2017/04/25 06:29:17 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2017/04/25 06:29:18 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2016/07/16 12:29:59 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Multimedia Platform
[2017/04/25 00:19:37 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2017/05/12 12:52:55 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Viewer
[2016/07/16 12:29:59 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
[2016/07/16 12:29:57 | 000,000,000 | -HSD | M] -- C:\Program Files\Windows Sidebar
[2017/05/20 19:28:50 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsApps
[2016/07/16 12:29:57 | 000,000,000 | ---D | M] -- C:\Program Files\WindowsPowerShell

[color=#A23BEC]< %programfiles%\Google\Desktop\*. >[/color]

[color=#A23BEC]< %ProgramFiles%\Common Files\* >[/color]

[color=#A23BEC]< %ProgramFiles%\Common Files\*. >[/color]
[2017/04/25 06:03:06 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Adobe
[2017/04/24 22:00:48 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\AV
[2017/05/13 17:20:06 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\DESIGNER
[2017/04/24 23:56:41 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\InstallShield
[2017/04/24 23:56:41 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Intel
[2017/04/25 05:47:00 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Java
[2017/05/13 17:20:07 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\microsoft shared
[2016/07/16 12:29:59 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Services
[2016/07/16 21:15:31 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\System
Invalid Environment Variable: ProgramFiles(X86)
Invalid Environment Variable: ProgramFiles(X86)

[color=#A23BEC]< %Systemroot%\Installer\* >[/color]
[2008/08/09 01:11:02 | 000,232,960 | ---- | M] () -- C:\WINDOWS\Installer\1e179.msi
[2017/03/22 16:35:00 | 066,686,976 | ---- | M] () -- C:\WINDOWS\Installer\24aadf9f.msi
[2017/05/11 19:12:48 | 000,876,032 | ---- | M] () -- C:\WINDOWS\Installer\2f9869.msi
[2017/04/17 01:26:00 | 030,345,216 | ---- | M] () -- C:\WINDOWS\Installer\2fab52.msi
[2012/11/07 11:05:48 | 001,559,552 | ---- | M] () -- C:\WINDOWS\Installer\31a62.msi
[2012/11/07 11:11:40 | 001,304,064 | ---- | M] () -- C:\WINDOWS\Installer\31a66.msi
[2012/11/07 11:09:42 | 000,836,608 | ---- | M] () -- C:\WINDOWS\Installer\31a6a.msi
[2014/07/23 18:58:26 | 000,328,704 | ---- | M] () -- C:\WINDOWS\Installer\31a6e.msi
[2017/04/25 21:32:08 | 000,540,672 | ---- | M] () -- C:\WINDOWS\Installer\34e6955.msi
[2017/02/07 18:10:16 | 223,776,768 | ---- | M] () -- C:\WINDOWS\Installer\3b7254.msi
[2017/04/25 05:45:37 | 055,508,992 | ---- | M] () -- C:\WINDOWS\Installer\3dca7.msi
[2017/04/25 05:45:14 | 000,761,856 | ---- | M] () -- C:\WINDOWS\Installer\3dcab.msi
[2015/03/17 12:41:29 | 002,805,760 | ---- | M] () -- C:\WINDOWS\Installer\3e2ba.msi
[2017/04/05 06:14:24 | 092,508,160 | R--- | M] () -- C:\WINDOWS\Installer\3e2bb.msp
[2017/05/13 16:53:01 | 013,205,504 | ---- | M] () -- C:\WINDOWS\Installer\619b7b1.msi
[2017/05/13 16:53:04 | 009,224,192 | ---- | M] () -- C:\WINDOWS\Installer\619b7c1.msi
[2017/04/26 11:13:51 | 000,151,552 | ---- | M] () -- C:\WINDOWS\Installer\62637b7.msi
[2014/09/10 13:22:40 | 007,614,464 | ---- | M] () -- C:\WINDOWS\Installer\b33e.msi
[2014/06/26 09:37:34 | 008,646,656 | ---- | M] () -- C:\WINDOWS\Installer\b342.msi
[2014/02/18 02:42:24 | 069,541,888 | ---- | M] () -- C:\WINDOWS\Installer\b34a.msi
[2014/06/27 13:21:32 | 008,912,896 | ---- | M] () -- C:\WINDOWS\Installer\d01c.msi
[2010/03/19 20:19:04 | 000,155,136 | ---- | M] () -- C:\WINDOWS\Installer\d024.msi
[2017/04/25 06:17:06 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{1F895C18-6A2F-4A9E-BBE9-246783070F36}
[2017/04/25 05:45:44 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{26A24AE4-039D-4CA4-87B4-2F32180121F0}
[2017/04/26 11:13:55 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{309F81C1-5633-4E3E-8259-0F0FA156E110}
[2017/04/25 05:47:00 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{4A03706F-666A-4037-7777-5F2748764D10}
[2017/04/25 07:39:53 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{79CD8EA1-DEB1-4582-9E41-8634223BDCD4}
[2017/05/19 15:47:11 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{7DD75D49-B6C1-4793-AB7A-D87137681627}
[2017/04/25 21:58:58 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{90160000-007E-0000-0000-0000000FF1CE}
[2017/04/25 22:04:37 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{90160000-008C-0000-0000-0000000FF1CE}
[2017/04/25 22:05:06 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{90160000-008C-040C-0000-0000000FF1CE}
[2017/05/11 19:13:01 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{AC76BA86-0804-1033-1959-001824225037}
[2017/04/25 06:02:37 | 000,020,480 | ---- | M] () -- C:\WINDOWS\Installer\SourceHash{AC76BA86-7AD7-1036-7B44-AC0F074E4100}
[50 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]

[color=#A23BEC]< %Systemroot%\Installer\*. >[/color]
[2015/01/27 00:32:57 | 000,000,000 | -HSD | M] -- C:\WINDOWS\Installer\$PatchCache$
[2017/05/19 18:13:37 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1576.tmp-
[2017/04/25 05:33:30 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI15E9.tmp-
[2015/01/27 00:26:11 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1726.tmp-
[2017/05/19 18:13:38 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1865.tmp-
[2015/01/27 00:28:23 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1CF8.tmp-
[2017/05/19 15:47:28 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1D37.tmp-
[2015/01/27 00:26:13 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI1EA9.tmp-
[2017/05/19 18:13:55 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI240E.tmp-
[2017/04/25 05:42:21 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI2E08.tmp-
[2015/01/27 00:28:30 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI311D.tmp-
[2015/01/27 00:32:54 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI3A5E.tmp-
[2017/05/19 15:47:30 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI4C37.tmp-
[2014/10/17 05:54:06 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI4C97.tmp-
[2017/05/19 15:47:30 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5020.tmp-
[2017/05/19 15:47:31 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5244.tmp-
[2017/05/19 15:47:32 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5543.tmp-
[2017/05/19 15:47:32 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5766.tmp-
[2014/10/17 05:55:16 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5CE9.tmp-
[2014/10/17 05:53:05 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5E75.tmp-
[2014/10/17 05:53:05 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI5FAE.tmp-
[2017/04/25 05:13:35 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI6708.tmp-
[2017/04/25 05:10:23 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI7CE9.tmp-
[2017/05/19 18:14:15 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI7F70.tmp-
[2015/01/27 00:27:51 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSI9E19.tmp-
[2015/01/27 00:27:52 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIA221.tmp-
[2015/01/27 00:27:52 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIA484.tmp-
[2017/04/25 05:16:03 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIAB37.tmp-
[2017/05/19 18:14:16 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIAD66.tmp-
[2017/04/25 05:48:44 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIAF4.tmp-
[2017/05/19 18:14:17 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIAF5B.tmp-
[2017/05/19 18:14:18 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIB25A.tmp-
[2017/05/19 18:14:18 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIB604.tmp-
[2017/05/19 18:14:19 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIB819.tmp-
[2017/04/25 05:48:26 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIC556.tmp-
[2017/04/25 05:48:26 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIC816.tmp-
[2017/04/25 05:48:27 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIC9BD.tmp-
[2017/04/25 05:43:01 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSICF32.tmp-
[2017/04/25 05:43:02 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSID398.tmp-
[2017/04/25 05:43:03 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSID713.tmp-
[2017/04/25 05:14:09 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIDD65.tmp-
[2017/04/25 05:48:45 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIDF3.tmp-
[2017/04/25 05:37:40 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIE2A5.tmp-
[2017/04/25 05:43:07 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIE486.tmp-
[2015/01/27 00:20:31 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIE690.tmp-
[2015/01/27 00:20:31 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIE943.tmp-
[2017/04/25 05:48:36 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIED56.tmp-
[2015/01/27 00:20:33 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIED5B.tmp-
[2017/04/25 05:48:37 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIF045.tmp-
[2017/05/19 15:47:07 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIF0E2.tmp-
[2017/05/19 15:47:07 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIF5D5.tmp-
[2017/05/19 15:47:09 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIFA0C.tmp-
[2014/10/17 05:52:40 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIFB0F.tmp-
[2017/04/25 05:48:43 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIFBFF.tmp-
[2014/10/17 05:52:40 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIFC58.tmp-
[2017/04/25 05:09:52 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\MSIFF1A.tmp-
[2017/04/24 23:59:20 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{192979A0-37F4-4703-B1BB-62052142CE44}
[2017/04/25 06:17:09 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{1F895C18-6A2F-4A9E-BBE9-246783070F36}
[2017/04/25 07:41:15 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{79CD8EA1-DEB1-4582-9E41-8634223BDCD4}
[2017/05/19 18:14:19 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{7DD75D49-B6C1-4793-AB7A-D87137681627}
[2017/05/11 19:13:02 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{AC76BA86-0804-1033-1959-001824225037}
[2017/04/25 06:03:22 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}
[2017/04/24 23:59:21 | 000,000,000 | ---D | M] -- C:\WINDOWS\Installer\{D6B57AF2-2406-49E4-B219-EAA8B0B9F3CF}

[color=#A23BEC]< %Systemroot%\Temp\*.exe /s >[/color]
[2016/08/30 11:05:42 | 000,310,016 | ---- | M] () -- C:\WINDOWS\Temp\AOP\AcerCloudTaskScheduler.exe
[2016/08/30 11:09:26 | 002,267,352 | ---- | M] (Acer Incorporated) -- C:\WINDOWS\Temp\AOP\CCDMonitorService.exe
[2016/08/30 11:05:35 | 001,409,536 | ---- | M] () -- C:\WINDOWS\Temp\AOP\ClientOperation.exe
[2016/08/30 11:05:42 | 005,073,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Temp\AOP\vcredist_x86.exe
[2016/08/30 11:10:54 | 000,065,240 | ---- | M] () -- C:\WINDOWS\Temp\AOP\acer\actool_win.exe
[2016/08/30 11:10:54 | 009,105,112 | ---- | M] (Acer Cloud Technology) -- C:\WINDOWS\Temp\AOP\acer\ccd.exe
[1 C:\WINDOWS\Temp\AOP\acer\*.tmp files -> C:\WINDOWS\Temp\AOP\acer\*.tmp -> ]
[2016/07/26 15:01:10 | 011,925,904 | ---- | M] (Acer Incorporated) -- C:\WINDOWS\Temp\clear.fi_media_AOP\AcerOpenPlatformSetup.exe
[2016/07/26 15:01:10 | 000,175,616 | ---- | M] (TODO: <Company name>) -- C:\WINDOWS\Temp\clear.fi_media_AOP\newshortcut.exe
[2016/07/26 15:01:10 | 005,073,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Temp\clear.fi_media_AOP\vcredist_x86.exe
[2016/08/15 13:36:47 | 011,927,768 | ---- | M] (Acer Incorporated) -- C:\WINDOWS\Temp\clear.fi_photo_AOP\AcerOpenPlatformSetup.exe
[2016/08/15 13:36:47 | 000,175,616 | ---- | M] (TODO: <Company name>) -- C:\WINDOWS\Temp\clear.fi_photo_AOP\newshortcut.exe
[2016/08/15 13:36:47 | 005,073,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Temp\clear.fi_photo_AOP\vcredist_x86.exe
[2017/05/11 19:10:19 | 001,371,480 | ---- | M] (Google Inc.) -- C:\WINDOWS\Temp\CR_296DA.tmp\setup.exe

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32\*.exe /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32\*.in* >[/color]
[2016/07/16 12:26:04 | 000,003,458 | ---- | M] () -- C:\WINDOWS\system32\ieuinit.inf
[2016/07/16 12:26:56 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
[2017/05/13 18:37:59 | 001,850,738 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2016/07/16 12:25:57 | 000,060,124 | ---- | M] () -- C:\WINDOWS\system32\tcpmon.ini
[2016/07/16 12:25:08 | 000,002,307 | ---- | M] () -- C:\WINDOWS\system32\WimBootCompress.ini
[2017/04/28 04:16:31 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Gaming.Input.dll
[2017/03/28 09:32:27 | 000,332,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
[2017/04/28 04:13:28 | 000,298,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Internal.Management.dll
[2017/04/28 05:32:09 | 000,685,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
[2016/07/16 12:25:41 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Internal.UI.BioEnrollment.ProxyStub.dll
[2016/12/14 08:40:16 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
[2017/04/28 03:55:04 | 001,004,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
[2016/09/15 20:49:12 | 000,468,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll

[color=#A23BEC]< %systemroot%\PSS\* /s >[/color]

[color=#A23BEC]< %systemroot%\Tasks\* >[/color]
[2017/05/12 12:54:25 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT

[color=#A23BEC]< %systemroot%\Tasks\*. >[/color]

[color=#A23BEC]< %systemroot%\system32\Tasks\* >[/color]
[2017/05/11 19:13:03 | 000,004,550 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
[2017/05/11 19:10:23 | 000,004,594 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
[2017/04/25 05:17:17 | 000,003,484 | ---- | M] () -- C:\WINDOWS\system32\Tasks\BacKGroundAgent
[2017/04/25 00:15:29 | 000,002,070 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Launch Manager
[2017/04/25 05:10:25 | 000,003,280 | ---- | M] () -- C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
[2014/10/17 06:11:23 | 000,003,596 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1165333638-3007278546-2958497533-500
[2017/04/25 00:15:30 | 000,002,750 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1577643618-752554310-1775702440-1001
[2017/04/25 00:15:30 | 000,002,748 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1577643618-752554310-1775702440-500
[2015/01/27 00:41:03 | 000,003,596 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2268194884-2211555271-2513400786-500
[2017/04/25 00:15:28 | 000,002,062 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Quick Access
[2017/04/25 00:15:29 | 000,002,182 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Quick Access Quick Launcher
[2017/04/25 00:15:29 | 000,004,154 | ---- | M] () -- C:\WINDOWS\system32\Tasks\Software Update Application
[2017/05/21 08:13:08 | 000,004,166 | ---- | M] () -- C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3E053EF3-1436-47C8-B91C-3604AF60C0CF}

[color=#A23BEC]< %systemroot%\system32\Tasks\*. >[/color]
[2017/04/25 21:46:28 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\Tasks\Microsoft
[2017/04/25 00:15:28 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\Tasks\Recovery Management
[2017/04/25 00:15:30 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\Tasks\WPD

[color=#A23BEC]< %systemroot%\syswow64\Tasks\* >[/color]

[color=#A23BEC]< %systemroot%\syswow64\Tasks\*. >[/color]

[color=#A23BEC]< %systemroot%\system32\drivers\*.sy* /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32\config\*.exe /s >[/color]

[color=#A23BEC]< %Systemroot%\ServiceProfiles\*.exe /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.sys >[/color]
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ANSI.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\country.sys
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\HIMEM.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\KEY01.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\KEYBOARD.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTDOS.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTDOS404.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTDOS411.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTDOS412.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTDOS804.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTIO.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTIO404.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTIO411.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTIO412.SYS
[2016/07/16 12:26:41 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\NTIO804.SYS
[2016/12/14 08:45:35 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32k.sys
[2017/04/28 03:53:45 | 001,235,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32kbase.sys
[2017/04/28 03:52:28 | 002,994,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32kfull.sys

[color=#A23BEC]< dir %Homedrive%\* /S /A:L /C >[/color]
Le volume dans le lecteur C s'appelle Acer
Le num ro de s rie du volume est BCEE-47CB
R pertoire de C:\
22/08/2013 11:23 <JUNCTION> Documents and Settings [C:\Users]
0 fichier(s) 0 octets
R pertoire de C:\Program Files
25/04/2017 00:13 <JUNCTION> Fichiers communs [C:\Program Files\Common Files]
0 fichier(s) 0 octets
R pertoire de C:\Program Files\Microsoft Office\root\client
25/04/2017 21:25 <SYMLINK> AppvIsvStream32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvStream32.dll]
25/04/2017 21:25 <SYMLINK> AppvIsvSubsystems32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll]
25/04/2017 21:25 <SYMLINK> C2R32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll]
3 fichier(s) 0 octets
R pertoire de C:\Program Files\Microsoft Office\root\Office16
25/04/2017 21:26 <SYMLINK> AppvIsvStream32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvStream32.dll]
25/04/2017 21:26 <SYMLINK> AppvIsvSubsystems32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll]
25/04/2017 21:26 <SYMLINK> C2R32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll]
3 fichier(s) 0 octets
R pertoire de C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\EQUATION
25/04/2017 21:34 <SYMLINK> AppvIsvStream32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvStream32.dll]
25/04/2017 21:34 <SYMLINK> AppvIsvSubsystems32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll]
25/04/2017 21:34 <SYMLINK> C2R32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll]
3 fichier(s) 0 octets
R pertoire de C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16
25/04/2017 21:32 <SYMLINK> AppvIsvStream32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvStream32.dll]
25/04/2017 21:32 <SYMLINK> AppvIsvSubsystems32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll]
25/04/2017 21:32 <SYMLINK> C2R32.dll [C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll]
3 fichier(s) 0 octets
R pertoire de C:\Program Files\Windows NT
25/04/2017 00:19 <JUNCTION> Accessoires [C:\Program Files\Windows NT\Accessories]
0 fichier(s) 0 octets
R pertoire de C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8107.7600.0_x86__8wekyb3d8bbwe\VFS
25/04/2017 06:17 <DIR> ProgramFilesCommonX86
25/04/2017 06:17 <DIR> SystemX86
0 fichier(s) 0 octets
R pertoire de C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8107.7600.0_x86__8wekyb3d8bbwe\VFS\ProgramFilesCommonX86
25/04/2017 06:17 <DIR> Microsoft Shared
0 fichier(s) 0 octets
R pertoire de C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8107.7600.0_x86__8wekyb3d8bbwe\VFS\ProgramFilesCommonX86\Microsoft Shared
25/04/2017 06:17 <DIR> DW
25/04/2017 06:17 <DIR> OFFICE16
0 fichier(s) 0 octets
R pertoire de C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8107.7600.0_x86__8wekyb3d8bbwe\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16
25/04/2017 06:17 <DIR> 1033
25/04/2017 06:17 <DIR> Cultures
0 fichier(s) 0 octets
R pertoire de C:\ProgramData
25/04/2017 00:19 <JUNCTION> Application Data [C:\ProgramData]
25/04/2017 00:13 <JUNCTION> Bureau [C:\Users\Public\Desktop]
25/04/2017 00:19 <JUNCTION> Documents [C:\Users\Public\Documents]
25/04/2017 00:13 <JUNCTION> Menu D marrer [C:\ProgramData\Microsoft\Windows\Start Menu]
25/04/2017 00:13 <JUNCTION> Mod`les [C:\ProgramData\Microsoft\Windows\Templates]
0 fichier(s) 0 octets
R pertoire de C:\ProgramData\Microsoft\Windows\Start Menu
25/04/2017 00:13 <JUNCTION> Programmes [C:\ProgramData\Microsoft\Windows\Start Menu\Programs]
0 fichier(s) 0 octets
R pertoire de C:\ProgramData\Oracle\Java
25/04/2017 05:46 <JUNCTION> javapath [C:\ProgramData\Oracle\Java\javapath_target_1385921]
0 fichier(s) 0 octets
R pertoire de C:\Users
16/07/2016 12:58 <SYMLINKD> All Users [C:\ProgramData]
16/07/2016 12:58 <JUNCTION> Default User [C:\Users\Default]
0 fichier(s) 0 octets
R pertoire de C:\Users\All Users
25/04/2017 00:19 <JUNCTION> Application Data [C:\ProgramData]
25/04/2017 00:13 <JUNCTION> Bureau [C:\Users\Public\Desktop]
25/04/2017 00:19 <JUNCTION> Documents [C:\Users\Public\Documents]
25/04/2017 00:13 <JUNCTION> Menu D marrer [C:\ProgramData\Microsoft\Windows\Start Menu]
25/04/2017 00:13 <JUNCTION> Mod`les [C:\ProgramData\Microsoft\Windows\Templates]
0 fichier(s) 0 octets
R pertoire de C:\Users\All Users\Microsoft\Windows\Start Menu
25/04/2017 00:13 <JUNCTION> Programmes [C:\ProgramData\Microsoft\Windows\Start Menu\Programs]
0 fichier(s) 0 octets
R pertoire de C:\Users\All Users\Oracle\Java
25/04/2017 05:46 <JUNCTION> javapath [C:\ProgramData\Oracle\Java\javapath_target_1385921]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default
25/04/2017 00:19 <JUNCTION> Application Data [C:\Users\Default\AppData\Roaming]
25/04/2017 00:19 <JUNCTION> Cookies [C:\Users\Default\AppData\Local\Microsoft\Windows\INetCookies]
25/04/2017 00:19 <JUNCTION> Local Settings [C:\Users\Default\AppData\Local]
25/04/2017 00:19 <JUNCTION> Menu D marrer [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
25/04/2017 00:19 <JUNCTION> Mes documents [C:\Users\Default\Documents]
25/04/2017 00:19 <JUNCTION> Mod`les [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
25/04/2017 00:19 <JUNCTION> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent]
25/04/2017 00:19 <JUNCTION> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo]
25/04/2017 00:19 <JUNCTION> Voisinage d'impression [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
25/04/2017 00:19 <JUNCTION> Voisinage r seau [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default\AppData\Local
25/04/2017 00:19 <JUNCTION> Application Data [C:\Users\Default\AppData\Local]
25/04/2017 00:19 <JUNCTION> Historique [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
25/04/2017 00:19 <JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default\AppData\Local\Microsoft\Windows
25/04/2017 00:19 <JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu
25/04/2017 00:19 <JUNCTION> Programmes [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default\Documents
25/04/2017 00:19 <JUNCTION> Ma musique [C:\Users\Default\Music]
25/04/2017 00:19 <JUNCTION> Mes images [C:\Users\Default\Pictures]
25/04/2017 00:19 <JUNCTION> Mes vid os [C:\Users\Default\Videos]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default.migrated
25/04/2017 00:13 <JUNCTION> Menu D marrer [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
25/04/2017 00:13 <JUNCTION> Mes documents [C:\Users\Default\Documents]
25/04/2017 00:13 <JUNCTION> Mod`les [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
25/04/2017 00:13 <JUNCTION> Voisinage d'impression [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
25/04/2017 00:13 <JUNCTION> Voisinage r seau [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default.migrated\AppData\Local
25/04/2017 00:13 <JUNCTION> Historique [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default.migrated\AppData\Local\Microsoft\Windows
22/08/2013 11:23 <JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu
25/04/2017 00:13 <JUNCTION> Programmes [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs]
0 fichier(s) 0 octets
R pertoire de C:\Users\Default.migrated\Documents
25/04/2017 00:13 <JUNCTION> Ma musique [C:\Users\Default\Music]
25/04/2017 00:13 <JUNCTION> Mes images [C:\Users\Default\Pictures]
25/04/2017 00:13 <JUNCTION> Mes vid os [C:\Users\Default\Videos]
22/08/2013 11:23 <JUNCTION> My Music [C:\Users\Default\Music]
22/08/2013 11:23 <JUNCTION> My Pictures [C:\Users\Default\Pictures]
22/08/2013 11:23 <JUNCTION> My Videos [C:\Users\Default\Videos]
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com
24/04/2017 23:54 <JUNCTION> Application Data [C:\Users\odz-plus.com\AppData\Roaming]
24/04/2017 23:54 <JUNCTION> Cookies [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCookies]
24/04/2017 23:54 <JUNCTION> Local Settings [C:\Users\odz-plus.com\AppData\Local]
24/04/2017 23:54 <JUNCTION> Menu D marrer [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu]
24/04/2017 23:54 <JUNCTION> Mes documents [C:\Users\odz-plus.com\Documents]
24/04/2017 23:54 <JUNCTION> Mod`les [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Templates]
24/04/2017 23:54 <JUNCTION> Recent [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Recent]
24/04/2017 23:54 <JUNCTION> SendTo [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\SendTo]
24/04/2017 23:54 <JUNCTION> Voisinage d'impression [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
24/04/2017 23:54 <JUNCTION> Voisinage r seau [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local
24/04/2017 23:54 <JUNCTION> Application Data [C:\Users\odz-plus.com\AppData\Local]
24/04/2017 23:54 <JUNCTION> Historique [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\History]
24/04/2017 23:54 <JUNCTION> Temporary Internet Files [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCache]
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows
24/04/2017 23:54 <JUNCTION> Temporary Internet Files [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCache]
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCache
25/04/2017 05:04 <JUNCTION> Content.IE5 [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCache\IE]
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe
24/04/2017 23:54 <DIR> LocalCache
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache
25/04/2017 06:20 <DIR> Local
25/04/2017 22:15 <DIR> LocalLow
25/04/2017 22:15 <DIR> Roaming
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local
25/04/2017 05:48 <DIR> Acer
25/04/2017 05:14 <DIR> Acer Aspire R7 Tutorial
25/04/2017 06:16 <DIR> Adobe
24/04/2017 23:54 <JUNCTION> Application Data [C:\Users\odz-plus.com\AppData\Local]
25/04/2017 05:44 <DIR> clear.fi
25/04/2017 05:04 <DIR> Comms
25/04/2017 05:24 <DIR> ConnectedDevicesPlatform
25/04/2017 22:15 <DIR> CrashDumps
25/04/2017 06:20 <DIR> Google
24/04/2017 23:54 <JUNCTION> Historique [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\History]
25/04/2017 22:06 (122ÿ163) IconCache.db
25/04/2017 21:24 <DIR> Microsoft
25/04/2017 05:33 <DIR> MicrosoftEdge
25/04/2017 21:02 <DIR> Mozilla
25/04/2017 05:56 <DIR> NetworkTiles
24/04/2017 21:19 <DIR> OEM
25/04/2017 07:16 <DIR> Packages
25/04/2017 05:59 <DIR> paint.net
25/04/2017 05:30 <DIR> Programs
25/04/2017 05:04 <DIR> Publishers
25/04/2017 22:15 <DIR> Temp
24/04/2017 23:54 <JUNCTION> Temporary Internet Files [C:\Users\odz-plus.com\AppData\Local\Microsoft\Windows\INetCache]
25/04/2017 05:04 <DIR> TileDataLayer
24/04/2017 21:19 <DIR> VirtualStore
1 fichier(s) 122ÿ163 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft
24/04/2017 21:34 <DIR> CLR_v2.0_32
24/04/2017 21:29 <DIR> CLR_v4.0_32
25/04/2017 22:15 <DIR> Credentials
25/04/2017 05:47 <DIR> Feeds
25/04/2017 05:47 <DIR> Feeds Cache
25/04/2017 05:06 <DIR> GameDVR
25/04/2017 21:46 <DIR> InputPersonalization
25/04/2017 05:04 <DIR> InstallAgent
25/04/2017 22:15 <DIR> Internet Explorer
25/04/2017 05:27 <DIR> Media Player
25/04/2017 21:25 <DIR> Office
25/04/2017 22:15 <DIR> OneDrive
25/04/2017 05:22 <DIR> PenWorkspace
25/04/2017 05:04 <DIR> PlayReady
25/04/2017 20:49 <DIR> TokenBroker
25/04/2017 05:06 <DIR> Vault
25/04/2017 22:15 <DIR> Windows
25/04/2017 05:06 <DIR> Windows Live
24/04/2017 21:26 <DIR> Windows Services
24/04/2017 23:54 <DIR> Windows Sidebar
16/07/2016 12:29 <DIR> WindowsApps
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Internet Explorer
25/04/2017 22:15 <DIR> IECompatData
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Internet Explorer\IECompatData
25/04/2017 05:47 (281ÿ088) iecompatdata.xml
1 fichier(s) 281ÿ088 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Office
25/04/2017 22:07 <DIR> 16.0
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Office\16.0
25/04/2017 22:07 (122ÿ858) csisyncclient.exe_Rules.xml
25/04/2017 22:05 <DIR> Floodgate
25/04/2017 22:15 <DIR> MruServiceCache
25/04/2017 22:07 (122ÿ858) msosync.exe_Rules.xml
25/04/2017 21:25 (61ÿ958) officec2rclient.exe_Rules.xml
25/04/2017 21:25 (61ÿ958) officeclicktorun.exe_Rules.xml
25/04/2017 22:07 <DIR> OfficeFileCache
25/04/2017 21:24 (62ÿ811) setup.x86.fr-fr_o365homepremretail_08c5826b-c461-47be-ad20-6ca50f344b6c_tx_db_.exe_Rules.xml
25/04/2017 22:15 <DIR> WebServiceCache
25/04/2017 22:04 <DIR> Wef
25/04/2017 22:04 (305ÿ625) winword.exe_Rules.xml
6 fichier(s) 738ÿ068 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Office\16.0\MruServiceCache
25/04/2017 22:15 <DIR> e514090225344366_LiveId
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Office\16.0\WebServiceCache
25/04/2017 22:15 <DIR> AllUsers
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Office\16.0\WebServiceCache\AllUsers
25/04/2017 22:15 <DIR> officeclient.microsoft.com
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\OneDrive
25/04/2017 05:08 (1ÿ518ÿ808) OneDrive.exe
1 fichier(s) 1ÿ518ÿ808 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Windows
25/04/2017 22:15 <DIR> Caches
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\Windows\Caches
25/04/2017 05:22 (16ÿ384) cversions.1.db
25/04/2017 22:06 (140ÿ328) {AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000005.db
2 fichier(s) 156ÿ712 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Packages
25/04/2017 05:20 <DIR> 4DF9E0F8.Netflix_mcm4njqhnhss8
25/04/2017 05:48 <DIR> 9E2F88E3.Twitter_wgeqdkkx372wm
25/04/2017 06:56 <DIR> A278AB0D.MarchofEmpires_h6adky7gbf63m
25/04/2017 05:22 <DIR> AcerIncorporated.AcerExplorer_48frkmn4z8aw4
25/04/2017 05:06 <DIR> ActiveSync
24/04/2017 23:54 <DIR> CheckPoint.VPN_cw5n1h2txyewy
25/04/2017 05:22 <DIR> eBayInc.eBay_1618n3s9xq8tw
25/04/2017 05:22 <DIR> Evernote.Evernote_q4d96b2w5wcc2
24/04/2017 23:54 <DIR> f5.vpn.client_cw5n1h2txyewy
25/04/2017 05:48 <DIR> Facebook.Facebook_8xx8rvfyw5nnt
24/04/2017 23:54 <DIR> FileManager_cw5n1h2txyewy
25/04/2017 07:16 <DIR> flaregamesGmbH.RoyalRevolt2_g0q0z3kw54rap
25/04/2017 05:22 <DIR> Flipboard.Flipboard_3f5azkryzdbc4
24/04/2017 23:54 <DIR> JuniperNetworks.JunosPulseVpn_cw5n1h2txyewy
25/04/2017 05:48 <DIR> KeeperSecurityInc.Keeper_kejf07qmg0jnm
25/04/2017 07:05 <DIR> king.com.CandyCrushSodaSaga_kgqvnymyfvs32
25/04/2017 05:22 <DIR> KoboInc.KoboBooks_vk8qsnw174y90
25/04/2017 05:22 <DIR> Microsoft.3DBuilder_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Microsoft.AccountsControl_cw5n1h2txyewy
25/04/2017 05:21 <DIR> Microsoft.Advertising.Xaml_8wekyb3d8bbwe
25/04/2017 05:22 <DIR> Microsoft.BingFinance_8wekyb3d8bbwe
25/04/2017 05:22 <DIR> Microsoft.BingFoodAndDrink_8wekyb3d8bbwe
25/04/2017 05:22 <DIR> Microsoft.BingHealthAndFitness_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.BingNews_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.BingSports_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.BingTravel_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.BingWeather_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.BioEnrollment_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Microsoft.DesktopAppInstaller_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.FreshPaint_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.Getstarted_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.LockApp_cw5n1h2txyewy
24/04/2017 23:54 <DIR> Microsoft.Media.PlayReadyClient.2_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.Messaging_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.MicrosoftEdge_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe
25/04/2017 07:00 <DIR> Microsoft.MinecraftUWP_8wekyb3d8bbwe
24/04/2017 23:54 <DIR> Microsoft.MoCamera_cw5n1h2txyewy
25/04/2017 05:21 <DIR> Microsoft.MovieMoments_8wekyb3d8bbwe
25/04/2017 06:06 <DIR> Microsoft.NET.Native.Framework.1.2_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.NET.Native.Framework.1.3_8wekyb3d8bbwe
25/04/2017 06:06 <DIR> Microsoft.NET.Native.Runtime.1.1_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.NET.Native.Runtime.1.3_8wekyb3d8bbwe
25/04/2017 05:48 <DIR> Microsoft.NET.Native.Runtime.1.4_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.Office.OneNote_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.OneConnect_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.People_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.PPIProjection_cw5n1h2txyewy
25/04/2017 05:21 <DIR> Microsoft.Reader_8wekyb3d8bbwe
25/04/2017 05:48 <DIR> Microsoft.Services.Store.Engagement_8wekyb3d8bbwe
25/04/2017 05:20 <DIR> Microsoft.SkypeApp_kzf8qxf38zg5c
25/04/2017 05:21 <DIR> Microsoft.StorePurchaseApp_8wekyb3d8bbwe
25/04/2017 06:08 <DIR> Microsoft.VCLibs.120.00.Universal_8wekyb3d8bbwe
24/04/2017 23:54 <DIR> Microsoft.VCLibs.120.00_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.VCLibs.140.00_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Microsoft.Windows.Cortana_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Microsoft.Windows.ParentalControls_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Microsoft.Windows.Photos_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.Windows.SecondaryTileExperience_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy
25/04/2017 05:20 <DIR> Microsoft.WindowsAlarms_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.WindowsCalculator_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.WindowsCamera_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> microsoft.windowscommunicationsapps_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.WindowsFeedbackHub_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.WindowsMaps_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.WindowsReadingList_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.WindowsScan_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.WindowsStore_8wekyb3d8bbwe
24/04/2017 23:54 <DIR> Microsoft.WinJS.2.0_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.XboxApp_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.XboxGameCallableUI_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Microsoft.XboxIdentityProvider_8wekyb3d8bbwe
25/04/2017 05:04 <DIR> Microsoft.ZuneMusic_8wekyb3d8bbwe
25/04/2017 05:21 <DIR> Microsoft.ZuneVideo_8wekyb3d8bbwe
24/04/2017 23:54 <DIR> SonicWALL.MobileConnect_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Windows.ContactSupport_cw5n1h2txyewy
25/04/2017 05:04 <DIR> windows.immersivecontrolpanel_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Windows.MiracastView_cw5n1h2txyewy
25/04/2017 05:04 <DIR> Windows.PrintDialog_cw5n1h2txyewy
24/04/2017 23:54 <DIR> windows_ie_ac_001
24/04/2017 23:54 <DIR> winstore_cw5n1h2txyewy
25/04/2017 05:20 <DIR> ZinioLLC.Zinio_0q6dqzpp40p2e
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow
25/04/2017 22:15 <DIR> Microsoft
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft
25/04/2017 22:15 <DIR> CryptnetUrlCache
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache
25/04/2017 22:15 <DIR> Content
25/04/2017 22:15 <DIR> MetaData
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\Content
24/04/2017 21:20 (2ÿ920) 40E450F7CE13419A2CCC2A5445035A0A_06F02B1F13AB4B11B8FC669BDE565AF1
1 fichier(s) 2ÿ920 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\MetaData
24/04/2017 21:20 (400) 40E450F7CE13419A2CCC2A5445035A0A_06F02B1F13AB4B11B8FC669BDE565AF1
1 fichier(s) 400 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Roaming
25/04/2017 22:15 <DIR> Microsoft
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Roaming\Microsoft
25/04/2017 22:15 <DIR> SystemCertificates
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Roaming\Microsoft\SystemCertificates
25/04/2017 22:15 <DIR> My
0 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Roaming\Microsoft\SystemCertificates\My
25/04/2017 05:04 (0) AppContainerUserCertRead
24/04/2017 21:19 <DIR> Certificates
25/04/2017 05:04 <DIR> CRLs
25/04/2017 05:04 <DIR> CTLs
1 fichier(s) 0 octets
R pertoire de C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu
24/04/2017 23:54 <JUNCTION> Programmes [C:\Users\odz-plus.com\AppData\Roaming\Microsoft\Windows\Start Menu\Programs]
0 fichier(s) 0 octets
R pertoire de C:\Users\Public\Documents
25/04/2017 00:13 <JUNCTION> Ma musique [C:\Users\Public\Music]
25/04/2017 00:13 <JUNCTION> Mes images [C:\Users\Public\Pictures]
25/04/2017 00:13 <JUNCTION> Mes vid os [C:\Users\Public\Videos]
22/08/2013 11:23 <JUNCTION> My Music [C:\Users\Public\Music]
22/08/2013 11:23 <JUNCTION> My Pictures [C:\Users\Public\Pictures]
22/08/2013 11:23 <JUNCTION> My Videos [C:\Users\Public\Videos]
0 fichier(s) 0 octets
R pertoire de C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache
25/04/2017 00:22 <JUNCTION> Content.IE5 [C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE]
0 fichier(s) 0 octets
Total des fichiers list sÿ:
26 fichier(s) 2ÿ820ÿ159 octets
240 R p(s) 12ÿ145ÿ917ÿ952 octets libres

[color=#A23BEC]< MD5 for: AFD.SYS >[/color]
[2016/10/15 08:10:16 | 000,482,656 | ---- | M] (Microsoft Corporation) MD5=3B5BE5B3D3CE8D9834C2C9B325AC6A29 -- C:\Windows\System32\drivers\afd.sys
[2016/10/15 08:10:16 | 000,482,656 | ---- | M] (Microsoft Corporation) MD5=3B5BE5B3D3CE8D9834C2C9B325AC6A29 -- C:\Windows\WinSxS\x86_microsoft-windows-winsock-core_31bf3856ad364e35_10.0.14393.351_none_b592d4f94405d28e\afd.sys
[2017/05/03 15:07:38 | 000,019,477 | ---- | M] () MD5=74C234C0C832A081E1E881EC0D0331F8 -- C:\Windows\WinSxS\x86_microsoft-windows-winsock-core_31bf3856ad364e35_10.0.14393.0_none_a93e1289bcc25281\afd.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2016/07/16 12:24:55 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=1D8B6976EC75698485A195A06B2DEBAC -- C:\Windows\System32\drivers\atapi.sys
[2016/07/16 12:24:55 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=1D8B6976EC75698485A195A06B2DEBAC -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_9279a50c05c1192f\atapi.sys
[2016/07/16 12:24:55 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=1D8B6976EC75698485A195A06B2DEBAC -- C:\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_10.0.14393.953_none_bae4c6790720a372\atapi.sys
[2017/05/03 15:15:26 | 000,000,012 | ---- | M] () MD5=D7E77A67DB9E24D7DB964C88AE694C71 -- C:\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_10.0.14393.0_none_ae8df8117fdf01cd\atapi.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2016/07/16 12:24:54 | 000,130,560 | ---- | M] (Microsoft Corporation) MD5=67B188419B7018D7956A38C89EFCC70A -- C:\Windows\System32\drivers\cdrom.sys
[2016/07/16 12:24:54 | 000,130,560 | ---- | M] (Microsoft Corporation) MD5=67B188419B7018D7956A38C89EFCC70A -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_7ef47a3c886c2492\cdrom.sys
[2016/07/16 12:24:54 | 000,130,560 | ---- | M] (Microsoft Corporation) MD5=67B188419B7018D7956A38C89EFCC70A -- C:\Windows\WinSxS\x86_cdrom.inf_31bf3856ad364e35_10.0.14393.0_none_30ff2bda021c9d7b\cdrom.sys

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2017/05/12 15:41:07 | 000,280,065 | ---- | M] () MD5=2CC5F24D455B91F29785861737BE44EB -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_10.0.14393.0_none_230a7709d811a1f0\explorer.exe
[2017/04/28 04:39:22 | 004,312,248 | ---- | M] (Microsoft Corporation) MD5=6E46F7CBC16009E381015C69F4FA22B1 -- C:\Windows\explorer.exe
[2017/04/28 04:39:22 | 004,312,248 | ---- | M] (Microsoft Corporation) MD5=6E46F7CBC16009E381015C69F4FA22B1 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_10.0.14393.1198_none_6b5b33f41bebb98b\explorer.exe

[color=#A23BEC]< MD5 for: I8042PRT.SYS >[/color]
[2017/05/02 16:55:42 | 000,000,012 | ---- | M] () MD5=71CEAB07D94C8DE1EB4663C0ED3D50B8 -- C:\Windows\WinSxS\x86_dual_keyboard.inf_31bf3856ad364e35_10.0.14393.0_none_dd7d567997f2b35e\i8042prt.sys
[2016/07/16 12:24:57 | 000,090,624 | ---- | M] (Microsoft Corporation) MD5=7D889F2D2464940C2DA8A218F5282F21 -- C:\Windows\System32\drivers\i8042prt.sys
[2016/07/16 12:24:57 | 000,090,624 | ---- | M] (Microsoft Corporation) MD5=7D889F2D2464940C2DA8A218F5282F21 -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_x86_113e67458566ab9b\i8042prt.sys
[2016/07/16 12:24:57 | 000,090,624 | ---- | M] (Microsoft Corporation) MD5=7D889F2D2464940C2DA8A218F5282F21 -- C:\Windows\WinSxS\x86_dual_keyboard.inf_31bf3856ad364e35_10.0.14393.206_none_ea0d28111f092942\i8042prt.sys

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2017/05/03 14:10:37 | 000,062,779 | ---- | M] () MD5=28BAC748F01851474D6BF52130B91B0B -- C:\Windows\WinSxS\x86_microsoft-windows-ndis-minwin_31bf3856ad364e35_10.0.14393.0_none_2aab4e2c86613eee\ndis.sys
[2017/03/28 10:13:10 | 000,950,624 | ---- | M] (Microsoft Corporation) MD5=D05756943783CC83F38EDD5678B720A2 -- C:\Windows\System32\drivers\ndis.sys
[2017/03/28 10:13:10 | 000,950,624 | ---- | M] (Microsoft Corporation) MD5=D05756943783CC83F38EDD5678B720A2 -- C:\Windows\WinSxS\x86_microsoft-windows-ndis-minwin_31bf3856ad364e35_10.0.14393.1066_none_730407b4ca35bb51\ndis.sys

[color=#A23BEC]< MD5 for: NETBT.SYS >[/color]
[2016/07/16 12:25:50 | 000,217,088 | ---- | M] (Microsoft Corporation) MD5=19B3776EE853B95924BAEDEF14702135 -- C:\Windows\System32\drivers\netbt.sys
[2016/07/16 12:25:50 | 000,217,088 | ---- | M] (Microsoft Corporation) MD5=19B3776EE853B95924BAEDEF14702135 -- C:\Windows\WinSxS\x86_microsoft-windows-netbt-minwin_31bf3856ad364e35_10.0.14393.0_none_bd0251393634f90f\netbt.sys

[color=#A23BEC]< MD5 for: TDX.SYS >[/color]
[2017/03/04 11:02:34 | 000,095,584 | ---- | M] (Microsoft Corporation) MD5=1CD4B4D747348FAA7205D80E7BDAFD36 -- C:\Windows\System32\drivers\tdx.sys
[2017/03/04 11:02:34 | 000,095,584 | ---- | M] (Microsoft Corporation) MD5=1CD4B4D747348FAA7205D80E7BDAFD36 -- C:\Windows\WinSxS\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_10.0.14393.953_none_c7ea66aac1ac7d8d\tdx.sys
[2017/05/03 14:29:24 | 000,007,162 | ---- | M] () MD5=85F70AA24A9210B79B0A5041C1497A9E -- C:\Windows\WinSxS\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_10.0.14393.0_none_bb9398433a6adbe8\tdx.sys

[color=#A23BEC]< MD5 for: VOLSNAP.SYS >[/color]
[2016/07/16 12:25:50 | 000,353,120 | ---- | M] (Microsoft Corporation) MD5=8FC38A2B3D7A58A69065F43479E848FA -- C:\Windows\System32\drivers\volsnap.sys
[2016/07/16 12:25:50 | 000,353,120 | ---- | M] (Microsoft Corporation) MD5=8FC38A2B3D7A58A69065F43479E848FA -- C:\Windows\WinSxS\x86_microsoft-windows-volsnap_31bf3856ad364e35_10.0.14393.0_none_307fc57fffc572f8\volsnap.sys

[color=#A23BEC]< MD5 for: WININIT.EXE >[/color]
[2016/07/16 12:25:39 | 000,205,112 | ---- | M] (Microsoft Corporation) MD5=B315D888C2AC5007D0F87880CE92102A -- C:\Windows\System32\wininit.exe
[2016/07/16 12:25:39 | 000,205,112 | ---- | M] (Microsoft Corporation) MD5=B315D888C2AC5007D0F87880CE92102A -- C:\Windows\WinSxS\x86_microsoft-windows-wininit_31bf3856ad364e35_10.0.14393.0_none_024888c662a5d9d3\wininit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2017/04/28 03:54:51 | 000,578,560 | ---- | M] (Microsoft Corporation) MD5=307573EA60EAC5AFBAB358F80D066047 -- C:\Windows\System32\winlogon.exe
[2017/04/28 03:54:51 | 000,578,560 | ---- | M] (Microsoft Corporation) MD5=307573EA60EAC5AFBAB358F80D066047 -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_10.0.14393.1198_none_89698df87720c6c1\winlogon.exe
[2017/05/12 16:05:30 | 000,063,387 | ---- | M] () MD5=523DF49B570F72A695A689E4E104BE2F -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_10.0.14393.0_none_4118d10e3346af26\winlogon.exe
[2016/07/28 02:38:59 | 000,074,240 | ---- | M] () MD5=A6C645EF2F30ABF61FCDBE5E76999730 -- C:\QuickDiag\MBR\Winlogon.exe

< End of report >

Publicité


Signaler le contenu de ce document

Publicité