Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Rootkit-activity detected by gmer - plus more.


  • This topic is locked This topic is locked
13 replies to this topic

#1 HansJen

HansJen

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:02 PM

Posted 10 August 2016 - 05:54 PM

Hello BleepingComputer

 

I fear that my PC is infected!

 

Some of the symptoms:

My Chrome-browser keeps re-activating DeveloperMode

gmer detects rootkit-activity

Several processes (Microsoft.Photos fx) is not digitally signed

Hidden folders in ProgramFiles with my default windows user has no permissions to.

 

I use Avast Premier and SUPERAntispyware.

 

I've scanned with several different programs from your dl-section - RougeKiller, Rkill, and a few more, but without any final succes.

 

Here are some fresh FRST-logs (FRST+Addition)

 

Thanks in advance, guys!
 

 
 

 



BC AdBot (Login to Remove)

 


#2 HansJen

HansJen
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:02 PM

Posted 10 August 2016 - 05:57 PM

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-08-2016 01
Ran by Glenn (administrator) on DESKTOP-R35L269 (11-08-2016 00:48:57)
Running from C:\Users\Glenn\Desktop
Loaded Profiles: Glenn (Available Profiles: Glenn)
Platform: Windows 10 Pro Version 1511 (X64) Language: Dansk (Danmark)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(SecureMix LLC) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Flux Software LLC) C:\Users\Glenn\AppData\Local\FluxSoftware\Flux\flux.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(SecureMix LLC) C:\Program Files (x86)\GlassWire\GWIdlMon.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.5111\Agent.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.7730\Battle.net.exe
() C:\Program Files (x86)\Battle.net\Battle.net.7730\Battle.net Helper.exe
() C:\Program Files (x86)\Battle.net\Battle.net.7730\Battle.net Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\RogueKiller\RogueKiller64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\windows\system32\rundll32.exe" C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9071752 2016-08-10] (AVAST Software)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7943072 2016-07-21] (SUPERAntiSpyware)
HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-06-22] (Disc Soft Ltd)
HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\Run: [f.lux] => C:\Users\Glenn\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-08-10] (AVAST Software)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 193.162.153.164 194.239.134.83
Tcpip\..\Interfaces\{ef58fefd-a3a0-4d83-8cd9-e065d1690974}: [DhcpNameServer] 193.162.153.164 194.239.134.83
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-103682906-2901245017-2763907060-1001\Software\Microsoft\Internet Explorer\Main,Start Page = 
SearchScopes: HKU\S-1-5-21-103682906-2901245017-2763907060-1001 -> DefaultScope {A85F7451-49DC-423F-9A87-3C00C60BD427} URL = 
 
FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-07-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-07-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-08-10]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-08-10]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://ekstrabladet.dk/
CHR StartupUrls: Default -> "","hxxp://www.boligportal.dk/lejebolig/din_find_bolig_pakke.php"
CHR Profile: C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Præsentation) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-18]
CHR Extension: (Google Dokumenter) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-18]
CHR Extension: (Google Drev) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-18]
CHR Extension: (YouTube) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-18]
CHR Extension: (Dropbox til Gmail) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2016-07-18]
CHR Extension: (Avast SafePrice) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-08-10]
CHR Extension: (Google Ark) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-18]
CHR Extension: (Google Docs Offline) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-18]
CHR Extension: (AdBlock) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-10]
CHR Extension: (Date Countdown) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnbmbpihmhcjkagbbnfdikmjieigakgj [2016-07-18]
CHR Extension: (Avast Online Security) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-08-10]
CHR Extension: (StumbleUpon) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcahibnffhnnjcedflmchmokndkjnhpg [2016-07-18]
CHR Extension: (Betalinger i Chrome Webshop) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-18]
CHR Extension: (Gmail) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-18]
CHR Extension: (Chrome Media Router) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-05]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197640 2016-08-10] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [224112 2016-08-10] (AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-06-22] (Disc Soft Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
R2 GlassWire; C:\Program Files (x86)\GlassWire\GWCtlSrv.exe [4342224 2016-07-03] (SecureMix LLC)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
S2 MBAMScheduler; "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe" [X]
S2 MBAMService; "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe" [X]
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-08-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-08-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-08-10] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [453192 2016-08-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-08-10] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-08-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [968536 2016-08-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513496 2016-08-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-08-10] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-08-10] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-07-21] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-07-21] (Disc Soft Ltd)
R1 gwdrv; C:\Windows\system32\DRIVERS\gwdrv.sys [33152 2015-05-29] (SecureMix LLC)
S3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-08-10] (Malwarebytes)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [202032 2016-01-19] (Intel Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
U5 PROCMON23; C:\Windows\System32\Drivers\PROCMON23.sys [84792 2016-08-09] (Sysinternals - www.sysinternals.com)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek                                            )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2016-08-11] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S1 epp; \??\C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys [X]
S3 MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-08-10 12:40 - 2016-08-11 00:48 - 00014631 _____ C:\Users\Glenn\Desktop\FRST.txt
2016-08-10 12:40 - 2016-08-10 12:41 - 00028670 _____ C:\Users\Glenn\Desktop\Addition.txt
2016-08-10 12:38 - 2016-08-10 12:38 - 34613896 _____ (Adlice Software ) C:\Users\Glenn\Downloads\setup.exe
2016-08-10 12:38 - 2016-08-10 12:38 - 00000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2016-08-10 12:38 - 2016-08-10 12:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2016-08-10 12:38 - 2016-08-10 12:38 - 00000000 ____D C:\Program Files\RogueKiller
2016-08-10 12:37 - 2016-08-10 12:37 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\Glenn\Downloads\rkill.exe
2016-08-10 12:37 - 2016-08-10 12:37 - 00002466 _____ C:\Users\Glenn\Desktop\Rkill.txt
2016-08-10 12:11 - 2016-08-10 12:11 - 00037144 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2016-08-10 12:11 - 2016-08-10 12:11 - 00004020 _____ C:\windows\System32\Tasks\SafeZone scheduled Autoupdate 1470823912
2016-08-10 12:11 - 2016-08-10 12:11 - 00001088 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-08-10 12:11 - 2016-08-10 12:11 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-08-10 12:11 - 2016-08-10 12:11 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\AVAST Software
2016-08-10 12:11 - 2016-08-10 12:11 - 00000000 ____D C:\Users\Glenn\AppData\Local\CEF
2016-08-10 12:10 - 2016-08-10 12:11 - 00000000 ____D C:\Program Files\AVAST Software
2016-08-10 12:10 - 2016-08-10 12:10 - 00968536 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2016-08-10 12:10 - 2016-08-10 12:10 - 00513496 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2016-08-10 12:10 - 2016-08-10 12:10 - 00453192 _____ (AVAST Software) C:\windows\system32\Drivers\aswNetSec.sys
2016-08-10 12:10 - 2016-08-10 12:10 - 00391496 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2016-08-10 12:10 - 2016-08-10 12:10 - 00292704 _____ (AVAST Software) C:\windows\system32\Drivers\aswvmm.sys
2016-08-10 12:10 - 2016-08-10 12:10 - 00163416 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2016-08-10 12:10 - 2016-08-10 12:10 - 00108816 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2016-08-10 12:10 - 2016-08-10 12:10 - 00103064 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2016-08-10 12:10 - 2016-08-10 12:10 - 00074544 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys
2016-08-10 12:10 - 2016-08-10 12:10 - 00053208 _____ (AVAST Software) C:\windows\avastSS.scr
2016-08-10 12:10 - 2016-08-10 12:10 - 00037656 _____ (AVAST Software) C:\windows\system32\Drivers\aswHwid.sys
2016-08-10 12:10 - 2016-08-10 12:10 - 00004004 _____ C:\windows\System32\Tasks\avast! Emergency Update
2016-08-10 12:10 - 2016-08-10 12:10 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premier.lnk
2016-08-10 12:10 - 2016-08-10 12:10 - 00001967 _____ C:\Users\Public\Desktop\Avast Premier.lnk
2016-08-10 12:09 - 2016-08-10 12:11 - 00000000 ____D C:\ProgramData\AVAST Software
2016-08-10 12:09 - 2016-08-10 12:09 - 00002066 _____ C:\Users\Glenn\Downloads\Avast.Premier.Antivirus.2016.Incl.License (1).torrent
2016-08-10 12:06 - 2016-08-10 12:06 - 00002066 _____ C:\Users\Glenn\Downloads\Avast.Premier.Antivirus.2016.Incl.License.torrent
2016-08-10 11:50 - 2016-08-10 11:50 - 02393600 _____ (Farbar) C:\Users\Glenn\Downloads\FRST641.exe
2016-08-10 11:44 - 2016-08-10 11:44 - 00380928 _____ C:\Users\Glenn\Downloads\gn7jd1t21.exe
2016-08-10 11:44 - 2016-08-10 11:44 - 00371282 _____ C:\Users\Glenn\Downloads\gmer (1).zip
2016-08-10 11:11 - 2016-08-10 12:03 - 00192216 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2016-08-10 11:06 - 2016-08-10 11:06 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-10 11:04 - 2016-08-10 12:10 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\Azureus
2016-08-10 11:04 - 2016-08-10 12:09 - 00000000 ____D C:\Users\Glenn\Documents\Vuze Downloads
2016-08-10 11:04 - 2016-08-10 11:04 - 00001863 _____ C:\Users\Public\Desktop\Vuze.lnk
2016-08-10 11:04 - 2016-08-10 11:04 - 00001863 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vuze.lnk
2016-08-10 11:04 - 2016-08-10 11:04 - 00000000 ____D C:\Users\Glenn\AppData\Local\{B5F70934-5E12-42d2-882D-62D42EA1FA67}
2016-08-10 11:04 - 2016-08-10 11:04 - 00000000 ____D C:\Users\Glenn\.swt
2016-08-10 11:04 - 2016-08-10 11:04 - 00000000 ____D C:\Program Files\Vuze
2016-08-10 11:03 - 2016-08-10 11:04 - 00000000 ____D C:\Users\Glenn\.oracle_jre_usage
2016-08-10 11:03 - 2016-08-10 11:03 - 00091808 _____ (Azureus Software, Inc.) C:\Users\Glenn\Downloads\VuzeBittorrentClientInstaller.exe
2016-08-10 11:02 - 2016-08-10 11:02 - 00007520 _____ C:\Users\Glenn\Downloads\Malwarebytes.Anti-Malware.Premium.v2.2.1.1043.Incl.Auto.Activator.Hotfix.torrent
2016-08-09 22:50 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2016-08-09 22:50 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2016-08-09 22:50 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2016-08-09 22:50 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2016-08-09 22:50 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pdc.sys
2016-08-09 22:50 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\windows\system32\wldp.dll
2016-08-09 22:50 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2016-08-09 22:50 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\windows\system32\NetSetupEngine.dll
2016-08-09 22:50 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\windows\system32\NetSetupApi.dll
2016-08-09 22:50 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2016-08-09 22:50 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\windows\system32\WWAHost.exe
2016-08-09 22:50 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2016-08-09 22:50 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pci.sys
2016-08-09 22:50 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\windows\system32\SensorsNativeApi.dll
2016-08-09 22:50 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2016-08-09 22:50 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-08-09 22:50 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\windows\system32\SettingSyncHost.exe
2016-08-09 22:50 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\windows\system32\LockAppHost.exe
2016-08-09 22:50 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2016-08-09 22:50 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\windows\system32\sppwinob.dll
2016-08-09 22:50 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2016-08-09 22:50 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2016-08-09 22:50 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2016-08-09 22:50 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms2.sys
2016-08-09 22:50 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2016-08-09 22:50 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdbss.sys
2016-08-09 22:50 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\tdlrecover.exe
2016-08-09 22:50 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2016-08-09 22:50 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\windows\system32\edgehtml.dll
2016-08-09 22:50 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\windows\system32\MusNotification.exe
2016-08-09 22:50 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\windows\system32\wshbth.dll
2016-08-09 22:50 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\musdialoghandlers.dll
2016-08-09 22:50 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.dll
2016-08-09 22:50 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\Windows.StateRepositoryClient.dll
2016-08-09 22:50 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\windows\system32\Windows.StateRepositoryBroker.dll
2016-08-09 22:50 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\VEDataLayerHelpers.dll
2016-08-09 22:50 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\windows\system32\bthserv.dll
2016-08-09 22:50 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\windows\system32\MusNotificationUx.exe
2016-08-09 22:50 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\TpmTasks.dll
2016-08-09 22:50 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2016-08-09 22:50 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\windows\system32\BluetoothApis.dll
2016-08-09 22:50 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\windows\system32\MusUpdateHandlers.dll
2016-08-09 22:50 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\windows\system32\usocore.dll
2016-08-09 22:50 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\windows\system32\IdCtrls.dll
2016-08-09 22:50 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2016-08-09 22:50 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\windows\system32\NetSetupSvc.dll
2016-08-09 22:50 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2016-08-09 22:50 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\windows\system32\Chakradiag.dll
2016-08-09 22:50 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\windows\system32\WUDFPlatform.dll
2016-08-09 22:50 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2016-08-09 22:50 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\windows\system32\SensorService.dll
2016-08-09 22:50 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\windows\system32\VEEventDispatcher.dll
2016-08-09 22:50 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\windows\system32\tileobjserver.dll
2016-08-09 22:50 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\windows\system32\SensorsApi.dll
2016-08-09 22:50 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\windows\system32\wevtutil.exe
2016-08-09 22:50 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-08-09 22:50 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2016-08-09 22:50 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\windows\system32\OneDriveSettingSyncProvider.dll
2016-08-09 22:50 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2016-08-09 22:50 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2016-08-09 22:50 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\windows\system32\RecoveryDrive.exe
2016-08-09 22:50 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\windows\system32\win32kbase.sys
2016-08-09 22:50 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-08-09 22:50 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2016-08-09 22:50 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2016-08-09 22:50 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\windows\system32\LogonController.dll
2016-08-09 22:50 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2016-08-09 22:50 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2016-08-09 22:50 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2016-08-09 22:50 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\windows\system32\wuuhext.dll
2016-08-09 22:50 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-08-09 22:50 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2016-08-09 22:50 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentExtensions.dll
2016-08-09 22:50 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2016-08-09 22:50 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentServer.dll
2016-08-09 22:50 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\windows\system32\dbgeng.dll
2016-08-09 22:50 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\windows\system32\win32kfull.sys
2016-08-09 22:50 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Logon.dll
2016-08-09 22:50 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-08-09 22:50 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\windows\system32\Chakra.dll
2016-08-09 22:50 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-08-09 22:50 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\windows\system32\ActiveSyncProvider.dll
2016-08-09 22:50 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-08-09 22:50 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2016-08-09 22:50 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\windows\system32\Windows.StateRepository.dll
2016-08-09 22:50 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2016-08-09 22:50 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\windows\SysWOW64\wldp.dll
2016-08-09 22:50 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupEngine.dll
2016-08-09 22:50 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupApi.dll
2016-08-09 22:50 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\windows\SysWOW64\SensorsNativeApi.dll
2016-08-09 22:50 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2016-08-09 22:50 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2016-08-09 22:50 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\windows\SysWOW64\WWAHost.exe
2016-08-09 22:50 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2016-08-09 22:50 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingSyncHost.exe
2016-08-09 22:50 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\windows\SysWOW64\LockAppHost.exe
2016-08-09 22:50 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdlrecover.exe
2016-08-09 22:50 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshbth.dll
2016-08-09 22:50 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Xaml.dll
2016-08-09 22:50 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-09 22:50 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-09 22:50 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\windows\SysWOW64\BluetoothApis.dll
2016-08-09 22:50 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\windows\SysWOW64\IdCtrls.dll
2016-08-09 22:50 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2016-08-09 22:50 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2016-08-09 22:50 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\windows\SysWOW64\VEEventDispatcher.dll
2016-08-09 22:50 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\windows\SysWOW64\SensorsApi.dll
2016-08-09 22:50 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\windows\SysWOW64\wevtutil.exe
2016-08-09 22:50 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2016-08-09 22:50 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-09 22:50 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgehtml.dll
2016-08-09 22:50 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2016-08-09 22:50 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2016-08-09 22:50 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2016-08-09 22:50 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2016-08-09 22:50 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2016-08-09 22:50 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\windows\SysWOW64\LogonController.dll
2016-08-09 22:50 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2016-08-09 22:50 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2016-08-09 22:50 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2016-08-09 22:50 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2016-08-09 22:50 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2016-08-09 22:50 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\windows\SysWOW64\dbgeng.dll
2016-08-09 22:50 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakra.dll
2016-08-09 22:50 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Logon.dll
2016-08-09 22:50 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2016-08-09 22:50 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2016-08-09 22:50 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\windows\SysWOW64\ActiveSyncProvider.dll
2016-08-09 22:50 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.StateRepository.dll
2016-08-09 22:14 - 2016-08-09 22:14 - 00000000 ____D C:\Users\Glenn\AppData\LocalLow\uTorrent
2016-08-03 21:43 - 2016-08-03 21:43 - 00013714 _____ C:\Users\Glenn\Downloads\Independence.Day.Resurgence.2016.BLUR.720p.HDRip.x264.AC3-PTNK.torrent
2016-08-03 21:42 - 2016-08-03 21:44 - 00000000 ____D C:\Users\Glenn\Downloads\Independence.Day.Resurgence.2016.DKSubs.BLUR.720p.HDRip.x264-UNiTAiL
2016-08-03 21:42 - 2016-08-03 21:42 - 00019367 _____ C:\Users\Glenn\Downloads\Independence.Day.Resurgence.2016.DKSubs.BLUR.720p.HDRip.x264-UNiTAiL.torrent
2016-08-03 20:25 - 2016-08-03 20:25 - 00027662 _____ C:\Users\Glenn\Downloads\mr-robot-second-season_english-1378763.zip
2016-08-03 20:25 - 2016-08-03 20:25 - 00026052 _____ C:\Users\Glenn\Downloads\mr-robot-second-season_english-1375029.zip
2016-08-03 20:02 - 2016-08-04 00:01 - 00000000 ____D C:\Users\Glenn\Downloads\Lucifer.S01.Custom.DKsubs.720p.WEB-DL.x264-RELEASED
2016-08-03 20:02 - 2016-08-03 20:02 - 00091499 _____ C:\Users\Glenn\Downloads\Lucifer.S01.Custom.DKsubs.720p.WEB-DL.x264-RELEASED.torrent
2016-08-03 03:43 - 2016-08-03 03:44 - 00000000 ____D C:\Users\Glenn\Downloads\Mr.Robot.S02E04.1080p.HDTV.x264-BRISK
2016-08-03 03:43 - 2016-08-03 03:43 - 00017910 _____ C:\Users\Glenn\Downloads\Preacher.S01E10.NORDiC.720p.WEB-DL.DD5.1.H.264-DBRETAiL.torrent
2016-08-03 03:43 - 2016-08-03 03:43 - 00010208 _____ C:\Users\Glenn\Downloads\Mr.Robot.S02E04.1080p.HDTV.x264-BRISK.torrent
2016-08-03 03:41 - 2016-08-03 03:41 - 00015794 _____ C:\Users\Glenn\Downloads\Preacher.S01E09.NORDiC.720p.WEB-DL.DD5.1.H.264-DBRETAiL.torrent
2016-08-03 03:41 - 2016-08-03 03:41 - 00000000 ____D C:\Users\Glenn\Downloads\Preacher.S01E09.NORDiC.720p.WEB-DL.DD5.1.H.264-DBRETAiL
2016-08-02 01:25 - 2016-08-02 01:25 - 00020403 _____ C:\Users\Glenn\Downloads\dark-matter-second-season_english-1379762.zip
2016-08-02 00:22 - 2016-08-02 00:22 - 00018497 _____ C:\Users\Glenn\Downloads\dark-matter-second-season_english-1376124 (2).zip
2016-08-02 00:22 - 2016-08-02 00:22 - 00018497 _____ C:\Users\Glenn\Downloads\dark-matter-second-season_english-1376124 (1).zip
2016-08-02 00:14 - 2016-08-02 00:14 - 00018497 _____ C:\Users\Glenn\Downloads\dark-matter-second-season_english-1376124.zip
2016-08-02 00:14 - 2016-08-02 00:14 - 00018436 _____ C:\Users\Glenn\Downloads\dark-matter-second-season_english-1376138.zip
2016-08-02 00:14 - 2016-08-02 00:14 - 00016664 _____ C:\Users\Glenn\Downloads\dark-matter-second-season_english-1377089.zip
2016-08-02 00:10 - 2016-08-02 00:10 - 00009296 _____ C:\Users\Glenn\Downloads\Dark.Matter.S02E04.1080p.WEB.x264-FaiLED.torrent
2016-08-02 00:08 - 2016-08-02 00:08 - 00005494 _____ C:\Users\Glenn\Downloads\Dark.Matter.S02E05.720p.HDTV.x264-FLEET.torrent
2016-08-02 00:08 - 2016-08-02 00:08 - 00003010 _____ C:\Users\Glenn\Downloads\Dark.Matter.S02E05.HDTV.x264-FLEET.torrent
2016-07-26 14:14 - 2016-07-26 14:14 - 00000000 ____D C:\Users\Glenn\Desktop\GOA
2016-07-26 13:13 - 2016-07-26 13:13 - 00015945 _____ C:\Users\Glenn\Downloads\[HoundDawgs]Preacher.S01E09.NORDiC.720p.WEB-DL.H.264-RAPiDCOWS.torrent
2016-07-26 11:59 - 2016-07-26 12:00 - 609468760 _____ C:\Users\Glenn\Downloads\goa maya shanti 07.16.zip
2016-07-26 11:24 - 2016-08-11 00:48 - 02393600 _____ (Farbar) C:\Users\Glenn\Desktop\FRST64.exe
2016-07-26 11:24 - 2016-08-11 00:48 - 00000000 ____D C:\Users\Glenn\Desktop\FRST-OlderVersion
2016-07-25 12:29 - 2013-02-04 15:12 - 00367104 _____ (CANON INC.) C:\windows\system32\CNC_BXL.dll
2016-07-25 12:29 - 2012-11-09 10:43 - 00088064 _____ C:\windows\system32\CNC176DD.TBL
2016-07-25 12:29 - 2012-11-08 13:04 - 00282624 _____ (CANON INC.) C:\windows\system32\CNC_BXC.dll
2016-07-25 12:29 - 2012-11-08 13:03 - 00106496 _____ (CANON INC.) C:\windows\system32\CNC_BXI.dll
2016-07-25 12:29 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\windows\system32\CNHMCA6.dll
2016-07-25 12:28 - 2016-07-25 12:28 - 00000000 ___HD C:\ProgramData\CanonBJ
2016-07-25 12:28 - 2013-03-24 05:00 - 00391168 _____ (CANON INC.) C:\windows\system32\CNMLMBX.DLL
2016-07-25 12:24 - 2016-07-25 12:24 - 00254063 ____T C:\Users\Glenn\Downloads\ribe.pdf
2016-07-25 12:24 - 2016-07-25 12:24 - 00000000 ____D C:\Users\Glenn\AppData\LocalLow\Temp
2016-07-23 04:34 - 2016-07-23 04:34 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
2016-07-23 04:33 - 2016-07-23 04:33 - 00597304 _____ C:\Users\Glenn\Downloads\flux-setup.exe
2016-07-23 04:33 - 2016-07-23 04:33 - 00000000 ____D C:\Users\Glenn\AppData\Local\FluxSoftware
2016-07-22 01:39 - 2016-07-22 01:40 - 00000000 ____D C:\Users\Glenn\AppData\Local\NVIDIA
2016-07-22 01:39 - 2016-07-22 01:39 - 00001450 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-07-22 01:39 - 2016-07-22 01:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-07-22 01:39 - 2016-07-11 04:34 - 01887800 _____ (NVIDIA Corporation) C:\windows\system32\NvCamera64.dll
2016-07-22 01:39 - 2016-07-11 04:34 - 01595840 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvCamera32.dll
2016-07-22 01:39 - 2016-07-11 00:37 - 00127424 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvStreaming.exe
2016-07-22 01:39 - 2016-06-14 22:01 - 01767944 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll
2016-07-22 01:39 - 2016-06-14 22:01 - 01756424 _____ (NVIDIA Corporation) C:\windows\system32\nvspbridge64.dll
2016-07-22 01:39 - 2016-06-14 22:01 - 01377800 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll
2016-07-22 01:39 - 2016-06-14 22:01 - 01316184 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspbridge.dll
2016-07-22 01:39 - 2016-06-14 22:01 - 00112216 _____ C:\windows\system32\NvRtmpStreamer64.dll
2016-07-22 01:38 - 2016-07-22 01:38 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-07-22 01:38 - 2016-07-11 00:58 - 00546240 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshext.dll
2016-07-22 01:38 - 2016-07-11 00:58 - 00083512 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshextr.dll
2016-07-22 01:38 - 2016-05-04 04:23 - 00129824 _____ C:\windows\SysWOW64\vulkan-1.dll
2016-07-22 01:38 - 2016-05-04 04:22 - 00130848 _____ C:\windows\system32\vulkan-1.dll
2016-07-22 01:38 - 2016-05-04 04:22 - 00045344 _____ C:\windows\system32\vulkaninfo.exe
2016-07-22 01:38 - 2016-05-04 04:22 - 00040224 _____ C:\windows\SysWOW64\vulkaninfo.exe
2016-07-22 01:37 - 2016-07-12 13:45 - 01579976 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco6420103.dll
2016-07-22 01:37 - 2016-07-12 13:45 - 00214592 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda64v.sys
2016-07-22 01:37 - 2016-07-12 13:45 - 00046016 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap64.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 39977920 _____ C:\windows\system32\nvcompiler.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 35117112 _____ C:\windows\SysWOW64\nvcompiler.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 31680568 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 25442240 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 17764408 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 17463992 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 14487768 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 10700592 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 10656296 _____ C:\windows\system32\nvptxJitCompiler.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 10243600 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 09028360 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 08742360 _____ C:\windows\SysWOW64\nvptxJitCompiler.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 08622576 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 03825688 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 03382240 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 02868160 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 02497984 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 01939000 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6436881.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 01571776 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6436881.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00999872 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00930360 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00909248 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00852024 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00802816 _____ (NVIDIA Corporation) C:\windows\system32\nvEncMFTH264.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00694488 _____ C:\windows\system32\nvfatbinaryLoader.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00644184 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncMFTH264.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00583920 _____ C:\windows\SysWOW64\nvfatbinaryLoader.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00563856 _____ (NVIDIA Corporation) C:\windows\system32\nvumdshimx.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00462904 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvumdshim.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00444472 _____ (NVIDIA Corporation) C:\windows\system32\NvIFROpenGL.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00413488 _____ (NVIDIA Corporation) C:\windows\system32\nvEncodeAPI64.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00393152 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFROpenGL.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00383936 _____ (NVIDIA Corporation) C:\windows\system32\nvDecMFTMjpeg.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00348216 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvDecMFTMjpeg.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00345800 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncodeAPI.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00177952 _____ (NVIDIA Corporation) C:\windows\system32\nvinitx.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00155952 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvinit.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00153232 _____ (NVIDIA Corporation) C:\windows\system32\nvoglshim64.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00131584 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglshim32.dll
2016-07-22 01:37 - 2016-07-11 04:34 - 00000594 _____ C:\windows\SysWOW64\nv-vk32.json
2016-07-22 01:37 - 2016-07-11 04:34 - 00000594 _____ C:\windows\system32\nv-vk64.json
2016-07-22 01:35 - 2016-07-22 01:35 - 00000000 ____D C:\NVIDIA
2016-07-22 01:35 - 2016-07-11 00:58 - 06385720 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll
2016-07-22 01:35 - 2016-07-11 00:58 - 02465848 _____ (NVIDIA Corporation) C:\windows\system32\nvsvc64.dll
2016-07-22 01:35 - 2016-07-11 00:58 - 01762752 _____ (NVIDIA Corporation) C:\windows\system32\nvsvcr.dll
2016-07-22 01:35 - 2016-07-11 00:58 - 01362880 _____ (NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
2016-07-22 01:35 - 2016-07-11 00:58 - 00393784 _____ (NVIDIA Corporation) C:\windows\system32\nvmctray.dll
2016-07-22 01:35 - 2016-07-11 00:58 - 00069568 _____ (NVIDIA Corporation) C:\windows\system32\nvshext.dll
2016-07-22 01:35 - 2016-07-07 19:05 - 07211925 _____ C:\windows\system32\nvcoproc.bin
2016-07-22 01:35 - 2015-07-13 20:45 - 00112784 _____ (Khronos Group) C:\windows\system32\OpenCL.dll
2016-07-22 01:35 - 2015-07-13 20:45 - 00105104 _____ (Khronos Group) C:\windows\SysWOW64\OpenCL.dll
2016-07-22 01:24 - 2016-07-22 01:24 - 00292184 _____ (Microsoft Corporation) C:\Users\Glenn\Downloads\dxwebsetup (2).exe
2016-07-22 01:20 - 2016-07-22 01:20 - 00292184 _____ (Microsoft Corporation) C:\Users\Glenn\Downloads\dxwebsetup (1).exe
2016-07-22 01:19 - 2016-07-22 01:24 - 00000000 ___HD C:\windows\msdownld.tmp
2016-07-22 01:19 - 2016-07-22 01:24 - 00000000 ____D C:\windows\SysWOW64\directx
2016-07-22 01:16 - 2016-07-22 01:19 - 00292184 _____ (Microsoft Corporation) C:\Users\Glenn\Downloads\dxwebsetup.exe
2016-07-22 01:05 - 2016-07-22 01:05 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\Neos Eureka S.r.l
2016-07-22 00:51 - 2016-07-22 01:47 - 00001664 _____ C:\Users\Glenn\Desktop\Play Fallout 4.lnk
2016-07-22 00:38 - 2016-08-05 18:38 - 00000000 ____D C:\Games
2016-07-21 22:38 - 2016-07-21 22:38 - 00006456 _____ C:\Users\Glenn\Downloads\Mr.Robot.S02E03.720p.HDTV.x264-KILLERS.torrent
2016-07-21 22:34 - 2016-08-04 00:42 - 00000000 ____D C:\Users\Glenn\Downloads\The.Magicians.S01.NORDiC.720p.BluRay.x264-RAPiDCOWS
2016-07-21 22:33 - 2016-07-21 22:33 - 00153917 _____ C:\Users\Glenn\Downloads\[HoundDawgs]The.Magicians.S01.NORDiC.720p.BluRay.x264-RAPiDCOWS.torrent
2016-07-21 22:25 - 2016-07-21 22:25 - 00056455 _____ C:\Users\Glenn\Downloads\[HoundDawgs]Fallout.4.MULTi10-PROPHET.torrent
2016-07-21 22:23 - 2016-07-21 22:23 - 00061558 _____ C:\Users\Glenn\Downloads\[HoundDawgs]Fallout.4.PC.full.game-nosTEAM.torrent
2016-07-21 22:07 - 2016-07-21 22:07 - 00002268 _____ C:\Users\Glenn\Downloads\Fallout.4.Update.v1.2-CODEX.torrent
2016-07-21 22:06 - 2016-07-21 22:06 - 00001794 _____ C:\Users\Glenn\Downloads\Fallout.4.Update.v1.1.30-CODEX.torrent
2016-07-21 22:02 - 2016-07-21 22:02 - 00000000 ____D C:\Users\Glenn\AppData\Local\NVIDIA Corporation
2016-07-21 22:01 - 2016-04-14 07:38 - 00113216 _____ (NVIDIA Corporation) C:\windows\system32\nvaudcap64v.dll
2016-07-21 22:01 - 2016-04-14 07:38 - 00102976 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll
2016-07-21 22:01 - 2016-04-14 07:38 - 00056384 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys
2016-07-21 21:57 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_7.dll
2016-07-21 21:57 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_7.dll
2016-07-21 21:57 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_7.dll
2016-07-21 21:57 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_7.dll
2016-07-21 21:57 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_5.dll
2016-07-21 21:57 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_5.dll
2016-07-21 21:57 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_43.dll
2016-07-21 21:57 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_43.dll
2016-07-21 21:57 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\windows\system32\d3dcsx_43.dll
2016-07-21 21:57 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dcsx_43.dll
2016-07-21 21:57 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_43.dll
2016-07-21 21:57 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_43.dll
2016-07-21 21:57 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_43.dll
2016-07-21 21:57 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx11_43.dll
2016-07-21 21:56 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_43.dll
2016-07-21 21:56 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_43.dll
2016-07-21 21:56 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_6.dll
2016-07-21 21:56 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_6.dll
2016-07-21 21:56 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_6.dll
2016-07-21 21:56 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_6.dll
2016-07-21 21:56 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_4.dll
2016-07-21 21:56 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_4.dll
2016-07-21 21:56 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_7.dll
2016-07-21 21:56 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_7.dll
2016-07-21 21:56 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_5.dll
2016-07-21 21:56 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_5.dll
2016-07-21 21:56 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_5.dll
2016-07-21 21:56 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_5.dll
2016-07-21 21:56 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_3.dll
2016-07-21 21:56 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_3.dll
2016-07-21 21:56 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\windows\system32\d3dcsx_42.dll
2016-07-21 21:56 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dcsx_42.dll
2016-07-21 21:56 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_42.dll
2016-07-21 21:56 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_42.dll
2016-07-21 21:56 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_42.dll
2016-07-21 21:56 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_42.dll
2016-07-21 21:56 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_42.dll
2016-07-21 21:56 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_42.dll
2016-07-21 21:56 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_42.dll
2016-07-21 21:56 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx11_42.dll
2016-07-21 21:56 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_4.dll
2016-07-21 21:56 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_4.dll
2016-07-21 21:56 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_4.dll
2016-07-21 21:56 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_4.dll
2016-07-21 21:56 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_6.dll
2016-07-21 21:56 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_6.dll
2016-07-21 21:56 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_41.dll
2016-07-21 21:56 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_41.dll
2016-07-21 21:56 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_41.dll
2016-07-21 21:56 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_41.dll
2016-07-21 21:56 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_41.dll
2016-07-21 21:56 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_41.dll
2016-07-21 21:56 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_3.dll
2016-07-21 21:56 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_3.dll
2016-07-21 21:56 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_3.dll
2016-07-21 21:56 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_3.dll
2016-07-21 21:56 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_2.dll
2016-07-21 21:56 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_2.dll
2016-07-21 21:56 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_5.dll
2016-07-21 21:56 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_5.dll
2016-07-21 21:56 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_40.dll
2016-07-21 21:56 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_40.dll
2016-07-21 21:56 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_40.dll
2016-07-21 21:56 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_40.dll
2016-07-21 21:56 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_40.dll
2016-07-21 21:56 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_40.dll
2016-07-21 21:56 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_2.dll
2016-07-21 21:56 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_2.dll
2016-07-21 21:56 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_1.dll
2016-07-21 21:56 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_1.dll
2016-07-21 21:56 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_2.dll
2016-07-21 21:56 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_2.dll
2016-07-21 21:56 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_39.dll
2016-07-21 21:56 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_39.dll
2016-07-21 21:56 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_39.dll
2016-07-21 21:56 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_39.dll
2016-07-21 21:56 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_39.dll
2016-07-21 21:56 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_39.dll
2016-07-21 21:56 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_1.dll
2016-07-21 21:56 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_1.dll
2016-07-21 21:56 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_1.dll
2016-07-21 21:56 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_1.dll
2016-07-21 21:56 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_0.dll
2016-07-21 21:56 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_0.dll
2016-07-21 21:56 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_4.dll
2016-07-21 21:56 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_4.dll
2016-07-21 21:56 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_38.dll
2016-07-21 21:56 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_38.dll
2016-07-21 21:56 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_38.dll
2016-07-21 21:56 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_38.dll
2016-07-21 21:56 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_38.dll
2016-07-21 21:56 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_38.dll
2016-07-21 21:56 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_0.dll
2016-07-21 21:56 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_0.dll
2016-07-21 21:56 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_0.dll
2016-07-21 21:56 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_0.dll
2016-07-21 21:56 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_3.dll
2016-07-21 21:56 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_3.dll
2016-07-21 21:56 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_37.dll
2016-07-21 21:56 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_37.dll
2016-07-21 21:56 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_37.dll
2016-07-21 21:56 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_37.dll
2016-07-21 21:56 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_37.dll
2016-07-21 21:56 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_37.dll
2016-07-21 21:56 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_10.dll
2016-07-21 21:56 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_10.dll
2016-07-21 21:56 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_2.dll
2016-07-21 21:56 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_2.dll
2016-07-21 21:56 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_36.dll
2016-07-21 21:56 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_36.dll
2016-07-21 21:56 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_36.dll
2016-07-21 21:56 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_36.dll
2016-07-21 21:56 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_36.dll
2016-07-21 21:56 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_36.dll
2016-07-21 21:56 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_9.dll
2016-07-21 21:56 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_9.dll
2016-07-21 21:56 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_35.dll
2016-07-21 21:56 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_35.dll
2016-07-21 21:56 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_35.dll
2016-07-21 21:56 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_35.dll
2016-07-21 21:56 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_35.dll
2016-07-21 21:56 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_35.dll
2016-07-21 21:56 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_8.dll
2016-07-21 21:56 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_8.dll
2016-07-21 21:56 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_34.dll
2016-07-21 21:56 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_34.dll
2016-07-21 21:56 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_34.dll
2016-07-21 21:56 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_34.dll
2016-07-21 21:56 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_34.dll
2016-07-21 21:56 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_34.dll
2016-07-21 21:56 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_7.dll
2016-07-21 21:56 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_7.dll
2016-07-21 21:56 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\windows\system32\xinput1_3.dll
2016-07-21 21:56 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_3.dll
2016-07-21 21:56 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_33.dll
2016-07-21 21:56 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_33.dll
2016-07-21 21:56 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_33.dll
2016-07-21 21:56 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_33.dll
2016-07-21 21:56 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_33.dll
2016-07-21 21:56 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_33.dll
2016-07-21 21:56 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_1.dll
2016-07-21 21:56 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_1.dll
2016-07-21 21:56 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_6.dll
2016-07-21 21:56 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_6.dll
2016-07-21 21:56 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_5.dll
2016-07-21 21:56 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_5.dll
2016-07-21 21:56 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_32.dll
2016-07-21 21:56 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_32.dll
2016-07-21 21:56 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10.dll
2016-07-21 21:56 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10.dll
2016-07-21 21:56 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_31.dll
2016-07-21 21:56 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_31.dll
2016-07-21 21:56 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_4.dll
2016-07-21 21:56 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_4.dll
2016-07-21 21:56 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\windows\system32\xinput1_2.dll
2016-07-21 21:56 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_3.dll
2016-07-21 21:56 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_3.dll
2016-07-21 21:56 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_2.dll
2016-07-21 21:56 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_2.dll
2016-07-21 21:56 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_2.dll
2016-07-21 21:56 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_30.dll
2016-07-21 21:56 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_30.dll
2016-07-21 21:56 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_1.dll
2016-07-21 21:56 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_1.dll
2016-07-21 21:56 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\windows\system32\xinput1_1.dll
2016-07-21 21:56 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_1.dll
2016-07-21 21:56 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_29.dll
2016-07-21 21:56 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_29.dll
2016-07-21 21:56 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_0.dll
2016-07-21 21:56 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_0.dll
2016-07-21 21:56 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_0.dll
2016-07-21 21:56 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_0.dll
2016-07-21 21:56 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_28.dll
2016-07-21 21:56 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_28.dll
2016-07-21 21:56 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_27.dll
2016-07-21 21:56 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_27.dll
2016-07-21 21:56 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_26.dll
2016-07-21 21:56 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_26.dll
2016-07-21 21:56 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_25.dll
2016-07-21 21:56 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_25.dll
2016-07-21 21:56 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_24.dll
2016-07-21 21:56 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_24.dll
2016-07-21 21:54 - 2016-07-21 21:54 - 00000000 ____D C:\Users\Glenn\Documents\My Games
2016-07-21 21:54 - 2016-07-21 21:54 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\Steam
2016-07-21 21:54 - 2016-07-21 21:54 - 00000000 ____D C:\Users\Glenn\AppData\Local\Fallout4
2016-07-21 21:04 - 2016-07-21 21:33 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\DAEMON Tools Lite
2016-07-21 21:04 - 2016-07-21 21:04 - 00047672 _____ (Disc Soft Ltd) C:\windows\system32\Drivers\dtliteusbbus.sys
2016-07-21 21:04 - 2016-07-21 21:04 - 00030264 _____ (Disc Soft Ltd) C:\windows\system32\Drivers\dtlitescsibus.sys
2016-07-21 21:04 - 2016-07-21 21:04 - 00001814 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-07-21 21:04 - 2016-07-21 21:04 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-07-21 21:04 - 2016-07-21 21:04 - 00000000 ____D C:\Users\Glenn\AppData\Local\Disc_Soft_Ltd
2016-07-21 21:04 - 2016-07-21 21:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-07-21 21:04 - 2016-07-21 21:04 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-07-21 21:03 - 2016-07-21 21:03 - 00692072 _____ (Disc Soft Ltd.) C:\Users\Glenn\Downloads\DTLiteInstaller.exe
2016-07-21 21:03 - 2016-07-21 21:03 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-07-21 21:00 - 2016-07-21 21:00 - 00128645 _____ C:\Users\Glenn\Downloads\Fallout.4-CODEX.torrent
2016-07-21 00:09 - 2016-07-21 00:09 - 00019150 _____ C:\Users\Glenn\Downloads\dark-matter-second-season_english-1372662.zip
2016-07-21 00:08 - 2016-07-21 00:08 - 00269443 _____ C:\Users\Glenn\Downloads\Stranger.Things.S01.NORDiC.1080p.WEBRip.DD5.1.x264-DBRETAiL (1).torrent
2016-07-21 00:07 - 2016-07-21 00:07 - 00005829 _____ C:\Users\Glenn\Downloads\Dark.Matter.S02E03.720p.HDTV.x264-SVA.torrent
2016-07-20 01:41 - 2016-07-20 01:41 - 00037776 _____ C:\Users\Glenn\Downloads\12.Monkeys.S01.NORDiC.720p.BluRay.x264-SS.torrent
2016-07-20 01:28 - 2016-07-20 01:28 - 00019165 _____ C:\Users\Glenn\Downloads\dark-matter-second-season_english-1368990 (1).zip
2016-07-20 01:25 - 2016-07-20 01:25 - 00006016 _____ C:\Users\Glenn\Downloads\Dark.Matter.S02E02.720p.HDTV.x264-SVA.torrent
2016-07-20 01:24 - 2016-07-20 01:24 - 00019225 _____ C:\Users\Glenn\Downloads\dark-matter-second-season_english-1368978.zip
2016-07-20 01:24 - 2016-07-20 01:24 - 00019165 _____ C:\Users\Glenn\Downloads\dark-matter-second-season_english-1368990.zip
2016-07-20 01:24 - 2016-07-20 01:24 - 00018789 _____ C:\Users\Glenn\Downloads\dark-matter-second-season_english-1369120.zip
2016-07-19 22:26 - 2016-07-19 22:26 - 00009295 _____ C:\Users\Glenn\Downloads\Dark.Matter.S02E03.1080p.WEB.x264-FaiLED.torrent
2016-07-19 22:26 - 2016-07-19 22:26 - 00009275 _____ C:\Users\Glenn\Downloads\Dark.Matter.S02E02.1080p.WEB.x264-FaiLED.torrent
2016-07-19 22:25 - 2016-07-19 22:25 - 00007207 _____ C:\Users\Glenn\Downloads\Dark.Matter.S02E01.Custom.DKsubs.720p.WEB-DL.H264-RELEASED.torrent
2016-07-19 21:01 - 2016-07-19 21:01 - 00269443 _____ C:\Users\Glenn\Downloads\Stranger.Things.S01.NORDiC.1080p.WEBRip.DD5.1.x264-DBRETAiL.torrent
2016-07-19 20:46 - 2016-07-19 20:49 - 00000000 ____D C:\Users\Glenn\Downloads\Hardcore.Henry.2016.Custom.DKSubs.1080p.BluRay.DTS.x264-UNiTY
2016-07-19 20:46 - 2016-07-19 20:46 - 00040227 _____ C:\Users\Glenn\Downloads\Hardcore.Henry.2016.Custom.DKSubs.1080p.BluRay.DTS.x264-UNiTY.torrent
2016-07-19 19:47 - 2016-07-19 19:47 - 00012110 _____ C:\Users\Glenn\Downloads\The.Purge.Anarchy.2014.Custom.DKsubs.720p.BluRay.x264-UNiTY.torrent
2016-07-19 19:46 - 2016-07-19 19:46 - 00016534 _____ C:\Users\Glenn\Downloads\The.Purge.Anarchy.2014.Custom.DKsubs.1080p.WEB-DL.x264-UNiTY.torrent
2016-07-19 19:35 - 2016-07-19 19:35 - 00000085 _____ C:\windows\wininit.ini
2016-07-19 03:06 - 2016-07-20 13:28 - 00000000 ____D C:\SUPERDelete
2016-07-19 02:20 - 2016-07-19 02:20 - 00000000 ____D C:\Users\Glenn\AppData\Local\ElevatedDiagnostics
2016-07-19 02:16 - 2016-07-19 02:16 - 00007604 _____ C:\Users\Glenn\AppData\Local\Resmon.ResmonCfg
2016-07-19 02:02 - 2016-07-19 02:02 - 00015341 _____ C:\Users\Glenn\Downloads\preacher_english-1373518.zip
2016-07-19 02:01 - 2016-08-08 23:19 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\vlc
2016-07-19 02:01 - 2016-07-19 02:01 - 00001139 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-07-19 02:01 - 2016-07-19 02:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-07-19 02:01 - 2016-07-19 02:01 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-07-19 01:59 - 2016-07-19 01:59 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\WinRAR
2016-07-19 01:59 - 2016-07-19 01:59 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-19 01:59 - 2016-07-19 01:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-19 01:59 - 2016-07-19 01:59 - 00000000 ____D C:\Program Files\WinRAR
2016-07-19 01:37 - 2016-08-01 17:03 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2016-07-19 01:37 - 2016-07-19 01:37 - 00001849 _____ C:\Users\Glenn\Desktop\SUPERAntiSpyware Free Edition.lnk
2016-07-19 01:37 - 2016-07-19 01:37 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\SUPERAntiSpyware.com
2016-07-19 01:37 - 2016-07-19 01:37 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2016-07-19 01:37 - 2016-07-19 01:37 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2016-07-19 01:34 - 2016-08-10 12:33 - 00000000 ____D C:\Users\Glenn\AppData\Local\CrashDumps
2016-07-19 01:33 - 2016-07-19 01:33 - 00003316 _____ C:\windows\System32\Tasks\{35606B99-CFA9-4739-94D4-B112EDEDC162}
2016-07-19 01:33 - 2016-07-19 01:33 - 00000000 ____D C:\Users\Glenn\Downloads\TMRBLog
2016-07-19 01:31 - 2016-07-19 02:59 - 00000000 ____D C:\Users\Glenn\Downloads\backups
2016-07-19 01:16 - 2016-08-09 22:16 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\uTorrent
2016-07-19 01:16 - 2016-07-19 01:16 - 00016845 _____ C:\Users\Glenn\Downloads\Preacher.S01E08.1080p.HDTV.X264-DIMENSION.torrent
2016-07-19 01:15 - 2016-07-19 01:15 - 00020255 _____ C:\Users\Glenn\Downloads\The.Purge.Election.Year.2016.Custom.DKSubs.BLUR.HDRip.x264-UNiTY.torrent
2016-07-19 01:07 - 2016-07-19 01:02 - 00000938 ____R C:\windows\system32\Drivers\etc\hosts.20160719-010709.backup
2016-07-19 01:05 - 2016-07-19 01:05 - 00000000 ____D C:\Users\Glenn\Documents\ProcAlyzer Dumps
2016-07-19 01:02 - 2016-07-19 00:59 - 00453060 ____R C:\windows\system32\Drivers\etc\hosts.20160719-010222.backup
2016-07-19 00:59 - 2015-10-30 09:21 - 00000824 _____ C:\windows\system32\Drivers\etc\hosts.20160719-005911.backup
2016-07-19 00:40 - 2016-07-19 00:40 - 00000000 ____D C:\Users\Glenn\AppData\Local\GlassWire
2016-07-19 00:40 - 2016-07-19 00:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GlassWire
2016-07-19 00:40 - 2016-07-19 00:40 - 00000000 ____D C:\ProgramData\GlassWire
2016-07-19 00:40 - 2016-07-19 00:40 - 00000000 ____D C:\Program Files (x86)\GlassWire
2016-07-19 00:40 - 2015-05-29 06:30 - 00008392 _____ C:\windows\system32\Drivers\gwdrv.cat
2016-07-19 00:40 - 2015-05-29 06:15 - 00033152 _____ (SecureMix LLC) C:\windows\system32\Drivers\gwdrv.sys
2016-07-19 00:31 - 2016-07-19 01:31 - 00388608 _____ (Trend Micro Inc.) C:\Users\Glenn\Downloads\HijackThis.exe
2016-07-19 00:31 - 2016-07-19 01:28 - 00386464 _____ (Bleeping Computer, LLC) C:\Users\Glenn\Downloads\show-hidden.exe
2016-07-19 00:31 - 2016-07-19 00:31 - 00464491 _____ C:\Users\Glenn\Downloads\RootRepeal.zip
2016-07-19 00:31 - 2016-07-19 00:31 - 00371282 _____ C:\Users\Glenn\Downloads\gmer.zip
2016-07-19 00:31 - 2016-07-19 00:31 - 00291606 _____ C:\Users\Glenn\Downloads\TCPView.zip
2016-07-19 00:31 - 2016-07-19 00:31 - 00231390 _____ C:\Users\Glenn\Downloads\RootkitRevealer.zip
2016-07-19 00:30 - 2016-07-19 01:36 - 00477600 _____ (Bleeping Computer, LLC) C:\Users\Glenn\Downloads\sc-cleaner.exe
2016-07-19 00:16 - 2016-07-19 00:16 - 00000000 ____D C:\Program Files\Common Files\AV
2016-07-19 00:15 - 2016-08-11 00:40 - 00028272 _____ C:\windows\system32\Drivers\TrueSight.sys
2016-07-19 00:15 - 2016-07-19 00:15 - 00000000 ____D C:\windows\System32\Tasks\Safer-Networking
2016-07-19 00:15 - 2016-07-19 00:15 - 00000000 ____D C:\ProgramData\RogueKiller
2016-07-19 00:14 - 2016-07-19 19:35 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-07-19 00:03 - 2016-08-11 00:48 - 00000000 ____D C:\FRST
2016-07-19 00:03 - 2016-08-10 11:52 - 00221499 _____ C:\Users\Glenn\Downloads\FRST.txt
2016-07-19 00:03 - 2016-08-10 11:52 - 00031462 _____ C:\Users\Glenn\Downloads\Addition.txt
2016-07-18 23:57 - 2016-07-18 23:58 - 00033028 _____ C:\Users\Glenn\Documents\cc_20160718_235715.reg
2016-07-18 23:54 - 2016-07-18 23:54 - 01007901 _____ C:\Users\Glenn\Downloads\Sysmon.zip
2016-07-18 23:51 - 2016-07-18 23:51 - 00172584 _____ (ESET) C:\Users\Glenn\Downloads\ESETConfickerCleaner.exe
2016-07-18 23:30 - 2016-08-09 22:29 - 00084792 ____H (Sysinternals - www.sysinternals.com) C:\windows\system32\Drivers\PROCMON23.SYS
2016-07-18 23:30 - 2016-07-18 23:30 - 00967601 _____ C:\Users\Glenn\Downloads\ProcessMonitor (1).zip
2016-07-18 23:26 - 2016-08-10 12:33 - 00042168 _____ (Sysinternals - www.sysinternals.com) C:\windows\system32\Drivers\PROCEXP152.SYS
2016-07-18 23:26 - 2016-07-19 01:34 - 00000000 ____D C:\Users\Glenn\Desktop\PE
2016-07-18 23:25 - 2016-07-18 23:25 - 01270466 _____ C:\Users\Glenn\Downloads\ProcessExplorer.zip
2016-07-18 23:25 - 2016-07-18 23:25 - 00967601 _____ C:\Users\Glenn\Downloads\ProcessMonitor.zip
2016-07-18 23:12 - 2016-07-18 23:12 - 00000420 _____ C:\Users\Glenn\Desktop\Denne pc.lnk
2016-07-18 22:45 - 2016-07-18 22:45 - 00000000 ____D C:\Program Files\CMAK
2016-07-18 22:45 - 2016-07-18 22:45 - 00000000 ____D C:\Program Files (x86)\CMAK
2016-07-18 22:40 - 2016-07-18 22:40 - 00000000 ____D C:\windows\system32\SleepStudy
2016-07-18 22:39 - 2016-07-18 22:39 - 00000000 ____D C:\Users\Glenn\AppData\Local\PeerDistRepub
2016-07-18 14:46 - 2016-07-18 14:46 - 00000000 ____D C:\Users\Glenn\Documents\Diablo III
2016-07-18 13:37 - 2016-07-18 13:37 - 00001207 _____ C:\Users\Public\Desktop\Diablo III.lnk
2016-07-18 13:37 - 2016-07-18 13:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2016-07-18 13:34 - 2016-08-09 19:37 - 00000000 ____D C:\Program Files (x86)\Diablo III
2016-07-18 13:33 - 2016-08-11 00:47 - 00000000 ____D C:\Users\Glenn\AppData\Local\Battle.net
2016-07-18 13:33 - 2016-08-10 21:27 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-07-18 13:33 - 2016-07-18 13:33 - 00001213 _____ C:\Users\Public\Desktop\Battle.net.lnk
2016-07-18 13:33 - 2016-07-18 13:33 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\Battle.net
2016-07-18 13:33 - 2016-07-18 13:33 - 00000000 ____D C:\Users\Glenn\AppData\Local\Blizzard Entertainment
2016-07-18 13:33 - 2016-07-18 13:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-07-18 13:33 - 2016-07-18 13:33 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2016-07-18 13:32 - 2016-07-18 13:32 - 00000000 ____D C:\ProgramData\Emsisoft
2016-07-18 13:31 - 2016-07-18 13:33 - 00000000 ____D C:\ProgramData\Battle.net
2016-07-18 13:27 - 2016-08-10 10:44 - 00000000 ____D C:\windows\system32\MRT
2016-07-18 13:27 - 2016-08-10 10:43 - 147640136 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-07-18 13:23 - 2016-07-22 01:39 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-18 13:23 - 2016-02-23 12:32 - 02544264 _____ (Microsoft Corporation) C:\windows\system32\mfcore.dll
2016-07-18 13:22 - 2016-08-11 00:39 - 00000972 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-18 13:22 - 2016-08-11 00:39 - 00000968 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-18 13:22 - 2016-08-10 12:43 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-18 13:22 - 2016-08-04 23:42 - 00002284 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-18 13:22 - 2016-08-04 23:42 - 00002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-18 13:22 - 2016-07-29 00:34 - 00004030 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-18 13:22 - 2016-07-29 00:34 - 00003798 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-18 13:22 - 2016-07-01 07:30 - 00587456 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2016-07-18 13:22 - 2016-07-01 07:30 - 00284352 _____ (Microsoft Corporation) C:\windows\system32\DeviceCensus.exe
2016-07-18 13:22 - 2016-07-01 06:49 - 00337336 _____ (Microsoft Corporation) C:\windows\system32\Windows.Storage.ApplicationData.dll
2016-07-18 13:22 - 2016-07-01 06:48 - 01238584 _____ (Microsoft Corporation) C:\windows\system32\Taskmgr.exe
2016-07-18 13:22 - 2016-07-01 06:43 - 03449168 _____ (Microsoft Corporation) C:\windows\system32\WSService.dll
2016-07-18 13:22 - 2016-07-01 06:38 - 01862008 _____ C:\windows\SysWOW64\CoreUIComponents.dll
2016-07-18 13:22 - 2016-07-01 06:35 - 01554152 _____ (Microsoft Corporation) C:\windows\system32\wmpmde.dll
2016-07-18 13:22 - 2016-07-01 06:35 - 01552104 _____ (Microsoft Corporation) C:\windows\system32\winmde.dll
2016-07-18 13:22 - 2016-07-01 06:35 - 01299504 _____ (Microsoft Corporation) C:\windows\system32\mfnetsrc.dll
2016-07-18 13:22 - 2016-07-01 06:35 - 01092464 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2016-07-18 13:22 - 2016-07-01 06:35 - 00847656 _____ (Microsoft Corporation) C:\windows\system32\mfsvr.dll
2016-07-18 13:22 - 2016-07-01 06:35 - 00586208 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2016-07-18 13:22 - 2016-07-01 06:35 - 00498960 _____ (Microsoft Corporation) C:\windows\system32\MFCaptureEngine.dll
2016-07-18 13:22 - 2016-07-01 06:35 - 00035656 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2016-07-18 13:22 - 2016-07-01 06:33 - 04515256 _____ (Microsoft Corporation) C:\windows\explorer.exe
2016-07-18 13:22 - 2016-07-01 06:33 - 01750440 _____ (Microsoft Corporation) C:\windows\system32\WpcMon.exe
2016-07-18 13:22 - 2016-07-01 06:33 - 00730352 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Shell.Broker.dll
2016-07-18 13:22 - 2016-07-01 06:33 - 00725776 _____ (Microsoft Corporation) C:\windows\system32\SHCore.dll
2016-07-18 13:22 - 2016-07-01 06:33 - 00374008 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsAdminFlows.exe
2016-07-18 13:22 - 2016-07-01 06:32 - 01603224 _____ (Microsoft Corporation) C:\windows\system32\propsys.dll
2016-07-18 13:22 - 2016-07-01 06:32 - 01128104 _____ (Microsoft Corporation) C:\windows\system32\ClipUp.exe
2016-07-18 13:22 - 2016-07-01 06:32 - 00106928 _____ (Microsoft Corporation) C:\windows\system32\phoneactivate.exe
2016-07-18 13:22 - 2016-07-01 06:31 - 01848584 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2016-07-18 13:22 - 2016-07-01 06:25 - 02773096 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2016-07-18 13:22 - 2016-07-01 06:25 - 02145032 _____ (Microsoft Corporation) C:\windows\system32\d3d9.dll
2016-07-18 13:22 - 2016-07-01 06:25 - 00648256 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2016-07-18 13:22 - 2016-07-01 06:24 - 00911648 _____ (Microsoft Corporation) C:\windows\system32\dcomp.dll
2016-07-18 13:22 - 2016-07-01 06:23 - 01349640 _____ (Microsoft Corporation) C:\windows\SysWOW64\winmde.dll
2016-07-18 13:22 - 2016-07-01 06:21 - 00376536 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.MediaControl.dll
2016-07-18 13:22 - 2016-07-01 06:20 - 00503600 _____ (Microsoft Corporation) C:\windows\system32\DMRServer.dll
2016-07-18 13:22 - 2016-07-01 06:20 - 00388896 _____ (Microsoft Corporation) C:\windows\system32\wmpps.dll
2016-07-18 13:22 - 2016-07-01 06:19 - 05240960 _____ (Microsoft Corporation) C:\windows\SysWOW64\windows.storage.dll
2016-07-18 13:22 - 2016-07-01 06:19 - 04074160 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe
2016-07-18 13:22 - 2016-07-01 06:19 - 01355336 _____ (Microsoft Corporation) C:\windows\SysWOW64\propsys.dll
2016-07-18 13:22 - 2016-07-01 06:18 - 00064584 _____ (Microsoft Corporation) C:\windows\SysWOW64\Clipc.dll
2016-07-18 13:22 - 2016-07-01 06:12 - 01866104 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d9.dll
2016-07-18 13:22 - 2016-07-01 06:11 - 01522160 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2016-07-18 13:22 - 2016-07-01 06:00 - 00957952 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2016-07-18 13:22 - 2016-07-01 05:59 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\MosHostClient.dll
2016-07-18 13:22 - 2016-07-01 05:58 - 00824320 _____ (Microsoft Corporation) C:\windows\system32\WpcWebFilter.dll
2016-07-18 13:22 - 2016-07-01 05:57 - 00089600 _____ (Microsoft Corporation) C:\windows\system32\NFCProvisioningPlugin.dll
2016-07-18 13:22 - 2016-07-01 05:57 - 00059392 _____ (Microsoft Corporation) C:\windows\system32\cdpreference.exe
2016-07-18 13:22 - 2016-07-01 05:54 - 00120320 _____ (Microsoft Corporation) C:\windows\system32\MapsBtSvc.dll
2016-07-18 13:22 - 2016-07-01 05:54 - 00074752 _____ (Microsoft Corporation) C:\windows\system32\MosStorage.dll
2016-07-18 13:22 - 2016-07-01 05:53 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\provisioningcsp.dll
2016-07-18 13:22 - 2016-07-01 05:52 - 00185856 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1.dll
2016-07-18 13:22 - 2016-07-01 05:52 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\moshost.dll
2016-07-18 13:22 - 2016-07-01 05:50 - 11545088 _____ (Microsoft Corporation) C:\windows\system32\twinui.dll
2016-07-18 13:22 - 2016-07-01 05:50 - 00349184 _____ (Microsoft Corporation) C:\windows\system32\ntprint.dll
2016-07-18 13:22 - 2016-07-01 05:50 - 00270848 _____ (Microsoft Corporation) C:\windows\system32\moshostcore.dll
2016-07-18 13:22 - 2016-07-01 05:50 - 00090624 _____ (Microsoft Corporation) C:\windows\system32\FingerprintEnrollment.dll
2016-07-18 13:22 - 2016-07-01 05:50 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\WPDShServiceObj.dll
2016-07-18 13:22 - 2016-07-01 05:49 - 00290816 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2016-07-18 13:22 - 2016-07-01 05:49 - 00253440 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Maps.dll
2016-07-18 13:22 - 2016-07-01 05:49 - 00167936 _____ (Microsoft Corporation) C:\windows\system32\inetpp.dll
2016-07-18 13:22 - 2016-07-01 05:48 - 06572032 _____ (Microsoft Corporation) C:\windows\system32\wwanmm.dll
2016-07-18 13:22 - 2016-07-01 05:48 - 00642048 _____ (Microsoft Corporation) C:\windows\system32\enterprisecsps.dll
2016-07-18 13:22 - 2016-07-01 05:48 - 00530432 _____ (Microsoft Corporation) C:\windows\system32\Drivers\nwifi.sys
2016-07-18 13:22 - 2016-07-01 05:48 - 00373248 _____ (Microsoft Corporation) C:\windows\system32\WmpDui.dll
2016-07-18 13:22 - 2016-07-01 05:47 - 00450048 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Bluetooth.dll
2016-07-18 13:22 - 2016-07-01 05:47 - 00318976 _____ (Microsoft Corporation) C:\windows\system32\domgmt.dll
2016-07-18 13:22 - 2016-07-01 05:47 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\aadcloudap.dll
2016-07-18 13:22 - 2016-07-01 05:47 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\provengine.dll
2016-07-18 13:22 - 2016-07-01 05:47 - 00287232 _____ (Microsoft Corporation) C:\windows\system32\provhandlers.dll
2016-07-18 13:22 - 2016-07-01 05:47 - 00237056 _____ (Microsoft Corporation) C:\windows\system32\NetworkDesktopSettings.dll
2016-07-18 13:22 - 2016-07-01 05:47 - 00188416 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.PicturePassword.dll
2016-07-18 13:22 - 2016-07-01 05:47 - 00182784 _____ (Microsoft Corporation) C:\windows\system32\shutdownux.dll
2016-07-18 13:22 - 2016-07-01 05:47 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\provops.dll
2016-07-18 13:22 - 2016-07-01 05:46 - 00714240 _____ (Microsoft Corporation) C:\windows\system32\SystemSettings.Handlers.dll
2016-07-18 13:22 - 2016-07-01 05:46 - 00510464 _____ (Microsoft Corporation) C:\windows\system32\WlanMediaManager.dll
2016-07-18 13:22 - 2016-07-01 05:46 - 00475648 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.BlockedShutdown.dll
2016-07-18 13:22 - 2016-07-01 05:46 - 00460800 _____ (Microsoft Corporation) C:\windows\system32\MapConfiguration.dll
2016-07-18 13:22 - 2016-07-01 05:46 - 00458752 _____ (Microsoft Corporation) C:\windows\system32\PlayToDevice.dll
2016-07-18 13:22 - 2016-07-01 05:46 - 00412672 _____ (Microsoft Corporation) C:\windows\system32\wlanui.dll
2016-07-18 13:22 - 2016-07-01 05:46 - 00342016 _____ (Microsoft Corporation) C:\windows\system32\APHostService.dll
2016-07-18 13:22 - 2016-07-01 05:46 - 00287744 _____ (Microsoft Corporation) C:\windows\system32\cdpsvc.dll
2016-07-18 13:22 - 2016-07-01 05:46 - 00279040 _____ (Microsoft Corporation) C:\windows\system32\ListSvc.dll
2016-07-18 13:22 - 2016-07-01 05:46 - 00258560 _____ (Microsoft Corporation) C:\windows\system32\credprovs.dll
2016-07-18 13:22 - 2016-07-01 05:45 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\efswrt.dll
2016-07-18 13:22 - 2016-07-01 05:45 - 00576000 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-18 13:22 - 2016-07-01 05:45 - 00492544 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_StorageSense.dll
2016-07-18 13:22 - 2016-07-01 05:45 - 00440320 _____ (Microsoft Corporation) C:\windows\system32\fhcfg.dll
2016-07-18 13:22 - 2016-07-01 05:45 - 00414720 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.BioFeedback.dll
2016-07-18 13:22 - 2016-07-01 05:45 - 00392192 _____ (Microsoft Corporation) C:\windows\system32\zipfldr.dll
2016-07-18 13:22 - 2016-07-01 05:45 - 00387072 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2016-07-18 13:22 - 2016-07-01 05:45 - 00317440 _____ (Microsoft Corporation) C:\windows\system32\Windows.Cortana.OneCore.dll
2016-07-18 13:22 - 2016-07-01 05:45 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2016-07-18 13:22 - 2016-07-01 05:45 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\RDXTaskFactory.dll
2016-07-18 13:22 - 2016-07-01 05:44 - 07977472 _____ (Microsoft Corporation) C:\windows\system32\mos.dll
2016-07-18 13:22 - 2016-07-01 05:44 - 00492544 _____ (Microsoft Corporation) C:\windows\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-18 13:22 - 2016-07-01 05:44 - 00484352 _____ (Microsoft Corporation) C:\windows\system32\DataSenseHandlers.dll
2016-07-18 13:22 - 2016-07-01 05:44 - 00451584 _____ (Microsoft Corporation) C:\windows\system32\werui.dll
2016-07-18 13:22 - 2016-07-01 05:44 - 00448000 _____ (Microsoft Corporation) C:\windows\system32\winipcfile.dll
2016-07-18 13:22 - 2016-07-01 05:44 - 00364032 _____ (Microsoft Corporation) C:\windows\system32\OneBackupHandler.dll
2016-07-18 13:22 - 2016-07-01 05:44 - 00283648 _____ (Microsoft Corporation) C:\windows\system32\PlayToReceiver.dll
2016-07-18 13:22 - 2016-07-01 05:44 - 00276480 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsExt.dll
2016-07-18 13:22 - 2016-07-01 05:44 - 00247296 _____ (Microsoft Corporation) C:\windows\system32\mssphtb.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 01294336 _____ (Microsoft Corporation) C:\windows\system32\wcnwiz.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 01056256 _____ (Microsoft Corporation) C:\windows\system32\JpMapControl.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00941568 _____ (Microsoft Corporation) C:\windows\system32\MiracastReceiver.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00892416 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.SmartCards.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00853504 _____ (Microsoft Corporation) C:\windows\system32\MapsStore.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\sud.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00564224 _____ (Microsoft Corporation) C:\windows\system32\DevicePairing.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00556032 _____ (Microsoft Corporation) C:\windows\system32\PsmServiceExtHost.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00529408 _____ (Microsoft Corporation) C:\windows\system32\NotificationController.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00519680 _____ (Microsoft Corporation) C:\windows\system32\WLanConn.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\wwanconn.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00356864 _____ (Microsoft Corporation) C:\windows\system32\ActivationManager.dll
2016-07-18 13:22 - 2016-07-01 05:43 - 00334848 _____ (Microsoft Corporation) C:\windows\system32\SearchProtocolHost.exe
2016-07-18 13:22 - 2016-07-01 05:42 - 02125312 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Bluetooth.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 02088960 _____ (Microsoft Corporation) C:\windows\system32\wpdshext.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 02012672 _____ (Microsoft Corporation) C:\windows\system32\winmsipc.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 01716736 _____ (Microsoft Corporation) C:\windows\system32\SRHInproc.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 01434112 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Editing.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 01240064 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 00988160 _____ (Microsoft Corporation) C:\windows\system32\NMAA.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 00965632 _____ (Microsoft Corporation) C:\windows\system32\SRH.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 00828928 _____ (Microsoft Corporation) C:\windows\system32\Windows.AccountsControl.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 00697344 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.OnlineId.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 00538112 _____ (Microsoft Corporation) C:\windows\system32\Windows.Cortana.Desktop.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 00480768 _____ (Microsoft Corporation) C:\windows\system32\LockAppBroker.dll
2016-07-18 13:22 - 2016-07-01 05:42 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2016-07-18 13:22 - 2016-07-01 05:41 - 01159168 _____ (Microsoft Corporation) C:\windows\system32\ApplicationFrame.dll
2016-07-18 13:22 - 2016-07-01 05:41 - 01054208 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2016-07-18 13:22 - 2016-07-01 05:41 - 00990208 _____ (Microsoft Corporation) C:\windows\system32\SharedStartModel.dll
2016-07-18 13:22 - 2016-07-01 05:41 - 00939520 _____ (Microsoft Corporation) C:\windows\system32\MapControlCore.dll
2016-07-18 13:22 - 2016-07-01 05:41 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\appwiz.cpl
2016-07-18 13:22 - 2016-07-01 05:41 - 00697856 _____ (Microsoft Corporation) C:\windows\system32\PlayToManager.dll
2016-07-18 13:22 - 2016-07-01 05:41 - 00605184 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-07-18 13:22 - 2016-07-01 05:41 - 00599040 _____ (Microsoft Corporation) C:\windows\system32\duser.dll
2016-07-18 13:22 - 2016-07-01 05:41 - 00587776 _____ (Microsoft Corporation) C:\windows\system32\bisrv.dll
2016-07-18 13:22 - 2016-07-01 05:41 - 00572928 _____ (Microsoft Corporation) C:\windows\SysWOW64\WpcWebFilter.dll
2016-07-18 13:22 - 2016-07-01 05:41 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\MosHostClient.dll
2016-07-18 13:22 - 2016-07-01 05:40 - 02731008 _____ (Microsoft Corporation) C:\windows\system32\gameux.dll
2016-07-18 13:22 - 2016-07-01 05:40 - 02103296 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.3D.dll
2016-07-18 13:22 - 2016-07-01 05:40 - 01902592 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2016-07-18 13:22 - 2016-07-01 05:40 - 01575936 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Speech.dll
2016-07-18 13:22 - 2016-07-01 05:40 - 00938496 _____ (Microsoft Corporation) C:\windows\system32\SearchIndexer.exe
2016-07-18 13:22 - 2016-07-01 05:40 - 00896512 _____ (Microsoft Corporation) C:\windows\system32\MbaeApiPublic.dll
2016-07-18 13:22 - 2016-07-01 05:40 - 00853504 _____ (Microsoft Corporation) C:\windows\system32\aadtb.dll
2016-07-18 13:22 - 2016-07-01 05:40 - 00841728 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2016-07-18 13:22 - 2016-07-01 05:40 - 00775168 _____ (Microsoft Corporation) C:\windows\system32\Display.dll
2016-07-18 13:22 - 2016-07-01 05:40 - 00496640 _____ (Microsoft Corporation) C:\windows\system32\webio.dll
2016-07-18 13:22 - 2016-07-01 05:39 - 01211904 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Cred.dll
2016-07-18 13:22 - 2016-07-01 05:38 - 06312448 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Search.dll
2016-07-18 13:22 - 2016-07-01 05:38 - 04456448 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_47.dll
2016-07-18 13:22 - 2016-07-01 05:38 - 01671168 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2016-07-18 13:22 - 2016-07-01 05:38 - 01443840 _____ (Microsoft Corporation) C:\windows\system32\diagperf.dll
2016-07-18 13:22 - 2016-07-01 05:38 - 01063936 _____ (Microsoft Corporation) C:\windows\system32\comdlg32.dll
2016-07-18 13:22 - 2016-07-01 05:38 - 00961536 _____ (Microsoft Corporation) C:\windows\system32\WSShared.dll
2016-07-18 13:22 - 2016-07-01 05:38 - 00821760 _____ (Microsoft Corporation) C:\windows\system32\TokenBroker.dll
2016-07-18 13:22 - 2016-07-01 05:38 - 00549888 _____ (Microsoft Corporation) C:\windows\system32\SearchFolder.dll
2016-07-18 13:22 - 2016-07-01 05:38 - 00012288 _____ (Microsoft Corporation) C:\windows\SysWOW64\IconCodecService.dll
2016-07-18 13:22 - 2016-07-01 05:37 - 01073152 _____ (Microsoft Corporation) C:\windows\system32\RDXService.dll
2016-07-18 13:22 - 2016-07-01 05:37 - 01051648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.dll
2016-07-18 13:22 - 2016-07-01 05:37 - 00865792 _____ (Microsoft Corporation) C:\windows\system32\AzureSettingSyncProvider.dll
2016-07-18 13:22 - 2016-07-01 05:37 - 00638976 _____ (Microsoft Corporation) C:\windows\system32\ShareHost.dll
2016-07-18 13:22 - 2016-07-01 05:37 - 00059904 _____ (Microsoft Corporation) C:\windows\SysWOW64\MosStorage.dll
2016-07-18 13:22 - 2016-07-01 05:36 - 03415040 _____ (Microsoft Corporation) C:\windows\system32\SyncCenter.dll
2016-07-18 13:22 - 2016-07-01 05:36 - 01141248 _____ (Microsoft Corporation) C:\windows\system32\winipcsecproc.dll
2016-07-18 13:22 - 2016-07-01 05:36 - 00701952 _____ (Microsoft Corporation) C:\windows\system32\twinapi.dll
2016-07-18 13:22 - 2016-07-01 05:36 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\MapsBtSvc.dll
2016-07-18 13:22 - 2016-07-01 05:35 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscntrs.dll
2016-07-18 13:22 - 2016-07-01 05:34 - 09919488 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.dll
2016-07-18 13:22 - 2016-07-01 05:34 - 03994624 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_nt.dll
2016-07-18 13:22 - 2016-07-01 05:34 - 03428864 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.dll
2016-07-18 13:22 - 2016-07-01 05:34 - 00636928 _____ (Microsoft Corporation) C:\windows\system32\hgcpl.dll
2016-07-18 13:22 - 2016-07-01 05:34 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppCapture.dll
2016-07-18 13:22 - 2016-07-01 05:33 - 07200256 _____ (Microsoft Corporation) C:\windows\system32\BingMaps.dll
2016-07-18 13:22 - 2016-07-01 05:33 - 06675968 _____ (Microsoft Corporation) C:\windows\system32\mspaint.exe
2016-07-18 13:22 - 2016-07-01 05:33 - 02285568 _____ (Microsoft Corporation) C:\windows\system32\WpcWebSync.dll
2016-07-18 13:22 - 2016-07-01 05:33 - 00309760 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntprint.dll
2016-07-18 13:22 - 2016-07-01 05:33 - 00057344 _____ (Microsoft Corporation) C:\windows\SysWOW64\WPDShServiceObj.dll
2016-07-18 13:22 - 2016-07-01 05:32 - 02582016 _____ (Microsoft Corporation) C:\windows\system32\MFMediaEngine.dll
2016-07-18 13:22 - 2016-07-01 05:32 - 02563584 _____ (Microsoft Corporation) C:\windows\system32\themecpl.dll
2016-07-18 13:22 - 2016-07-01 05:32 - 00268800 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2016-07-18 13:22 - 2016-07-01 05:31 - 01797120 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Immersive.dll
2016-07-18 13:22 - 2016-07-01 05:31 - 00870400 _____ (Microsoft Corporation) C:\windows\system32\wpncore.dll
2016-07-18 13:22 - 2016-07-01 05:31 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\StikyNot.exe
2016-07-18 13:22 - 2016-07-01 05:30 - 03585536 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-18 13:22 - 2016-07-01 05:30 - 00849920 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2016-07-18 13:22 - 2016-07-01 05:30 - 00546816 _____ (Microsoft Corporation) C:\windows\SysWOW64\ActionCenterCPL.dll
2016-07-18 13:22 - 2016-07-01 05:30 - 00339968 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2016-07-18 13:22 - 2016-07-01 05:30 - 00334336 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcastdvr.exe
2016-07-18 13:22 - 2016-07-01 05:30 - 00292864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dot3ui.dll
2016-07-18 13:22 - 2016-07-01 05:30 - 00282624 _____ (Microsoft Corporation) C:\windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-07-18 13:22 - 2016-07-01 05:29 - 05503488 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll
2016-07-18 13:22 - 2016-07-01 05:29 - 03355136 _____ (Microsoft Corporation) C:\windows\system32\msftedit.dll
2016-07-18 13:22 - 2016-07-01 05:29 - 02609664 _____ (Microsoft Corporation) C:\windows\system32\NetworkMobileSettings.dll
2016-07-18 13:22 - 2016-07-01 05:29 - 02352128 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2016-07-18 13:22 - 2016-07-01 05:29 - 00541184 _____ (Microsoft Corporation) C:\windows\SysWOW64\GamePanel.exe
2016-07-18 13:22 - 2016-07-01 05:29 - 00368128 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanui.dll
2016-07-18 13:22 - 2016-07-01 05:29 - 00349696 _____ (Microsoft Corporation) C:\windows\SysWOW64\MapConfiguration.dll
2016-07-18 13:22 - 2016-07-01 05:29 - 00254976 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Picker.dll
2016-07-18 13:22 - 2016-07-01 05:28 - 03577344 _____ (Microsoft Corporation) C:\windows\system32\tquery.dll
2016-07-18 13:22 - 2016-07-01 05:28 - 02912256 _____ (Microsoft Corporation) C:\windows\system32\CertEnroll.dll
2016-07-18 13:22 - 2016-07-01 05:28 - 02876928 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2016-07-18 13:22 - 2016-07-01 05:28 - 00197120 _____ (Microsoft Corporation) C:\windows\SysWOW64\netplwiz.dll
2016-07-18 13:22 - 2016-07-01 05:28 - 00119296 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssph.dll
2016-07-18 13:22 - 2016-07-01 05:27 - 01946112 _____ (Microsoft Corporation) C:\windows\system32\dwmcore.dll
2016-07-18 13:22 - 2016-07-01 05:27 - 00846336 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasgcw.dll
2016-07-18 13:22 - 2016-07-01 05:27 - 00613376 _____ (Microsoft Corporation) C:\windows\system32\SettingSync.dll
2016-07-18 13:22 - 2016-07-01 05:27 - 00559616 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.SmartCards.dll
2016-07-18 13:22 - 2016-07-01 05:27 - 00496128 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-07-18 13:22 - 2016-07-01 05:27 - 00282624 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchProtocolHost.exe
2016-07-18 13:22 - 2016-07-01 05:27 - 00250880 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-18 13:22 - 2016-07-01 05:27 - 00244736 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssphtb.dll
2016-07-18 13:22 - 2016-07-01 05:27 - 00216576 _____ (Microsoft Corporation) C:\windows\SysWOW64\PlayToReceiver.dll
2016-07-18 13:22 - 2016-07-01 05:27 - 00128000 _____ (Microsoft Corporation) C:\windows\system32\dmcsps.dll
2016-07-18 13:22 - 2016-07-01 05:26 - 02597888 _____ (Microsoft Corporation) C:\windows\system32\mssrch.dll
2016-07-18 13:22 - 2016-07-01 05:26 - 01755648 _____ (Microsoft Corporation) C:\windows\system32\dui70.dll
2016-07-18 13:22 - 2016-07-01 05:26 - 01171456 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcenter.dll
2016-07-18 13:22 - 2016-07-01 05:26 - 00800768 _____ (Microsoft Corporation) C:\windows\SysWOW64\JpMapControl.dll
2016-07-18 13:22 - 2016-07-01 05:26 - 00779264 _____ (Microsoft Corporation) C:\windows\SysWOW64\sbe.dll
2016-07-18 13:22 - 2016-07-01 05:26 - 00489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\mbsmsapi.dll
2016-07-18 13:22 - 2016-07-01 05:26 - 00372224 _____ (Microsoft Corporation) C:\windows\SysWOW64\LockAppBroker.dll
2016-07-18 13:22 - 2016-07-01 05:26 - 00348672 _____ (Microsoft Corporation) C:\windows\SysWOW64\CredProvDataModel.dll
2016-07-18 13:22 - 2016-07-01 05:26 - 00298496 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.dll
2016-07-18 13:22 - 2016-07-01 05:25 - 01121792 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2016-07-18 13:22 - 2016-07-01 05:25 - 01117184 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Speech.dll
2016-07-18 13:22 - 2016-07-01 05:25 - 01097216 _____ (Microsoft Corporation) C:\windows\system32\dosvc.dll
2016-07-18 13:22 - 2016-07-01 05:25 - 00984576 _____ (Microsoft Corporation) C:\windows\system32\SettingSyncCore.dll
2016-07-18 13:22 - 2016-07-01 05:25 - 00784896 _____ (Microsoft Corporation) C:\windows\SysWOW64\NMAA.dll
2016-07-18 13:22 - 2016-07-01 05:25 - 00736768 _____ (Microsoft Corporation) C:\windows\SysWOW64\SmartcardCredentialProvider.dll
2016-07-18 13:22 - 2016-07-01 05:25 - 00711680 _____ (Microsoft Corporation) C:\windows\SysWOW64\MapControlCore.dll
2016-07-18 13:22 - 2016-07-01 05:25 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-07-18 13:22 - 2016-07-01 05:25 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2016-07-18 13:22 - 2016-07-01 05:24 - 01588224 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2016-07-18 13:22 - 2016-07-01 05:24 - 01487872 _____ (Microsoft Corporation) C:\windows\system32\SpeechPal.dll
2016-07-18 13:22 - 2016-07-01 05:24 - 01448960 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-07-18 13:22 - 2016-07-01 05:24 - 01390080 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Shell.dll
2016-07-18 13:22 - 2016-07-01 05:24 - 00673280 _____ (Microsoft Corporation) C:\windows\SysWOW64\MbaeApiPublic.dll
2016-07-18 13:22 - 2016-07-01 05:24 - 00468992 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.dll
2016-07-18 13:22 - 2016-07-01 05:24 - 00405504 _____ (Microsoft Corporation) C:\windows\SysWOW64\webio.dll
2016-07-18 13:22 - 2016-07-01 05:23 - 03695104 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_47.dll
2016-07-18 13:22 - 2016-07-01 05:23 - 03301376 _____ (Microsoft Corporation) C:\windows\SysWOW64\SyncCenter.dll
2016-07-18 13:22 - 2016-07-01 05:23 - 02578432 _____ (Microsoft Corporation) C:\windows\SysWOW64\gameux.dll
2016-07-18 13:22 - 2016-07-01 05:23 - 01036288 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Streaming.dll
2016-07-18 13:22 - 2016-07-01 05:23 - 00764928 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Cred.dll
2016-07-18 13:22 - 2016-07-01 05:23 - 00760320 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchIndexer.exe
2016-07-18 13:22 - 2016-07-01 05:23 - 00667648 _____ (Microsoft Corporation) C:\windows\SysWOW64\AzureSettingSyncProvider.dll
2016-07-18 13:22 - 2016-07-01 05:23 - 00489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ShareHost.dll
2016-07-18 13:22 - 2016-07-01 05:22 - 06295552 _____ (Microsoft Corporation) C:\windows\SysWOW64\mos.dll
2016-07-18 13:22 - 2016-07-01 05:22 - 03053568 _____ (Microsoft Corporation) C:\windows\system32\rdpcore.dll
2016-07-18 13:22 - 2016-07-01 05:22 - 00965120 _____ (Microsoft Corporation) C:\windows\SysWOW64\comdlg32.dll
2016-07-18 13:22 - 2016-07-01 05:22 - 00639488 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBroker.dll
2016-07-18 13:22 - 2016-07-01 05:21 - 00980480 _____ (Microsoft Corporation) C:\windows\SysWOW64\winipcsecproc.dll
2016-07-18 13:22 - 2016-07-01 05:21 - 00341504 _____ (Microsoft Corporation) C:\windows\system32\RADCUI.dll
2016-07-18 13:22 - 2016-07-01 05:19 - 01987072 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2016-07-18 13:22 - 2016-07-01 05:19 - 01582080 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Immersive.dll
2016-07-18 13:22 - 2016-07-01 05:19 - 00581632 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinapi.dll
2016-07-18 13:22 - 2016-07-01 05:19 - 00503296 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingSync.dll
2016-07-18 13:22 - 2016-07-01 05:18 - 05205504 _____ (Microsoft Corporation) C:\windows\SysWOW64\BingMaps.dll
2016-07-18 13:22 - 2016-07-01 05:17 - 02155008 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2016-07-18 13:22 - 2016-07-01 05:16 - 02771968 _____ (Microsoft Corporation) C:\windows\SysWOW64\tquery.dll
2016-07-18 13:22 - 2016-07-01 05:16 - 01984000 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssrch.dll
2016-07-18 13:22 - 2016-07-01 05:15 - 04413440 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2016-07-18 13:22 - 2016-07-01 05:15 - 02604032 _____ (Microsoft Corporation) C:\windows\SysWOW64\CertEnroll.dll
2016-07-18 13:22 - 2016-07-01 05:15 - 02217984 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll
2016-07-18 13:22 - 2016-07-01 05:15 - 02102272 _____ (Microsoft Corporation) C:\windows\SysWOW64\xpsservices.dll
2016-07-18 13:22 - 2016-07-01 05:15 - 00573440 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserLanguagesCpl.dll
2016-07-18 13:22 - 2016-07-01 05:14 - 02680320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msftedit.dll
2016-07-18 13:22 - 2016-07-01 05:13 - 01249280 _____ (Microsoft Corporation) C:\windows\SysWOW64\usercpl.dll
2016-07-18 13:22 - 2016-07-01 05:12 - 00339456 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2016-07-18 13:22 - 2016-07-01 05:11 - 00754176 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingSyncCore.dll
2016-07-18 13:22 - 2016-07-01 05:09 - 02632192 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpcore.dll
2016-07-18 13:22 - 2016-07-01 05:08 - 01976832 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpdshext.dll
2016-07-18 13:22 - 2016-07-01 05:08 - 00517632 _____ (Microsoft Corporation) C:\windows\SysWOW64\PlayToManager.dll
2016-07-18 13:22 - 2016-05-28 07:25 - 04268880 _____ (Microsoft Corporation) C:\windows\SysWOW64\setupapi.dll
2016-07-18 13:22 - 2016-05-28 07:23 - 00388384 _____ (Microsoft Corporation) C:\windows\SysWOW64\ws2_32.dll
2016-07-18 13:22 - 2016-05-28 07:22 - 04387680 _____ (Microsoft Corporation) C:\windows\system32\setupapi.dll
2016-07-18 13:22 - 2016-05-28 07:22 - 00428896 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2016-07-18 13:22 - 2016-05-28 07:22 - 00211296 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tpm.sys
2016-07-18 13:22 - 2016-05-28 07:22 - 00118624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\partmgr.sys
2016-07-18 13:22 - 2016-05-28 07:18 - 00357216 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2016-07-18 13:22 - 2016-05-28 07:09 - 00170848 _____ (Microsoft Corporation) C:\windows\system32\NetworkUXBroker.exe
2016-07-18 13:22 - 2016-05-28 07:04 - 00431296 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll
2016-07-18 13:22 - 2016-05-28 07:04 - 00360480 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcryptprimitives.dll
2016-07-18 13:22 - 2016-05-28 07:04 - 00111064 _____ (Microsoft Corporation) C:\windows\system32\ncryptsslp.dll
2016-07-18 13:22 - 2016-05-28 06:58 - 00379232 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2016-07-18 13:22 - 2016-05-28 06:57 - 02548944 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2016-07-18 13:22 - 2016-05-28 06:57 - 01594416 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2016-07-18 13:22 - 2016-05-28 06:57 - 00636304 _____ (Microsoft Corporation) C:\windows\system32\fontdrvhost.exe
2016-07-18 13:22 - 2016-05-28 06:57 - 00546456 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontdrvhost.exe
2016-07-18 13:22 - 2016-05-28 06:57 - 00316256 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2016-07-18 13:22 - 2016-05-28 06:35 - 00031744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dumpsdport.sys
2016-07-18 13:22 - 2016-05-28 06:29 - 00045568 _____ (Adobe Systems) C:\windows\system32\atmlib.dll

2016-07-18 13:22 - 2016-05-28 06:28 - 00118272 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2016-07-18 13:22 - 2016-05-28 06:26 - 00157184 _____ (Microsoft Corporation) C:\windows\system32\dmcertinst.exe
2016-07-18 13:22 - 2016-05-28 06:26 - 00145920 _____ (Microsoft Corporation) C:\windows\system32\omadmclient.exe
2016-07-18 13:22 - 2016-05-28 06:25 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\gpscript.dll
2016-07-18 13:22 - 2016-05-28 06:25 - 00037376 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2016-07-18 13:22 - 2016-05-28 06:24 - 00093696 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2016-07-18 13:22 - 2016-05-28 06:23 - 00155136 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2016-07-18 13:22 - 2016-05-28 06:22 - 00278528 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netbt.sys
2016-07-18 13:22 - 2016-05-28 06:22 - 00161280 _____ (Microsoft Corporation) C:\windows\SysWOW64\InstallAgent.exe
2016-07-18 13:22 - 2016-05-28 06:22 - 00079872 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2016-07-18 13:22 - 2016-05-28 06:21 - 00239104 _____ (Microsoft Corporation) C:\windows\system32\BrokerLib.dll
2016-07-18 13:22 - 2016-05-28 06:21 - 00190464 _____ (Microsoft Corporation) C:\windows\system32\wscsvc.dll
2016-07-18 13:22 - 2016-05-28 06:20 - 00174080 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Privacy.dll
2016-07-18 13:22 - 2016-05-28 06:20 - 00057344 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc6.dll
2016-07-18 13:22 - 2016-05-28 06:19 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc.dll
2016-07-18 13:22 - 2016-05-28 06:18 - 00678912 _____ (Microsoft Corporation) C:\windows\system32\gpprefcl.dll
2016-07-18 13:22 - 2016-05-28 06:18 - 00380416 _____ (Microsoft Corporation) C:\windows\system32\SystemEventsBrokerServer.dll
2016-07-18 13:22 - 2016-05-28 06:17 - 00963072 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2016-07-18 13:22 - 2016-05-28 06:17 - 00630784 _____ (Microsoft Corporation) C:\windows\system32\MessagingDataModel2.dll
2016-07-18 13:22 - 2016-05-28 06:17 - 00415232 _____ (Microsoft Corporation) C:\windows\SysWOW64\StoreAgent.dll
2016-07-18 13:22 - 2016-05-28 06:17 - 00278016 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Management.dll
2016-07-18 13:22 - 2016-05-28 06:17 - 00173056 _____ (Microsoft Corporation) C:\windows\system32\mdmmigrator.dll
2016-07-18 13:22 - 2016-05-28 06:16 - 00690176 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2016-07-18 13:22 - 2016-05-28 06:16 - 00406528 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2016-07-18 13:22 - 2016-05-28 06:16 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2016-07-18 13:22 - 2016-05-28 06:15 - 00794624 _____ (Microsoft Corporation) C:\windows\system32\winhttp.dll
2016-07-18 13:22 - 2016-05-28 06:15 - 00293888 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore.dll
2016-07-18 13:22 - 2016-05-28 06:15 - 00237056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2016-07-18 13:22 - 2016-05-28 06:14 - 00499712 _____ (Microsoft Corporation) C:\windows\SysWOW64\MessagingDataModel2.dll
2016-07-18 13:22 - 2016-05-28 06:13 - 00982016 _____ (Microsoft Corporation) C:\windows\system32\AppxPackaging.dll
2016-07-18 13:22 - 2016-05-28 06:12 - 00614400 _____ (Microsoft Corporation) C:\windows\SysWOW64\winhttp.dll
2016-07-18 13:22 - 2016-05-28 06:12 - 00521728 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll
2016-07-18 13:22 - 2016-05-28 06:11 - 00890368 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxPackaging.dll
2016-07-18 13:22 - 2016-05-28 06:04 - 00555520 _____ (Microsoft Corporation) C:\windows\system32\SyncController.dll
2016-07-18 13:22 - 2016-05-28 06:04 - 00450560 _____ (Microsoft Corporation) C:\windows\SysWOW64\SyncController.dll
2016-07-18 13:22 - 2016-05-28 06:03 - 01185280 _____ (Microsoft Corporation) C:\windows\SysWOW64\LocationFramework.dll
2016-07-18 13:22 - 2016-05-28 06:03 - 00693760 _____ (Microsoft Corporation) C:\windows\system32\internetmail.dll
2016-07-18 13:22 - 2016-05-28 06:03 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\dmenrollengine.dll
2016-07-18 13:22 - 2016-05-28 06:00 - 00162816 _____ (Microsoft Corporation) C:\windows\system32\enrollmentapi.dll
2016-07-18 13:22 - 2016-05-28 06:00 - 00090624 _____ (Microsoft Corporation) C:\windows\system32\DeviceEnroller.exe
2016-07-18 13:22 - 2016-05-28 05:59 - 00176640 _____ (Microsoft Corporation) C:\windows\system32\mdmregistration.dll
2016-07-18 13:22 - 2016-05-28 05:53 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\ngcpopkeysrv.dll
2016-07-18 13:22 - 2016-05-06 06:03 - 00649216 _____ (Microsoft Corporation) C:\windows\system32\ngcsvc.dll
2016-07-18 13:22 - 2016-05-06 05:53 - 00351232 _____ (Microsoft Corporation) C:\windows\system32\NgcCtnr.dll
2016-07-18 13:22 - 2016-05-06 05:49 - 00289792 _____ (Microsoft Corporation) C:\windows\system32\NgcCtnrSvc.dll
2016-07-18 13:22 - 2016-05-06 05:44 - 00582656 _____ (Microsoft Corporation) C:\windows\system32\ngccredprov.dll
2016-07-18 13:22 - 2016-05-06 05:43 - 00320000 _____ (Microsoft Corporation) C:\windows\system32\cryptngc.dll
2016-07-18 13:22 - 2016-04-23 07:28 - 01542816 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2016-07-18 13:22 - 2016-04-23 07:24 - 01819208 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2016-07-18 13:22 - 2016-04-23 07:24 - 00638816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fvevol.sys
2016-07-18 13:22 - 2016-04-23 07:24 - 00335712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fastfat.sys
2016-07-18 13:22 - 2016-04-23 07:13 - 00306832 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanapi.dll
2016-07-18 13:22 - 2016-04-23 07:12 - 00413536 _____ (Microsoft Corporation) C:\windows\system32\wifitask.exe
2016-07-18 13:22 - 2016-04-23 07:11 - 00390496 _____ (Microsoft Corporation) C:\windows\system32\wlanapi.dll
2016-07-18 13:22 - 2016-04-23 07:11 - 00131424 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ufxsynopsys.sys
2016-07-18 13:22 - 2016-04-23 07:07 - 00204048 _____ (Microsoft Corporation) C:\windows\system32\rsaenh.dll
2016-07-18 13:22 - 2016-04-23 07:06 - 00291360 _____ (Microsoft Corporation) C:\windows\system32\wininit.exe
2016-07-18 13:22 - 2016-04-23 07:02 - 00188256 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxAllUserStore.dll
2016-07-18 13:22 - 2016-04-23 07:01 - 00619296 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2016-07-18 13:22 - 2016-04-23 07:01 - 00217440 _____ (Microsoft Corporation) C:\windows\system32\AppxAllUserStore.dll
2016-07-18 13:22 - 2016-04-23 07:00 - 01399224 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2016-07-18 13:22 - 2016-04-23 07:00 - 00550656 _____ (Microsoft Corporation) C:\windows\system32\directmanipulation.dll
2016-07-18 13:22 - 2016-04-23 06:56 - 00534872 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBHUB3.SYS
2016-07-18 13:22 - 2016-04-23 06:34 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbser.sys
2016-07-18 13:22 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\UcmCx.sys
2016-07-18 13:22 - 2016-04-23 06:33 - 00038400 _____ (Microsoft Corporation) C:\windows\system32\ByteCodeGenerator.exe
2016-07-18 13:22 - 2016-04-23 06:32 - 00134656 _____ (Microsoft Corporation) C:\windows\system32\wificonnapi.dll
2016-07-18 13:22 - 2016-04-23 06:32 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-07-18 13:22 - 2016-04-23 06:29 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\MDMAppInstaller.exe
2016-07-18 13:22 - 2016-04-23 06:29 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\hmkd.dll
2016-07-18 13:22 - 2016-04-23 06:29 - 00031232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ByteCodeGenerator.exe
2016-07-18 13:22 - 2016-04-23 06:28 - 00130560 _____ (Microsoft Corporation) C:\windows\system32\CloudDomainJoinDataModelServer.dll
2016-07-18 13:22 - 2016-04-23 06:27 - 00039424 _____ (Microsoft Corporation) C:\windows\SysWOW64\wfdprov.dll
2016-07-18 13:22 - 2016-04-23 06:26 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\wpdbusenum.dll
2016-07-18 13:22 - 2016-04-23 06:24 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\ieproxy.dll
2016-07-18 13:22 - 2016-04-23 06:24 - 00181248 _____ (Microsoft Corporation) C:\windows\system32\shacct.dll
2016-07-18 13:22 - 2016-04-23 06:24 - 00166400 _____ (Microsoft Corporation) C:\windows\system32\SubscriptionMgr.dll
2016-07-18 13:22 - 2016-04-23 06:24 - 00084480 _____ (Microsoft Corporation) C:\windows\SysWOW64\VEDataLayerHelpers.dll
2016-07-18 13:22 - 2016-04-23 06:23 - 00179712 _____ (Microsoft Corporation) C:\windows\system32\BrowserSettingSync.dll
2016-07-18 13:22 - 2016-04-23 06:20 - 00307200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieproxy.dll
2016-07-18 13:22 - 2016-04-23 06:20 - 00137728 _____ (Microsoft Corporation) C:\windows\SysWOW64\shacct.dll
2016-07-18 13:22 - 2016-04-23 06:19 - 00395264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlansec.dll
2016-07-18 13:22 - 2016-04-23 06:18 - 00804352 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-07-18 13:22 - 2016-04-23 06:18 - 00436736 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentClient.dll
2016-07-18 13:22 - 2016-04-23 06:17 - 00337920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanmsm.dll
2016-07-18 13:22 - 2016-04-23 06:16 - 01319424 _____ (Microsoft Corporation) C:\windows\system32\wifinetworkmanager.dll
2016-07-18 13:22 - 2016-04-23 06:14 - 00647680 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2016-07-18 13:22 - 2016-04-23 06:13 - 00489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.dll
2016-07-18 13:22 - 2016-04-02 06:13 - 00369912 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2016-07-18 13:22 - 2016-04-02 05:25 - 00239104 _____ (Microsoft Corporation) C:\windows\SysWOW64\NotificationObjFactory.dll
2016-07-18 13:22 - 2016-03-29 12:18 - 02152280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2016-07-18 13:22 - 2016-03-29 12:15 - 00100232 _____ (Microsoft Corporation) C:\windows\system32\omadmapi.dll
2016-07-18 13:22 - 2016-03-29 12:11 - 00686976 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2016-07-18 13:22 - 2016-03-29 12:02 - 00334736 _____ (Microsoft Corporation) C:\windows\system32\policymanager.dll
2016-07-18 13:22 - 2016-03-29 11:28 - 00535080 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2016-07-18 13:22 - 2016-03-29 11:13 - 00986976 _____ (Microsoft Corporation) C:\windows\SysWOW64\LicenseManager.dll
2016-07-18 13:22 - 2016-03-29 11:11 - 00074424 _____ (Microsoft Corporation) C:\windows\system32\easinvoker.exe
2016-07-18 13:22 - 2016-03-29 11:10 - 00110584 _____ (Microsoft Corporation) C:\windows\system32\srvcli.dll
2016-07-18 13:22 - 2016-03-29 11:09 - 00078040 _____ (Microsoft Corporation) C:\windows\system32\wkscli.dll
2016-07-18 13:22 - 2016-03-29 10:23 - 00069744 _____ (Microsoft Corporation) C:\windows\SysWOW64\netapi32.dll
2016-07-18 13:22 - 2016-03-29 10:21 - 00378208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBXHCI.SYS
2016-07-18 13:22 - 2016-03-29 10:16 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\Drivers\xinputhid.sys
2016-07-18 13:22 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\policymanagerprecheck.dll
2016-07-18 13:22 - 2016-03-29 10:07 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\dmenterprisediagnostics.dll
2016-07-18 13:22 - 2016-03-29 10:07 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\wsdchngr.dll
2016-07-18 13:22 - 2016-03-29 10:06 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\oleacchooks.dll
2016-07-18 13:22 - 2016-03-29 10:00 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\fveskybackup.dll
2016-07-18 13:22 - 2016-03-29 09:58 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\wininetlui.dll
2016-07-18 13:22 - 2016-03-29 09:58 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2016-07-18 13:22 - 2016-03-29 09:57 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\samlib.dll
2016-07-18 13:22 - 2016-03-29 09:57 - 00058368 _____ (Microsoft Corporation) C:\windows\system32\browcli.dll
2016-07-18 13:22 - 2016-03-29 09:55 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\Drivers\serial.sys
2016-07-18 13:22 - 2016-03-29 09:55 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\tbauth.dll
2016-07-18 13:22 - 2016-03-29 09:53 - 00116224 _____ (Microsoft Corporation) C:\windows\system32\FontProvider.dll
2016-07-18 13:22 - 2016-03-29 09:52 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\TokenBrokerCookies.exe
2016-07-18 13:22 - 2016-03-29 09:50 - 00088576 _____ (Microsoft Corporation) C:\windows\system32\AppxSysprep.dll
2016-07-18 13:22 - 2016-03-29 09:50 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\OnDemandConnRouteHelper.dll
2016-07-18 13:22 - 2016-03-29 09:48 - 00144896 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Devices.dll
2016-07-18 13:22 - 2016-03-29 09:46 - 00134656 _____ (Microsoft Corporation) C:\windows\system32\browser.dll
2016-07-18 13:22 - 2016-03-29 09:44 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\DAFWSD.dll
2016-07-18 13:22 - 2016-03-29 09:35 - 00411648 _____ (Microsoft Corporation) C:\windows\system32\oleacc.dll
2016-07-18 13:22 - 2016-03-29 09:34 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2016-07-18 13:22 - 2016-03-29 09:30 - 00328192 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2016-07-18 13:22 - 2016-03-29 09:30 - 00161792 _____ (Microsoft Corporation) C:\windows\SysWOW64\msorcl32.dll
2016-07-18 13:22 - 2016-03-29 09:23 - 00694784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdiWiFi.sys
2016-07-18 13:22 - 2016-03-29 09:22 - 00438784 _____ (Microsoft Corporation) C:\windows\system32\AccountsRt.dll
2016-07-18 13:22 - 2016-03-29 09:20 - 00948736 _____ (Microsoft Corporation) C:\windows\system32\XblAuthManager.dll
2016-07-18 13:22 - 2016-03-29 09:20 - 00166400 _____ (Microsoft Corporation) C:\windows\system32\AboveLockAppHost.dll
2016-07-18 13:22 - 2016-03-29 09:20 - 00026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\wsdchngr.dll
2016-07-18 13:22 - 2016-03-29 09:18 - 00676352 _____ (Microsoft Corporation) C:\windows\system32\WSDApi.dll
2016-07-18 13:22 - 2016-03-29 09:11 - 00881664 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Input.Inking.dll
2016-07-18 13:22 - 2016-03-29 09:09 - 01239552 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Bluetooth.dll
2016-07-18 13:22 - 2016-03-29 09:09 - 00030208 _____ (Microsoft Corporation) C:\windows\SysWOW64\tbauth.dll
2016-07-18 13:22 - 2016-03-29 09:08 - 00888320 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.dll
2016-07-18 13:22 - 2016-03-29 09:06 - 00022528 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBrokerCookies.exe
2016-07-18 13:22 - 2016-03-29 09:05 - 01395712 _____ (Microsoft Corporation) C:\windows\system32\UIAutomationCore.dll
2016-07-18 13:22 - 2016-03-29 09:00 - 00235008 _____ C:\windows\system32\MTF.dll
2016-07-18 13:22 - 2016-03-29 09:00 - 00176128 _____ (Microsoft Corporation) C:\windows\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-07-18 13:22 - 2016-03-29 08:59 - 00119808 _____ (Microsoft Corporation) C:\windows\system32\BitLockerDeviceEncryption.exe
2016-07-18 13:22 - 2016-03-29 08:53 - 00323072 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleacc.dll
2016-07-18 13:22 - 2016-03-29 08:53 - 00193024 _____ (Microsoft Corporation) C:\windows\SysWOW64\credprovhost.dll
2016-07-18 13:22 - 2016-03-29 08:43 - 00358400 _____ (Microsoft Corporation) C:\windows\SysWOW64\AccountsRt.dll
2016-07-18 13:22 - 2016-03-29 08:42 - 01410560 _____ (Microsoft Corporation) C:\windows\system32\Windows.Web.Http.dll
2016-07-18 13:22 - 2016-03-29 08:41 - 00129024 _____ (Microsoft Corporation) C:\windows\SysWOW64\AboveLockAppHost.dll
2016-07-18 13:22 - 2016-03-29 08:40 - 00787456 _____ (Microsoft Corporation) C:\windows\system32\Windows.Web.dll
2016-07-18 13:22 - 2016-03-29 08:36 - 00649728 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.dll
2016-07-18 13:22 - 2016-03-29 08:34 - 00682496 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Input.Inking.dll
2016-07-18 13:22 - 2016-03-29 08:32 - 00854528 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Bluetooth.dll
2016-07-18 13:22 - 2016-03-29 08:30 - 01139712 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAutomationCore.dll
2016-07-18 13:22 - 2016-03-29 08:29 - 00256000 _____ (Microsoft Corporation) C:\windows\system32\accountaccessor.dll
2016-07-18 13:22 - 2016-03-29 08:28 - 01944576 _____ (Microsoft Corporation) C:\windows\SysWOW64\InputService.dll
2016-07-18 13:22 - 2016-03-29 08:27 - 00245760 _____ (Microsoft Corporation) C:\windows\SysWOW64\TextInputFramework.dll
2016-07-18 13:22 - 2016-03-29 08:27 - 00133632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Core.TextInput.dll
2016-07-18 13:22 - 2016-03-29 08:27 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\InputLocaleManager.dll
2016-07-18 13:22 - 2016-03-29 08:17 - 00765952 _____ (Microsoft Corporation) C:\windows\system32\fveapi.dll
2016-07-18 13:22 - 2016-03-29 08:04 - 00688640 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.Connectivity.dll
2016-07-18 13:22 - 2016-03-29 07:36 - 02722816 _____ (Microsoft Corporation) C:\windows\SysWOW64\esent.dll
2016-07-18 13:22 - 2016-03-29 07:27 - 00794112 _____ (Microsoft Corporation) C:\windows\system32\BFE.DLL
2016-07-18 13:22 - 2016-03-29 07:26 - 00958976 _____ (Microsoft Corporation) C:\windows\system32\RemoteNaturalLanguage.dll
2016-07-18 13:22 - 2016-03-29 07:26 - 00402432 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2016-07-18 13:22 - 2016-03-29 07:25 - 00712704 _____ (Microsoft Corporation) C:\windows\SysWOW64\RemoteNaturalLanguage.dll
2016-07-18 13:22 - 2016-03-29 07:21 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\basesrv.dll
2016-07-18 13:22 - 2016-02-24 10:58 - 00794888 _____ (Microsoft Corporation) C:\windows\system32\mfds.dll
2016-07-18 13:22 - 2016-02-24 10:54 - 00127840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBSTOR.SYS
2016-07-18 13:22 - 2016-02-24 10:39 - 00141560 _____ (Microsoft Corporation) C:\windows\system32\AuthHost.exe
2016-07-18 13:22 - 2016-02-24 10:11 - 00258280 _____ (Microsoft Corporation) C:\windows\system32\sqmapi.dll
2016-07-18 13:22 - 2016-02-24 10:09 - 00640472 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2016-07-18 13:22 - 2016-02-24 10:09 - 00147808 _____ (Microsoft Corporation) C:\windows\system32\wermgr.exe
2016-07-18 13:22 - 2016-02-24 09:39 - 00045568 _____ (Microsoft Corporation) C:\windows\system32\UserDataTypeHelperUtil.dll
2016-07-18 13:22 - 2016-02-24 09:39 - 00023552 _____ (Microsoft Corporation) C:\windows\system32\ExtrasXmlParser.dll
2016-07-18 13:22 - 2016-02-24 09:38 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\UserDataTimeUtil.dll
2016-07-18 13:22 - 2016-02-24 09:37 - 00045056 _____ (Microsoft Corporation) C:\windows\system32\UserDataLanguageUtil.dll
2016-07-18 13:22 - 2016-02-24 09:36 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\PimIndexMaintenanceClient.dll
2016-07-18 13:22 - 2016-02-24 09:35 - 00220064 _____ (Microsoft Corporation) C:\windows\SysWOW64\sqmapi.dll
2016-07-18 13:22 - 2016-02-24 09:28 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\POSyncServices.dll
2016-07-18 13:22 - 2016-02-24 09:23 - 00091648 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2016-07-18 13:22 - 2016-02-24 09:23 - 00068096 _____ (Microsoft Corporation) C:\windows\system32\UserDataPlatformHelperUtil.dll
2016-07-18 13:22 - 2016-02-24 09:20 - 00195072 _____ (Microsoft Corporation) C:\windows\system32\VCardParser.dll
2016-07-18 13:22 - 2016-02-24 09:14 - 00274944 _____ (Microsoft Corporation) C:\windows\system32\ExSMime.dll
2016-07-18 13:22 - 2016-02-24 09:13 - 00121856 _____ (Microsoft Corporation) C:\windows\system32\AppointmentActivation.dll
2016-07-18 13:22 - 2016-02-24 09:12 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\cemapi.dll
2016-07-18 13:22 - 2016-02-24 09:12 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\PhoneCallHistoryApis.dll
2016-07-18 13:22 - 2016-02-24 09:09 - 00258560 _____ (Microsoft Corporation) C:\windows\system32\UserDataAccountApis.dll
2016-07-18 13:22 - 2016-02-24 09:07 - 00252928 _____ (Microsoft Corporation) C:\windows\system32\PimIndexMaintenance.dll
2016-07-18 13:22 - 2016-02-24 09:02 - 00161280 _____ (Microsoft Corporation) C:\windows\system32\CallHistoryClient.dll
2016-07-18 13:22 - 2016-02-24 09:01 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\AuthBroker.dll
2016-07-18 13:22 - 2016-02-24 08:55 - 00790528 _____ (Microsoft Corporation) C:\windows\system32\EmailApis.dll
2016-07-18 13:22 - 2016-02-24 08:54 - 00228352 _____ (Microsoft Corporation) C:\windows\system32\wsqmcons.exe
2016-07-18 13:22 - 2016-02-24 08:49 - 00726528 _____ (Microsoft Corporation) C:\windows\system32\ChatApis.dll
2016-07-18 13:22 - 2016-02-24 08:46 - 00020480 _____ (Microsoft Corporation) C:\windows\SysWOW64\wfapigp.dll
2016-07-18 13:22 - 2016-02-24 08:44 - 00915456 _____ (Microsoft Corporation) C:\windows\system32\configurationclient.dll
2016-07-18 13:22 - 2016-02-24 08:44 - 00700416 _____ (Microsoft Corporation) C:\windows\system32\AppointmentApis.dll
2016-07-18 13:22 - 2016-02-24 08:40 - 01224704 _____ (Microsoft Corporation) C:\windows\system32\Unistore.dll
2016-07-18 13:22 - 2016-02-24 08:39 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\fwpolicyiomgr.dll
2016-07-18 13:22 - 2016-02-24 08:34 - 00938496 _____ (Microsoft Corporation) C:\windows\system32\ContactApis.dll
2016-07-18 13:22 - 2016-02-24 08:25 - 00401408 _____ (Microsoft Corporation) C:\windows\system32\sharemediacpl.dll
2016-07-18 13:22 - 2016-02-24 08:21 - 00315904 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Bluetooth.dll
2016-07-18 13:22 - 2016-02-24 08:21 - 00168448 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Scanners.dll
2016-07-18 13:22 - 2016-02-24 08:18 - 01490432 _____ (Microsoft Corporation) C:\windows\system32\UserDataService.dll
2016-07-18 13:22 - 2016-02-24 08:17 - 00369664 _____ (Microsoft Corporation) C:\windows\SysWOW64\FirewallAPI.dll
2016-07-18 13:22 - 2016-02-24 08:09 - 00228352 _____ (Microsoft Corporation) C:\windows\SysWOW64\deviceaccess.dll
2016-07-18 13:22 - 2016-02-24 07:22 - 00163328 _____ (Microsoft Corporation) C:\windows\SysWOW64\fwbase.dll
2016-07-18 13:22 - 2016-02-23 12:32 - 01152328 _____ (Microsoft Corporation) C:\windows\system32\mfasfsrcsnk.dll
2016-07-18 13:22 - 2016-02-23 12:32 - 01062480 _____ (Microsoft Corporation) C:\windows\system32\mfmp4srcsnk.dll
2016-07-18 13:22 - 2016-02-23 12:31 - 01017032 _____ (Microsoft Corporation) C:\windows\system32\mfsrcsnk.dll
2016-07-18 13:22 - 2016-02-23 12:31 - 00819648 _____ (Microsoft Corporation) C:\windows\system32\mfmpeg2srcsnk.dll
2016-07-18 13:22 - 2016-02-23 12:31 - 00536256 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2016-07-18 13:22 - 2016-02-23 12:31 - 00476728 _____ (Microsoft Corporation) C:\windows\system32\msvproc.dll
2016-07-18 13:22 - 2016-02-23 12:31 - 00408120 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2016-07-18 13:22 - 2016-02-23 12:17 - 00146272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2016-07-18 13:22 - 2016-02-23 11:20 - 01139712 _____ (Microsoft Corporation) C:\windows\system32\XblGameSave.dll
2016-07-18 13:22 - 2016-02-23 11:20 - 00238592 _____ (Microsoft Corporation) C:\windows\system32\Drivers\xboxgip.sys
2016-07-18 13:22 - 2016-02-23 11:10 - 00027648 _____ (Microsoft Corporation) C:\windows\system32\WiFiConfigSP.dll
2016-07-18 13:22 - 2016-02-23 11:07 - 00037376 _____ (Microsoft Corporation) C:\windows\system32\LaunchWinApp.exe
2016-07-18 13:22 - 2016-02-23 11:07 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\wlansvcpal.dll
2016-07-18 13:22 - 2016-02-23 11:06 - 00129536 _____ (Microsoft Corporation) C:\windows\system32\flvprophandler.dll
2016-07-18 13:22 - 2016-02-23 11:00 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\wfdprov.dll
2016-07-18 13:22 - 2016-02-23 10:58 - 00025088 _____ (Microsoft Corporation) C:\windows\system32\irmon.dll
2016-07-18 13:22 - 2016-02-23 10:53 - 00099328 _____ (Microsoft Corporation) C:\windows\system32\ngckeyenum.dll
2016-07-18 13:22 - 2016-02-23 10:39 - 00178176 _____ (Microsoft Corporation) C:\windows\system32\psmsrv.dll
2016-07-18 13:22 - 2016-02-23 10:38 - 00320000 _____ (Microsoft Corporation) C:\windows\system32\MSFlacDecoder.dll
2016-07-18 13:22 - 2016-02-23 10:38 - 00287712 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.MediaControl.dll
2016-07-18 13:22 - 2016-02-23 10:36 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\QuickActionsDataModel.dll
2016-07-18 13:22 - 2016-02-23 10:34 - 00305664 _____ (Microsoft Corporation) C:\windows\system32\wifiprofilessettinghandler.dll
2016-07-18 13:22 - 2016-02-23 10:34 - 00189952 _____ (Microsoft Corporation) C:\windows\system32\WiFiDisplay.dll
2016-07-18 13:22 - 2016-02-23 10:31 - 00463360 _____ (Microsoft Corporation) C:\windows\system32\wlansec.dll
2016-07-18 13:22 - 2016-02-23 10:29 - 00591872 _____ (Microsoft Corporation) C:\windows\system32\SmsRouterSvc.dll
2016-07-18 13:22 - 2016-02-23 10:28 - 00275456 _____ (Microsoft Corporation) C:\windows\system32\AudioEndpointBuilder.dll
2016-07-18 13:22 - 2016-02-23 10:23 - 00412672 _____ (Microsoft Corporation) C:\windows\system32\wlanmsm.dll
2016-07-18 13:22 - 2016-02-23 10:22 - 00567808 _____ (Microsoft Corporation) C:\windows\system32\MCRecvSrc.dll
2016-07-18 13:22 - 2016-02-23 10:20 - 00847360 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2016-07-18 13:22 - 2016-02-23 10:20 - 00493568 _____ (Microsoft Corporation) C:\windows\system32\mfmkvsrcsnk.dll
2016-07-18 13:22 - 2016-02-23 10:19 - 00517632 _____ (Microsoft Corporation) C:\windows\system32\winspool.drv
2016-07-18 13:22 - 2016-02-23 10:04 - 01131520 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Audio.dll
2016-07-18 13:22 - 2016-02-23 10:02 - 00755712 _____ (Microsoft Corporation) C:\windows\system32\spoolsv.exe
2016-07-18 13:22 - 2016-02-23 10:02 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2016-07-18 13:22 - 2016-02-23 09:58 - 00163840 _____ (Microsoft Corporation) C:\windows\system32\TimeBrokerServer.dll
2016-07-18 13:22 - 2016-02-23 09:50 - 00266752 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSFlacDecoder.dll
2016-07-18 13:22 - 2016-02-23 09:38 - 00480256 _____ (Microsoft Corporation) C:\windows\SysWOW64\MCRecvSrc.dll
2016-07-18 13:22 - 2016-02-23 09:35 - 00400896 _____ (Microsoft Corporation) C:\windows\SysWOW64\winspool.drv
2016-07-18 13:22 - 2016-02-23 09:01 - 02295808 _____ (Microsoft Corporation) C:\windows\system32\wlansvc.dll
2016-07-18 13:22 - 2016-02-09 06:25 - 00304752 _____ (Microsoft Corporation) C:\windows\system32\systemreset.exe
2016-07-18 13:22 - 2016-01-27 07:46 - 02606824 _____ (Microsoft Corporation) C:\windows\system32\combase.dll
2016-07-18 13:22 - 2016-01-27 07:46 - 01270072 _____ (Microsoft Corporation) C:\windows\system32\WinTypes.dll
2016-07-18 13:22 - 2016-01-27 07:15 - 00031232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ztrace_maps.dll
2016-07-18 13:22 - 2016-01-27 07:08 - 00299008 _____ (Microsoft Corporation) C:\windows\system32\microsoft-windows-system-events.dll
2016-07-18 13:22 - 2016-01-16 08:37 - 00202472 _____ (Microsoft Corporation) C:\windows\system32\wscapi.dll
2016-07-18 13:22 - 2016-01-16 08:24 - 00538632 _____ (Microsoft Corporation) C:\windows\system32\WWanAPI.dll
2016-07-18 13:22 - 2016-01-16 08:23 - 00785088 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2016-07-18 13:22 - 2016-01-16 08:20 - 00652312 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll
2016-07-18 13:22 - 2016-01-16 08:12 - 01415200 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2016-07-18 13:22 - 2016-01-16 08:08 - 01174008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2016-07-18 13:22 - 2016-01-16 08:08 - 00440152 _____ (Microsoft Corporation) C:\windows\system32\services.exe
2016-07-18 13:22 - 2016-01-16 07:43 - 00097280 _____ (Microsoft Corporation) C:\windows\system32\winhttpcom.dll
2016-07-18 13:22 - 2016-01-16 07:42 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\sscoreext.dll
2016-07-18 13:22 - 2016-01-16 07:39 - 00149504 _____ (Microsoft Corporation) C:\windows\system32\FilterDS.dll
2016-07-18 13:22 - 2016-01-16 07:36 - 00475648 _____ (Microsoft Corporation) C:\windows\system32\DDDS.dll
2016-07-18 13:22 - 2016-01-16 07:35 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasadhlp.dll
2016-07-18 13:22 - 2016-01-16 07:34 - 00079360 _____ (Microsoft Corporation) C:\windows\SysWOW64\winhttpcom.dll
2016-07-18 13:22 - 2016-01-16 07:33 - 00726528 _____ (Microsoft Corporation) C:\windows\system32\wlidcli.dll
2016-07-18 13:22 - 2016-01-16 07:31 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasautou.exe
2016-07-18 13:22 - 2016-01-16 07:26 - 00260608 _____ C:\windows\system32\MTFServer.dll
2016-07-18 13:22 - 2016-01-16 07:24 - 02057216 _____ (Microsoft Corporation) C:\windows\system32\wlidsvc.dll
2016-07-18 13:22 - 2016-01-16 07:18 - 01674240 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2016-07-18 13:22 - 2016-01-05 04:50 - 00671472 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2016-07-18 13:22 - 2016-01-05 04:48 - 00499432 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2016-07-18 13:22 - 2016-01-05 04:45 - 02587696 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2016-07-18 13:22 - 2016-01-05 04:37 - 00858952 _____ (Microsoft Corporation) C:\windows\system32\mfnetcore.dll
2016-07-18 13:22 - 2016-01-05 04:37 - 00245840 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2016-07-18 13:22 - 2016-01-05 04:37 - 00234504 _____ (Microsoft Corporation) C:\windows\system32\mftranscode.dll
2016-07-18 13:22 - 2016-01-05 04:23 - 01804664 _____ (Microsoft Corporation) C:\windows\system32\WMALFXGFXDSP.dll
2016-07-18 13:22 - 2016-01-05 04:23 - 00786696 _____ (Microsoft Corporation) C:\windows\system32\WMADMOD.DLL
2016-07-18 13:22 - 2016-01-05 04:23 - 00119320 _____ (Microsoft Corporation) C:\windows\system32\MP3DMOD.DLL
2016-07-18 13:22 - 2016-01-05 04:17 - 00695752 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMADMOD.DLL
2016-07-18 13:22 - 2016-01-05 04:16 - 00100160 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP3DMOD.DLL
2016-07-18 13:22 - 2016-01-05 03:53 - 00148992 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2016-07-18 13:22 - 2016-01-05 03:50 - 00644096 _____ (Microsoft Corporation) C:\windows\system32\uReFS.dll
2016-07-18 13:22 - 2016-01-05 03:48 - 01009152 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOD.DLL
2016-07-18 13:22 - 2016-01-05 03:47 - 00305664 _____ (Microsoft Corporation) C:\windows\system32\ksproxy.ax
2016-07-18 13:22 - 2016-01-05 03:41 - 01070080 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMSPDMOE.DLL
2016-07-18 13:22 - 2016-01-05 03:40 - 00890880 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMSPDMOD.DLL
2016-07-18 13:22 - 2015-12-07 06:48 - 00526856 _____ (Microsoft Corporation) C:\windows\system32\mfreadwrite.dll
2016-07-18 13:22 - 2015-12-07 06:48 - 00337840 _____ (Microsoft Corporation) C:\windows\system32\MFPlay.dll
2016-07-18 13:22 - 2015-12-07 06:48 - 00289248 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFPlay.dll
2016-07-18 13:22 - 2015-12-07 06:07 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\ProvPluginEng.dll
2016-07-18 13:22 - 2015-12-07 06:06 - 00231936 _____ (Microsoft Corporation) C:\windows\system32\KnobsCore.dll
2016-07-18 13:22 - 2015-12-07 06:05 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\BackgroundTransferHost.exe
2016-07-18 13:22 - 2015-12-07 06:04 - 00056320 _____ (Microsoft Corporation) C:\windows\system32\provtool.exe
2016-07-18 13:22 - 2015-12-07 05:59 - 00165376 _____ (Microsoft Corporation) C:\windows\system32\provdatastore.dll
2016-07-18 13:22 - 2015-12-07 05:38 - 00871936 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSMPEG2ENC.DLL
2016-07-18 13:22 - 2015-12-07 05:32 - 00126464 _____ (Microsoft Corporation) C:\windows\system32\dialserver.dll
2016-07-18 13:22 - 2015-11-24 12:01 - 02756096 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2016-07-18 13:22 - 2015-11-24 11:54 - 00007680 _____ (Microsoft Corporation) C:\windows\system32\readingviewresources.dll
2016-07-18 13:22 - 2015-11-24 11:53 - 00115200 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-07-18 13:22 - 2015-11-24 11:12 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\catsrvut.dll
2016-07-18 13:22 - 2015-11-24 10:54 - 02756096 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2016-07-18 13:22 - 2015-11-24 10:49 - 01648640 _____ (Microsoft Corporation) C:\windows\system32\comsvcs.dll
2016-07-18 13:22 - 2015-11-22 12:34 - 00080600 _____ (Microsoft Corporation) C:\windows\system32\wwapi.dll
2016-07-18 13:22 - 2015-11-22 12:33 - 00095072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sdstor.sys
2016-07-18 13:22 - 2015-11-22 11:57 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\UIAutomationCoreRes.dll
2016-07-18 13:22 - 2015-11-22 11:56 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\ihvrilproxy.dll
2016-07-18 13:22 - 2015-11-22 11:56 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\rilproxy.dll
2016-07-18 13:22 - 2015-11-22 11:55 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\XblAuthManagerProxy.dll
2016-07-18 13:22 - 2015-11-22 11:54 - 00117248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\capimg.sys
2016-07-18 13:22 - 2015-11-22 11:54 - 00075264 _____ (Microsoft Corporation) C:\windows\system32\wwanprotdim.dll
2016-07-18 13:22 - 2015-11-22 11:54 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\wsplib.dll
2016-07-18 13:22 - 2015-11-22 11:52 - 00060928 _____ (Microsoft Corporation) C:\windows\system32\XblAuthTokenBrokerExt.dll
2016-07-18 13:22 - 2015-11-22 11:51 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2016-07-18 13:22 - 2015-11-22 11:49 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2016-07-18 13:22 - 2015-11-22 11:49 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\Wwanpref.dll
2016-07-18 13:22 - 2015-11-22 11:48 - 00058368 _____ (Microsoft Corporation) C:\windows\SysWOW64\MosResource.dll
2016-07-18 13:22 - 2015-11-22 11:45 - 00110592 _____ (Microsoft Corporation) C:\windows\SysWOW64\Microsoft-Windows-MapControls.dll
2016-07-18 13:22 - 2015-11-22 11:45 - 00073728 _____ (Microsoft Corporation) C:\windows\system32\wwancfg.dll
2016-07-18 13:22 - 2015-11-22 11:45 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-07-18 13:22 - 2015-11-22 11:45 - 00009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\Microsoft-Windows-MosHost.dll
2016-07-18 13:22 - 2015-11-22 11:44 - 01268736 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-07-18 13:22 - 2015-11-22 11:43 - 00704000 _____ (Microsoft Corporation) C:\windows\system32\CellularAPI.dll
2016-07-18 13:22 - 2015-11-22 11:43 - 00041984 _____ (Microsoft Corporation) C:\windows\SysWOW64\XblAuthManagerProxy.dll
2016-07-18 13:22 - 2015-11-22 11:42 - 00589312 _____ (Microsoft Corporation) C:\windows\system32\MbaeApi.dll
2016-07-18 13:22 - 2015-11-22 11:42 - 00138240 _____ (Microsoft Corporation) C:\windows\SysWOW64\ETWCoreUIComponentsResources.dll
2016-07-18 13:22 - 2015-11-22 11:42 - 00024064 _____ (Microsoft Corporation) C:\windows\SysWOW64\WordBreakers.dll
2016-07-18 13:22 - 2015-11-22 11:42 - 00003072 _____ (Microsoft Corporation) C:\windows\SysWOW64\MapControlStringsRes.dll
2016-07-18 13:22 - 2015-11-22 11:40 - 00049152 _____ (Microsoft Corporation) C:\windows\SysWOW64\XblAuthTokenBrokerExt.dll
2016-07-18 13:22 - 2015-11-22 11:39 - 00114688 _____ (Microsoft Corporation) C:\windows\system32\offlinelsa.dll
2016-07-18 13:22 - 2015-11-22 11:38 - 00060928 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssign32.dll
2016-07-18 13:22 - 2015-11-22 11:36 - 01042432 _____ (Microsoft Corporation) C:\windows\system32\BingOnlineServices.dll
2016-07-18 13:22 - 2015-11-22 11:34 - 02843136 _____ (Microsoft Corporation) C:\windows\system32\cdp.dll
2016-07-18 13:22 - 2015-11-22 11:33 - 00205824 _____ (Nokia) C:\windows\SysWOW64\NmaDirect.dll
2016-07-18 13:22 - 2015-11-22 11:32 - 00340480 _____ (Microsoft Corporation) C:\windows\SysWOW64\PlayToDevice.dll
2016-07-18 13:22 - 2015-11-22 11:31 - 00470528 _____ (Microsoft Corporation) C:\windows\SysWOW64\MbaeApi.dll
2016-07-18 13:22 - 2015-11-22 11:26 - 00709120 _____ (Microsoft Corporation) C:\windows\SysWOW64\BingOnlineServices.dll
2016-07-18 13:22 - 2015-11-22 11:24 - 00059904 _____ (Microsoft Corporation) C:\windows\SysWOW64\EditBufferTestHook.dll
2016-07-18 13:22 - 2015-11-22 11:20 - 01860096 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdp.dll
2016-07-18 13:22 - 2015-11-21 07:44 - 00204800 _____ (Microsoft Corporation) C:\windows\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-07-18 13:22 - 2015-11-13 08:51 - 00698208 _____ (Microsoft Corporation) C:\windows\system32\wimgapi.dll
2016-07-18 13:22 - 2015-11-13 08:43 - 00110032 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2016-07-18 13:22 - 2015-11-13 08:42 - 00516544 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2016-07-18 13:22 - 2015-11-13 08:42 - 00088392 _____ (Microsoft Corporation) C:\windows\system32\remoteaudioendpoint.dll
2016-07-18 13:22 - 2015-11-13 08:33 - 00586080 _____ (Microsoft Corporation) C:\windows\SysWOW64\wimgapi.dll
2016-07-18 13:22 - 2015-11-13 08:07 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-07-18 13:22 - 2015-11-13 08:06 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\RemovableMediaProvisioningPlugin.dll
2016-07-18 13:22 - 2015-11-13 08:05 - 00122368 _____ (Microsoft Corporation) C:\windows\system32\KnobsCsp.dll
2016-07-18 13:22 - 2015-11-13 08:05 - 00078336 _____ (Microsoft Corporation) C:\windows\system32\BarcodeProvisioningPlugin.dll
2016-07-18 13:22 - 2015-11-13 07:40 - 00027136 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcastdvr.proxy.dll
2016-07-18 13:22 - 2015-11-05 12:08 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2016-07-18 13:22 - 2015-11-05 12:08 - 00003072 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2016-07-18 13:22 - 2015-11-05 11:03 - 00003072 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2016-07-18 13:22 - 2015-11-05 11:02 - 00011776 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2016-07-18 13:21 - 2016-07-18 14:17 - 00000000 ____D C:\Users\Glenn\AppData\Local\Google
2016-07-18 13:21 - 2016-07-01 07:30 - 01223872 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2016-07-18 13:21 - 2016-07-01 07:30 - 00559808 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2016-07-18 13:21 - 2016-07-01 07:30 - 00310464 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2016-07-18 13:21 - 2016-07-01 06:49 - 01997328 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2016-07-18 13:21 - 2016-07-01 06:49 - 01317640 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2016-07-18 13:21 - 2016-07-01 06:49 - 01141504 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2016-07-18 13:21 - 2016-07-01 06:49 - 01030416 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2016-07-18 13:21 - 2016-07-01 06:49 - 00874968 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2016-07-18 13:21 - 2016-07-01 06:49 - 00277856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sdbus.sys
2016-07-18 13:21 - 2016-07-01 06:48 - 02656408 _____ C:\windows\system32\CoreUIComponents.dll
2016-07-18 13:21 - 2016-07-01 06:45 - 01613664 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2016-07-18 13:21 - 2016-07-01 06:39 - 01557776 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2016-07-18 13:21 - 2016-07-01 06:38 - 01083656 _____ (Microsoft Corporation) C:\windows\SysWOW64\Taskmgr.exe
2016-07-18 13:21 - 2016-07-01 06:38 - 00256192 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Storage.ApplicationData.dll
2016-07-18 13:21 - 2016-07-01 06:32 - 06605544 _____ (Microsoft Corporation) C:\windows\system32\windows.storage.dll
2016-07-18 13:21 - 2016-07-01 06:32 - 06536256 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2016-07-18 13:21 - 2016-07-01 06:32 - 01040800 _____ (Microsoft Corporation) C:\windows\system32\twinapi.appcore.dll
2016-07-18 13:21 - 2016-07-01 06:32 - 00625000 _____ (Microsoft Corporation) C:\windows\system32\ClipSVC.dll
2016-07-18 13:21 - 2016-07-01 06:32 - 00078040 _____ (Microsoft Corporation) C:\windows\system32\Clipc.dll
2016-07-18 13:21 - 2016-07-01 06:24 - 01776768 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2016-07-18 13:21 - 2016-07-01 06:23 - 01118208 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfnetsrc.dll
2016-07-18 13:21 - 2016-07-01 06:23 - 00925576 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2016-07-18 13:21 - 2016-07-01 06:23 - 00709176 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfsvr.dll
2016-07-18 13:21 - 2016-07-01 06:23 - 00511320 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2016-07-18 13:21 - 2016-07-01 06:23 - 00451936 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFCaptureEngine.dll
2016-07-18 13:21 - 2016-07-01 06:23 - 00032040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfpmp.exe
2016-07-18 13:21 - 2016-07-01 06:21 - 28851224 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsRaw.dll
2016-07-18 13:21 - 2016-07-01 06:21 - 02403168 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2016-07-18 13:21 - 2016-07-01 06:19 - 00836760 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinapi.appcore.dll
2016-07-18 13:21 - 2016-07-01 06:19 - 00569752 _____ (Microsoft Corporation) C:\windows\SysWOW64\SHCore.dll
2016-07-18 13:21 - 2016-07-01 06:17 - 01536600 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2016-07-18 13:21 - 2016-07-01 06:12 - 02186864 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d11.dll
2016-07-18 13:21 - 2016-07-01 06:11 - 00521152 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxgi.dll
2016-07-18 13:21 - 2016-07-01 06:10 - 00675064 _____ (Microsoft Corporation) C:\windows\SysWOW64\dcomp.dll
2016-07-18 13:21 - 2016-07-01 06:07 - 28083144 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecsRaw.dll
2016-07-18 13:21 - 2016-07-01 06:03 - 00089088 _____ (Microsoft Corporation) C:\windows\system32\MapsCSP.dll
2016-07-18 13:21 - 2016-07-01 05:58 - 00045056 _____ (Microsoft Corporation) C:\windows\system32\Windows.Speech.Pal.dll
2016-07-18 13:21 - 2016-07-01 05:55 - 00584704 _____ (Microsoft Corporation) C:\windows\system32\UIRibbonRes.dll
2016-07-18 13:21 - 2016-07-01 05:55 - 00071168 _____ (Microsoft Corporation) C:\windows\system32\LegacyNetUX.dll
2016-07-18 13:21 - 2016-07-01 05:55 - 00028672 _____ (Microsoft Corporation) C:\windows\system32\mapsupdatetask.dll
2016-07-18 13:21 - 2016-07-01 05:55 - 00014848 _____ (Microsoft Corporation) C:\windows\system32\IconCodecService.dll
2016-07-18 13:21 - 2016-07-01 05:54 - 00072192 _____ (Microsoft Corporation) C:\windows\system32\eappprxy.dll
2016-07-18 13:21 - 2016-07-01 05:53 - 01567744 _____ (Microsoft Corporation) C:\windows\system32\Windows.Globalization.dll
2016-07-18 13:21 - 2016-07-01 05:52 - 00091136 _____ (Microsoft Corporation) C:\windows\system32\browserbroker.dll
2016-07-18 13:21 - 2016-07-01 05:52 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\tzautoupdate.dll
2016-07-18 13:21 - 2016-07-01 05:52 - 00040960 _____ (Microsoft Corporation) C:\windows\system32\msscntrs.dll
2016-07-18 13:21 - 2016-07-01 05:51 - 00361984 _____ (Microsoft Corporation) C:\windows\system32\bdechangepin.exe
2016-07-18 13:21 - 2016-07-01 05:51 - 00285184 _____ (Microsoft Corporation) C:\windows\system32\oemlicense.dll
2016-07-18 13:21 - 2016-07-01 05:51 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\AppCapture.dll
2016-07-18 13:21 - 2016-07-01 05:51 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\Windows.Shell.Search.UriHandler.dll
2016-07-18 13:21 - 2016-07-01 05:50 - 00193024 _____ (Microsoft Corporation) C:\windows\system32\SimCfg.dll
2016-07-18 13:21 - 2016-07-01 05:50 - 00150528 _____ (Microsoft Corporation) C:\windows\system32\sdrsvc.dll
2016-07-18 13:21 - 2016-07-01 05:50 - 00129536 _____ (Microsoft Corporation) C:\windows\system32\sdshext.dll
2016-07-18 13:21 - 2016-07-01 05:50 - 00113152 _____ (Microsoft Corporation) C:\windows\system32\eappgnui.dll
2016-07-18 13:21 - 2016-07-01 05:49 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\LegacyNetUXHost.exe
2016-07-18 13:21 - 2016-07-01 05:48 - 00381952 _____ (Microsoft Corporation) C:\windows\system32\apprepsync.dll
2016-07-18 13:21 - 2016-07-01 05:48 - 00308736 _____ (Microsoft Corporation) C:\windows\system32\eapphost.dll
2016-07-18 13:21 - 2016-07-01 05:48 - 00252928 _____ (Microsoft Corporation) C:\windows\system32\fhengine.dll
2016-07-18 13:21 - 2016-07-01 05:48 - 00233984 _____ (Microsoft Corporation) C:\windows\system32\schtasks.exe
2016-07-18 13:21 - 2016-07-01 05:48 - 00160768 _____ (Microsoft Corporation) C:\windows\system32\SimAuth.dll
2016-07-18 13:21 - 2016-07-01 05:47 - 00414720 _____ (Microsoft Corporation) C:\windows\system32\bcastdvr.exe
2016-07-18 13:21 - 2016-07-01 05:47 - 00394752 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2016-07-18 13:21 - 2016-07-01 05:47 - 00394240 _____ (Microsoft Corporation) C:\windows\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-18 13:21 - 2016-07-01 05:47 - 00333312 _____ (Microsoft Corporation) C:\windows\system32\eapp3hst.dll
2016-07-18 13:21 - 2016-07-01 05:47 - 00319488 _____ (Microsoft Corporation) C:\windows\system32\dot3ui.dll
2016-07-18 13:21 - 2016-07-01 05:47 - 00314368 _____ (Microsoft Corporation) C:\windows\system32\EnterpriseAppMgmtSvc.dll
2016-07-18 13:21 - 2016-07-01 05:47 - 00287744 _____ (Microsoft Corporation) C:\windows\system32\apprepapi.dll
2016-07-18 13:21 - 2016-07-01 05:47 - 00274432 _____ (Microsoft Corporation) C:\windows\system32\dmdskmgr.dll
2016-07-18 13:21 - 2016-07-01 05:47 - 00174592 _____ (Microsoft Corporation) C:\windows\system32\easwrt.dll
2016-07-18 13:21 - 2016-07-01 05:46 - 00715776 _____ (Microsoft Corporation) C:\windows\system32\GamePanel.exe
2016-07-18 13:21 - 2016-07-01 05:46 - 00565760 _____ (Microsoft Corporation) C:\windows\system32\ActionCenterCPL.dll
2016-07-18 13:21 - 2016-07-01 05:46 - 00522240 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.WiFiDirect.dll
2016-07-18 13:21 - 2016-07-01 05:46 - 00469504 _____ (Microsoft Corporation) C:\windows\system32\fhsettingsprovider.dll
2016-07-18 13:21 - 2016-07-01 05:46 - 00368640 _____ (Microsoft Corporation) C:\windows\system32\diagtrack_win.dll
2016-07-18 13:21 - 2016-07-01 05:46 - 00341504 _____ (Microsoft Corporation) C:\windows\system32\wmicmiplugin.dll
2016-07-18 13:21 - 2016-07-01 05:46 - 00254464 _____ (Microsoft Corporation) C:\windows\system32\ExecModelClient.dll
2016-07-18 13:21 - 2016-07-01 05:46 - 00185344 _____ (Microsoft Corporation) C:\windows\system32\WSClient.dll
2016-07-18 13:21 - 2016-07-01 05:45 - 00344064 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Picker.dll
2016-07-18 13:21 - 2016-07-01 05:45 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\edputil.dll
2016-07-18 13:21 - 2016-07-01 05:45 - 00270336 _____ (Microsoft Corporation) C:\windows\system32\netplwiz.dll
2016-07-18 13:21 - 2016-07-01 05:45 - 00224256 _____ (Microsoft Corporation) C:\windows\system32\PackageStateRoaming.dll
2016-07-18 13:21 - 2016-07-01 05:45 - 00203776 _____ (Microsoft Corporation) C:\windows\system32\SearchFilterHost.exe
2016-07-18 13:21 - 2016-07-01 05:45 - 00147456 _____ (Microsoft Corporation) C:\windows\system32\mssph.dll
2016-07-18 13:21 - 2016-07-01 05:45 - 00088576 _____ (Microsoft Corporation) C:\windows\SysWOW64\olepro32.dll
2016-07-18 13:21 - 2016-07-01 05:44 - 01814528 _____ (Microsoft Corporation) C:\windows\system32\pnidui.dll
2016-07-18 13:21 - 2016-07-01 05:44 - 00677376 _____ (Microsoft Corporation) C:\windows\system32\wiaaut.dll
2016-07-18 13:21 - 2016-07-01 05:44 - 00504832 _____ (Microsoft Corporation) C:\windows\system32\dlnashext.dll
2016-07-18 13:21 - 2016-07-01 05:44 - 00330240 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-18 13:21 - 2016-07-01 05:43 - 01216512 _____ (Microsoft Corporation) C:\windows\system32\netcenter.dll
2016-07-18 13:21 - 2016-07-01 05:43 - 01048576 _____ (Microsoft Corporation) C:\windows\system32\WebcamUi.dll
2016-07-18 13:21 - 2016-07-01 05:43 - 00992256 _____ (Microsoft Corporation) C:\windows\system32\sbe.dll
2016-07-18 13:21 - 2016-07-01 05:43 - 00947200 _____ (Microsoft Corporation) C:\windows\system32\rasgcw.dll
2016-07-18 13:21 - 2016-07-01 05:43 - 00787456 _____ (Microsoft Corporation) C:\windows\system32\cscui.dll
2016-07-18 13:21 - 2016-07-01 05:43 - 00674304 _____ (Microsoft Corporation) C:\windows\system32\mbsmsapi.dll
2016-07-18 13:21 - 2016-07-01 05:43 - 00589824 _____ (Microsoft Corporation) C:\windows\system32\PrintDialogs.dll
2016-07-18 13:21 - 2016-07-01 05:43 - 00440320 _____ (Microsoft Corporation) C:\windows\system32\CredProvDataModel.dll
2016-07-18 13:21 - 2016-07-01 05:43 - 00352256 _____ (Microsoft Corporation) C:\windows\system32\eappcfg.dll
2016-07-18 13:21 - 2016-07-01 05:43 - 00183808 _____ (Microsoft Corporation) C:\windows\system32\WSSync.dll
2016-07-18 13:21 - 2016-07-01 05:42 - 00859136 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.dll
2016-07-18 13:21 - 2016-07-01 05:42 - 00651776 _____ (Microsoft Corporation) C:\windows\system32\UserLanguagesCpl.dll
2016-07-18 13:21 - 2016-07-01 05:42 - 00585728 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2016-07-18 13:21 - 2016-07-01 05:42 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\AppReadiness.dll
2016-07-18 13:21 - 2016-07-01 05:42 - 00429056 _____ (Microsoft Corporation) C:\windows\system32\taskcomp.dll
2016-07-18 13:21 - 2016-07-01 05:42 - 00368128 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.dll
2016-07-18 13:21 - 2016-07-01 05:42 - 00286720 _____ (Microsoft Corporation) C:\windows\system32\deviceaccess.dll
2016-07-18 13:21 - 2016-07-01 05:41 - 01847808 _____ (Microsoft Corporation) C:\windows\system32\WMPDMC.exe
2016-07-18 13:21 - 2016-07-01 05:41 - 01037824 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2016-07-18 13:21 - 2016-07-01 05:41 - 01001472 _____ (Microsoft Corporation) C:\windows\system32\schedsvc.dll
2016-07-18 13:21 - 2016-07-01 05:41 - 00870400 _____ (Microsoft Corporation) C:\windows\system32\modernexecserver.dll
2016-07-18 13:21 - 2016-07-01 05:41 - 00817152 _____ (Microsoft Corporation) C:\windows\system32\Windows.Storage.Search.dll
2016-07-18 13:21 - 2016-07-01 05:41 - 00299520 _____ (Microsoft Corporation) C:\windows\system32\taskeng.exe
2016-07-18 13:21 - 2016-07-01 05:40 - 02050560 _____ (Microsoft Corporation) C:\windows\system32\PrintDialogs3D.dll
2016-07-18 13:21 - 2016-07-01 05:40 - 00673280 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.dll
2016-07-18 13:21 - 2016-07-01 05:40 - 00596480 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.dll
2016-07-18 13:21 - 2016-07-01 05:40 - 00034304 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Speech.Pal.dll
2016-07-18 13:21 - 2016-07-01 05:39 - 01872896 _____ (Microsoft Corporation) C:\windows\system32\workfolderssvc.dll
2016-07-18 13:21 - 2016-07-01 05:39 - 00268288 _____ (Microsoft Corporation) C:\windows\system32\updatehandlers.dll
2016-07-18 13:21 - 2016-07-01 05:39 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\SettingMonitor.dll
2016-07-18 13:21 - 2016-07-01 05:39 - 00236032 _____ (Microsoft Corporation) C:\windows\system32\licensingdiag.exe
2016-07-18 13:21 - 2016-07-01 05:38 - 01291776 _____ (Microsoft Corporation) C:\windows\system32\werconcpl.dll
2016-07-18 13:21 - 2016-07-01 05:37 - 00584704 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIRibbonRes.dll
2016-07-18 13:21 - 2016-07-01 05:37 - 00055808 _____ (Microsoft Corporation) C:\windows\SysWOW64\eappprxy.dll
2016-07-18 13:21 - 2016-07-01 05:36 - 02445312 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2016-07-18 13:21 - 2016-07-01 05:34 - 04170240 _____ (Microsoft Corporation) C:\windows\system32\UIRibbon.dll
2016-07-18 13:21 - 2016-07-01 05:34 - 00838144 _____ (Microsoft Corporation) C:\windows\system32\uDWM.dll
2016-07-18 13:21 - 2016-07-01 05:34 - 00205312 _____ (Microsoft Corporation) C:\windows\SysWOW64\oemlicense.dll
2016-07-18 13:21 - 2016-07-01 05:34 - 00040960 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-07-18 13:21 - 2016-07-01 05:32 - 02800128 _____ (Microsoft Corporation) C:\windows\system32\netshell.dll
2016-07-18 13:21 - 2016-07-01 05:32 - 00583680 _____ (Microsoft Corporation) C:\windows\system32\PhotoScreensaver.scr
2016-07-18 13:21 - 2016-07-01 05:32 - 00157696 _____ (Microsoft Corporation) C:\windows\SysWOW64\SimCfg.dll
2016-07-18 13:21 - 2016-07-01 05:32 - 00096256 _____ (Microsoft Corporation) C:\windows\SysWOW64\eappgnui.dll
2016-07-18 13:21 - 2016-07-01 05:31 - 01385472 _____ (Microsoft Corporation) C:\windows\system32\usercpl.dll
2016-07-18 13:21 - 2016-07-01 05:31 - 00994816 _____ (Microsoft Corporation) C:\windows\HelpPane.exe
2016-07-18 13:21 - 2016-07-01 05:31 - 00900608 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-18 13:21 - 2016-07-01 05:31 - 00882688 _____ (Microsoft Corporation) C:\windows\system32\ntshrui.dll
2016-07-18 13:21 - 2016-07-01 05:31 - 00290304 _____ (Microsoft Corporation) C:\windows\SysWOW64\WmpDui.dll
2016-07-18 13:21 - 2016-07-01 05:31 - 00260096 _____ (Microsoft Corporation) C:\windows\SysWOW64\apprepsync.dll
2016-07-18 13:21 - 2016-07-01 05:31 - 00238592 _____ (Microsoft Corporation) C:\windows\SysWOW64\eapphost.dll
2016-07-18 13:21 - 2016-07-01 05:31 - 00186880 _____ (Microsoft Corporation) C:\windows\SysWOW64\schtasks.exe
2016-07-18 13:21 - 2016-07-01 05:31 - 00129024 _____ (Microsoft Corporation) C:\windows\SysWOW64\SimAuth.dll
2016-07-18 13:21 - 2016-07-01 05:30 - 02902528 _____ (Microsoft Corporation) C:\windows\system32\themeui.dll
2016-07-18 13:21 - 2016-07-01 05:30 - 01213440 _____ (Microsoft Corporation) C:\windows\system32\sdengin2.dll
2016-07-18 13:21 - 2016-07-01 05:30 - 00733184 _____ (Microsoft Corporation) C:\windows\system32\rasapi32.dll
2016-07-18 13:21 - 2016-07-01 05:30 - 00248320 _____ (Microsoft Corporation) C:\windows\SysWOW64\eapp3hst.dll
2016-07-18 13:21 - 2016-07-01 05:30 - 00217600 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmdskmgr.dll
2016-07-18 13:21 - 2016-07-01 05:30 - 00190464 _____ (Microsoft Corporation) C:\windows\SysWOW64\apprepapi.dll
2016-07-18 13:21 - 2016-07-01 05:30 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSClient.dll
2016-07-18 13:21 - 2016-07-01 05:30 - 00123392 _____ (Microsoft Corporation) C:\windows\SysWOW64\ProximityCommon.dll
2016-07-18 13:21 - 2016-07-01 05:29 - 04646912 _____ (Microsoft Corporation) C:\windows\system32\xpsrchvw.exe
2016-07-18 13:21 - 2016-07-01 05:29 - 00569856 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2016-07-18 13:21 - 2016-07-01 05:29 - 00386560 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-07-18 13:21 - 2016-07-01 05:29 - 00315904 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-07-18 13:21 - 2016-07-01 05:29 - 00220672 _____ (Microsoft Corporation) C:\windows\SysWOW64\credprovs.dll
2016-07-18 13:21 - 2016-07-01 05:29 - 00193536 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExecModelClient.dll
2016-07-18 13:21 - 2016-07-01 05:28 - 03046400 _____ (Microsoft Corporation) C:\windows\system32\xpsservices.dll
2016-07-18 13:21 - 2016-07-01 05:28 - 00833536 _____ (Microsoft Corporation) C:\windows\system32\pmcsnap.dll
2016-07-18 13:21 - 2016-07-01 05:28 - 00578048 _____ (Microsoft Corporation) C:\windows\SysWOW64\wiaaut.dll
2016-07-18 13:21 - 2016-07-01 05:28 - 00442880 _____ (Microsoft Corporation) C:\windows\SysWOW64\efswrt.dll
2016-07-18 13:21 - 2016-07-01 05:28 - 00442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\dlnashext.dll
2016-07-18 13:21 - 2016-07-01 05:28 - 00347648 _____ (Microsoft Corporation) C:\windows\SysWOW64\zipfldr.dll
2016-07-18 13:21 - 2016-07-01 05:28 - 00283136 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.BioFeedback.dll
2016-07-18 13:21 - 2016-07-01 05:28 - 00282624 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2016-07-18 13:21 - 2016-07-01 05:28 - 00279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\edputil.dll
2016-07-18 13:21 - 2016-07-01 05:28 - 00238592 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecsExt.dll
2016-07-18 13:21 - 2016-07-01 05:27 - 04827136 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2016-07-18 13:21 - 2016-07-01 05:27 - 02444800 _____ (Microsoft Corporation) C:\windows\system32\twinui.appcore.dll
2016-07-18 13:21 - 2016-07-01 05:27 - 01226752 _____ (Microsoft Corporation) C:\windows\SysWOW64\wcnwiz.dll
2016-07-18 13:21 - 2016-07-01 05:27 - 00629760 _____ (Microsoft Corporation) C:\windows\SysWOW64\sud.dll
2016-07-18 13:21 - 2016-07-01 05:27 - 00519168 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintDialogs.dll
2016-07-18 13:21 - 2016-07-01 05:27 - 00330752 _____ (Microsoft Corporation) C:\windows\SysWOW64\winipcfile.dll
2016-07-18 13:21 - 2016-07-01 05:27 - 00284160 _____ (Microsoft Corporation) C:\windows\SysWOW64\eappcfg.dll
2016-07-18 13:21 - 2016-07-01 05:26 - 01445888 _____ (Microsoft Corporation) C:\windows\SysWOW64\SRHInproc.dll
2016-07-18 13:21 - 2016-07-01 05:26 - 01063936 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Editing.dll
2016-07-18 13:21 - 2016-07-01 05:26 - 00585216 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.AccountsControl.dll
2016-07-18 13:21 - 2016-07-01 05:26 - 00502272 _____ (Microsoft Corporation) C:\windows\SysWOW64\DevicePairing.dll
2016-07-18 13:21 - 2016-07-01 05:26 - 00413696 _____ (Microsoft Corporation) C:\windows\SysWOW64\WLanConn.dll
2016-07-18 13:21 - 2016-07-01 05:26 - 00153088 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSSync.dll
2016-07-18 13:21 - 2016-07-01 05:25 - 04775424 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2016-07-18 13:21 - 2016-07-01 05:25 - 01508352 _____ (Microsoft Corporation) C:\windows\SysWOW64\winmsipc.dll
2016-07-18 13:21 - 2016-07-01 05:25 - 01228800 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Globalization.dll
2016-07-18 13:21 - 2016-07-01 05:25 - 00799744 _____ (Microsoft Corporation) C:\windows\SysWOW64\SRH.dll
2016-07-18 13:21 - 2016-07-01 05:25 - 00738816 _____ (Microsoft Corporation) C:\windows\SysWOW64\appwiz.cpl
2016-07-18 13:21 - 2016-07-01 05:25 - 00645632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Storage.Search.dll
2016-07-18 13:21 - 2016-07-01 05:25 - 00502784 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2016-07-18 13:21 - 2016-07-01 05:25 - 00482816 _____ (Microsoft Corporation) C:\windows\SysWOW64\duser.dll
2016-07-18 13:21 - 2016-07-01 05:25 - 00477184 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2016-07-18 13:21 - 2016-07-01 05:25 - 00356352 _____ (Microsoft Corporation) C:\windows\SysWOW64\taskcomp.dll
2016-07-18 13:21 - 2016-07-01 05:25 - 00240640 _____ (Microsoft Corporation) C:\windows\SysWOW64\taskeng.exe
2016-07-18 13:21 - 2016-07-01 05:24 - 04404736 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Search.dll
2016-07-18 13:21 - 2016-07-01 05:24 - 01497088 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPDMC.exe
2016-07-18 13:21 - 2016-07-01 05:23 - 00805888 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSShared.dll
2016-07-18 13:21 - 2016-07-01 05:23 - 00460800 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchFolder.dll
2016-07-18 13:21 - 2016-07-01 05:23 - 00459776 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2016-07-18 13:21 - 2016-07-01 05:23 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\licensingdiag.exe
2016-07-18 13:21 - 2016-07-01 05:23 - 00184832 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingMonitor.dll
2016-07-18 13:21 - 2016-07-01 05:21 - 01087488 _____ (Microsoft Corporation) C:\windows\system32\reseteng.dll
2016-07-18 13:21 - 2016-07-01 05:21 - 00321536 _____ (Microsoft Corporation) C:\windows\system32\GlobCollationHost.dll
2016-07-18 13:21 - 2016-07-01 05:20 - 03555840 _____ (Microsoft Corporation) C:\windows\SysWOW64\xpsrchvw.exe
2016-07-18 13:21 - 2016-07-01 05:20 - 02798080 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.dll
2016-07-18 13:21 - 2016-07-01 05:20 - 00777728 _____ (Microsoft Corporation) C:\windows\SysWOW64\MsSpellCheckingFacility.dll
2016-07-18 13:21 - 2016-07-01 05:19 - 06471168 _____ (Microsoft Corporation) C:\windows\SysWOW64\mspaint.exe
2016-07-18 13:21 - 2016-07-01 05:19 - 00736768 _____ (Microsoft Corporation) C:\windows\SysWOW64\Display.dll
2016-07-18 13:21 - 2016-07-01 05:18 - 01448960 _____ (Microsoft Corporation) C:\windows\SysWOW64\dui70.dll
2016-07-18 13:21 - 2016-07-01 05:18 - 00683008 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-07-18 13:21 - 2016-07-01 05:16 - 02062336 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFMediaEngine.dll
2016-07-18 13:21 - 2016-07-01 05:15 - 03459584 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIRibbon.dll
2016-07-18 13:21 - 2016-07-01 05:15 - 02679808 _____ (Microsoft Corporation) C:\windows\SysWOW64\netshell.dll
2016-07-18 13:21 - 2016-07-01 05:15 - 01626112 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmcore.dll
2016-07-18 13:21 - 2016-07-01 05:15 - 00574976 _____ (Microsoft Corporation) C:\windows\SysWOW64\hgcpl.dll
2016-07-18 13:21 - 2016-07-01 05:14 - 04759040 _____ (Microsoft Corporation) C:\windows\SysWOW64\d2d1.dll
2016-07-18 13:21 - 2016-07-01 05:14 - 00802816 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntshrui.dll
2016-07-18 13:21 - 2016-07-01 05:13 - 02849792 _____ (Microsoft Corporation) C:\windows\SysWOW64\themeui.dll
2016-07-18 13:21 - 2016-07-01 05:13 - 02519552 _____ (Microsoft Corporation) C:\windows\SysWOW64\themecpl.dll
2016-07-18 13:21 - 2016-07-01 05:13 - 02000896 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.appcore.dll
2016-07-18 13:21 - 2016-07-01 05:13 - 00835072 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Streaming.dll
2016-07-18 13:21 - 2016-07-01 05:08 - 00879616 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebcamUi.dll
2016-07-18 13:21 - 2016-07-01 05:08 - 00199680 _____ (Microsoft Corporation) C:\windows\SysWOW64\GlobCollationHost.dll
2016-07-18 13:21 - 2016-06-28 13:20 - 00219136 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2016-07-18 13:21 - 2016-05-28 07:23 - 00312160 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2016-07-18 13:21 - 2016-05-28 07:20 - 00430312 _____ (Microsoft Corporation) C:\windows\system32\ws2_32.dll
2016-07-18 13:21 - 2016-05-28 07:08 - 00258912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ufx01000.sys
2016-07-18 13:21 - 2016-05-28 07:04 - 00097096 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncryptsslp.dll
2016-07-18 13:21 - 2016-05-28 07:03 - 00131248 _____ (Microsoft Corporation) C:\windows\system32\gpapi.dll
2016-07-18 13:21 - 2016-05-28 06:57 - 02195632 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2016-07-18 13:21 - 2016-05-28 06:57 - 01372312 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2016-07-18 13:21 - 2016-05-28 06:29 - 00079360 _____ (Microsoft Corporation) C:\windows\system32\adhsvc.dll
2016-07-18 13:21 - 2016-05-28 06:29 - 00019456 _____ (Microsoft Corporation) C:\windows\system32\httpprxp.dll
2016-07-18 13:21 - 2016-05-28 06:28 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\FwRemoteSvr.dll
2016-07-18 13:21 - 2016-05-28 06:26 - 00199168 _____ (Microsoft Corporation) C:\windows\system32\InstallAgent.exe
2016-07-18 13:21 - 2016-05-28 06:24 - 00124928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Ndu.sys
2016-07-18 13:21 - 2016-05-28 06:24 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2016-07-18 13:21 - 2016-05-28 06:24 - 00053760 _____ (Microsoft Corporation) C:\windows\SysWOW64\FwRemoteSvr.dll
2016-07-18 13:21 - 2016-05-28 06:23 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc.dll
2016-07-18 13:21 - 2016-05-28 06:22 - 00163328 _____ (Microsoft Corporation) C:\windows\system32\tetheringservice.dll
2016-07-18 13:21 - 2016-05-28 06:21 - 00550912 _____ (Microsoft Corporation) C:\windows\system32\StoreAgent.dll
2016-07-18 13:21 - 2016-05-28 06:21 - 00042496 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpscript.dll
2016-07-18 13:21 - 2016-05-28 06:20 - 00511488 _____ (Microsoft Corporation) C:\windows\system32\newdev.dll
2016-07-18 13:21 - 2016-05-28 06:20 - 00332288 _____ (Microsoft Corporation) C:\windows\system32\polstore.dll
2016-07-18 13:21 - 2016-05-28 06:20 - 00267264 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2016-07-18 13:21 - 2016-05-28 06:20 - 00199168 _____ (Microsoft Corporation) C:\windows\system32\GnssAdapter.dll
2016-07-18 13:21 - 2016-05-28 06:19 - 00567808 _____ (Microsoft Corporation) C:\windows\system32\MBMediaManager.dll
2016-07-18 13:21 - 2016-05-28 06:19 - 00355840 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore.dll
2016-07-18 13:21 - 2016-05-28 06:18 - 00610816 _____ (Microsoft Corporation) C:\windows\system32\rastls.dll
2016-07-18 13:21 - 2016-05-28 06:18 - 00591360 _____ (Microsoft Corporation) C:\windows\system32\vpnike.dll
2016-07-18 13:21 - 2016-05-28 06:18 - 00392192 _____ (Microsoft Corporation) C:\windows\system32\IPSECSVC.DLL
2016-07-18 13:21 - 2016-05-28 06:17 - 00485888 _____ (Microsoft Corporation) C:\windows\SysWOW64\newdev.dll
2016-07-18 13:21 - 2016-05-28 06:16 - 00684544 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2016-07-18 13:21 - 2016-05-28 06:16 - 00592896 _____ (Microsoft Corporation) C:\windows\system32\AppContracts.dll
2016-07-18 13:21 - 2016-05-28 06:16 - 00291328 _____ (Microsoft Corporation) C:\windows\SysWOW64\polstore.dll
2016-07-18 13:21 - 2016-05-28 06:15 - 00579072 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpprefcl.dll
2016-07-18 13:21 - 2016-05-28 06:15 - 00535040 _____ (Microsoft Corporation) C:\windows\SysWOW64\rastls.dll
2016-07-18 13:21 - 2016-05-28 06:14 - 00200192 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Management.dll
2016-07-18 13:21 - 2016-05-28 06:13 - 00467456 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppContracts.dll
2016-07-18 13:21 - 2016-05-28 06:11 - 00128512 _____ (Microsoft Corporation) C:\windows\system32\httpprxm.dll
2016-07-18 13:21 - 2016-05-28 06:06 - 01339904 _____ (Microsoft Corporation) C:\windows\system32\gpsvc.dll
2016-07-18 13:21 - 2016-05-28 06:02 - 01534464 _____ (Microsoft Corporation) C:\windows\system32\LocationFramework.dll
2016-07-18 13:21 - 2016-05-28 06:02 - 00103424 _____ (Microsoft Corporation) C:\windows\SysWOW64\updatepolicy.dll
2016-07-18 13:21 - 2016-05-28 06:01 - 00111104 _____ (Microsoft Corporation) C:\windows\system32\updatepolicy.dll
2016-07-18 13:21 - 2016-05-28 06:00 - 00151040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mdmregistration.dll
2016-07-18 13:21 - 2016-05-06 06:53 - 00095072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sdport.sys
2016-07-18 13:21 - 2016-05-06 06:05 - 00241664 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptngc.dll
2016-07-18 13:21 - 2016-04-23 07:26 - 00707608 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2016-07-18 13:21 - 2016-04-23 07:24 - 00754664 _____ (Microsoft Corporation) C:\windows\system32\CoreMessaging.dll
2016-07-18 13:21 - 2016-04-23 07:22 - 01161120 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2016-07-18 13:21 - 2016-04-23 07:07 - 00183904 _____ (Microsoft Corporation) C:\windows\SysWOW64\rsaenh.dll
2016-07-18 13:21 - 2016-04-23 07:01 - 00513368 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2016-07-18 13:21 - 2016-04-23 07:00 - 01337240 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2016-07-18 13:21 - 2016-04-23 07:00 - 00453472 _____ (Microsoft Corporation) C:\windows\SysWOW64\directmanipulation.dll
2016-07-18 13:21 - 2016-04-23 07:00 - 00058208 _____ (Microsoft Corporation) C:\windows\system32\dwminit.dll
2016-07-18 13:21 - 2016-04-23 06:34 - 00059392 _____ (Microsoft Corporation) C:\windows\system32\hmkd.dll
2016-07-18 13:21 - 2016-04-23 06:34 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2016-07-18 13:21 - 2016-04-23 06:29 - 00151040 _____ (Microsoft Corporation) C:\windows\system32\VEStoreEventHandlers.dll
2016-07-18 13:21 - 2016-04-23 06:29 - 00087552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\filecrypt.sys
2016-07-18 13:21 - 2016-04-23 06:29 - 00023552 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2016-07-18 13:21 - 2016-04-23 06:25 - 00630784 _____ (Microsoft Corporation) C:\windows\system32\PhoneProviders.dll
2016-07-18 13:21 - 2016-04-23 06:25 - 00617984 _____ (Microsoft Corporation) C:\windows\system32\StorSvc.dll
2016-07-18 13:21 - 2016-04-23 06:25 - 00210432 _____ (Microsoft Corporation) C:\windows\system32\wcmcsp.dll
2016-07-18 13:21 - 2016-04-23 06:21 - 00479232 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2016-07-18 13:21 - 2016-04-23 06:20 - 00606720 _____ (Microsoft Corporation) C:\windows\system32\wcmsvc.dll
2016-07-18 13:21 - 2016-04-23 06:19 - 00140800 _____ (Microsoft Corporation) C:\windows\SysWOW64\BrowserSettingSync.dll
2016-07-18 13:21 - 2016-04-23 06:18 - 00585728 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2016-07-18 13:21 - 2016-04-23 06:18 - 00471552 _____ (Microsoft Corporation) C:\windows\system32\NetSetupShim.dll
2016-07-18 13:21 - 2016-04-23 06:17 - 00388608 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2016-07-18 13:21 - 2016-04-23 06:14 - 00870912 _____ (Microsoft Corporation) C:\windows\system32\MPSSVC.dll
2016-07-18 13:21 - 2016-04-23 06:14 - 00354304 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupShim.dll
2016-07-18 13:21 - 2016-04-23 06:14 - 00342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppXDeploymentClient.dll
2016-07-18 13:21 - 2016-04-23 06:03 - 02193408 _____ (Microsoft Corporation) C:\windows\SysWOW64\actxprxy.dll
2016-07-18 13:21 - 2016-04-23 05:45 - 00461824 _____ (Microsoft Corporation) C:\windows\SysWOW64\CoreMessaging.dll
2016-07-18 13:21 - 2016-04-23 04:10 - 00002186 _____ C:\windows\system32\AppxProvisioning.xml
2016-07-18 13:21 - 2016-04-19 00:30 - 00002186 _____ C:\windows\SysWOW64\AppxProvisioning.xml
2016-07-18 13:21 - 2016-04-02 06:10 - 00770640 _____ (Microsoft Corporation) C:\windows\system32\iuilp.dll
2016-07-18 13:21 - 2016-04-02 05:25 - 00278528 _____ (Microsoft Corporation) C:\windows\system32\NotificationObjFactory.dll
2016-07-18 13:21 - 2016-03-29 12:05 - 01152864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2016-07-18 13:21 - 2016-03-29 12:02 - 00989536 _____ (Microsoft Corporation) C:\windows\system32\SecConfig.efi
2016-07-18 13:21 - 2016-03-29 11:56 - 01297752 _____ (Microsoft Corporation) C:\windows\system32\LicenseManager.dll
2016-07-18 13:21 - 2016-03-29 11:19 - 00296488 _____ (Microsoft Corporation) C:\windows\SysWOW64\policymanager.dll
2016-07-18 13:21 - 2016-03-29 11:18 - 00185184 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dumpsd.sys
2016-07-18 13:21 - 2016-03-29 11:08 - 00358752 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2016-07-18 13:21 - 2016-03-29 11:08 - 00261376 _____ (Microsoft Corporation) C:\windows\system32\LsaIso.exe
2016-07-18 13:21 - 2016-03-29 11:07 - 00081144 _____ (Microsoft Corporation) C:\windows\system32\netapi32.dll
2016-07-18 13:21 - 2016-03-29 10:26 - 01089888 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2016-07-18 13:21 - 2016-03-29 10:26 - 00073872 _____ (Microsoft Corporation) C:\windows\SysWOW64\srvcli.dll
2016-07-18 13:21 - 2016-03-29 10:25 - 00056320 _____ (Microsoft Corporation) C:\windows\SysWOW64\wkscli.dll
2016-07-18 13:21 - 2016-03-29 10:24 - 00294752 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2016-07-18 13:21 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\SensorsNativeApi.V2.dll
2016-07-18 13:21 - 2016-03-29 10:00 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\NetCfgNotifyObjectHost.exe
2016-07-18 13:21 - 2016-03-29 09:59 - 00027648 _____ (Microsoft Corporation) C:\windows\system32\LicenseManagerShellext.exe
2016-07-18 13:21 - 2016-03-29 09:54 - 00147456 _____ (Microsoft Corporation) C:\windows\system32\mtxoci.dll
2016-07-18 13:21 - 2016-03-29 09:51 - 00167936 _____ (Microsoft Corporation) C:\windows\system32\dafBth.dll
2016-07-18 13:21 - 2016-03-29 09:50 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\BdeHdCfgLib.dll
2016-07-18 13:21 - 2016-03-29 09:50 - 00033280 _____ (Microsoft Corporation) C:\windows\system32\wuautoappupdate.dll
2016-07-18 13:21 - 2016-03-29 09:36 - 00209408 _____ (Microsoft Corporation) C:\windows\system32\storewuauth.dll
2016-07-18 13:21 - 2016-03-29 09:35 - 00239616 _____ (Microsoft Corporation) C:\windows\system32\credprovhost.dll
2016-07-18 13:21 - 2016-03-29 09:34 - 00333824 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2016-07-18 13:21 - 2016-03-29 09:20 - 00080384 _____ (Microsoft Corporation) C:\windows\SysWOW64\SensorsNativeApi.V2.dll
2016-07-18 13:21 - 2016-03-29 09:19 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleacchooks.dll
2016-07-18 13:21 - 2016-03-29 09:12 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininetlui.dll
2016-07-18 13:21 - 2016-03-29 09:12 - 00045568 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2016-07-18 13:21 - 2016-03-29 09:11 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\samlib.dll
2016-07-18 13:21 - 2016-03-29 09:11 - 00043520 _____ (Microsoft Corporation) C:\windows\SysWOW64\browcli.dll
2016-07-18 13:21 - 2016-03-29 09:08 - 00118272 _____ (Microsoft Corporation) C:\windows\SysWOW64\mtxoci.dll
2016-07-18 13:21 - 2016-03-29 09:05 - 00052736 _____ (Microsoft Corporation) C:\windows\SysWOW64\OnDemandConnRouteHelper.dll
2016-07-18 13:21 - 2016-03-29 09:04 - 00103936 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Devices.dll
2016-07-18 13:21 - 2016-03-29 09:03 - 00148480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2016-07-18 13:21 - 2016-03-29 09:02 - 02624512 _____ (Microsoft Corporation) C:\windows\system32\InputService.dll
2016-07-18 13:21 - 2016-03-29 09:00 - 00345600 _____ (Microsoft Corporation) C:\windows\system32\TextInputFramework.dll
2016-07-18 13:21 - 2016-03-29 09:00 - 00175616 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Core.TextInput.dll
2016-07-18 13:21 - 2016-03-29 08:59 - 00223232 _____ (Microsoft Corporation) C:\windows\system32\fveapibase.dll
2016-07-18 13:21 - 2016-03-29 08:59 - 00108544 _____ (Microsoft Corporation) C:\windows\system32\InputLocaleManager.dll
2016-07-18 13:21 - 2016-03-29 08:52 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\easwrt.dll
2016-07-18 13:21 - 2016-03-29 08:49 - 00288256 _____ (Microsoft Corporation) C:\windows\system32\fveui.dll
2016-07-18 13:21 - 2016-03-29 08:39 - 00564224 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSDApi.dll
2016-07-18 13:21 - 2016-03-29 08:36 - 03351040 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2016-07-18 13:21 - 2016-03-29 08:32 - 00638464 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.dll
2016-07-18 13:21 - 2016-03-29 08:27 - 00162816 _____ C:\windows\SysWOW64\MTF.dll
2016-07-18 13:21 - 2016-03-29 08:14 - 01072128 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Web.Http.dll
2016-07-18 13:21 - 2016-03-29 08:13 - 00592384 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Web.dll
2016-07-18 13:21 - 2016-03-29 08:10 - 03671040 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2016-07-18 13:21 - 2016-03-29 08:05 - 00361472 _____ (Microsoft Corporation) C:\windows\system32\bdesvc.dll
2016-07-18 13:21 - 2016-03-29 07:45 - 03078144 _____ (Microsoft Corporation) C:\windows\system32\esent.dll
2016-07-18 13:21 - 2016-03-29 07:45 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\ncbservice.dll
2016-07-18 13:21 - 2016-03-29 07:43 - 00521728 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.Connectivity.dll
2016-07-18 13:21 - 2016-03-29 07:35 - 00821248 _____ (Microsoft Corporation) C:\windows\system32\fvewiz.dll
2016-07-18 13:21 - 2016-03-29 07:28 - 00324608 _____ (Microsoft Corporation) C:\windows\system32\fvecpl.dll
2016-07-18 13:21 - 2016-03-29 07:25 - 00269824 _____ (Microsoft Corporation) C:\windows\SysWOW64\FWPUCLNT.DLL
2016-07-18 13:21 - 2016-02-24 10:19 - 00670928 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfds.dll
2016-07-18 13:21 - 2016-02-24 09:33 - 00538736 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2016-07-18 13:21 - 2016-02-24 09:33 - 00141664 _____ (Microsoft Corporation) C:\windows\SysWOW64\wermgr.exe
2016-07-18 13:21 - 2016-02-24 09:30 - 00025600 _____ (Microsoft Corporation) C:\windows\system32\wfapigp.dll
2016-07-18 13:21 - 2016-02-24 09:22 - 00196608 _____ (Microsoft Corporation) C:\windows\system32\fwpolicyiomgr.dll
2016-07-18 13:21 - 2016-02-24 09:19 - 00145408 _____ (Microsoft Corporation) C:\windows\system32\dssvc.dll
2016-07-18 13:21 - 2016-02-24 09:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\seclogon.dll
2016-07-18 13:21 - 2016-02-24 09:10 - 00093184 _____ (Microsoft Corporation) C:\windows\system32\wpninprc.dll
2016-07-18 13:21 - 2016-02-24 09:09 - 00161792 _____ (Microsoft Corporation) C:\windows\system32\AppxSip.dll
2016-07-18 13:21 - 2016-02-24 09:01 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\profext.dll
2016-07-18 13:21 - 2016-02-24 09:00 - 00214528 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Scanners.dll
2016-07-18 13:21 - 2016-02-24 08:59 - 00360448 _____ (Microsoft Corporation) C:\windows\system32\vaultsvc.dll
2016-07-18 13:21 - 2016-02-24 08:58 - 00685568 _____ (Microsoft Corporation) C:\windows\system32\scapi.dll
2016-07-18 13:21 - 2016-02-24 08:55 - 00018944 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExtrasXmlParser.dll
2016-07-18 13:21 - 2016-02-24 08:54 - 00526336 _____ (Microsoft Corporation) C:\windows\system32\FirewallAPI.dll
2016-07-18 13:21 - 2016-02-24 08:54 - 00288768 _____ (Microsoft Corporation) C:\windows\system32\vaultcli.dll
2016-07-18 13:21 - 2016-02-24 08:54 - 00037888 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserDataTypeHelperUtil.dll
2016-07-18 13:21 - 2016-02-24 08:53 - 00089088 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserDataTimeUtil.dll
2016-07-18 13:21 - 2016-02-24 08:53 - 00037888 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserDataLanguageUtil.dll
2016-07-18 13:21 - 2016-02-24 08:52 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\PimIndexMaintenanceClient.dll
2016-07-18 13:21 - 2016-02-24 08:44 - 00056320 _____ (Microsoft Corporation) C:\windows\SysWOW64\POSyncServices.dll
2016-07-18 13:21 - 2016-02-24 08:40 - 00078848 _____ (Microsoft Corporation) C:\windows\SysWOW64\asycfilt.dll
2016-07-18 13:21 - 2016-02-24 08:40 - 00056320 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserDataPlatformHelperUtil.dll
2016-07-18 13:21 - 2016-02-24 08:38 - 00150528 _____ (Microsoft Corporation) C:\windows\SysWOW64\VCardParser.dll
2016-07-18 13:21 - 2016-02-24 08:32 - 00223744 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExSMime.dll
2016-07-18 13:21 - 2016-02-24 08:32 - 00098304 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppointmentActivation.dll
2016-07-18 13:21 - 2016-02-24 08:31 - 00200704 _____ (Microsoft Corporation) C:\windows\SysWOW64\cemapi.dll
2016-07-18 13:21 - 2016-02-24 08:31 - 00169984 _____ (Microsoft Corporation) C:\windows\SysWOW64\PhoneCallHistoryApis.dll
2016-07-18 13:21 - 2016-02-24 08:28 - 00196608 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserDataAccountApis.dll
2016-07-18 13:21 - 2016-02-24 08:28 - 00135168 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxSip.dll
2016-07-18 13:21 - 2016-02-24 08:23 - 00129024 _____ (Microsoft Corporation) C:\windows\SysWOW64\CallHistoryClient.dll
2016-07-18 13:21 - 2016-02-24 08:22 - 00053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\profext.dll
2016-07-18 13:21 - 2016-02-24 08:18 - 00575488 _____ (Microsoft Corporation) C:\windows\SysWOW64\EmailApis.dll
2016-07-18 13:21 - 2016-02-24 08:18 - 00184832 _____ (Microsoft Corporation) C:\windows\SysWOW64\PackageStateRoaming.dll
2016-07-18 13:21 - 2016-02-24 08:16 - 00394752 _____ (Microsoft Corporation) C:\windows\SysWOW64\werui.dll
2016-07-18 13:21 - 2016-02-24 08:13 - 00540160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ChatApis.dll
2016-07-18 13:21 - 2016-02-24 08:09 - 00552960 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppointmentApis.dll
2016-07-18 13:21 - 2016-02-24 08:07 - 00949248 _____ (Microsoft Corporation) C:\windows\SysWOW64\Unistore.dll
2016-07-18 13:21 - 2016-02-24 08:03 - 00769536 _____ (Microsoft Corporation) C:\windows\SysWOW64\ContactApis.dll
2016-07-18 13:21 - 2016-02-24 07:43 - 00184320 _____ (Microsoft Corporation) C:\windows\system32\fwbase.dll
2016-07-18 13:21 - 2016-02-23 13:25 - 00563552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\acpi.sys
2016-07-18 13:21 - 2016-02-23 13:15 - 00779384 _____ (Microsoft Corporation) C:\windows\system32\taskschd.dll
2016-07-18 13:21 - 2016-02-23 12:32 - 08705672 _____ (Microsoft Corp.) C:\windows\system32\Windows.Media.Protection.PlayReady.dll
2016-07-18 13:21 - 2016-02-23 12:22 - 00572272 _____ (Microsoft Corporation) C:\windows\SysWOW64\taskschd.dll
2016-07-18 13:21 - 2016-02-23 11:40 - 00430944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2016-07-18 13:21 - 2016-02-23 11:38 - 06952088 _____ (Microsoft Corp.) C:\windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-07-18 13:21 - 2016-02-23 11:38 - 02180136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfcore.dll
2016-07-18 13:21 - 2016-02-23 11:38 - 00980352 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfasfsrcsnk.dll
2016-07-18 13:21 - 2016-02-23 11:38 - 00895080 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfsrcsnk.dll
2016-07-18 13:21 - 2016-02-23 11:38 - 00882720 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmp4srcsnk.dll
2016-07-18 13:21 - 2016-02-23 11:38 - 00420928 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvproc.dll
2016-07-18 13:21 - 2016-02-23 11:37 - 00713824 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmpeg2srcsnk.dll
2016-07-18 13:21 - 2016-02-23 11:12 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\provpackageapidll.dll
2016-07-18 13:21 - 2016-02-23 11:01 - 00104960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rasl2tp.sys
2016-07-18 13:21 - 2016-02-23 10:55 - 00114688 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bridge.sys
2016-07-18 13:21 - 2016-02-23 10:53 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\srpapi.dll
2016-07-18 13:21 - 2016-02-23 10:48 - 00041984 _____ (Microsoft Corporation) C:\windows\system32\TimeBrokerClient.dll
2016-07-18 13:21 - 2016-02-23 10:40 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SMSRouter.dll
2016-07-18 13:21 - 2016-02-23 10:37 - 00274944 _____ (Microsoft Corporation) C:\windows\system32\DisplayManager.dll
2016-07-18 13:21 - 2016-02-23 10:27 - 00307712 _____ (Microsoft Corporation) C:\windows\system32\usbmon.dll
2016-07-18 13:21 - 2016-02-23 10:26 - 00372224 _____ (Microsoft Corporation) C:\windows\system32\MDEServer.exe
2016-07-18 13:21 - 2016-02-23 10:14 - 00029696 _____ (Microsoft Corporation) C:\windows\SysWOW64\LaunchWinApp.exe
2016-07-18 13:21 - 2016-02-23 09:57 - 00031744 _____ (Microsoft Corporation) C:\windows\SysWOW64\TimeBrokerClient.dll
2016-07-18 13:21 - 2016-02-23 09:52 - 00456704 _____ (Microsoft Corporation) C:\windows\system32\ipnathlp.dll
2016-07-18 13:21 - 2016-02-23 09:49 - 00200704 _____ (Microsoft Corporation) C:\windows\SysWOW64\DisplayManager.dll
2016-07-18 13:21 - 2016-02-23 09:47 - 00157184 _____ (Microsoft Corporation) C:\windows\SysWOW64\WiFiDisplay.dll
2016-07-18 13:21 - 2016-02-23 09:36 - 00713728 _____ (Microsoft Corporation) C:\windows\SysWOW64\netlogon.dll
2016-07-18 13:21 - 2016-02-23 09:36 - 00379392 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmkvsrcsnk.dll
2016-07-18 13:21 - 2016-02-23 09:24 - 01105920 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Audio.dll
2016-07-18 13:21 - 2016-02-09 05:18 - 00297472 _____ (Microsoft Corporation) C:\windows\system32\thumbcache.dll
2016-07-18 13:21 - 2016-02-09 05:18 - 00237056 _____ (Microsoft Corporation) C:\windows\SysWOW64\thumbcache.dll
2016-07-18 13:21 - 2016-01-27 07:57 - 01824264 _____ (Microsoft Corporation) C:\windows\SysWOW64\combase.dll
2016-07-18 13:21 - 2016-01-27 07:57 - 00820704 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinTypes.dll
2016-07-18 13:21 - 2016-01-27 07:55 - 00081112 _____ (Microsoft Corporation) C:\windows\SysWOW64\OpenWith.exe
2016-07-18 13:21 - 2016-01-27 07:44 - 00085320 _____ (Microsoft Corporation) C:\windows\system32\OpenWith.exe
2016-07-18 13:21 - 2016-01-27 07:10 - 00099840 _____ (Microsoft Corporation) C:\windows\SysWOW64\hlink.dll
2016-07-18 13:21 - 2016-01-27 07:08 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\ztrace_maps.dll
2016-07-18 13:21 - 2016-01-27 07:07 - 00203264 _____ (Microsoft Corporation) C:\windows\SysWOW64\iassam.dll
2016-07-18 13:21 - 2016-01-27 07:02 - 00109056 _____ (Microsoft Corporation) C:\windows\system32\hlink.dll
2016-07-18 13:21 - 2016-01-27 06:59 - 00258048 _____ (Microsoft Corporation) C:\windows\system32\iassam.dll
2016-07-18 13:21 - 2016-01-27 06:50 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2016-07-18 13:21 - 2016-01-27 06:44 - 00063488 _____ (Microsoft Corporation) C:\windows\SysWOW64\cfgbkend.dll
2016-07-18 13:21 - 2016-01-27 06:31 - 00079360 _____ (Microsoft Corporation) C:\windows\system32\cfgbkend.dll
2016-07-18 13:21 - 2016-01-16 08:20 - 00431240 _____ (Microsoft Corporation) C:\windows\SysWOW64\WWanAPI.dll
2016-07-18 13:21 - 2016-01-16 08:20 - 00366224 _____ (Microsoft Corporation) C:\windows\SysWOW64\AUDIOKSE.dll
2016-07-18 13:21 - 2016-01-16 08:19 - 00405568 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioSes.dll
2016-07-18 13:21 - 2016-01-16 07:44 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\rasadhlp.dll
2016-07-18 13:21 - 2016-01-16 07:44 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\rastlsext.dll
2016-07-18 13:21 - 2016-01-16 07:40 - 00106496 _____ (Microsoft Corporation) C:\windows\system32\rasauto.dll
2016-07-18 13:21 - 2016-01-16 07:40 - 00049152 _____ (Microsoft Corporation) C:\windows\system32\pcaui.exe
2016-07-18 13:21 - 2016-01-16 07:40 - 00019456 _____ (Microsoft Corporation) C:\windows\system32\rasautou.exe
2016-07-18 13:21 - 2016-01-16 07:38 - 00130560 _____ (Microsoft Corporation) C:\windows\system32\winbio.dll
2016-07-18 13:21 - 2016-01-16 07:36 - 00011776 _____ (Microsoft Corporation) C:\windows\SysWOW64\rastlsext.dll
2016-07-18 13:21 - 2016-01-16 07:34 - 00477696 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2016-07-18 13:21 - 2016-01-16 07:32 - 00621568 _____ (Microsoft Corporation) C:\windows\system32\wbiosrvc.dll
2016-07-18 13:21 - 2016-01-16 07:32 - 00041984 _____ (Microsoft Corporation) C:\windows\SysWOW64\pcaui.exe
2016-07-18 13:21 - 2016-01-16 07:30 - 00093696 _____ (Microsoft Corporation) C:\windows\SysWOW64\winbio.dll
2016-07-18 13:21 - 2016-01-16 07:28 - 00884736 _____ (Microsoft Corporation) C:\windows\system32\rasdlg.dll
2016-07-18 13:21 - 2016-01-16 07:25 - 00510976 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlidcli.dll
2016-07-18 13:21 - 2016-01-16 07:20 - 00799744 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasdlg.dll
2016-07-18 13:21 - 2016-01-16 07:16 - 01542656 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2016-07-18 13:21 - 2016-01-16 07:11 - 00653312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasapi32.dll
2016-07-18 13:21 - 2016-01-05 04:42 - 02026736 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2016-07-18 13:21 - 2016-01-05 04:33 - 00701384 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfnetcore.dll
2016-07-18 13:21 - 2016-01-05 04:33 - 00208176 _____ (Microsoft Corporation) C:\windows\SysWOW64\mftranscode.dll
2016-07-18 13:21 - 2016-01-05 04:33 - 00116728 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll
2016-07-18 13:21 - 2016-01-05 03:57 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\RMSRoamingSecurity.dll
2016-07-18 13:21 - 2016-01-05 03:57 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\usermgrcli.dll
2016-07-18 13:21 - 2016-01-05 03:51 - 00472576 _____ (Microsoft Corporation) C:\windows\system32\DscCore.dll
2016-07-18 13:21 - 2016-01-05 03:51 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\UserMgrProxy.dll
2016-07-18 13:21 - 2016-01-05 03:49 - 01582080 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2016-07-18 13:21 - 2016-01-05 03:49 - 01255936 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOE.DLL
2016-07-18 13:21 - 2016-01-05 03:49 - 00749056 _____ (Microsoft Corporation) C:\windows\system32\PhoneService.dll
2016-07-18 13:21 - 2016-01-05 03:49 - 00167936 _____ (Microsoft Corporation) C:\windows\system32\ProximityCommon.dll
2016-07-18 13:21 - 2016-01-05 03:48 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\usermgrcli.dll
2016-07-18 13:21 - 2016-01-05 03:45 - 00678912 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2016-07-18 13:21 - 2016-01-05 03:45 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\facecredentialprovider.dll
2016-07-18 13:21 - 2016-01-05 03:44 - 00125440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshom.ocx
2016-07-18 13:21 - 2016-01-05 03:43 - 00912384 _____ (Microsoft Corporation) C:\windows\system32\usermgr.dll
2016-07-18 13:21 - 2016-01-05 03:42 - 00166912 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserMgrProxy.dll
2016-07-18 13:21 - 2016-01-05 03:41 - 00558592 _____ (Microsoft Corporation) C:\windows\SysWOW64\uReFS.dll
2016-07-18 13:21 - 2016-01-05 03:39 - 00235008 _____ (Microsoft Corporation) C:\windows\SysWOW64\ksproxy.ax
2016-07-18 13:21 - 2016-01-05 03:36 - 00573440 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2016-07-18 13:21 - 2015-12-07 06:48 - 00462760 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfreadwrite.dll
2016-07-18 13:21 - 2015-12-07 06:45 - 00264544 _____ (Microsoft Corporation) C:\windows\system32\ContentDeliveryManager.Utilities.dll
2016-07-18 13:21 - 2015-12-07 06:15 - 01035776 _____ (Microsoft Corporation) C:\windows\system32\XboxNetApiSvc.dll
2016-07-18 13:21 - 2015-12-07 06:15 - 00075776 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-07-18 13:21 - 2015-12-07 06:09 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\StorageUsage.dll
2016-07-18 13:21 - 2015-12-07 06:01 - 00034304 _____ (Microsoft Corporation) C:\windows\SysWOW64\BackgroundTransferHost.exe
2016-07-18 13:21 - 2015-12-07 05:43 - 00931328 _____ (Microsoft Corporation) C:\windows\system32\MSMPEG2ENC.DLL
2016-07-18 13:21 - 2015-11-24 11:45 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\wshrm.dll
2016-07-18 13:21 - 2015-11-24 11:37 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rmcast.sys
2016-07-18 13:21 - 2015-11-24 10:14 - 00415744 _____ (Microsoft Corporation) C:\windows\SysWOW64\catsrvut.dll
2016-07-18 13:21 - 2015-11-24 09:57 - 01328128 _____ (Microsoft Corporation) C:\windows\SysWOW64\comsvcs.dll
2016-07-18 13:21 - 2015-11-22 12:33 - 00051680 _____ (Microsoft Corporation) C:\windows\system32\SensorsUtilsV2.dll
2016-07-18 13:21 - 2015-11-22 12:25 - 00063528 _____ (Microsoft Corporation) C:\windows\SysWOW64\wwapi.dll
2016-07-18 13:21 - 2015-11-22 12:00 - 00058368 _____ (Microsoft Corporation) C:\windows\system32\MosResource.dll
2016-07-18 13:21 - 2015-11-22 11:57 - 00110592 _____ (Microsoft Corporation) C:\windows\system32\Microsoft-Windows-MapControls.dll
2016-07-18 13:21 - 2015-11-22 11:57 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\Microsoft-Windows-MosTrace.dll
2016-07-18 13:21 - 2015-11-22 11:57 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\Microsoft-Windows-MosHost.dll
2016-07-18 13:21 - 2015-11-22 11:56 - 01268736 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.Resources.dll
2016-07-18 13:21 - 2015-11-22 11:55 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\MapsBtSvcProxy.dll
2016-07-18 13:21 - 2015-11-22 11:54 - 00138240 _____ (Microsoft Corporation) C:\windows\system32\ETWCoreUIComponentsResources.dll
2016-07-18 13:21 - 2015-11-22 11:54 - 00032256 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2016-07-18 13:21 - 2015-11-22 11:54 - 00028672 _____ (Microsoft Corporation) C:\windows\system32\WordBreakers.dll
2016-07-18 13:21 - 2015-11-22 11:54 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\nativemap.dll
2016-07-18 13:21 - 2015-11-22 11:54 - 00003072 _____ (Microsoft Corporation) C:\windows\system32\MapControlStringsRes.dll
2016-07-18 13:21 - 2015-11-22 11:51 - 00042496 _____ (Microsoft Corporation) C:\windows\system32\mapstoasttask.dll
2016-07-18 13:21 - 2015-11-22 11:50 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\mssign32.dll
2016-07-18 13:21 - 2015-11-22 11:45 - 00264192 _____ (Nokia) C:\windows\system32\NmaDirect.dll
2016-07-18 13:21 - 2015-11-22 11:45 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAutomationCoreRes.dll
2016-07-18 13:21 - 2015-11-22 11:34 - 00075264 _____ (Microsoft Corporation) C:\windows\system32\EditBufferTestHook.dll
2016-07-18 13:21 - 2015-11-22 11:28 - 00100864 _____ (Microsoft Corporation) C:\windows\SysWOW64\offlinelsa.dll
2016-07-18 13:21 - 2015-11-13 08:55 - 00035680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\wimmount.sys
2016-07-18 13:21 - 2015-11-13 08:51 - 00523616 _____ (Microsoft Corporation) C:\windows\system32\wimserv.exe
2016-07-18 13:21 - 2015-11-13 08:21 - 00454056 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioEng.dll
2016-07-18 13:21 - 2015-11-13 08:21 - 00073360 _____ (Microsoft Corporation) C:\windows\SysWOW64\remoteaudioendpoint.dll
2016-07-18 13:21 - 2015-11-13 08:05 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\bcastdvr.proxy.dll
2016-07-18 13:21 - 2015-11-13 08:05 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\tetheringconfigsp.dll
2016-07-18 13:21 - 2015-11-13 08:04 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\IcsEntitlementHost.exe
2016-07-18 13:21 - 2015-11-13 08:03 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\tetheringclient.dll
2016-07-18 13:21 - 2015-11-05 14:05 - 00118624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdx.sys
2016-07-18 13:21 - 2015-11-05 12:25 - 00578912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2016-07-18 13:20 - 2016-07-18 13:21 - 00987728 _____ (Google Inc.) C:\Users\Glenn\Downloads\ChromeSetup.exe
2016-07-18 13:20 - 2016-07-18 13:20 - 00000000 ____D C:\Users\Glenn\AppData\Local\Razer_Inc
2016-07-18 13:20 - 2016-07-18 13:20 - 00000000 ____D C:\Users\Glenn\AppData\Local\MicrosoftEdge
2016-07-18 00:26 - 2016-07-27 21:25 - 00504488 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2016-07-17 23:18 - 2016-07-18 23:59 - 00000000 ____D C:\windows\Panther
2016-07-17 23:18 - 2016-07-17 23:18 - 00008192 __RSH C:\BOOTSECT.BAK
2016-07-17 22:42 - 2016-07-17 22:42 - 00000000 ____D C:\Users\Glenn\AppData\Local\Comms
2016-07-17 22:30 - 2016-07-19 19:37 - 00000000 ____D C:\Program Files (x86)\Razer
2016-07-17 22:30 - 2016-07-17 22:30 - 00000000 ____D C:\ProgramData\Razer
2016-07-17 22:29 - 2016-08-10 13:47 - 01322306 _____ C:\windows\system32\PerfStringBackup.INI
2016-07-17 22:29 - 2016-07-17 22:29 - 00000000 ____D C:\Program Files (x86)\Intel
2016-07-17 22:29 - 2016-07-17 22:29 - 00000000 ____D C:\Intel
2016-07-17 22:28 - 2016-08-10 13:43 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-17 22:28 - 2016-07-25 11:07 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-07-17 22:28 - 2016-07-22 01:39 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-07-17 22:28 - 2016-07-22 01:39 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-07-17 22:26 - 2016-07-17 22:27 - 00002337 _____ C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-07-17 22:26 - 2016-07-17 22:27 - 00000000 ___RD C:\Users\Glenn\OneDrive
2016-07-17 22:26 - 2016-07-17 22:26 - 00000000 ____D C:\Users\Glenn\AppData\Local\ActiveSync
2016-07-17 22:26 - 2016-07-17 22:26 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-07-17 22:25 - 2016-08-10 11:11 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-07-17 22:25 - 2016-08-10 11:04 - 00000000 ____D C:\Users\Glenn
2016-07-17 22:25 - 2016-07-19 01:31 - 00000000 ____D C:\Users\Glenn\AppData\Local\VirtualStore
2016-07-17 22:25 - 2016-07-18 23:17 - 00000000 ____D C:\Users\Glenn\AppData\Local\Packages
2016-07-17 22:25 - 2016-07-17 22:25 - 00000020 ___SH C:\Users\Glenn\ntuser.ini
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 _SHDL C:\Users\Glenn\Skabeloner
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 _SHDL C:\Users\Glenn\Printere
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 _SHDL C:\Users\Glenn\Menuen Start
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 _SHDL C:\Users\Glenn\Lokale indstillinger
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 _SHDL C:\Users\Glenn\Dokumenter
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 _SHDL C:\Users\Glenn\Documents\Videoer
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 _SHDL C:\Users\Glenn\Documents\Musik
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 _SHDL C:\Users\Glenn\Documents\Billeder
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 _SHDL C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programmer
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 _SHDL C:\Users\Glenn\AppData\Local\Oversigt
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 _SHDL C:\Users\Glenn\Andre computere
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 ____D C:\Users\Glenn\AppData\Roaming\Adobe
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 ____D C:\Users\Glenn\AppData\Local\TileDataLayer
2016-07-17 22:25 - 2016-07-17 22:25 - 00000000 ____D C:\Users\Glenn\AppData\Local\Publishers
2016-07-17 22:22 - 2016-07-17 22:22 - 00000000 ____D C:\ProgramData\USOShared
2016-07-17 22:21 - 2016-08-10 13:43 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Public\Documents\Videoer
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Public\Documents\Musik
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Public\Documents\Billeder
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default\Skabeloner
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default\Printere
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default\Menuen Start
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default\Lokale indstillinger
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default\Dokumenter
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default\Documents\Videoer
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default\Documents\Musik
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default\Documents\Billeder
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmer
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default\AppData\Local\Oversigt
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default\Andre computere
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default User\Documents\Videoer
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default User\Documents\Musik
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default User\Documents\Billeder
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmer
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Oversigt
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Programmer
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\ProgramData\Skrivebord
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\ProgramData\Skabeloner
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmer
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\ProgramData\Menuen Start
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\ProgramData\Dokumenter
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Program Files\Fælles filer
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 _SHDL C:\Documents and Settings
2016-07-17 22:21 - 2016-07-17 22:21 - 00000000 ____D C:\windows\CSC
2016-07-17 22:21 - 2016-07-01 07:05 - 02718208 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintConfig.dll
2016-07-17 22:20 - 2016-07-17 22:20 - 00000000 ____H C:\windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-07-17 22:19 - 2016-07-18 22:46 - 00193976 _____ C:\windows\system32\FNTCACHE.DAT
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-08-10 13:47 - 2015-10-30 20:26 - 00429056 _____ C:\windows\system32\perfh006.dat
2016-08-10 13:47 - 2015-10-30 20:26 - 00071574 _____ C:\windows\system32\perfc006.dat
2016-08-10 13:47 - 2015-10-30 09:21 - 00000000 ____D C:\windows\INF
2016-08-10 13:42 - 2015-10-30 08:28 - 00262144 ___SH C:\windows\system32\config\BBI
2016-08-10 11:10 - 2015-10-30 20:30 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-10 11:10 - 2015-10-30 09:24 - 00000000 ___RD C:\windows\ImmersiveControlPanel
2016-08-10 11:10 - 2015-10-30 09:24 - 00000000 ____D C:\windows\system32\appraiser
2016-08-10 10:44 - 2015-10-30 09:24 - 00000000 ____D C:\windows\system32\SecureBootUpdates
2016-08-10 10:44 - 2015-10-30 09:11 - 00000000 ____D C:\windows\CbsTemp
2016-08-09 19:14 - 2015-10-30 09:24 - 00000000 ____D C:\windows\system32\NDF
2016-08-07 12:30 - 2015-10-30 09:24 - 00000000 ____D C:\windows\AppReadiness
2016-08-06 12:14 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-22 01:35 - 2015-10-30 09:24 - 00000000 ____D C:\windows\Help
2016-07-21 19:42 - 2015-10-30 09:24 - 00000000 ____D C:\windows\rescache
2016-07-20 13:22 - 2015-10-30 09:24 - 00000000 ____D C:\windows\system32\WinBioDatabase
2016-07-20 13:21 - 2015-10-30 09:24 - 00000000 ____D C:\windows\appcompat
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 __RSD C:\windows\Media
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ___SD C:\windows\system32\F12
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ___SD C:\windows\system32\DiagSvcs
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ___RD C:\windows\PurchaseDialog
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ___RD C:\windows\PrintDialog
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ___RD C:\windows\DevicesFlow
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\windows\system32\WinBioPlugIns
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\windows\system32\SystemResetPlatform
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\windows\system32\oobe
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\windows\Provisioning
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\windows\PolicyDefinitions
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\windows\bcastdvr
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-07-18 22:45 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-07-18 22:45 - 2015-10-30 08:28 - 00000000 ____D C:\windows\SysWOW64\Dism
2016-07-18 22:45 - 2015-10-30 08:28 - 00000000 ____D C:\windows\system32\Dism
2016-07-18 22:44 - 2015-10-30 09:24 - 00015703 _____ C:\windows\system32\OEMDefaultAssociations.xml
2016-07-17 23:18 - 2015-10-30 09:24 - 00028672 _____ C:\windows\system32\config\BCD-Template
2016-07-17 22:25 - 2015-10-30 09:24 - 00000000 ___RD C:\windows\MiracastView
2016-07-17 22:22 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\USOPrivate
2016-07-17 22:22 - 2015-10-30 08:28 - 00032768 ___SH C:\windows\system32\config\ELAM
2016-07-17 22:21 - 2015-10-30 09:24 - 00000000 ____D C:\windows\system32\FxsTmp
2016-07-17 22:21 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows NT
2016-07-17 22:20 - 2015-10-30 20:36 - 00000000 ____D C:\windows\ServiceProfiles
2016-07-17 22:20 - 2015-10-30 08:28 - 00000000 ____D C:\windows\system32\Sysprep
2016-07-13 07:40 - 2015-07-13 20:45 - 13675576 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
 
==================== Files in the root of some directories =======
 
2016-07-19 02:16 - 2016-07-19 02:16 - 0007604 _____ () C:\Users\Glenn\AppData\Local\Resmon.ResmonCfg
 
Some files in TEMP:
====================
C:\Users\Glenn\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Glenn\AppData\Local\Temp\procexp64.exe
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2016-08-10 10:41
 
==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-08-2016 01
Ran by Glenn (2016-08-11 00:49:34)
Running from C:\Users\Glenn\Desktop
Windows 10 Pro Version 1511 (X64) (2016-07-17 20:24:46)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-103682906-2901245017-2763907060-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-103682906-2901245017-2763907060-503 - Limited - Disabled)
Glenn (S-1-5-21-103682906-2901245017-2763907060-1001 - Administrator - Enabled) => C:\Users\Glenn
Gæst (S-1-5-21-103682906-2901245017-2763907060-501 - Limited - Enabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: Avast Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Ansel (Version: 368.81 - NVIDIA Corporation) Hidden
Avast Premier (HKLM-x32\...\Avast) (Version: 12.2.2276 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0192 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
f.lux (HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\Flux) (Version:  - )
GlassWire 1.2 (remove only) (HKLM-x32\...\GlassWire 1.2) (Version: 1.2.71 - SecureMix LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
NVIDIA 3D Vision Controllerdriver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision-driver 368.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.81 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Grafikdriver 368.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.81 - NVIDIA Corporation)
NVIDIA HD-lyddriver 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation)
NVIDIA PhysX-systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
RogueKiller version 12 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12 - Adlice Software)
SafeZone Stable 1.51.2220.47 (x32 Version: 1.51.2220.47 - Avast Software) Hidden
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1220 - SUPERAntiSpyware.com)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.7.2.0 - Azureus Software, Inc.)
WinRAR 5.40 beta 3 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.3 - win.rar GmbH)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-103682906-2901245017-2763907060-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Glenn\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {6BE55101-4D24-463B-BF23-76CB6793F725} - System32\Tasks\SafeZone scheduled Autoupdate 1470823912 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-07-25] (Avast Software)
Task: {81759EB3-A7D0-44CC-B39D-BD5C48743FE0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {C382E3CB-59F2-4D4D-B383-F7475B6940FC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {C9DAF105-E233-4E8E-A90A-6D8709B8AE75} - System32\Tasks\{35606B99-CFA9-4739-94D4-B112EDEDC162} => pcalua.exe -a C:\Users\Glenn\Downloads\RootkitBuster_v5_1061.exe -d C:\Users\Glenn\Downloads
Task: {FE4C6065-8B0E-43E6-81D0-5CCD377430AD} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-08-10] (AVAST Software)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
==================== Loaded Modules (Whitelisted) ==============
 
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\windows\SYSTEM32\ism32k.dll
2016-07-22 01:35 - 2016-07-11 00:58 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-07-18 13:21 - 2016-07-01 06:48 - 02656408 _____ () C:\windows\system32\CoreUIComponents.dll
2016-07-18 13:21 - 2016-07-01 06:48 - 02656408 _____ () C:\windows\System32\CoreUIComponents.dll
2016-07-17 22:27 - 2016-07-17 22:27 - 00959168 _____ () C:\Users\Glenn\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-07-18 13:22 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-18 13:22 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-07-18 13:21 - 2016-07-01 05:27 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-18 13:21 - 2016-07-01 05:21 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-18 13:21 - 2016-07-01 05:22 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-07-18 13:21 - 2016-07-01 05:24 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-06-01 21:00 - 2015-06-01 21:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-07-31 01:34 - 2016-07-31 01:34 - 01482728 _____ () C:\Program Files (x86)\Battle.net\Battle.net.7730\Battle.net Helper.exe
2016-08-04 23:42 - 2016-08-03 01:41 - 02366280 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libglesv2.dll
2016-08-04 23:42 - 2016-08-03 01:40 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libegl.dll
2016-08-10 12:38 - 2016-08-08 10:47 - 25356360 _____ () C:\Program Files\RogueKiller\RogueKiller64.exe
2016-08-04 23:42 - 2016-08-03 01:04 - 31541952 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll
2015-10-30 09:18 - 2015-10-30 09:18 - 00218456 _____ () c:\windows\system32\WerEtw.dll
2016-08-10 12:10 - 2016-08-10 12:10 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-08-10 12:10 - 2016-08-10 12:10 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-08-10 21:23 - 2016-08-10 21:23 - 03016192 _____ () C:\Program Files\AVAST Software\Avast\defs\16081004\algo.dll
2016-07-22 01:39 - 2016-06-14 22:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-08-10 12:10 - 2016-08-10 12:10 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-07-31 01:34 - 2016-07-31 01:34 - 37247976 _____ () C:\Program Files (x86)\Battle.net\Battle.net.7730\libcef.dll
2016-07-31 01:34 - 2016-07-31 01:34 - 00293040 _____ () C:\Program Files (x86)\Battle.net\Battle.net.7730\ortp.dll
2016-07-31 01:34 - 2016-07-31 01:34 - 06402560 _____ () C:\Program Files (x86)\Battle.net\Battle.net.7730\battle.net.dll
2016-07-31 01:34 - 2016-07-31 01:34 - 00133632 _____ () C:\Program Files (x86)\Battle.net\Battle.net.7730\libEGL.dll
2016-07-31 01:34 - 2016-07-31 01:34 - 03384832 _____ () C:\Program Files (x86)\Battle.net\Battle.net.7730\libGLESv2.dll
2016-07-31 01:34 - 2016-07-31 01:34 - 03384832 _____ () C:\Program Files (x86)\Battle.net\Battle.net.7730\libglesv2.dll
2016-07-31 01:34 - 2016-07-31 01:34 - 00133632 _____ () C:\Program Files (x86)\Battle.net\Battle.net.7730\libegl.dll
2016-07-31 01:34 - 2016-07-31 01:34 - 00990696 _____ () C:\Program Files (x86)\Battle.net\Battle.net.7730\ffmpegsumo.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
 
There are 7910 more sites.
 
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-103682906-2901245017-2763907060-1001\...\123simsen.com -> www.123simsen.com
 
There are 7910 more sites.
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2016-08-10 11:07 - 2016-08-10 12:04 - 00000826 ____A C:\windows\system32\Drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-103682906-2901245017-2763907060-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Glenn\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{90bd7808-e8af-446e-8027-b4fd094eae7f}.JPG
DNS Servers: 193.162.153.164 - 194.239.134.83
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [TCP Query User{25E8A6DF-004D-47C9-8F82-3F80FD05D828}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{2CB7F641-F087-4C69-826C-7D439BDB9C0B}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{B63D502B-11C7-4B19-926F-52221ED7B71F}] => (Allow) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
FirewallRules: [{86DEE984-5EC3-4D08-A6FD-34940103719E}] => (Allow) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
FirewallRules: [{8E3BB32F-FC88-4FF8-8386-2218E4937731}] => (Block) %ProgramFiles% (x86)\Fallout 4\Fallout4.exe
FirewallRules: [{ECD10C5E-2461-4C25-B6CF-098BDD78DF1C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4BFC18B3-0D0A-4F4B-B4CB-0E7F07A99E2D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{FFC174E5-19DE-417C-9E02-F929C46FF4B4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{CA1AFADD-8241-4A8E-A768-2A9B5C865634}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F024C206-E36F-4D42-99F4-6A732C500BF9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{F39575A0-26E3-4444-8A4B-486FD8E54B02}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{82F4B301-95A0-43C0-A294-D1099E8051FC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{3C685E5A-AA00-4C10-A51A-2CC6B9B81D9A}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{AF7B7DDA-8C4B-4AFA-A411-000DAB019D2D}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{C3E9BF2E-CAF5-4092-9E00-9DBAC5966432}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{6861E8B1-577D-4359-875A-EEB72C51B9E1}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{FAE55D39-CA36-42F9-8B97-436F785E9361}] => (Allow) C:\Program Files\Vuze\Azureus.exe
 
==================== Restore Points =========================
 
10-08-2016 10:42:10 Windows Update
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (08/10/2016 09:22:41 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Licensaktivering (slui.exe) mislykkedes med følgende fejlkode: 
hr=0x8007232B
Kommandolinjeargumenter: 
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (08/10/2016 09:22:41 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Licensaktivering (slui.exe) mislykkedes med følgende fejlkode: 
hr=0x8007232B
Kommandolinjeargumenter: 
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (08/10/2016 09:22:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Licensaktivering (slui.exe) mislykkedes med følgende fejlkode: 
hr=0x8007232B
Kommandolinjeargumenter: 
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=2
 
Error: (08/10/2016 01:43:24 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Licensaktivering (slui.exe) mislykkedes med følgende fejlkode: 
hr=0x8007232B
Kommandolinjeargumenter: 
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (08/10/2016 01:43:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Licensaktivering (slui.exe) mislykkedes med følgende fejlkode: 
hr=0x8007232B
Kommandolinjeargumenter: 
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
 
Error: (08/10/2016 01:41:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-R35L269)
Description: Aktivering af app‘en Microsoft.Windows.Photos_8wekyb3d8bbwe!App mislykkedes med fejlen: -2147024894 Du kan finde flere oplysninger i loggen Microsoft-Windows-TWinUI/Operational.
 
Error: (08/10/2016 12:33:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Navn på program med fejl: RootkitRevealer.exe, version: 1.71.0.0, tidsstempel: 0x44e255aa
Navn på modul med fejl: RootkitRevealer.exe, version: 1.71.0.0, tidsstempel: 0x44e255aa
Undtagelseskode: 0xc0000005
Forskydning med fejl 0x000040cd
Proces-id 0x228
Programmets starttidspunkt 0xRootkitRevealer.exe0
Programsti: RootkitRevealer.exe1
Modulsti: RootkitRevealer.exe2
Rapport-id: RootkitRevealer.exe3
Fuldt navn på program med fejl: RootkitRevealer.exe4
Relativt program-id for program med fejl: RootkitRevealer.exe5
 
Error: (08/10/2016 12:24:20 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-R35L269)
Description: Aktivering af app‘en Microsoft.Windows.Photos_8wekyb3d8bbwe!App mislykkedes med fejlen: -2147024894 Du kan finde flere oplysninger i loggen Microsoft-Windows-TWinUI/Operational.
 
Error: (08/10/2016 12:10:52 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Aktiveringskontekstgenereringen mislykkedes for "Avast.VC110.CRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1"1".
Afhængig samling Avast.VC110.CRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" blev ikke fundet.
Anvend sxstrace.exe til detaljeret diagnose.
 
Error: (08/10/2016 12:08:42 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Licensaktivering (slui.exe) mislykkedes med følgende fejlkode: 
hr=0x8007232B
Kommandolinjeargumenter: 
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
 
 
System errors:
=============
Error: (08/10/2016 01:54:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Tjenesten Synkroniseringsvært_2801a blev afbrudt uventet. Dette er sket 1 gange. Følgende korrigerende handling foretages om 10000 millisekunder: Genstart tjenesten.
 
Error: (08/10/2016 01:45:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Tjenesten Google Update Tjeneste (gupdate) kunne ikke starte pga. følgende fejl: 
%%2 = Den angivne fil blev ikke fundet.
 
Error: (08/10/2016 01:43:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Tjenesten MBAMScheduler kunne ikke starte pga. følgende fejl: 
%%2 = Den angivne fil blev ikke fundet.
 
Error: (08/10/2016 01:43:09 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Tjenesten MBAMService afhænger af tjenesten MBAMProtector, der ikke kunne starte pga. følgende fejl: 
%%2 = Den angivne fil blev ikke fundet.
 
Error: (08/10/2016 01:43:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Tjenesten MBAMProtector kunne ikke starte pga. følgende fejl: 
%%2 = Den angivne fil blev ikke fundet.
 
Error: (08/10/2016 01:42:23 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-R35L269)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
 
Error: (08/10/2016 01:42:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Tjenesten Synkroniseringsvært_26925 blev afbrudt uventet. Dette er sket 1 gange. Følgende korrigerende handling foretages om 10000 millisekunder: Genstart tjenesten.
 
Error: (08/10/2016 01:41:27 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-R35L269)
Description: "C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca2AppIkke tilgængeligIkke tilgængelig
 
Error: (08/10/2016 12:24:20 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-R35L269)
Description: "C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca2AppIkke tilgængeligIkke tilgængelig
 
Error: (08/10/2016 12:08:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Tjenesten MBAMScheduler kunne ikke starte pga. følgende fejl: 
%%2 = Den angivne fil blev ikke fundet.
 
 
CodeIntegrity:
===================================
  Date: 2016-08-10 11:13:39.140
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-08-10 11:13:34.884
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Windows signing level requirements.
 
  Date: 2016-08-10 11:12:10.180
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-08-10 11:11:42.939
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-08-10 11:11:41.551
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-08-10 11:11:37.233
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\NisSrv.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-08-10 11:11:35.719
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-08-05 18:39:43.489
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-08-01 17:01:21.800
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-08-01 16:59:29.939
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Windows signing level requirements.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-2500K CPU @ 3.30GHz
Percentage of memory in use: 47%
Total physical RAM: 8109.11 MB
Available physical RAM: 4278.96 MB
Total Virtual: 9389.11 MB
Available Virtual: 6374.55 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:111.3 GB) (Free:8.21 GB) NTFS ==>[system with boot components (obtained from drive)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: BDB75CE3)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 02ABDA31)
Partition 1: (Active) - (Size=111.3 GB) - (Type=07 NTFS)
 
==================== End of Addition.txt ============================


#3 nasdaq

nasdaq

  • Malware Response Team
  • 40,544 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:02 PM

Posted 11 August 2016 - 08:33 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.

Please copy the entire contents of the code box below to a new file.


Start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [No File]
CHR Extension: (Avast SafePrice) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-08-10]
CHR Extension: (Avast Online Security) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-08-10]
CHR Extension: (Betalinger i Chrome Webshop) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-18]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
S2 MBAMScheduler; "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe" [X]
S2 MBAMService; "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe" [X]
S1 epp; \??\C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys [X]
S3 MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [X]
C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.

Nothing suspicious was found on your logs.
Please let me know what problem you have running this computer.

p.s.
What caused you to run the GMER tool?

#4 HansJen

HansJen
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:02 PM

Posted 12 August 2016 - 08:04 AM

Fix result of Farbar Recovery Scan Tool (x64) Version: 11-08-2016 01
Ran by Glenn (2016-08-12 14:59:42) Run:1
Running from C:\Users\Glenn\Desktop
Loaded Profiles: Glenn (Available Profiles: Glenn)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
Start
 
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
 
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [No File]
CHR Extension: (Avast SafePrice) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-08-10]
CHR Extension: (Avast Online Security) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-08-10]
CHR Extension: (Betalinger i Chrome Webshop) - C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-18]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
S2 MBAMScheduler; "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe" [X]
S2 MBAMService; "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe" [X]
S1 epp; \??\C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys [X]
S3 MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [X]
C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
 
En
*****************
 
Restore point was successfully created.
Processes closed successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully
C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => moved successfully
C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki => moved successfully
C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda => moved successfully
gupdate => service removed successfully
gupdatem => service removed successfully
MBAMScheduler => service removed successfully
MBAMService => service removed successfully
epp => service removed successfully
MBAMProtector => service removed successfully
"C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda" => not found.
En => Error: No automatic fix found for this entry.
 
=========== EmptyTemp: ==========
 
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14742424 B
Java, Flash, Steam htmlcache => 492 B
Windows/system/drivers => 42985510 B
Edge => 231436 B
Chrome => 355871579 B
Firefox => 15875049 B
Opera => 0 B
 
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 74024 B
NetworkService => 27782 B
Glenn => 2485155426 B
 
RecycleBin => 28227213 B
EmptyTemp: => 2.7 GB temporary data Removed.
 
================================
 
 
The system needed a reboot.
 
==== End of Fixlog 15:00:09 ====


#5 HansJen

HansJen
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:02 PM

Posted 12 August 2016 - 08:12 AM

I ran the gmer-tool, because I found several folders with strange permissions created by "an unknown account" and without my user being able to read or delete them.

 

I've read that the gmer-tool is top-of-the-line detection-software for rootkits - do you agree ?

 

My computer is acting strange - i'm having an app-folder (MS EDGE) appearing in the Windows/SystemApps-folder the 10th of august, eventough i've disabled all apps on the 17th of july. The folder has been created by the "System"-account, and with no permissions to my current windows-user. 

 

And my boot-up-bios-logo when i start the PC is no longer maximized - but in a frame of sort. 

 

Lots of different strange things happening - and i've been struggeling with malware and rootkits before,so im pretty paranoid :-)



#6 nasdaq

nasdaq

  • Malware Response Team
  • 40,544 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:02 PM

Posted 12 August 2016 - 08:21 AM

i'm having an app-folder (MS EDGE) appearing in the Windows/SystemApps-folder the 10th of august,

I suspect that Microsoft updates that were issued on the 10th is the cause.
===

GMER is gool but this new programs which GMER has participated in it's creation is now the tool must helpers use.

We will check your BIOS and Master boot record.

Read carefully and follow these steps.
TDSS
  • Download TDSSKiller and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application.
  • Then click on Start Scan.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.

    TDSSKillerSuspicious-1.png
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • Important: Do NOT change the default action on your own unless instructed by a malware Helper! Doing so may render your computer unbootable.
    TDSSKillerMal-1.png
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.

    TDSSKillerCompleted.png
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
===

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it.
aswMBRScan.gif
  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please paste the contents of that log in your next reply.
  • There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.
    ===

    Wait for further instructions.


#7 HansJen

HansJen
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:02 PM

Posted 12 August 2016 - 08:51 AM

15:49:02.0658 0x1d60  TDSS rootkit removing tool 3.1.0.11 Aug  5 2016 12:13:31
15:49:05.0342 0x1d60  ============================================================
15:49:05.0342 0x1d60  Current date / time: 2016/08/12 15:49:05.0342
15:49:05.0342 0x1d60  SystemInfo:
15:49:05.0343 0x1d60  
15:49:05.0343 0x1d60  OS Version: 10.0.10586 ServicePack: 0.0
15:49:05.0343 0x1d60  Product type: Workstation
15:49:05.0343 0x1d60  ComputerName: DESKTOP-R35L269
15:49:05.0343 0x1d60  UserName: Glenn
15:49:05.0343 0x1d60  Windows directory: C:\windows
15:49:05.0343 0x1d60  System windows directory: C:\windows
15:49:05.0343 0x1d60  Running under WOW64
15:49:05.0343 0x1d60  Processor architecture: Intel x64
15:49:05.0343 0x1d60  Number of processors: 4
15:49:05.0343 0x1d60  Page size: 0x1000
15:49:05.0343 0x1d60  Boot type: Normal boot
15:49:05.0343 0x1d60  CodeIntegrityOptions = 0x00000001
15:49:05.0343 0x1d60  ============================================================
15:49:05.0366 0x1d60  KLMD registered as C:\windows\system32\drivers\20050729.sys
15:49:05.0366 0x1d60  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 10586.545, osProperties = 0x19
15:49:05.0450 0x1d60  System UUID: {07A52117-BA9E-ADAB-1D10-916798A31BF6}
15:49:05.0753 0x1d60  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
15:49:05.0753 0x1d60  Drive \Device\Harddisk1\DR1 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:49:05.0763 0x1d60  ============================================================
15:49:05.0763 0x1d60  \Device\Harddisk0\DR0:
15:49:05.0764 0x1d60  MBR partitions:
15:49:05.0764 0x1d60  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A3856E0
15:49:05.0764 0x1d60  \Device\Harddisk1\DR1:
15:49:05.0764 0x1d60  MBR partitions:
15:49:05.0764 0x1d60  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xDE9A5C0
15:49:05.0764 0x1d60  ============================================================
15:49:05.0765 0x1d60  C: <-> \Device\Harddisk1\DR1\Partition1
15:49:05.0765 0x1d60  ============================================================
15:49:05.0765 0x1d60  Initialize success
15:49:05.0765 0x1d60  ============================================================
15:49:06.0975 0x0d40  ============================================================
15:49:06.0975 0x0d40  Scan started
15:49:06.0975 0x0d40  Mode: Manual; 
15:49:06.0975 0x0d40  ============================================================
15:49:06.0975 0x0d40  KSN ping started
15:49:07.0067 0x0d40  KSN ping finished: true
15:49:07.0214 0x0d40  ================ Scan system memory ========================
15:49:07.0214 0x0d40  System memory - ok
15:49:07.0214 0x0d40  ================ Scan services =============================
15:49:07.0221 0x0d40  [ 970C70F6B2953ED43822D3797855D84C, CB22723678B514277BC6E6DDDD206F3B2377CD889C9D473A47A7056BE597BC6B ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
15:49:07.0224 0x0d40  !SASCORE - ok
15:49:07.0282 0x0d40  [ DF1C3D7E6C7929AD83BE22852B5B08CB, 9ECF6211CCD30273A23247E87C31B3A2ACDA623133CEF6E9B3243463C0609C5F ] 1394ohci        C:\windows\System32\drivers\1394ohci.sys
15:49:07.0285 0x0d40  1394ohci - ok
15:49:07.0290 0x0d40  [ 2C5B3035B86770ADD2FE9BFBAF5B35A4, 19E16F9144FE3E33B5FF248CF0040AB079ACAE22290B1369CC72AE4CB5FE3A90 ] 3ware           C:\windows\system32\drivers\3ware.sys
15:49:07.0292 0x0d40  3ware - ok
15:49:07.0306 0x0d40  [ 469441BAE3FF8A16826FC62C51EF5E18, E1204677B87F47222D05F670F8DF3DB65EA0881782A8DCFBE0103478ED71187C ] ACPI            C:\windows\system32\drivers\ACPI.sys
15:49:07.0314 0x0d40  ACPI - ok
15:49:07.0320 0x0d40  [ 7EADED8087C392876521F7EBCE846EF4, 99BF1BD948F97C1ECBC049C7F949B71D73D0B41FB505B2F75B208E655F7DC8A3 ] acpiex          C:\windows\system32\Drivers\acpiex.sys
15:49:07.0322 0x0d40  acpiex - ok
15:49:07.0325 0x0d40  [ C498887123327CDFD73A05E7A2780920, B45392C46254FCB8D79B6C3A82C8D894063199E6167D8E5F7EA7D60C75CD16EA ] acpipagr        C:\windows\System32\drivers\acpipagr.sys
15:49:07.0326 0x0d40  acpipagr - ok
15:49:07.0329 0x0d40  [ C8DBE6EFFCF014CAA010B9BDDAC833EC, 96FC29340C62A6B0910DCCBF8945F32089FC300F45B451A540B8854D53734298 ] AcpiPmi         C:\windows\System32\drivers\acpipmi.sys
15:49:07.0329 0x0d40  AcpiPmi - ok
15:49:07.0332 0x0d40  [ 17039DBEB3B7B9ADCDB4B4533AA9771F, A4D38B144639A20B8B31E4F35FB776A028DB502FAC849FC73EECEB3CCD91830B ] acpitime        C:\windows\System32\drivers\acpitime.sys
15:49:07.0333 0x0d40  acpitime - ok
15:49:07.0359 0x0d40  [ F7D0CD345D2DA42E7042ABCD73662403, 03183F90A994D69066F15C3DFC1D7D7514AEAF46A5AAC059B1FB327F8C30A35C ] ADP80XX         C:\windows\system32\drivers\ADP80XX.SYS
15:49:07.0374 0x0d40  ADP80XX - ok
15:49:07.0391 0x0d40  [ 70148EFA9A562E7185B75BBE7D376BF7, 8200E3349A1AFA1040B3D956A17BAF3CDC784A1A3CA396125E7872B36C03D84A ] AFD             C:\windows\system32\drivers\afd.sys
15:49:07.0399 0x0d40  AFD - ok
15:49:07.0403 0x0d40  [ 870F1A2C936F92B5D053DF7EC75B352F, D617524FD5886D6D3BC2EFBBB5EA310E906454CD7CA7257C3D7BDEA8C4F2DA71 ] agp440          C:\windows\system32\drivers\agp440.sys
15:49:07.0405 0x0d40  agp440 - ok
15:49:07.0413 0x0d40  [ 3DF7751D5DC6525E7DC6617FBB45054F, 8E6D4C809DB3B66E7558C4829E01F5C227EE614AC82F33FD99DCC629770D1BE3 ] ahcache         C:\windows\system32\DRIVERS\ahcache.sys
15:49:07.0416 0x0d40  ahcache - ok
15:49:07.0419 0x0d40  [ 19707ECBCEA71080A85DB2336580DB39, A09AE69C9DE2F3765417F212453B6927C317A94801AE68FBA6A8E8A7CB16CED7 ] AJRouter        C:\windows\System32\AJRouter.dll
15:49:07.0420 0x0d40  AJRouter - ok
15:49:07.0424 0x0d40  [ AA91A5E156D0364ABA7B01658C2EB014, F61055D581745023939C741CAB3370074D1416BB5A0BE0BD47642D5A75669E12 ] ALG             C:\windows\System32\alg.exe
15:49:07.0426 0x0d40  ALG - ok
15:49:07.0431 0x0d40  [ B70F0F2F54B4A4DB6E9C830454752F5A, C882DEAC30812E5FA4479A8CB688603C6AF269EF08236688F4C5E7EBED1D4572 ] AmdK8           C:\windows\System32\drivers\amdk8.sys
15:49:07.0433 0x0d40  AmdK8 - ok
15:49:07.0439 0x0d40  [ 35E890482C9728DD5C552B85DA8A5AB2, 1E0EB7D902AB4C38E23CAFC0BEA250E7F6E180E8814385B4F29730BFC373A191 ] AmdPPM          C:\windows\System32\drivers\amdppm.sys
15:49:07.0441 0x0d40  AmdPPM - ok
15:49:07.0447 0x0d40  [ 5B30BCFE6E02E45D3EE268FF001BC5E0, 9901DB728885CE36911F79998629B2DD42D56AF9633B5277834F498CC59B0346 ] amdsata         C:\windows\system32\drivers\amdsata.sys
15:49:07.0448 0x0d40  amdsata - ok
15:49:07.0456 0x0d40  [ F20B30F35A5C7888441B4DCA001ECF8E, 695A5BC1F18B65992EB06A202AD3CBFA17228E76DDFD1AE6977FD315724F75C2 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
15:49:07.0460 0x0d40  amdsbs - ok
15:49:07.0464 0x0d40  [ AFE838D7576C581D6483529621AB10CC, 14476A04CC64E7A0F1BBFDACCBD7A87F384BE1877C27656DBB973AF3975D4AE2 ] amdxata         C:\windows\system32\drivers\amdxata.sys
15:49:07.0465 0x0d40  amdxata - ok
15:49:07.0470 0x0d40  [ EDDB0D726DBECDFC1DBCC6DB464E5A13, 98D128D1E6FA270ED9ADBFE50078F68A794C00D4CBB86E28EC6161FFAD0CA8FF ] AppID           C:\windows\system32\drivers\appid.sys
15:49:07.0473 0x0d40  AppID - ok
15:49:07.0476 0x0d40  [ 7A55F9237F726D1667073A47B0D1B90F, 7C2D9AA84F1D4CC6C1FAF6848DF9479A534E01029C4387E8C0647745F1E74603 ] AppIDSvc        C:\windows\System32\appidsvc.dll
15:49:07.0478 0x0d40  AppIDSvc - ok
15:49:07.0483 0x0d40  [ 56E219DF92BE16F62308F884739BE022, FE189EE8A52BC5A0E6B76C632021F84F60307A182F2A67C0C0C7CAA72DEFC723 ] Appinfo         C:\windows\System32\appinfo.dll
15:49:07.0485 0x0d40  Appinfo - ok
15:49:07.0492 0x0d40  [ B4AE5296C9597F45E1CFE0B1DBE7739E, C9DCA8EF32720D68119CC23DF4BCD783FFB5F999D14EDCC7937D17C590323B4B ] AppMgmt         C:\windows\System32\appmgmts.dll
15:49:07.0495 0x0d40  AppMgmt - ok
15:49:07.0507 0x0d40  [ 682F73D86501D75B131A1D59539A475D, 1C3E1728F3995BBFC2BCE90EFD118B0B864103B16F587A1374D8B3A00403B9E3 ] AppReadiness    C:\windows\system32\AppReadiness.dll
15:49:07.0515 0x0d40  AppReadiness - ok
15:49:07.0560 0x0d40  [ 736BC0930DF22D535C9667D78F8DEB71, 067337517BD7234FEA999C242C90F74328C0003DDFD24483915F5C1DC5B9C919 ] AppXSvc         C:\windows\system32\appxdeploymentserver.dll
15:49:07.0589 0x0d40  AppXSvc - ok
15:49:07.0598 0x0d40  [ E3FE8F610B1CC12BC3B2E6BC43DC97E2, 0E18542CF2095A9ADA1759AB8F986E78B0A50A3C6B2AD4EACD80A23D832A2C6D ] arcsas          C:\windows\system32\drivers\arcsas.sys
15:49:07.0600 0x0d40  arcsas - ok
15:49:07.0604 0x0d40  [ 04A0E70CEE0C3F4112776829DC969BC6, 5EE8D262E3287882EE3056F2DB7BF7CBC93C7E7F55843708B68AD3E1F482FAC3 ] aswHwid         C:\windows\system32\drivers\aswHwid.sys
15:49:07.0605 0x0d40  aswHwid - ok
15:49:07.0608 0x0d40  [ E414A84AE9A0A26F99539B8BE426D00D, A8B06DEAC7F8B950311F586A55CAAC8E7FB98E82D22509B2150F7F76C88FA8D4 ] aswKbd          C:\windows\system32\drivers\aswKbd.sys
15:49:07.0609 0x0d40  aswKbd - ok
15:49:07.0614 0x0d40  [ B34E337EE30613D18C0CA503D78366D9, CDBE7AEEC1D8A2FC71D71A8E990CE793633F72C3E4036953D3D6C10BC69AA433 ] aswMonFlt       C:\windows\system32\drivers\aswMonFlt.sys
15:49:07.0616 0x0d40  aswMonFlt - ok
15:49:07.0628 0x0d40  [ 2A8C95F652CB989BA1601EBCD58B73DC, 748898F50768E4306858FEBCBE6E009E4EE9F094B187BF36FA80623D8FB9E3B7 ] aswNetSec       C:\windows\system32\drivers\aswNetSec.sys
15:49:07.0634 0x0d40  aswNetSec - ok
15:49:07.0639 0x0d40  [ 8742624A2534A234C5D31426353CB8DA, E572D837CD7E55C0CDE9634F295D587C63092B942C238CD1616EC2FE31F3AE7C ] aswRdr          C:\windows\system32\drivers\aswRdr2.sys
15:49:07.0641 0x0d40  aswRdr - ok
15:49:07.0645 0x0d40  [ 238EDE2CF3B0A7C46D01BA70F3F0CDD3, EAE3934C6CEF551E222A8A6296F93598CE273ED74C6650E8CAA5A1404B42C8E9 ] aswRvrt         C:\windows\system32\drivers\aswRvrt.sys
15:49:07.0646 0x0d40  aswRvrt - ok
15:49:07.0667 0x0d40  [ 9910394511D868549DFCD8DFB2AD3CD8, 2415DDA829C6CB1514D0AF89DCC0A0DB5847B39273836FDCC2458253078FF67E ] aswSnx          C:\windows\system32\drivers\aswSnx.sys
15:49:07.0680 0x0d40  aswSnx - ok
15:49:07.0693 0x0d40  [ 87857FA8577801E0978968757E67F080, D6FF2F4EB76E2DCF24CD8CD01B9EE26D9DEE4F945DCBD297659B286C49A1FC05 ] aswSP           C:\windows\system32\drivers\aswSP.sys
15:49:07.0701 0x0d40  aswSP - ok
15:49:07.0707 0x0d40  [ AA8E9AEF6E31CCDE6A98F980EF807707, B82626666CFB6113BE65EF03C4821A622E03D4E73497C97AA3D4AA0A8028E668 ] aswStm          C:\windows\system32\drivers\aswStm.sys
15:49:07.0709 0x0d40  aswStm - ok
15:49:07.0719 0x0d40  [ 5D5DFBAD0B89E9C34B6659F07B6EB09F, 68F78FD82E9EECC411D8B73FADD6A80DEDE0C5EAFB430B95A9AC23EDE5E9D617 ] aswVmm          C:\windows\system32\drivers\aswVmm.sys
15:49:07.0724 0x0d40  aswVmm - ok
15:49:07.0727 0x0d40  [ 5E00748A1AD246CAECBBB7553BED36CC, DAD2C93F0894E7BB5E5D8D767D8286A909086B49172C504A01097C3A180998C6 ] AsyncMac        C:\windows\System32\drivers\asyncmac.sys
15:49:07.0728 0x0d40  AsyncMac - ok
15:49:07.0732 0x0d40  [ 492B99D2E3D5D7BFD5F0AE1BE7BD37DD, A3F6BFC4FDC1933FBF3145019B118689A414108B04F43E2563946B2673C89324 ] atapi           C:\windows\system32\drivers\atapi.sys
15:49:07.0733 0x0d40  atapi - ok
15:49:07.0741 0x0d40  [ 42BF7FA295F453618104B5A50BEE105B, AB44BA2AD2FC5AF3B6BE4489C444C03FD1AB02C22109BF5F39BE459294C4CB18 ] AudioEndpointBuilder C:\windows\System32\AudioEndpointBuilder.dll
15:49:07.0745 0x0d40  AudioEndpointBuilder - ok
15:49:07.0768 0x0d40  [ 5C6F3312EACE1409DC2C4C2AD5D2719D, 415955E31458AE56182436EEF5A993BAEF08379C12C182CC073F3D0A3A0DE006 ] Audiosrv        C:\windows\System32\Audiosrv.dll
15:49:07.0783 0x0d40  Audiosrv - ok
15:49:07.0792 0x0d40  [ 510D51E3F49E0AC49E864DD19C3D5E62, 1A020966C6A50A5D131AB56F63A72DCB2532B2AA95A75A8AB4BFCA10750B6C51 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:49:07.0795 0x0d40  avast! Antivirus - ok
15:49:07.0801 0x0d40  [ 23F9ACDD13D79B30408293311010E6CF, 8EEC678B4213888B4B178B9108E639590A54B9793AF7977132E83EF913A81AB8 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
15:49:07.0805 0x0d40  avast! Firewall - ok
15:49:07.0811 0x0d40  [ 7062CE507814D5306DCA5D6A15B7B6B6, 9D60506003A66C2E516B1FCB70CC5B26FB3A9948B95D97C828DD0328E76F2C91 ] AxInstSV        C:\windows\System32\AxInstSV.dll
15:49:07.0813 0x0d40  AxInstSV - ok
15:49:07.0828 0x0d40  [ 6447BA6FA709514B6C803D159B4C7D1E, 549DDCEAD93DF333F6BBD56A9258A867E4DA219741C00D48C68F8F230A87B11A ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
15:49:07.0835 0x0d40  b06bdrv - ok
15:49:07.0839 0x0d40  [ B4AC08B1D04D0CE085435E5CD0E663C5, 61E641388E5692B2EB351E44BA1DB86B5305DD105EE56865D59072CA9407C8AC ] BasicDisplay    C:\windows\System32\drivers\BasicDisplay.sys
15:49:07.0841 0x0d40  BasicDisplay - ok
15:49:07.0844 0x0d40  [ 25B5BB369DEE2BAE4BF459C978FF9035, DBC2157B2AC0BC92B4011CE5E01F2DCDAAE71E37D9D21102503C6455FAAC4DCA ] BasicRender     C:\windows\System32\drivers\BasicRender.sys
15:49:07.0845 0x0d40  BasicRender - ok
15:49:07.0849 0x0d40  [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn           C:\windows\System32\drivers\bcmfn.sys
15:49:07.0850 0x0d40  bcmfn - ok
15:49:07.0852 0x0d40  [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2          C:\windows\System32\drivers\bcmfn2.sys
15:49:07.0853 0x0d40  bcmfn2 - ok
15:49:07.0862 0x0d40  [ F374C27099807E99A156953F8416D34A, D267B8CD837290F9FC6B4FFD2DB8F54867D808FB155698FC7713BCAB3AE475B5 ] BDESVC          C:\windows\System32\bdesvc.dll
15:49:07.0868 0x0d40  BDESVC - ok
15:49:07.0870 0x0d40  [ 5A88834AEE15D97695FAE0837B73B3E4, 03035FB51DE218B8EDB15129A0376DDED0C7E7B6DA58DD95B12E4E5C8D852ED8 ] Beep            C:\windows\system32\drivers\Beep.sys
15:49:07.0871 0x0d40  Beep - ok
15:49:07.0889 0x0d40  [ 37F5E2385CB4D10AB42186974B9C241A, D38FA2B8CE19AC32056060F04B04D031F1621C07528DEDCCD5A8C01AB0A35995 ] BFE             C:\windows\System32\bfe.dll
15:49:07.0900 0x0d40  BFE - ok
15:49:07.0932 0x0d40  [ 64582C924C48175D52AED0D0E64AB413, 75DC6BC01D26A4BABEDB8013F0C106780F0991CA63075798C7C24B66022F58E3 ] BITS            C:\windows\System32\qmgr.dll
15:49:07.0950 0x0d40  BITS - ok
15:49:07.0955 0x0d40  [ DA2C6F7ACE392193C424FEA975C5BFFB, 668F91F3E5F8EA170C10823D6959E0EDB32434C51FAA68BEA782EDDF5618690E ] bowser          C:\windows\system32\DRIVERS\bowser.sys
15:49:07.0957 0x0d40  bowser - ok
15:49:07.0971 0x0d40  [ 453207816AB95A0376887BE01FAE30E1, 102CA59ED06C6A7D69AA3094DDC550400C50CDF5B7F066522BF0031B8EC7B708 ] BrokerInfrastructure C:\windows\System32\bisrv.dll
15:49:07.0980 0x0d40  BrokerInfrastructure - ok
15:49:07.0985 0x0d40  [ A617BE5E429A035A1CA8217C1B16F0BB, 197EE6C6EB22FF8A626540886F5A2163CC4CB177504C5423856F54BF01EB0FF1 ] Browser         C:\windows\System32\browser.dll
15:49:07.0988 0x0d40  Browser - ok
15:49:07.0991 0x0d40  [ CAEC7BC11AF69A181AF7932E636E09E4, 503C69045F1E025CBEE2405043BB71CC58478985ECAF6587F73FCB57860F5709 ] BthAvrcpTg      C:\windows\System32\drivers\BthAvrcpTg.sys
15:49:07.0992 0x0d40  BthAvrcpTg - ok
15:49:07.0996 0x0d40  [ 5F2B4B32E986C058525D3BA2A475A16C, CEC5BB0B025DD9525CFBBEDF6EB6F63336534798495A4F95763CE112DF915088 ] BthHFEnum       C:\windows\System32\drivers\bthhfenum.sys
15:49:07.0997 0x0d40  BthHFEnum - ok
15:49:08.0000 0x0d40  [ 5406289E8AE2CB52FC408154E0A64BA7, 0A3795F2E6E2B51198452CF69A99159D8E11650E95F41DF0B575CB72F9C6C6B5 ] bthhfhid        C:\windows\System32\drivers\BthHFHid.sys
15:49:08.0001 0x0d40  bthhfhid - ok
15:49:08.0011 0x0d40  [ BAB101E7826BE287F79C4BA721621989, E6DD25C89267FE87253B8226292F2894F5E702075D3B23B09339D3B28744C060 ] BthHFSrv        C:\windows\System32\BthHFSrv.dll
15:49:08.0016 0x0d40  BthHFSrv - ok
15:49:08.0020 0x0d40  [ A76F20CCCA31895A1DA78A875E50F946, ECD4B3670DA5984AA24F4354457B4E45983938A89FF6DB03B556A633B4B37E3C ] BTHMODEM        C:\windows\System32\drivers\bthmodem.sys
15:49:08.0022 0x0d40  BTHMODEM - ok
15:49:08.0027 0x0d40  [ CEEC73833A4C6B31E2F376A3FD4DA73E, F09FC6EAB8D9769DBAD0931CC7C7F5DFE1562D3EE09CE0EF086AA73D4B62E076 ] bthserv         C:\windows\system32\bthserv.dll
15:49:08.0029 0x0d40  bthserv - ok
15:49:08.0033 0x0d40  [ BF89BDBA5D3A0B4256D3F6FC8D31880D, 940F3BF55B88261C9E9A951A092331559FC5B24FE3BA0F1E1AB3450D2CA364C1 ] buttonconverter C:\windows\System32\drivers\buttonconverter.sys
15:49:08.0034 0x0d40  buttonconverter - ok
15:49:08.0039 0x0d40  [ C24C27FDF93B85A4EFCF25F830253AA2, 35C87518BB59663B57C2361A13AD4E57E37392598F1EB9F07F86CA5A6321AF5A ] CapImg          C:\windows\System32\drivers\capimg.sys
15:49:08.0041 0x0d40  CapImg - ok
15:49:08.0045 0x0d40  [ 7F9C7226D743B232907ED2537B8A574F, 2211AFC30E8F8FA03020DB48EE14914CD31E50BB6A63FF20AC7C6FA481E72C18 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
15:49:08.0047 0x0d40  cdfs - ok
15:49:08.0054 0x0d40  [ 88E3BA684A7B1247762E1D401076D4C2, 88375BD1970848A71B9CF8C7C73ECA2E4A65E57D80D0C36F41547D381441A552 ] CDPSvc          C:\windows\System32\CDPSvc.dll
15:49:08.0059 0x0d40  CDPSvc - ok
15:49:08.0066 0x0d40  [ 82D97776BF982AA143BDC7DFB5054EA8, 954F56728371E6B3514586DCEAF15C4727BAED6CAFBF788654C4E03BD702942C ] cdrom           C:\windows\System32\drivers\cdrom.sys
15:49:08.0069 0x0d40  cdrom - ok
15:49:08.0075 0x0d40  [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] CertPropSvc     C:\windows\System32\certprop.dll
15:49:08.0078 0x0d40  CertPropSvc - ok
15:49:08.0082 0x0d40  [ 0505C1D991D0F9D47F3353BB98597C7E, 3B801CCF4980256327A4A9FBD98007DA1E3ACE9C94E5A4C23AB21303B46E8B5A ] circlass        C:\windows\System32\drivers\circlass.sys
15:49:08.0083 0x0d40  circlass - ok
15:49:08.0093 0x0d40  [ 8B4B39C507ABA09AAFE8E3932D1B392C, 734700155A658BC08FC96E8F99A01DE7F7251D7DDEFA79D258B2EEB370BA7AA8 ] CLFS            C:\windows\system32\drivers\CLFS.sys
15:49:08.0098 0x0d40  CLFS - ok
15:49:08.0113 0x0d40  [ E72BB94A4010EBA7074DFEB25D67BDC3, 437F13A1F709B4CC047C9918625C2B5F673218A5141DBC99CD14B008FAB2AA88 ] ClipSVC         C:\windows\System32\ClipSVC.dll
15:49:08.0122 0x0d40  ClipSVC - ok
15:49:08.0128 0x0d40  [ 95832B049E2833B9F5189823CDF946C7, 72773A42A89220B4A6AC72D1633B16F11191A44D876A44FAB5CEFB717CE3223D ] CmBatt          C:\windows\System32\drivers\CmBatt.sys
15:49:08.0129 0x0d40  CmBatt - ok
15:49:08.0143 0x0d40  [ 570BA8E8E1E3064A7D92F862B7F59B60, 849CE59A0390EB34977471391EF7500506B0B019E5E31CBF264A4926A84C4BEE ] CNG             C:\windows\system32\Drivers\cng.sys
15:49:08.0151 0x0d40  CNG - ok
15:49:08.0155 0x0d40  [ 58D640BC2294C71BDE0953F12D4B432F, 0B3B7659FCB97791A2A1F895C8E6F9078F855C94C13EB47464492588C4B02B85 ] cnghwassist     C:\windows\system32\DRIVERS\cnghwassist.sys
15:49:08.0156 0x0d40  cnghwassist - ok
15:49:08.0175 0x0d40  [ 14F9883588398A1BDE49C75098C75DE6, D9D82DE89FAFE60BC902683BC44C7555533A030150FD5E5A35A24542FACC5CAD ] CompositeBus    C:\windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys
15:49:08.0176 0x0d40  CompositeBus - ok
15:49:08.0179 0x0d40  COMSysApp - ok
15:49:08.0182 0x0d40  [ 02B8E49148DE5E0A2F6FDF28CE94A6AC, EEA405823F441CA604BEAA44EB71A1D20BC80E124FF7B27380D0201AAF2E0849 ] condrv          C:\windows\system32\drivers\condrv.sys
15:49:08.0183 0x0d40  condrv - ok
15:49:08.0200 0x0d40  [ 86BE19C6A177AEB93302EA5C4FBE2D11, 5404AB84D270549B1A46574EBDC857525F71B117BE3BA0098FA0A696E56D5C39 ] CoreMessagingRegistrar C:\windows\system32\coremessaging.dll
15:49:08.0211 0x0d40  CoreMessagingRegistrar - ok
15:49:08.0241 0x0d40  [ B18D590BC5220FDB4A747BC16D78ABC7, D46F8B43BAC22E55DE9AFC19CF371B1C4E8D3707163598B2F9884BB31D730C09 ] cphs            C:\windows\SysWow64\IntelCpHeciSvc.exe
15:49:08.0247 0x0d40  cphs - ok
15:49:08.0252 0x0d40  [ 9E79A2208A9ED205A7383CBC92C28053, 2E6599DF30DF19BD7BE6FEF1B21FED7F349A3F2306CC5CFDB767ABA7283E8A55 ] CryptSvc        C:\windows\system32\cryptsvc.dll
15:49:08.0254 0x0d40  CryptSvc - ok
15:49:08.0270 0x0d40  [ 5D578EAAFB6FD4F59523E5878B541296, 73573124787B79179880AFAF9CB8427237A1605A9F13D7783228DE24D18963C0 ] CSC             C:\windows\system32\drivers\csc.sys
15:49:08.0278 0x0d40  CSC - ok
15:49:08.0297 0x0d40  [ 5F07CCEE514894C9474AEDCA50B6C2C7, 38F54897C91A2E7D80D00852CEB173B26E822D7C68F35D31228245F811E028A8 ] CscService      C:\windows\System32\cscsvc.dll
15:49:08.0308 0x0d40  CscService - ok
15:49:08.0313 0x0d40  [ 2619DC483579DB9FE804044C1ADFFD1A, 23A5420288735A980917091532BE7BB36EB51660AA4555C615AF736357EB02EC ] dam             C:\windows\system32\drivers\dam.sys
15:49:08.0314 0x0d40  dam - ok
15:49:08.0336 0x0d40  [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] DcomLaunch      C:\windows\system32\rpcss.dll
15:49:08.0351 0x0d40  DcomLaunch - ok
15:49:08.0359 0x0d40  [ 620921E77351FB651632322AD2C195C4, 5A98971995D7A2B5AE6BEA69344FCC6687B582FEF74BDA206D32FB2E6CEB0478 ] DcpSvc          C:\windows\system32\dcpsvc.dll
15:49:08.0363 0x0d40  DcpSvc - ok
15:49:08.0376 0x0d40  [ 6129EA4294C5C69E4665801E95B16AB2, CE419186CF0F57434426FF925A09F13BE87639679CBB5F2074B0E1A243349D27 ] defragsvc       C:\windows\System32\defragsvc.dll
15:49:08.0385 0x0d40  defragsvc - ok
15:49:08.0398 0x0d40  [ D12B9B6A6C4885824876422AACC89954, 5853ED5CAF84B7AAFF3EDC5C71FE23EB121DB681D81267D77118424BA9AB6F88 ] DeviceAssociationService C:\windows\system32\das.dll
15:49:08.0405 0x0d40  DeviceAssociationService - ok
15:49:08.0411 0x0d40  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] DeviceInstall   C:\windows\system32\umpnpmgr.dll
15:49:08.0416 0x0d40  DeviceInstall - ok
15:49:08.0421 0x0d40  [ 5BF8BD9B19D665452494C8D56DF4B28D, E5FC649207EF42C04B6737D442FECD3383E82F8998B140319FF400773F1D0978 ] DevQueryBroker  C:\windows\system32\DevQueryBroker.dll
15:49:08.0423 0x0d40  DevQueryBroker - ok
15:49:08.0429 0x0d40  [ 935823F79CBEDB91637B63D37E3A5A36, BE9A46F1CA631B9252C71758901D55456DC3C143053003D9FA7D67811A1E5026 ] Dfsc            C:\windows\system32\Drivers\dfsc.sys
15:49:08.0431 0x0d40  Dfsc - ok
15:49:08.0441 0x0d40  [ D461D2BECEFA661291EB1B748A8D2CCB, 7275859FCDE58DE6C0C683AFDAD910EB4602336CC724EEE42495A8839213469D ] Dhcp            C:\windows\system32\dhcpcore.dll
15:49:08.0447 0x0d40  Dhcp - ok
15:49:08.0452 0x0d40  [ 9F5AC03F5A0000DD96FA29CD68A6605B, 6964E077635E65DA902CA6C69E704A9DCD5856D22BA75E1CF823E63E62266AF7 ] diagnosticshub.standardcollector.service C:\windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
15:49:08.0453 0x0d40  diagnosticshub.standardcollector.service - ok
15:49:08.0491 0x0d40  [ 5F1CAF0E823BADD5576555CC876F1067, 53AED2137D1BACA5AA24C265E2591F12D91C4652AF35D52843F045CAE4CDDB2E ] DiagTrack       C:\windows\system32\diagtrack.dll
15:49:08.0514 0x0d40  DiagTrack - ok
15:49:08.0546 0x0d40  [ 02C35E36934E63C38E6BF6F5BE50E957, CEE6BE141E6CEDC2EE96695AC431CF762511DBFF1EC32C3E00A11D2B5C4B7C1E ] Disc Soft Lite Bus Service C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
15:49:08.0566 0x0d40  Disc Soft Lite Bus Service - ok
15:49:08.0572 0x0d40  [ 4904B152E4942BF700F2D73228B4D477, 0E5646DCA05A24C71F057C9F9F64AE992D338DA72DF3126175C2FA178854C30F ] disk            C:\windows\system32\drivers\disk.sys
15:49:08.0574 0x0d40  disk - ok
15:49:08.0582 0x0d40  [ E32F15E26724F3BB6423FB29FF3E2A8F, E8CF9829D2A74F4423424F8D169E726B88F50734F0B1ADC735691C37C9F32DAA ] DmEnrollmentSvc C:\windows\system32\Windows.Internal.Management.dll
15:49:08.0590 0x0d40  DmEnrollmentSvc - ok
15:49:08.0594 0x0d40  [ 0197AE4B9790A4E73751CACFAA480126, 86BBB398F1A93754B2C329271F13A88FD2F285F30225C38F068F565CCA14EB9F ] dmvsc           C:\windows\System32\drivers\dmvsc.sys
15:49:08.0595 0x0d40  dmvsc - ok
15:49:08.0599 0x0d40  [ 5EF8EC71A7A91F3DF7798BEFE6786B0E, A3A56B43C72926881C66B7A17C9EAA35C2D9603C8D3849438838536BCD3F4633 ] dmwappushservice C:\windows\system32\dmwappushsvc.dll
15:49:08.0601 0x0d40  dmwappushservice - ok
15:49:08.0609 0x0d40  [ 5839A317C25F70979433E0905DFABB1B, 7F1CD50C77A33A10259D8A208A355BE7ECAFEA69F810AD908EF8878A792741AF ] Dnscache        C:\windows\System32\dnsrslvr.dll
15:49:08.0614 0x0d40  Dnscache - ok
15:49:08.0624 0x0d40  [ 1B15297A3A2CAB6BD586676154F389D8, 623D5F5FC8622B7D9AEEEB1787E6846C1570F0EEF94341239440B616D09D672A ] dot3svc         C:\windows\System32\dot3svc.dll
15:49:08.0629 0x0d40  dot3svc - ok
15:49:08.0635 0x0d40  [ 316C2D8B8E3C0727969F1C3790EF7193, 631F8578FDB26578C8436E4B9C4DF21E1F58FCFE6DA66E5769AAC3739005D465 ] DPS             C:\windows\system32\dps.dll
15:49:08.0638 0x0d40  DPS - ok
15:49:08.0641 0x0d40  [ 25FA06D3B49D6ADF8E874FFCDCD76B50, 9AF09B96ED79D94EA36581ABE6CC73313A72891779774B15860D018BEA2BBA0F ] drmkaud         C:\windows\System32\drivers\drmkaud.sys
15:49:08.0642 0x0d40  drmkaud - ok
15:49:08.0650 0x0d40  [ 16EE6701115BECF8C657D9D6E123F6A1, 16E115B5245C3C988F8B58B90D30F183021C7C7792D3D1C74BEC606E49672B2A ] DsmSvc          C:\windows\System32\DeviceSetupManager.dll
15:49:08.0654 0x0d40  DsmSvc - ok
15:49:08.0660 0x0d40  [ FBC8C56814642A7CA88ACBCA8DD1121F, 108690704A359991C3D6577477E232F5F2F46B36DF6B4B0738A893EF05D7D4EB ] DsSvc           C:\windows\System32\DsSvc.dll
15:49:08.0663 0x0d40  DsSvc - ok
15:49:08.0666 0x0d40  [ 679FF716052109392D870F6A6C4A3535, BEF1784448CCA4AF1D67ED68BD0C7CFE01A7719E98CACF92C2DCBFAA916DC57E ] dtlitescsibus   C:\windows\System32\drivers\dtlitescsibus.sys
15:49:08.0667 0x0d40  dtlitescsibus - ok
15:49:08.0670 0x0d40  [ E23FDD696839A4790682CA66C48D3F2F, F5F0721BDA751968224E52E75D0C309A3E084C430CD98E85A55AF622D16B9A44 ] dtliteusbbus    C:\windows\System32\drivers\dtliteusbbus.sys
15:49:08.0672 0x0d40  dtliteusbbus - ok
15:49:08.0712 0x0d40  [ E5EF652F8C880EC48A4E827698416338, 49F7BD33A1EA1BE996698C0476C92E7C7F7FEC2940ED6018614E3AB18E8FACAC ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
15:49:08.0739 0x0d40  DXGKrnl - ok
15:49:08.0746 0x0d40  [ 0CDF6B61D7F7FFCD195AF0113B9B2C16, 828D3FA31742B54075EAED2E67BBB5166D2EF4F84B791077E96DC0BD5557F11E ] Eaphost         C:\windows\System32\eapsvc.dll
15:49:08.0749 0x0d40  Eaphost - ok
15:49:08.0825 0x0d40  [ 491275B864B704B54EC08168344E0F38, B4849400C3F819CF7809A2001EA2ECB527022483F7DFE31C3930F951EAFE50CE ] ebdrv           C:\windows\system32\drivers\evbda.sys
15:49:08.0871 0x0d40  ebdrv - ok
15:49:08.0879 0x0d40  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] EFS             C:\windows\System32\lsass.exe
15:49:08.0882 0x0d40  EFS - ok
15:49:08.0886 0x0d40  [ CEF108FCE06892CFA5F1B49527D4BF49, FA337584024B6E6EE4AF519F57FFA4C0FCA19EDC148FF309336C4CCA8F9C9CE8 ] EhStorClass     C:\windows\system32\drivers\EhStorClass.sys
15:49:08.0887 0x0d40  EhStorClass - ok
15:49:08.0893 0x0d40  [ 5B1EAAE3001A7A320C106FC3859F4111, 700BA2C7D4DFAFFEB78D3804B310A4EE5B4295C84600442665693FF661673951 ] EhStorTcgDrv    C:\windows\system32\drivers\EhStorTcgDrv.sys
15:49:08.0895 0x0d40  EhStorTcgDrv - ok
15:49:08.0900 0x0d40  [ E34DEFC09F2843C2C24C2248F1ABE6D8, 1FD67EB5820A1D2F4402DE9D95DE288DB69D421A8473074FF23491D7CA8B5ACE ] embeddedmode    C:\windows\System32\embeddedmodesvc.dll
15:49:08.0903 0x0d40  embeddedmode - ok
15:49:08.0912 0x0d40  [ 3182FCAF6AAF478791DE5B430C912D4D, 6044BB8A895F0E5BEAA5390457730AE9DB26A5611DC1CD55CE91F2331D2C3086 ] EntAppSvc       C:\windows\system32\EnterpriseAppMgmtSvc.dll
15:49:08.0918 0x0d40  EntAppSvc - ok
15:49:08.0921 0x0d40  [ 7A2705148A4BB3CA255F81624338B461, 68AC8F8D2DD8AA4E8F2224A0054DE2AF67EA199217E87CD3C7299B021048F14F ] ErrDev          C:\windows\System32\drivers\errdev.sys
15:49:08.0921 0x0d40  ErrDev - ok
15:49:08.0936 0x0d40  [ 17BE4A35829B37C742084DC02D48E5F0, 7FDA62B56DF585C3F2C6FFB10AC7C0D8F70FA921C4DEA47B2789745CFE2618CE ] EventSystem     C:\windows\system32\es.dll
15:49:08.0943 0x0d40  EventSystem - ok
15:49:08.0955 0x0d40  [ DFE8A33FBCF6F38182631A4D6097B92D, F9D06780830E74FD5309E6DC5C3EEDB9334A8AE284F381FA91EF2729297F8632 ] exfat           C:\windows\system32\drivers\exfat.sys
15:49:08.0959 0x0d40  exfat - ok
15:49:08.0968 0x0d40  [ C330883C06E2D4CE4F6982F048265D37, 26044DE176056B7F5BF2A50A659243CFD7F25CFEE035B3A3C3165B3699872926 ] fastfat         C:\windows\system32\drivers\fastfat.sys
15:49:08.0973 0x0d40  fastfat - ok
15:49:08.0990 0x0d40  [ 952F10D2116B91BA433842D07879AE7A, 9E1EC0C719877EF198AA4DDBE896E9DDEAD360AAC1FC6DF305E7C5C73C7A761D ] Fax             C:\windows\system32\fxssvc.exe
15:49:09.0000 0x0d40  Fax - ok
15:49:09.0004 0x0d40  [ 9D299AE86D671488926126A84DF77BFD, C076EEDD0524B7D88BC56C97089E0A836CC1AD725E1A544CC4F8DDBB6670C366 ] fdc             C:\windows\System32\drivers\fdc.sys
15:49:09.0005 0x0d40  fdc - ok
15:49:09.0008 0x0d40  [ 47D09B8C312658ACE433E46DDF51C3A5, E76948DA0F51C7DC6D69B7E36D63CE6E98FDE619FA30E91637F75B5084107D22 ] fdPHost         C:\windows\system32\fdPHost.dll
15:49:09.0010 0x0d40  fdPHost - ok
15:49:09.0013 0x0d40  [ 177AC945B20C81400A1525ED7B49A425, FD215A2E718EA38A95D985F53AB3DD44B50C2549AA67F44BA98C4709E492051F ] FDResPub        C:\windows\system32\fdrespub.dll
15:49:09.0015 0x0d40  FDResPub - ok
15:49:09.0019 0x0d40  [ 3E78BEC276DA5A062E4D55F3291B3463, 62983457F506C70D1F89F527AB61C1C0F4D1B002631256A2708F9AF092A8C95E ] fhsvc           C:\windows\system32\fhsvc.dll
15:49:09.0023 0x0d40  fhsvc - ok
15:49:09.0027 0x0d40  [ 8F2523C9D8F1448FF2156452AF60FA00, 1D39CA54F5F1E62385D9EC041F9445BDDCB63740859B9418AE904FDF3D8388ED ] FileCrypt       C:\windows\system32\drivers\filecrypt.sys
15:49:09.0029 0x0d40  FileCrypt - ok
15:49:09.0033 0x0d40  [ 92ECCFA58C8195B8EA33ED942469D4E6, 8DB12E8CF80ECA22182F9A1F4CA922336A430297F1F596F204ECF4D9D19F30D9 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
15:49:09.0035 0x0d40  FileInfo - ok
15:49:09.0038 0x0d40  [ 87C51FDD50C17882BA93E28BBABB9847, 8987D80FB77D1D3F9E89B491B1287B027DA26FFC4E4BA7B01E07D4D4FC69E236 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
15:49:09.0039 0x0d40  Filetrace - ok
15:49:09.0042 0x0d40  [ E99261DD76D1C9E05AF575939CAE5AC5, A789724FD2E22AFB2F921836F5C19A21D17F4BBD604771E2908C2651BD31989C ] flpydisk        C:\windows\System32\drivers\flpydisk.sys
15:49:09.0043 0x0d40  flpydisk - ok
15:49:09.0053 0x0d40  [ 25D7A58625E1453E40D36825DE74E4F1, 74119803D35E3C3CC349B44C6CD9EDF6B797F88584B847F0BF9EED542719B86B ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
15:49:09.0059 0x0d40  FltMgr - ok
15:49:09.0093 0x0d40  [ F1BA85CF2AEE08860C8D5BF82C342F44, 109D5E1AA11ECCFB598BBD09E98991F1E4915B2282B72C727F3E2C73678E2593 ] FontCache       C:\windows\system32\FntCache.dll
15:49:09.0118 0x0d40  FontCache - ok
15:49:09.0123 0x0d40  [ B4175E8BE60B099686FF55CA7D692316, 3158FC5B4D1A2F1FC1346754392AE24AE58999B9061B1CE78A65E785BFFADD52 ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
15:49:09.0124 0x0d40  FsDepends - ok
15:49:09.0128 0x0d40  [ CC71372CEB811A72F1DC99089C5CBF53, BB9DDE74D60E534A6F8A51B63DDBB441245F06A00A0AFD37DBBE86255690946D ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
15:49:09.0129 0x0d40  Fs_Rec - ok
15:49:09.0144 0x0d40  [ 50DFE05C698E9B0A63D95E3D669A105C, 3A7D5AE4A01B90C2ECF22AD2783A84C2329EAB9BACFA5237A7DCC3DC5995A864 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
15:49:09.0153 0x0d40  fvevol - ok
15:49:09.0157 0x0d40  [ B9981A4CB9F728B3312A3885BFAA7204, 12FB2EB2E5D2A912769823DD9C1B33DB358CD0B7FBFC788529EF83DD584334F8 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
15:49:09.0158 0x0d40  gagp30kx - ok
15:49:09.0162 0x0d40  [ 77555B11B264991DDC26872FFCF1AB97, D5F230EEF74EB869F771F8A4AB19C1E6C845BB0EF4A1234882EBDA4FDC431E44 ] gencounter      C:\windows\System32\drivers\vmgencounter.sys
15:49:09.0163 0x0d40  gencounter - ok
15:49:09.0166 0x0d40  [ F3AC9652D88BF87BA6596CBEA28CE10F, 115F3C0A5B9903B17ADEA80E1825FE927B7361F5BDDF80CE3685EF2D327EDF4F ] genericusbfn    C:\windows\System32\drivers\genericusbfn.sys
15:49:09.0166 0x0d40  genericusbfn - ok
15:49:09.0191 0x0d40  [ F78BC07DCED5EDDD6D477E923620F8EA, ABE28155100A38A5E1B58FFC8099EF416145278B440A67B8DAFD7715FE412624 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
15:49:09.0207 0x0d40  GfExperienceService - ok
15:49:09.0299 0x0d40  [ 615FFB5DC18BB8FB1B030BA0711C650F, 88D10C1BD65B9F6696A1ED46AAC5AD34CD01630E23333A475473515985B36721 ] GlassWire       C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
15:49:09.0358 0x0d40  GlassWire - ok
15:49:09.0385 0x0d40  [ F802FBABF0C4DF1BAA733187B2E476F5, E2533284CEBBB872196B013DD1FBBCA794DB1CAAA37D64849BD9264ECDD2CEE6 ] GPIOClx0101     C:\windows\system32\Drivers\msgpioclx.sys
15:49:09.0388 0x0d40  GPIOClx0101 - ok
15:49:09.0418 0x0d40  [ B89C353AFC8F56D961D07FF1FE7B4BCD, C4491A1E33E0151AF3D7589769D4DCFABC68518A22393A7584FB573B47643B2F ] gpsvc           C:\windows\System32\gpsvc.dll
15:49:09.0438 0x0d40  gpsvc - ok
15:49:09.0442 0x0d40  [ D011B0ADB15F4815310CE1BF4780B33E, 3860630917F83A89FE7A6407CC544505FA4BD754619CF273DD630ABFBAAE42EE ] GpuEnergyDrv    C:\windows\system32\drivers\gpuenergydrv.sys
15:49:09.0442 0x0d40  GpuEnergyDrv - ok
15:49:09.0446 0x0d40  [ 77621A3DF170D246DC744CD0767BFAB3, 08BA4984D8B19337A34E4A2BBCE4AD681FDE09D02A6C421A16F5A717AA12CD84 ] gwdrv           C:\windows\system32\DRIVERS\gwdrv.sys
15:49:09.0447 0x0d40  gwdrv - ok
15:49:09.0458 0x0d40  [ 0F93EBE9071A6BB1548BF0F816EEA24B, 79A99544C00F59996980D299BFACA0463D86158BFA51C8045CE4FF4951779A44 ] HdAudAddService C:\windows\system32\DRIVERS\HdAudio.sys
15:49:09.0464 0x0d40  HdAudAddService - ok
15:49:09.0469 0x0d40  [ 84BC034B6BB763733C1949B7B9BAF976, 18C2C0F15BAFA46197F0BB629C4F585D893C2A78324CA198F88A04527D524F23 ] HDAudBus        C:\windows\System32\drivers\HDAudBus.sys
15:49:09.0470 0x0d40  HDAudBus - ok
15:49:09.0473 0x0d40  [ 6B8CB114B8E64C0636EB49F7B914D1FC, 1AD7A43CC5CD99DCEF60C61242B6843D4AD925CE93BA5D75CD8395C7125EF5A7 ] HidBatt         C:\windows\System32\drivers\HidBatt.sys
15:49:09.0474 0x0d40  HidBatt - ok
15:49:09.0479 0x0d40  [ D1AD197CCDAAC0CB4819DA1D6EB17BAE, C370F974D0A1F7B60F47EAFF57B6CCABE82913187F8BFEE169B8237AE91247B1 ] HidBth          C:\windows\System32\drivers\hidbth.sys
15:49:09.0481 0x0d40  HidBth - ok
15:49:09.0485 0x0d40  [ 64909DECCFCC6FB5D9A5BAFDCCB31FEE, E19C91FD8D5102A8C4F6C6FF70CA058BB272FEC1B6E9CBA3A473C49948E6AC7E ] hidi2c          C:\windows\System32\drivers\hidi2c.sys
15:49:09.0486 0x0d40  hidi2c - ok
15:49:09.0489 0x0d40  [ F510F7B7BF61DEAAC04E65C3B65E8D59, 11566086B06FB08B6A179E3068E022DA381C762DC8962D1E1D63DC646DD4D301 ] hidinterrupt    C:\windows\System32\drivers\hidinterrupt.sys
15:49:09.0491 0x0d40  hidinterrupt - ok
15:49:09.0494 0x0d40  [ 90F3ED42D423C942BA5EA54E2FFE7AC7, BF7DE0C8141CD20A6235657BA897A019ABEFF6A01AA3FB202C73C33433CDEAF8 ] HidIr           C:\windows\System32\drivers\hidir.sys
15:49:09.0495 0x0d40  HidIr - ok
15:49:09.0498 0x0d40  [ 46DE2EF6382DD9613CB506760648F262, 419555220794380134A64E1956B83B2FD1D1B6E403C5FC729A9107E14A12E968 ] hidserv         C:\windows\system32\hidserv.dll
15:49:09.0500 0x0d40  hidserv - ok
15:49:09.0504 0x0d40  [ 128DEDDD61915DBA4D451D91D21F0513, 961A0DDA02B0879989300C15E4FF9022882A4CD895D65335C263AC0DD1918314 ] HidUsb          C:\windows\System32\drivers\hidusb.sys
15:49:09.0505 0x0d40  HidUsb - ok
15:49:09.0513 0x0d40  [ EDE31817FC0A574E7CC3AF7E544C8951, DC8D07A15525E1CA52C5F6DFAEB2585807D45FC3400EAC9E27DC27E46B5B480F ] HomeGroupListener C:\windows\system32\ListSvc.dll
15:49:09.0519 0x0d40  HomeGroupListener - ok
15:49:09.0531 0x0d40  [ E2145534FB853921788F52701BED0CAB, DF71F842772FAC21DD8994C97F578A78AC43D06C5F26F752FB69B47DFE3BB112 ] HomeGroupProvider C:\windows\system32\provsvc.dll
15:49:09.0540 0x0d40  HomeGroupProvider - ok
15:49:09.0544 0x0d40  [ FF442DCDCE1F6E9FAA9C8AD0CD1D199B, A239414E97B310C9545995B0E723B5E792B08D71F651450EB006AD4D1765E4F7 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
15:49:09.0546 0x0d40  HpSAMD - ok
15:49:09.0574 0x0d40  [ 63C3F74DC398A1C1A77E39DFB9C312CA, 283A13899838B4313BFBC406E832042696C549640A1AB11E23C0B9E499289836 ] HTTP            C:\windows\system32\drivers\HTTP.sys
15:49:09.0589 0x0d40  HTTP - ok
15:49:09.0593 0x0d40  [ CBA5E88A0F0475B7F49653BB72150BEF, 0F03560D9C30E069D117A555AEE729C81E6BCAE443FA25172D0E9E6903695C67 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
15:49:09.0594 0x0d40  hwpolicy - ok
15:49:09.0597 0x0d40  [ D668FAB4B0397B426EE3D41683B9A1C0, 66F3E3B2ABC3C9B25A0DADBF09818547ED301230374AC5302B4794629A95DDF8 ] hyperkbd        C:\windows\System32\drivers\hyperkbd.sys
15:49:09.0598 0x0d40  hyperkbd - ok
15:49:09.0603 0x0d40  [ 53FDD9E69189E546DE4740F8C4D8AB2F, 45ED5B229ED5FD0CEE8BF52EFF88FD8B1889BF348ED7187926F290B3AD48A76D ] i8042prt        C:\windows\System32\drivers\i8042prt.sys
15:49:09.0605 0x0d40  i8042prt - ok
15:49:09.0609 0x0d40  [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c           C:\windows\System32\drivers\iai2c.sys
15:49:09.0611 0x0d40  iai2c - ok
15:49:09.0619 0x0d40  [ 59A20F5AD9F4AE54098154359519408E, E27B7389C9D123CDDA4EC9CBDB06C4AA5000012391F940EE1492419B593608FE ] iaLPSS2i_I2C    C:\windows\System32\drivers\iaLPSS2i_I2C.sys
15:49:09.0621 0x0d40  iaLPSS2i_I2C - ok
15:49:09.0625 0x0d40  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\windows\System32\drivers\iaLPSSi_GPIO.sys
15:49:09.0626 0x0d40  iaLPSSi_GPIO - ok
15:49:09.0631 0x0d40  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\windows\System32\drivers\iaLPSSi_I2C.sys
15:49:09.0633 0x0d40  iaLPSSi_I2C - ok
15:49:09.0651 0x0d40  [ 6B0029A0253098CCE28EACCFDB9E7208, E33AD69644E1683A971DA1169B704FBCFD9F715E9550816058E420BB5DE4D946 ] iaStorAV        C:\windows\system32\drivers\iaStorAV.sys
15:49:09.0661 0x0d40  iaStorAV - ok
15:49:09.0673 0x0d40  [ 9652E1E35A92D8C75710C17A63B15796, 72F8C4A49B874226DEE9B7C9704F0E0A98DAA2DF4EAE2F2258E8324ACBD242E4 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
15:49:09.0679 0x0d40  iaStorV - ok
15:49:09.0690 0x0d40  [ FFADF691F7BF727AF5C863454A372723, FCF5A5595E8C9C937BE9F1C3AB5D9BD0EFE82DE1298D12085E0CCD84A186D2F2 ] ibbus           C:\windows\System32\drivers\ibbus.sys
15:49:09.0696 0x0d40  ibbus - ok
15:49:09.0703 0x0d40  [ 57C88C15CEC97318F580D7F4327AAA46, FD3AD83576804DA819F48E3E198FE470420E730F6118AD0E719A91E67C80D3FE ] icssvc          C:\windows\System32\tetheringservice.dll
15:49:09.0708 0x0d40  icssvc - ok
15:49:09.0711 0x0d40  IEEtwCollectorService - ok
15:49:09.0816 0x0d40  [ 79AE3CC82CA1563A4B392207997ACE7C, A1E4A1DA95CA2FA197EF5975657822F0F813F6C33DA38E1FA5A840194034D071 ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
15:49:09.0889 0x0d40  igfx - ok
15:49:09.0915 0x0d40  [ 5E5BEC886CC2503C4F18AF2153B169AF, BCC241AEFFFEF0B56909F9141F7EA424D945532B8610E6A3BEF590FEB00FA26D ] IKEEXT          C:\windows\System32\ikeext.dll
15:49:09.0929 0x0d40  IKEEXT - ok
15:49:09.0936 0x0d40  [ ECDB27420D3A98424666904525A8562A, BDA98C3C95F2AD79945EF8213D5C65064052C09C82DD36F0D6724E1D21DCC30A ] intelide        C:\windows\system32\drivers\intelide.sys
15:49:09.0937 0x0d40  intelide - ok
15:49:09.0941 0x0d40  [ 8FF1978643EFD219C5BA49690191D701, 6FD78A8490107C80090D7125644B8C910855374BE1373D1D6B199307C79680BA ] intelpep        C:\windows\system32\drivers\intelpep.sys
15:49:09.0942 0x0d40  intelpep - ok
15:49:09.0949 0x0d40  [ B61B60F36E1C8022FA8166ABF0F66B07, 23161F1DA51D44D936329E62DF4C2DAEE3DDD4B3D62CC501A888C0E149788968 ] intelppm        C:\windows\System32\drivers\intelppm.sys
15:49:09.0951 0x0d40  intelppm - ok
15:49:09.0955 0x0d40  [ CA0D42029AFFC4514D295E1EF823D02D, F2A05CB2B2E8C843FD02DC37E86F23CF928A4B2F9044424A60DE4E82B87DF5C3 ] IoQos           C:\windows\system32\drivers\ioqos.sys
15:49:09.0956 0x0d40  IoQos - ok
15:49:09.0960 0x0d40  [ 6E3F9D95235DFC9417384080A216F310, 6F13D72661038A91CFABB360621F4B169D78955C3EAD64956A7C825ABAEC5121 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
15:49:09.0962 0x0d40  IpFilterDriver - ok
15:49:09.0984 0x0d40  [ 5AAB28A6AC2AAC9F66D4EAB6695D0474, BDAB1D04989788EA945C7FE0DE962F0FEC672D9703C271F8469822A91D7462B9 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
15:49:09.0999 0x0d40  iphlpsvc - ok
15:49:10.0004 0x0d40  [ 4F527ECB5EAB47D8EAF34A469666C469, 8FFBEEF42515B6A7758BE579ED69E3911856CBF7710D9785011332C5E3DFE495 ] IPMIDRV         C:\windows\System32\drivers\IPMIDrv.sys
15:49:10.0005 0x0d40  IPMIDRV - ok
15:49:10.0012 0x0d40  [ 9E5E8F2A1996F23B7E9687846AA81B01, 29E59384A4F92B3B4F2974942C91A12380113C13D3800900B5F44E2355D05455 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
15:49:10.0014 0x0d40  IPNAT - ok
15:49:10.0017 0x0d40  [ C317EB660138BC9CBFE37CCDE56351AE, F3AF6C573419D7F65C96A4841D4F056CA281CD5AFACDC7A5F586A390DC6E615B ] IRENUM          C:\windows\system32\drivers\irenum.sys
15:49:10.0018 0x0d40  IRENUM - ok
15:49:10.0021 0x0d40  [ 531994A6D9399D9B74BE12B5BB58A81E, 6D5CF540C777F4828E1D4C5FE58EE41E6C2F5F399C554DC85F19D1E52229B094 ] isapnp          C:\windows\system32\drivers\isapnp.sys
15:49:10.0022 0x0d40  isapnp - ok
15:49:10.0030 0x0d40  [ 68D5354A4A9692EEC24664C60F47D4A2, 92124E98B6E286B6127DC6D0BFACC9C6D293D58EAE2B47B45532714CE6A6D0CD ] iScsiPrt        C:\windows\System32\drivers\msiscsi.sys
15:49:10.0035 0x0d40  iScsiPrt - ok
15:49:10.0039 0x0d40  [ 701D7DB13B0815E7076EF4CB4CE981F8, 02585661656C0069AC318B82DE83DAC660451A0B970FDBCA0F7A8B4CBF7D93A9 ] kbdclass        C:\windows\System32\drivers\kbdclass.sys
15:49:10.0040 0x0d40  kbdclass - ok
15:49:10.0043 0x0d40  [ 884EBBDDBF5968003B40185BD96FF0E6, E3934D0FF0BEDDF5526AF529F7D15BA8BE479383894975B1AF1A1818C394A6E3 ] kbdhid          C:\windows\System32\drivers\kbdhid.sys
15:49:10.0044 0x0d40  kbdhid - ok
15:49:10.0048 0x0d40  [ 6B3A0C7902811E6372643447E41F7048, 30667B56A306CFD5D15BC46F8E7D9E167612E71B6C8F554406E706A6330F5B94 ] kdnic           C:\windows\System32\drivers\kdnic.sys
15:49:10.0048 0x0d40  kdnic - ok
15:49:10.0052 0x0d40  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] KeyIso          C:\windows\system32\lsass.exe
15:49:10.0055 0x0d40  KeyIso - ok
15:49:10.0061 0x0d40  [ 982C795DE20CED7AEDD2E7899B5D9BC1, 9F4E7536DB253CD83AA2AB89E9F3311714CD70F13AFD16F9B4D4CD86A70FC164 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
15:49:10.0063 0x0d40  KSecDD - ok
15:49:10.0069 0x0d40  [ C2138FE291C8235C3A26CD04EE629163, 33A840893B104BFCF111C99F8C23B283EF26D8E1BB523BDA0259F6B56B60874D ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
15:49:10.0071 0x0d40  KSecPkg - ok
15:49:10.0074 0x0d40  [ E9BB0023D730701BB5D9839B44F5E6B5, 19D4BAC09424D331922472CFD2D0E32BEFA9188A6AF194C8D1F93FD77CE36691 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
15:49:10.0075 0x0d40  ksthunk - ok
15:49:10.0087 0x0d40  [ 71DE1AD9B23661EEC4F2A6EAA5A7D33D, 3219AEF3D6AE5933AE669FD2ED9ED95A8780612E39F31DB3DB9ED6B6244C5F7B ] KtmRm           C:\windows\system32\msdtckrm.dll
15:49:10.0095 0x0d40  KtmRm - ok
15:49:10.0104 0x0d40  [ 8BBB2B4429AF340481520C20C17FC5B6, 9E32815349195FC4B1BE213600FD407F2EAEEC8368289EB3E6B769125A739C08 ] LanmanServer    C:\windows\system32\srvsvc.dll
15:49:10.0111 0x0d40  LanmanServer - ok
15:49:10.0119 0x0d40  [ 1F5D48B1DA1B812BD2411CA44D75DD32, D1BDB8142CB13E8C6DD6F42E07C9D19BBBF6410D5122A04C01B34B95B442DD95 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
15:49:10.0127 0x0d40  LanmanWorkstation - ok
15:49:10.0132 0x0d40  [ 02C54C5C7EBE371EC0C59795ED22213F, 712AFE0EDF40436124F3FD55ED9B5A3A33A8761A58F4D482BB65229741B1C270 ] lfsvc           C:\windows\System32\lfsvc.dll
15:49:10.0134 0x0d40  lfsvc - ok
15:49:10.0137 0x0d40  [ 01BF128CC327A2E53898F732AF52B3DB, D62ACDA69D9942F9CEF400874DBB6EAF9811D9657CBFEF89174F88D76BB8D8EA ] LicenseManager  C:\windows\system32\LicenseManagerSvc.dll
15:49:10.0140 0x0d40  LicenseManager - ok
15:49:10.0143 0x0d40  [ EC34EED89C34B27C292166B725AC7A7B, 58F1BA0CB7743314AC012A82F8CE4072CBDD05D9570C52BC18DC551882F5B1BA ] lltdio          C:\windows\system32\drivers\lltdio.sys
15:49:10.0145 0x0d40  lltdio - ok
15:49:10.0153 0x0d40  [ 2C23283A0815B048C06D8C0ED76AAD95, 4335546939C1A98CFE9A4403CC82D79CC713439E4DFD1F4760FDD867305151E0 ] lltdsvc         C:\windows\System32\lltdsvc.dll
15:49:10.0159 0x0d40  lltdsvc - ok
15:49:10.0163 0x0d40  [ CB6365E995F4DB856866500EDD8F61C1, 717ED387F245CAC68217B0F393D7B8AB3805721AB2C4D2D43430FE6E740F0856 ] lmhosts         C:\windows\System32\lmhsvc.dll
15:49:10.0165 0x0d40  lmhosts - ok
15:49:10.0171 0x0d40  [ 961F28D879D345BFA50AF51285C90F2E, F9931A436651F695B746BC0C07E833D9C9F64126746DF976E691E6CAE26DAC9B ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
15:49:10.0173 0x0d40  LSI_SAS - ok
15:49:10.0179 0x0d40  [ 6BFB8D1B3407518BE06B6F81F92FA0F5, DE0818DCC0D8D1D30A29AB167C65461A78100ABE2368637CEB9D0ED2B4E88D8E ] LSI_SAS2i       C:\windows\system32\drivers\lsi_sas2i.sys
15:49:10.0181 0x0d40  LSI_SAS2i - ok
15:49:10.0185 0x0d40  [ BE0E47988D78F731DEC2C0CB03E765CB, CA0015E87A3962611DBF714253FA618A6568346BAE640884432C1D44DE4C8684 ] LSI_SAS3i       C:\windows\system32\drivers\lsi_sas3i.sys
15:49:10.0187 0x0d40  LSI_SAS3i - ok
15:49:10.0191 0x0d40  [ F99BF02BE9219986817BF094981EEB18, 4303C772366065885C5D937B2E9AC0BF80C84BFB2737716055AD57BF6AADD673 ] LSI_SSS         C:\windows\system32\drivers\lsi_sss.sys
15:49:10.0192 0x0d40  LSI_SSS - ok
15:49:10.0212 0x0d40  [ FFAA37FBBDD161E8C200C83B40F7872E, 0637B3119FC220CB8E23EE6694A9F1F25CF8D61008B14F6E30FDC17DCF9E077E ] LSM             C:\windows\System32\lsm.dll
15:49:10.0224 0x0d40  LSM - ok
15:49:10.0231 0x0d40  [ 2FCF837196082864F66CFD9CAB256275, 8BE01C3BCBC1E6E5D1FD7F49E936482E61ACB805F397AB81B8D39C2F0F1083BD ] luafv           C:\windows\system32\drivers\luafv.sys
15:49:10.0233 0x0d40  luafv - ok
15:49:10.0237 0x0d40  [ 98E3D2BB421424B0457F8B7C46113110, 479187820318E9193765ADAA1D2E83E5752D9A2B22941DF3660C413DA029E618 ] MapsBroker      C:\windows\System32\moshost.dll
15:49:10.0240 0x0d40  MapsBroker - ok
15:49:10.0247 0x0d40  [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy   C:\windows\system32\drivers\MBAMSwissArmy.sys
15:49:10.0250 0x0d40  MBAMSwissArmy - ok
15:49:10.0253 0x0d40  [ 2ED29B635F35E31A1C0D3DDB7DD2AD03, F70CC20B98C2DBCD13B0D509D92B3BC3828D1B88F3ACD60C860E163064844181 ] megasas         C:\windows\system32\drivers\megasas.sys
15:49:10.0255 0x0d40  megasas - ok
15:49:10.0270 0x0d40  [ 22E3CB85870879CBAE13C5095A8B12E3, 5FA5A8EFBA117089CFDBE09743A16BC3A7CC2042C96ABA1F57901747493106BF ] megasr          C:\windows\system32\drivers\megasr.sys
15:49:10.0279 0x0d40  megasr - ok
15:49:10.0285 0x0d40  [ 6D1671CB2E5402F01D2F13ECF764CAA1, 4778630F602FE8F9B9112DC5BB7A179632000D10D80C28E93711404108FCC6E0 ] MEIx64          C:\windows\System32\drivers\TeeDriverW8x64.sys
15:49:10.0289 0x0d40  MEIx64 - ok
15:49:10.0294 0x0d40  [ F2C23E25636BCA3543E6AD7858E861B7, 0CAB0A037471B4858CE9477E49BF50A5E3E6685E05F8A4BD2D9238551D5073A6 ] MessagingService C:\windows\System32\MessagingService.dll
15:49:10.0297 0x0d40  MessagingService - ok
15:49:10.0322 0x0d40  [ D41920FBFFF2BBCBBC69A5B383AD022E, E66218A8303422EA10C19BA12343740B9A1A70B11B39E185E805B4F74CD2B75E ] mlx4_bus        C:\windows\System32\drivers\mlx4_bus.sys
15:49:10.0332 0x0d40  mlx4_bus - ok
15:49:10.0336 0x0d40  [ 64BD0C87064EA20C2D3DC4199F9C239C, ED69706277A58ED2C5F2B1B4E9A4A9C7C20173D46EB57FB31D8B63340BA23193 ] MMCSS           C:\windows\system32\drivers\mmcss.sys
15:49:10.0338 0x0d40  MMCSS - ok
15:49:10.0341 0x0d40  [ 8D4B46FA84A3A3702EDADD37FAC6EDBA, E3B9E12BD324FE637C365FDC5E490C41889047004D4FC8F7D78339484F2F717B ] Modem           C:\windows\system32\drivers\modem.sys
15:49:10.0342 0x0d40  Modem - ok
15:49:10.0346 0x0d40  [ 78FEC1BDB168370F131BFBFEA0A04E9D, E07B1BC429C2CFBD6162F89A6502C67A4BAD904ADC05D3505D87A0B2BCE1061B ] monitor         C:\windows\System32\drivers\monitor.sys
15:49:10.0347 0x0d40  monitor - ok
15:49:10.0351 0x0d40  [ D1CC0833CFBC4222A95CAA5D0C8C78FF, 54F04374C6D3EFF5C1B794C069870458F10757E5773AEE911957089EAF51EC8D ] mouclass        C:\windows\System32\drivers\mouclass.sys
15:49:10.0352 0x0d40  mouclass - ok
15:49:10.0355 0x0d40  [ C2E05EC6B80BCF5AE362DA873E1BCE64, 4ABE5CA2005A54E92259EDB52205A5C59BDB83026FC0CD7CBB1E3A003C2B535B ] mouhid          C:\windows\System32\drivers\mouhid.sys
15:49:10.0356 0x0d40  mouhid - ok
15:49:10.0361 0x0d40  [ D5B7668A8F6C67C51FA5C6C513396D6C, 35985AD89344A8464BD78B8DA6A772E4E60A2EB93072AC23673A86EFD0B2270A ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
15:49:10.0363 0x0d40  mountmgr - ok
15:49:10.0368 0x0d40  [ C01441BA6F99890B7FF6CD0260B7750A, E02FFB1E8A3E423C9392ADAA9DF5FECF800DFAB3E09B74A029106DC337995539 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:49:10.0371 0x0d40  MozillaMaintenance - ok
15:49:10.0375 0x0d40  [ 5FBCB85D127BE21E3A9DAF11A13C00EA, D00AB99CC813E26B0BD2D39161D4138AB89A06B3E3A28712F2D5BCA60905BEC4 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
15:49:10.0376 0x0d40  mpsdrv - ok
15:49:10.0398 0x0d40  [ 0B28F2ACE5103586D322AD98FAA01309, CE3053DEB6E452C6DCDFD371CF113EB0D740DED6C1C537CB749D1BE5E97FAB09 ] MpsSvc          C:\windows\system32\mpssvc.dll
15:49:10.0412 0x0d40  MpsSvc - ok
15:49:10.0418 0x0d40  [ BF6CA7EA5ECD6CF72D3D76652A9B8280, 8EC031D0D8E75CB583B129CBA518701097697498621307108388FA05FBF604BB ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
15:49:10.0421 0x0d40  MRxDAV - ok
15:49:10.0431 0x0d40  [ 0B3B0C1D86050355676640488FA897D3, DBED9D6F7AAFB11F4C00C1F69DB7A887A3058E5FA66615A1640242439822B60C ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
15:49:10.0438 0x0d40  mrxsmb - ok
15:49:10.0447 0x0d40  [ 1A490555FD330CA2764D89191177C867, 1004AE2F80BEA9A6DBA3E6B5D2DDFA44FBA253F7137D60B000B094699DE1CB12 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
15:49:10.0451 0x0d40  mrxsmb10 - ok
15:49:10.0458 0x0d40  [ 0F47A6C09F0A7FB5513D322A2B9BE4EC, 00A17CB55D232E11F3D24D0B43FE4FA9E55F7EF5E5607B26ED84C13108AAC4FA ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
15:49:10.0461 0x0d40  mrxsmb20 - ok
15:49:10.0466 0x0d40  [ A4411C522D41707D5BCA817A5BB9E30B, EF7505BE475ECAB2B5E66A7419EDAF42A7E7A65BAD3BBE346A8CEE5DD69782CC ] MsBridge        C:\windows\system32\drivers\bridge.sys
15:49:10.0468 0x0d40  MsBridge - ok
15:49:10.0474 0x0d40  [ 807A6636828E5F43C10A01474B8907EE, F275645F4F0D0A796C33C03EA7FA563A0B890AB3A93E5F99C5EA166F91D249B1 ] MSDTC           C:\windows\System32\msdtc.exe
15:49:10.0479 0x0d40  MSDTC - ok
15:49:10.0484 0x0d40  [ D123343DDB02E372B02BF2C4293F835F, 8E02D9F7E5DA717B64538444B3FE1C55AA4B0F26F51DA20947E971D27EA09D12 ] Msfs            C:\windows\system32\drivers\Msfs.sys
15:49:10.0485 0x0d40  Msfs - ok
15:49:10.0488 0x0d40  [ B3358F380BA3F29F56BE0F7734C24D5F, 229D9E72C429AC51BF6E7C8306218620CB1AA50FE39BA6C11ED0F643E7AF90E5 ] msgpiowin32     C:\windows\System32\drivers\msgpiowin32.sys
15:49:10.0490 0x0d40  msgpiowin32 - ok
15:49:10.0492 0x0d40  [ B2044D5D125F249680508EC0B2AAEFAC, 9631FF42DA5A7CEE1F2607AA8972EF0A67616F0EEEBC95F97B1C8F5A577ED5C4 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
15:49:10.0493 0x0d40  mshidkmdf - ok
15:49:10.0496 0x0d40  [ 36ABE7FC80BED4FE44754AE5CFB51432, FB89DF3A50C52B69D4E831A370157D1901810093A0D7D7120A120FC5C6E14BF5 ] mshidumdf       C:\windows\System32\drivers\mshidumdf.sys
15:49:10.0496 0x0d40  mshidumdf - ok
15:49:10.0499 0x0d40  [ 59307FEAFC9E72EEEC56B7FD7D294F4C, 56576635870FC68980977FFA0E7F8E8D69A7981DECF5B52D0B2A82E3BA6685EA ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
15:49:10.0500 0x0d40  msisadrv - ok
15:49:10.0505 0x0d40  [ 236A38F5CB0A23BF0ACCD70ED0BD7F70, 8106B528458E6C8E4437D9064D58F10FF195E67CD308AEBBD5F860AD2D59DCC4 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
15:49:10.0509 0x0d40  MSiSCSI - ok
15:49:10.0512 0x0d40  msiserver - ok
15:49:10.0515 0x0d40  [ E9457EDFEBC774199F907395C6D09CA2, C3655CE83F4AD1258382722E9A99C33FDD3AA40B62CFEB8DFDD141E254E6DCE2 ] MSKSSRV         C:\windows\system32\DRIVERS\MSKSSRV.sys
15:49:10.0515 0x0d40  MSKSSRV - ok
15:49:10.0519 0x0d40  [ C85D79735641D27C5821C35ECDDC2334, C1BAFD98122B04665870171C143EC119181351D10777A83680A63BF305703FF3 ] MsLldp          C:\windows\system32\drivers\mslldp.sys
15:49:10.0521 0x0d40  MsLldp - ok
15:49:10.0523 0x0d40  [ EF75184B64356850D0F04D049C253526, 325476F53372BD70201347F044C8EFEC0DB939E1926454B6DCC0CF7864969650 ] MSPCLOCK        C:\windows\system32\DRIVERS\MSPCLOCK.sys
15:49:10.0524 0x0d40  MSPCLOCK - ok
15:49:10.0527 0x0d40  [ 543933D166C618E7588EA77707EC1683, 84A65D277E28FDD7CE2345188891093AC88B577E4C528AD39AB629E341199688 ] MSPQM           C:\windows\system32\DRIVERS\MSPQM.sys
15:49:10.0528 0x0d40  MSPQM - ok
15:49:10.0537 0x0d40  [ 182711E9DDF70121A20EBB61B2DFB9E8, 70606503F6280EA3175B9AEC8370A8F461575755DA86EF6E9C9D04EAD61481FA ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
15:49:10.0542 0x0d40  MsRPC - ok
15:49:10.0547 0x0d40  [ E887FFDD6734C496407E9219225CB6FF, 0EC9A79224BCE5D0A782E62CC38E3494E8FB65DFC07C66D25C5A1A351121C27D ] mssmbios        C:\windows\System32\drivers\mssmbios.sys
15:49:10.0548 0x0d40  mssmbios - ok
15:49:10.0551 0x0d40  [ 83A2AB75951000D681FABDB80C07AEFC, 3B2F582F097E3F934C4587B27CB05525350F36924B74CA6BCD364878FA8EC273 ] MSTEE           C:\windows\system32\DRIVERS\MSTEE.sys
15:49:10.0551 0x0d40  MSTEE - ok
15:49:10.0554 0x0d40  [ 4FA0483896FC16583851EFB733FCB083, BB59243ABE32FBE92EC1B04D24239BE2DF7C2354A407C2EFF97623F07DCBDA35 ] MTConfig        C:\windows\System32\drivers\MTConfig.sys
15:49:10.0555 0x0d40  MTConfig - ok
15:49:10.0559 0x0d40  [ 60F88248608315E13391C2F1C3B4473F, 99E8B74118A01FC281A1C6B323EFD1A8EA1997B81A013442205066F55327D555 ] Mup             C:\windows\system32\Drivers\mup.sys
15:49:10.0562 0x0d40  Mup - ok
15:49:10.0565 0x0d40  [ 218705233D02776AE4D19CC37D985C1B, 3D92925867B6B8FFAF78E4080139DCB3D45E1E6E1D0AFB6A4FE248B002BD8471 ] mvumis          C:\windows\system32\drivers\mvumis.sys
15:49:10.0567 0x0d40  mvumis - ok
15:49:10.0581 0x0d40  [ 549DFD8240CF20BFBD88AD9D89325DBF, D2553AEA91524E7EBCE902D175BCE3A14C594FB0B5E1310E2D9171AF903CF51C ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
15:49:10.0588 0x0d40  NativeWifiP - ok
15:49:10.0596 0x0d40  [ A340A4B27CC7DEDDF953B7E2C9699747, 4C5AB23BD0C69B17E9BD29CAFEDC100A6EFC78BAB645B007FCAE4318C459D345 ] NcaSvc          C:\windows\System32\ncasvc.dll
15:49:10.0601 0x0d40  NcaSvc - ok
15:49:10.0610 0x0d40  [ 24146738C422814EEB2A98FF1FC5C6E1, 3C70C6768681CE63DED339822EFB36194037B987D92456B9E955061A3A3C63BC ] NcbService      C:\windows\System32\ncbservice.dll
15:49:10.0617 0x0d40  NcbService - ok
15:49:10.0621 0x0d40  [ 476466DC3AB2327E2DBFAEC11798E2EE, 9ACD74720664CF3F239601DF0BE80AC443AF0FBF666CBB8509169364FB22B95D ] NcdAutoSetup    C:\windows\System32\NcdAutoSetup.dll
15:49:10.0625 0x0d40  NcdAutoSetup - ok
15:49:10.0629 0x0d40  [ B57CE307DA101C739885B7CC0678077F, F7F45DB6D306060F0FE0E59F39C3B95F6A9B6173930F22C5C41B2003895D6642 ] ndfltr          C:\windows\System32\drivers\ndfltr.sys
15:49:10.0631 0x0d40  ndfltr - ok
15:49:10.0658 0x0d40  [ E582DA849A58524E645545FB68B6625D, B74E2CF078F6C575EFC4A2E4293D03FE6BA933307D656E0E57FFA17EF324948D ] NDIS            C:\windows\system32\drivers\ndis.sys
15:49:10.0674 0x0d40  NDIS - ok
15:49:10.0678 0x0d40  [ 202260E7CDD731A32AF62ABD1ABEE008, 0E019FAE09B2659CC3267756DB962CCD69172BA67E3288B491F7B455287A5392 ] NdisCap         C:\windows\system32\drivers\ndiscap.sys
15:49:10.0680 0x0d40  NdisCap - ok
15:49:10.0685 0x0d40  [ A1D473D0CF10561F29B58EA7C5412A92, 3DBFC1D769E03E30C87FF4F30A9B523A69A7E0CD4EB87F8A9ECE190FEB84C569 ] NdisImPlatform  C:\windows\system32\drivers\NdisImPlatform.sys
15:49:10.0688 0x0d40  NdisImPlatform - ok
15:49:10.0690 0x0d40  [ 1A0AE283B8DE6BB76412A0F8213D45AC, 91AFFDC7A9277EB59CD54021049BEA715078F90470B8A12F3E9F1386DF068D2D ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
15:49:10.0691 0x0d40  NdisTapi - ok
15:49:10.0695 0x0d40  [ A74EE2D2C0BFF5EC3A6185791868C4CA, A346320DEBEAE890575B4C6594FB3A3A9890A0E86881ADD8376E442282C88D38 ] Ndisuio         C:\windows\system32\drivers\ndisuio.sys
15:49:10.0697 0x0d40  Ndisuio - ok
15:49:10.0699 0x0d40  [ 32A9BD1342640D48AD85C8B3E812B984, B702B05A0180472139B35B105DD3B6B6F75AEDC9DD1EE342FB576259076455AE ] NdisVirtualBus  C:\windows\System32\drivers\NdisVirtualBus.sys
15:49:10.0700 0x0d40  NdisVirtualBus - ok
15:49:10.0707 0x0d40  [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] NdisWan         C:\windows\System32\drivers\ndiswan.sys
15:49:10.0710 0x0d40  NdisWan - ok
15:49:10.0717 0x0d40  [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] ndiswanlegacy   C:\windows\system32\DRIVERS\ndiswan.sys
15:49:10.0720 0x0d40  ndiswanlegacy - ok
15:49:10.0723 0x0d40  [ 50AEF8EF0064A91ABB08D858D039C9DE, 16F1CBE1EC3778D157CC054261068C8D7F8A72D85853CB70178F8DF81D238C8F ] ndproxy         C:\windows\system32\DRIVERS\NDProxy.sys
15:49:10.0725 0x0d40  ndproxy - ok
15:49:10.0730 0x0d40  [ 883A36E2FF7FA3E1281CB575579FE3AF, F1BE02B13C090E2E36BD211055FC980E79BD14F72042773A3619A5143AAEE485 ] Ndu             C:\windows\system32\drivers\Ndu.sys
15:49:10.0732 0x0d40  Ndu - ok
15:49:10.0736 0x0d40  [ 026618ECF6C4BEBDCB7885D42EC0DBE4, 8E7E13361DCF8748FA3AD518B3DE0A3DCE932316EE32E5529E75785BC5395AD1 ] NetBIOS         C:\windows\system32\drivers\netbios.sys
15:49:10.0737 0x0d40  NetBIOS - ok
15:49:10.0747 0x0d40  [ C03E926B0E7D66D68994067231DC3246, 1895BE28921431AA78BEF9AFE01411FE8CDA570867E527E4D925E6FAA35D8BC0 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
15:49:10.0752 0x0d40  NetBT - ok
15:49:10.0757 0x0d40  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] Netlogon        C:\windows\system32\lsass.exe
15:49:10.0760 0x0d40  Netlogon - ok
15:49:10.0768 0x0d40  [ 7FD4C3D32DAE890608F44074A3437CD8, 5B7D9E9AEE26896B818F3C5DBE4C96A33D43CE2CF7716B95AAB7203611C03BFE ] Netman          C:\windows\System32\netman.dll
15:49:10.0775 0x0d40  Netman - ok
15:49:10.0789 0x0d40  [ A059F75402710535A90A8D043674A514, E98536DF74A2B75FDBA6B866DC1909544292DFE5E14F984941470FBA6E8D810C ] netprofm        C:\windows\System32\netprofmsvc.dll
15:49:10.0800 0x0d40  netprofm - ok
15:49:10.0807 0x0d40  [ D8CAB1807EA429C2C647FBC33C30CC88, 8D7CD300A5345444ED39F7BD81B64DEDC4457AF66B5993E9F6A250AE6AD02130 ] NetSetupSvc     C:\windows\System32\NetSetupSvc.dll
15:49:10.0813 0x0d40  NetSetupSvc - ok
15:49:10.0822 0x0d40  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:49:10.0825 0x0d40  NetTcpPortSharing - ok
15:49:10.0835 0x0d40  [ 0FB83658FBB2C5A18AB98C5C94DB9FAF, 2D15A49F47D8185D7914D26916D1237FCBE2F8351A64877CDDDDE26E766C3D2F ] NgcCtnrSvc      C:\windows\System32\NgcCtnrSvc.dll
15:49:10.0841 0x0d40  NgcCtnrSvc - ok
15:49:10.0856 0x0d40  [ 7AAA9916AA10F4B0E9743798A5BA6549, 2E38EEF3F487A7DD0B719A048FFA0EB36B2487A1068BB322553E9DD2FCE46711 ] NgcSvc          C:\windows\system32\ngcsvc.dll
15:49:10.0867 0x0d40  NgcSvc - ok
15:49:10.0877 0x0d40  [ 1B8F07B59F7DAE02264FB8A16088C467, 1795DA9F72C34A9F47D9AAF5E95D40C3296948EB89D9600679AB4660671A5C65 ] NlaSvc          C:\windows\System32\nlasvc.dll
15:49:10.0885 0x0d40  NlaSvc - ok
15:49:10.0889 0x0d40  [ 465DC580170CD844206D7E3EF1DBF2A1, 5A14001029BE154C708CCA34449B280905DB79978FC7F0BE0CF20B20E47752CF ] Npfs            C:\windows\system32\drivers\Npfs.sys
15:49:10.0891 0x0d40  Npfs - ok
15:49:10.0893 0x0d40  [ 29395C214D2CD4C81F73166AB988A797, 3631EB2EA17E455ECD151C0BC9A3DF6EC87C75B15DC9B607CFB68D7C463E04B7 ] npsvctrig       C:\windows\System32\drivers\npsvctrig.sys
15:49:10.0894 0x0d40  npsvctrig - ok
15:49:10.0898 0x0d40  [ AF8B7848E102A83AAECCD24B181CEBE5, B2AAE3567EE3A7975CDFCB3FE41D33C74D4486BFF35FF56E0516A01C744BA52B ] nsi             C:\windows\system32\nsisvc.dll
15:49:10.0901 0x0d40  nsi - ok
15:49:10.0904 0x0d40  [ 2871225495F832A8C8A7DD1A17EDB3DC, 2F6664C7F5FB2341B2AAF3C5A258FA0D7AEEE447562D7F39FD5A4EE905C18C6D ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
15:49:10.0905 0x0d40  nsiproxy - ok
15:49:10.0949 0x0d40  [ 19BD8A88AAC580592668B070AC0727D9, 60DB84895C40E6412BEB2D0E4D7F05891446B9DE992D70579CC90BA3FB27FC01 ] NTFS            C:\windows\system32\drivers\NTFS.sys
15:49:10.0979 0x0d40  NTFS - ok
15:49:10.0984 0x0d40  [ 6DBD703320484C37CEA9E4E2D266A8CE, 85D6F73C0E3FDE16829C9BC0D13DD89E64183EAE02F84607F6B8440CB7F366E6 ] Null            C:\windows\system32\drivers\Null.sys
15:49:10.0985 0x0d40  Null - ok
15:49:10.0991 0x0d40  [ 62CE6D6AA873D2E4AE2F64ED89E6CD83, F4EE019EACB994BE188C7DAE6DD08125F9EA18CF302597BC6DB49E4C70E61783 ] NVHDA           C:\windows\system32\drivers\nvhda64v.sys
15:49:10.0995 0x0d40  NVHDA - ok
15:49:11.0258 0x0d40  [ E051DE03A61E5A497482227C4329756C, B3C81E4EF1E02A46D8569BCFBD96ABA83F74AF65E52E1AA25B2B3039E78D1D1B ] nvlddmkm        C:\windows\system32\DRIVERS\nvlddmkm.sys
15:49:11.0439 0x0d40  nvlddmkm - ok
15:49:11.0494 0x0d40  [ 020F45E362D3B57CCC5735582BB1A6EC, E2D953CEF208528382153D06FED8394BEB52657C547E4D2D2954E537C9A382DC ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
15:49:11.0519 0x0d40  NvNetworkService - ok
15:49:11.0527 0x0d40  [ 604D27CC38CC23493F218D0BB834B3FF, EF5E5759CCF16DD97271C82DAF47FB2086EBCA5DE7D05177B70CA1197B95F41E ] nvraid          C:\windows\system32\drivers\nvraid.sys
15:49:11.0529 0x0d40  nvraid - ok
15:49:11.0536 0x0d40  [ 8B50D897657AB4A15FD9E251BBF7D107, 36036130DD46D9BF105AC7176E219F3BE7D1168A660A0F8DFF76F61FBFA4B417 ] nvstor          C:\windows\system32\drivers\nvstor.sys
15:49:11.0539 0x0d40  nvstor - ok
15:49:11.0542 0x0d40  [ F82BCEB9F57B2959F6AAE2A3DDA892A8, 5B02C74BAF0E12B84F239B1449DAA955B28BD5BA7D35D315DB57F45E042E0DB3 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
15:49:11.0542 0x0d40  NvStreamKms - ok
15:49:11.0611 0x0d40  [ 9209D57C1AA24841EF8D5DE6A5B2AAEB, C1A53621F5361DCE9C962A9B9B586D1904901C9EC20EFCA76C40ADCD98BEDF3C ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
15:49:11.0659 0x0d40  NvStreamNetworkSvc - ok
15:49:11.0712 0x0d40  [ 0EDF9504CA5174075BA5902AFC1F57C8, 8E210E71BA91813D3BB6B59E5F6AD0889711336AD12B1B1C67CCC882A6ED3E53 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
15:49:11.0745 0x0d40  NvStreamSvc - ok
15:49:11.0777 0x0d40  [ 2E7407A71A70D4C1589991AFCA9EF203, 2F12CE5635C67174FCEBA4D4E643BB896A63376F19B7A7FB30A00B4151FDEBAD ] nvsvc           C:\windows\system32\nvvsvc.exe
15:49:11.0798 0x0d40  nvsvc - ok
15:49:11.0803 0x0d40  [ F37FE6B15A987AEEC08EEF531F2FAED7, CC768E7DE80C7A8CB2392F9BC528212B8A3A35A30A222ED0B0B959051E6F8065 ] nvvad_WaveExtensible C:\windows\system32\drivers\nvvad64v.sys
15:49:11.0805 0x0d40  nvvad_WaveExtensible - ok
15:49:11.0809 0x0d40  [ 31F990B2B6B91E9D7A667405CE12FCB1, 907E095D1E83CDAFF34BE789FC41CDD7BB4DEE23261E1D03C1CF0D4D030534AC ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
15:49:11.0812 0x0d40  nv_agp - ok
15:49:11.0820 0x0d40  [ FDDC75FDB8F9B581E3D6513FB85256E8, 8CC4924E69E6008D30219BCE4C0FCCABB5F63ECF82C1A6C8BA374805D34B4FF1 ] OneSyncSvc      C:\windows\System32\APHostService.dll
15:49:11.0825 0x0d40  OneSyncSvc - ok
15:49:11.0840 0x0d40  [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
15:49:11.0847 0x0d40  p2pimsvc - ok
15:49:11.0858 0x0d40  [ 4A5634915AF62C983E08425905D0C04C, 09BC3F7AD9F79C5FF59520933D06FE155AC21CD0ABAFE66B81C9F87D83A2339F ] p2psvc          C:\windows\system32\p2psvc.dll
15:49:11.0867 0x0d40  p2psvc - ok
15:49:11.0872 0x0d40  [ 7D0FC96264C0F8F2C1321E33E8EB646C, 82A06437B9B096BCCF5CE31BDF3539696E2E41DFA9870C358566EEE2F7D3B447 ] Parport         C:\windows\System32\drivers\parport.sys
15:49:11.0874 0x0d40  Parport - ok
15:49:11.0879 0x0d40  [ D330D74B5F99309B5CCA30AE41C57CDE, AE5186CB4B639A5241BF0D17FE8A73D6DAFA505C31E250EA225CD498C8A4A07E ] partmgr         C:\windows\system32\drivers\partmgr.sys
15:49:11.0881 0x0d40  partmgr - ok
15:49:11.0893 0x0d40  [ 0ECA2ADD5FBCE73183A68935C71B40B7, 08CC5F2F10D1DD1A1396CC29196314003491D3AF3DE59CADB281F252577F1860 ] PcaSvc          C:\windows\System32\pcasvc.dll
15:49:11.0903 0x0d40  PcaSvc - ok
15:49:11.0913 0x0d40  [ 3F89E96BDA0A24A3D2DBB7CE1E625589, 63AAF83128B8AE279BC37331D2B27133EB9DE9C61392ADF18278A301697D0307 ] pci             C:\windows\system32\drivers\pci.sys
15:49:11.0918 0x0d40  pci - ok
15:49:11.0920 0x0d40  [ 2B4D98DF0CA57FB9536DBC80D2449D1F, AB34FA8585A20854369C0FAEB18BF5C7734D7E3C791F644B0576E40D609FCD09 ] pciide          C:\windows\system32\drivers\pciide.sys
15:49:11.0921 0x0d40  pciide - ok
15:49:11.0926 0x0d40  [ F4D5793BF2E58AF15C6CF2FEEF9E73EB, 9B5A40AF8838063F8F0A2B1480B39A2711AAE78BD972CDA60CCA0EB2BA211A87 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
15:49:11.0928 0x0d40  pcmcia - ok
15:49:11.0932 0x0d40  [ 22A53744CEEADFFFD33BA010FAD95229, 30B775EC9795105B8BF785BD63115C160955E7EFF74B995D3EC288138D1825A3 ] pcw             C:\windows\system32\drivers\pcw.sys
15:49:11.0933 0x0d40  pcw - ok
15:49:11.0938 0x0d40  [ 34DDBE73E42A4EDED7BEFF66F270C1A4, 420D6EC5B514423C4583839D4E185F7D71989C7BC8A854B0FCC54EE03A972381 ] pdc             C:\windows\system32\drivers\pdc.sys
15:49:11.0940 0x0d40  pdc - ok
15:49:11.0959 0x0d40  [ E2F8376F9731D12A009C522036C6073A, 5B8B68D3C013AAA8ED368C97042984C35E8D023542DBA404E7A03E89F2357E66 ] PEAUTH          C:\windows\system32\drivers\peauth.sys
15:49:11.0969 0x0d40  PEAUTH - ok
15:49:12.0009 0x0d40  [ C7D210982B6C8454E52191D0DCF6DC52, D53D575CD9A0AB7EA94E7D1B9730ABE0A582CA3460AEAC4680D01034D69D3949 ] PeerDistSvc     C:\windows\system32\peerdistsvc.dll
15:49:12.0038 0x0d40  PeerDistSvc - ok
15:49:12.0044 0x0d40  [ 1398A85E59698067CBBE1D66A9C13ADF, E3609F183068BFAED756B2F9237181D60A6F6D78691248B8BF5B0AEB6A367E3D ] percsas2i       C:\windows\system32\drivers\percsas2i.sys
15:49:12.0046 0x0d40  percsas2i - ok
15:49:12.0050 0x0d40  [ 35F7C7AD709D909D618D9EDF987FC3ED, EE713E33688E74C5A2546CC58EBD8EA8F8116F25E42DCF8DA21DCBC7C7590E0E ] percsas3i       C:\windows\system32\drivers\percsas3i.sys
15:49:12.0051 0x0d40  percsas3i - ok
15:49:12.0080 0x0d40  [ 0DAF7B7D85F7AF38E29161460899C63F, F2609F2BD02C714857F5D5E6EF580643429C54E175AA72D38467F8F3A4E7F59F ] PerfHost        C:\windows\SysWow64\perfhost.exe
15:49:12.0082 0x0d40  PerfHost - ok
15:49:12.0103 0x0d40  [ 57606281E23B0F53347527691E947B2B, 7030182E706CEBE6BD52BDC71CA8F2230AD445AE6554188E76F09A5E2612BD2E ] PhoneSvc        C:\windows\System32\PhoneService.dll
15:49:12.0116 0x0d40  PhoneSvc - ok
15:49:12.0124 0x0d40  [ 04F7878E7017105AB782353231561749, FB2811D98216720D4FDF0AC0EDF16C6CD33D7224B4CAFA752B4D2A839E6DD88A ] PimIndexMaintenanceSvc C:\windows\System32\PimIndexMaintenance.dll
15:49:12.0130 0x0d40  PimIndexMaintenanceSvc - ok
15:49:12.0166 0x0d40  [ A546F72EFFE5CBBC98003A0CA19DA0F8, 89AE396676A37D851F46427E421E8E8ED5B4BADC33023F1E215CC352A4110F44 ] pla             C:\windows\system32\pla.dll
15:49:12.0189 0x0d40  pla - ok
15:49:12.0195 0x0d40  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
15:49:12.0201 0x0d40  PlugPlay - ok
15:49:12.0204 0x0d40  [ 6BF7093B27EA90FD9222845D19C1BE5F, CF8A6764BB6B369258F21FD303E4CAE08632195620A0BD66B62F62F5D7B762B8 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
15:49:12.0207 0x0d40  PNRPAutoReg - ok
15:49:12.0217 0x0d40  [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
15:49:12.0224 0x0d40  PNRPsvc - ok
15:49:12.0235 0x0d40  [ D67052BD0DA9C17BCBBF8AB5B6D354EE, 7FE9B414C74CF69E531B27C506216F7F5CBE00B67E90305A4A4A2ECADAA4F349 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
15:49:12.0242 0x0d40  PolicyAgent - ok
15:49:12.0249 0x0d40  [ AE3B1056FC1795F18D990C4908A6ECBF, 1C41F7714EBF54DF358D9B19D6AFE7281D3EABE20038B568A12031B76E1D50D9 ] Power           C:\windows\system32\umpo.dll
15:49:12.0254 0x0d40  Power - ok
15:49:12.0258 0x0d40  [ 5BA6B9AD03B81546BA64E488C4EF9D17, C43442577685FA1A7C32094B2F14FC92BA6B511FD9FDBA6FD82473A1B165FC61 ] PptpMiniport    C:\windows\System32\drivers\raspptp.sys
15:49:12.0260 0x0d40  PptpMiniport - ok
15:49:12.0329 0x0d40  [ C9908063F90F5541098BF19EA63E1327, AA6B5E4D01CD8061D5953FDE3025FE4AF01B265C182B8818107A035E4FFAD0DF ] PrintNotify     C:\windows\system32\spool\drivers\x64\3\PrintConfig.dll
15:49:12.0374 0x0d40  PrintNotify - ok
15:49:12.0383 0x0d40  [ 21AECFF3EB5748CBE12538A2500EFDE5, A1679F21363E99E3698B9C6F7E7E3BB2877D47089BC381AF0C51B1DD8B24325B ] Processor       C:\windows\System32\drivers\processr.sys
15:49:12.0385 0x0d40  Processor - ok
15:49:12.0395 0x0d40  [ 7E0078F1EFEB6F8F47CF85C1D73C7EBC, 831BC3CE72F29AD259DEE7121D6F785CE0A8462CFB69DD7FB1F3BDAF16CDBF3E ] ProfSvc         C:\windows\system32\profsvc.dll
15:49:12.0403 0x0d40  ProfSvc - ok
15:49:12.0416 0x0d40  [ 596FB6C5A72F34B7566930985E543806, 870B43783DB4CF845FA72BC5E40CE76BE6DFC66FE9E9B4B0A52D6B7FE7EA65FC ] Psched          C:\windows\system32\drivers\pacer.sys
15:49:12.0419 0x0d40  Psched - ok
15:49:12.0428 0x0d40  [ E84F66BA185934C166F8DF0FA8F88455, 2E0380E98DA29B3F43FB3FE0E1ECA52B3C9AEF54CE982D5514F70FAE81758449 ] QWAVE           C:\windows\system32\qwave.dll
15:49:12.0435 0x0d40  QWAVE - ok
15:49:12.0438 0x0d40  [ CFBA9C976CBF6796E5DC39EF59984021, A1C956AD828FC70ED92D702516E0F88A4BDAF8C93C571D7CA20F1695FD8E70C2 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
15:49:12.0440 0x0d40  QWAVEdrv - ok
15:49:12.0442 0x0d40  [ 7B2AD8C55217B514C14281AB97B4E21D, A1E295897B864B9C0177FF1C502EB060084A1783C0E7E53636291F901C2E2AA8 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
15:49:12.0443 0x0d40  RasAcd - ok
15:49:12.0448 0x0d40  [ E15A9CE1E2E7D1C8DF97A4FC1FFE6289, 44B53418D6BC51ACC567CF6917A0981889B44AE420489C9C03F5A30418B37267 ] RasAgileVpn     C:\windows\System32\drivers\AgileVpn.sys
15:49:12.0450 0x0d40  RasAgileVpn - ok
15:49:12.0454 0x0d40  [ D60BA4C76D194472D6602FF3D2D51ADE, 01272663897685C75FFBC3F1C0CFDB8D0E1A58182049E0B607D634536A8F6400 ] RasAuto         C:\windows\System32\rasauto.dll
15:49:12.0459 0x0d40  RasAuto - ok
15:49:12.0464 0x0d40  [ E3C82823B22463BC38AA4F8ADA852624, FF601B117F4003E2CC65B6143C2A270331EB257EE82B3BC020247D1AB1CD625F ] Rasl2tp         C:\windows\System32\drivers\rasl2tp.sys
15:49:12.0466 0x0d40  Rasl2tp - ok
15:49:12.0484 0x0d40  [ 3655D86C5E2982B131FC0935DE24F98F, 0386B31FECDDED77450609A807097B2307361CB59B236DEC41037BDC95897463 ] RasMan          C:\windows\System32\rasmans.dll
15:49:12.0496 0x0d40  RasMan - ok
15:49:12.0501 0x0d40  [ 3369023EB5790A75BA7DABA14B75D922, 36B63D5B74FDC932AAF1A876514024602D2F3EAF2CA33D1247CBA1E52FDB0418 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
15:49:12.0502 0x0d40  RasPppoe - ok
15:49:12.0506 0x0d40  [ 1E32A8CD65C4AD0A827CFEB13034DA29, 5D9A92E13020D994CCD39F701BACAFE2177A40A9CC89649441B91E3F3DECD911 ] RasSstp         C:\windows\System32\drivers\rassstp.sys
15:49:12.0508 0x0d40  RasSstp - ok
15:49:12.0518 0x0d40  [ 1BB74617AE07539EC7C31C93F98644C7, 527F4F7ADA499814A97F68EE449F39D8A897A68B03AA24E2EE39A378D8D1DD27 ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
15:49:12.0525 0x0d40  rdbss - ok
15:49:12.0529 0x0d40  [ D0221C13960E274CC539D72D5A842ED0, A5A961506B9D7429D97D0635FD69E74736C0E8405487E1D22BB5CD978A60044C ] rdpbus          C:\windows\System32\drivers\rdpbus.sys
15:49:12.0530 0x0d40  rdpbus - ok
15:49:12.0536 0x0d40  [ 1DC2CC74B51E4DC4CD5A20C1021E4010, 46B7D17EE27439F2191504D1C6F6C70B2540BD4F2261DBB1F4BE783BEA99B04C ] RDPDR           C:\windows\system32\drivers\rdpdr.sys
15:49:12.0539 0x0d40  RDPDR - ok
15:49:12.0544 0x0d40  [ 177DF954D0DEC0465A380C75F6E7F65F, 6B30C78223029BD5DBA586BF961968F85762209BA55CD031460A215B20F93AB2 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
15:49:12.0545 0x0d40  RdpVideoMiniport - ok
15:49:12.0552 0x0d40  [ 5D1680871054D2B0B8A971BC8AB3B837, 9CAB0B2E3857829D34A82A78B120D07E292D4D5060168D964295EB23339B7DE7 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
15:49:12.0556 0x0d40  rdyboost - ok
15:49:12.0578 0x0d40  [ 341E6830DA70F65730300DAB4CB0B490, 341EC8DB5E39963EF89E726F08730AFB2356C3BAD71CCE9EECCAB4D9B31C4863 ] ReFSv1          C:\windows\system32\drivers\ReFSv1.sys
15:49:12.0591 0x0d40  ReFSv1 - ok
15:49:12.0606 0x0d40  [ 8355BCA85B0928382DFCDD02FCD1681A, F306F038DA09C8D2095C311818E2F991B55BCD96B40B95D2A53A60EA6AC37014 ] RemoteAccess    C:\windows\System32\mprdim.dll
15:49:12.0615 0x0d40  RemoteAccess - ok
15:49:12.0621 0x0d40  [ 2C82F4DCABAB389CEBB1C9E86C715C9C, 70354621D3D467616A419A818C54D2C89EA013C5050BA9944E3A7A4F25CAD6BA ] RemoteRegistry  C:\windows\system32\regsvc.dll
15:49:12.0626 0x0d40  RemoteRegistry - ok
15:49:12.0649 0x0d40  [ C439E5B6E3EB38C9C7611C393348503B, C9E3E3EDB134C2C5A3212CAD372A542DB1658A0263112E66EDF812FAE3F377BF ] RetailDemo      C:\windows\system32\RDXService.dll
15:49:12.0667 0x0d40  RetailDemo - ok
15:49:12.0672 0x0d40  [ 176D8470B15CD9080861594F9A33FA01, CFB66D7FEB9465985C2866D64EA03B7E7BE830DCF6C02B3FE2244D7F7E5343E2 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
15:49:12.0676 0x0d40  RpcEptMapper - ok
15:49:12.0679 0x0d40  [ 1A563653DAEDFE4CA81936E0D2FD8B56, 308B0DFEBA63333D407093C449A08ABFECE118C9274100809356BDAF7FA32EB6 ] RpcLocator      C:\windows\system32\locator.exe
15:49:12.0681 0x0d40  RpcLocator - ok
15:49:12.0702 0x0d40  [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] RpcSs           C:\windows\system32\rpcss.dll
15:49:12.0717 0x0d40  RpcSs - ok
15:49:12.0722 0x0d40  [ 0AC5FCDC29ED97ECDEF1276425EE2059, 8A12D1732D4AA18A9ED8416F4D4A49B81CE7C4C86ABCEE8FF28A16EA61993CFE ] rspndr          C:\windows\system32\drivers\rspndr.sys
15:49:12.0724 0x0d40  rspndr - ok
15:49:12.0737 0x0d40  [ FBEFF38DE03450E03E6CD9E8E37A8C74, C1C0876785DB4366D67792A3AFA219FC933FC1894AF93D07B0016BBCC81A5886 ] rt640x64        C:\windows\System32\drivers\rt640x64.sys
15:49:12.0746 0x0d40  rt640x64 - ok
15:49:12.0749 0x0d40  [ 044890BB0D6CF1E23C1087234D320509, FA6C79D24BE4ACCFAC617D2850B922BFAA7C2766AE625C725F3ACF43C934EFAF ] s3cap           C:\windows\System32\drivers\vms3cap.sys
15:49:12.0750 0x0d40  s3cap - ok
15:49:12.0754 0x0d40  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] SamSs           C:\windows\system32\lsass.exe
15:49:12.0757 0x0d40  SamSs - ok
15:49:12.0761 0x0d40  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
15:49:12.0762 0x0d40  SASDIFSV - ok
15:49:12.0764 0x0d40  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
15:49:12.0764 0x0d40  SASKUTIL - ok
15:49:12.0770 0x0d40  [ 530F797129776AA7E81994783A97E2AD, F131EF036702C6E741E5A6851AE07E81043CE8BAEED0768838C0F31CE14FEC1A ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
15:49:12.0772 0x0d40  sbp2port - ok
15:49:12.0780 0x0d40  [ 0C12493B333B96797AFC5F3C7831C051, BEE786D7ED14221B1A9450060597393AC44116D776B913E045B5F6066D720F74 ] SCardSvr        C:\windows\System32\SCardSvr.dll
15:49:12.0786 0x0d40  SCardSvr - ok
15:49:12.0793 0x0d40  [ 40110802D217FE1CB581D9A70B1FD16F, CCB920593CCC6663676039F3F731536DFEF535C3F715F6DB6F34D0D733BEF89B ] ScDeviceEnum    C:\windows\System32\ScDeviceEnum.dll
15:49:12.0799 0x0d40  ScDeviceEnum - ok
15:49:12.0802 0x0d40  [ 9B6B1D4DB35A3D9BEAF023BC95E1F49D, CA44124CA3E9958FB77A891CD234A993B63E8AC6632AE801CDEC6666267E7C7E ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
15:49:12.0803 0x0d40  scfilter - ok
15:49:12.0829 0x0d40  [ 4D82582733D9F437F544D3F8F98CE159, 32603C9AFC4D56D505D2EA5B63EF33A484A20A3C82E28F6C30A7597BBF34F785 ] Schedule        C:\windows\system32\schedsvc.dll
15:49:12.0846 0x0d40  Schedule - ok
15:49:12.0853 0x0d40  [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] SCPolicySvc     C:\windows\System32\certprop.dll
15:49:12.0856 0x0d40  SCPolicySvc - ok
15:49:12.0864 0x0d40  [ 1CDA6D0A2345AA589949AE9C83853913, 13E9164485BA7F7DB86CBA905C7F0E009488B03CC4F3F044EA37D04D0FB661C6 ] sdbus           C:\windows\System32\drivers\sdbus.sys
15:49:12.0868 0x0d40  sdbus - ok
15:49:12.0875 0x0d40  [ 723C6C3DE056D3EB76F7520BEF5947B4, 49FFDAD56BBD652404A587F282867161BAE6D9E61BC2C819DDC75CE10A8E3C63 ] SDRSVC          C:\windows\System32\SDRSVC.dll
15:49:12.0881 0x0d40  SDRSVC - ok
15:49:12.0885 0x0d40  [ DE6D7DC78D956928F59F7415A0F41E13, C0F8EEED29BF63A0D8FB5A0286C1C768BFEF598EC52715D910B5BB1A76231805 ] sdstor          C:\windows\System32\drivers\sdstor.sys
15:49:12.0887 0x0d40  sdstor - ok
15:49:12.0890 0x0d40  [ EBD07BD20B5E0E92A398566EF8720F79, 8A88C861D4113B9938C32CBD28FD3D7F1C3133E700E23E17F5DFD7B26CCDA04A ] seclogon        C:\windows\system32\seclogon.dll
15:49:12.0893 0x0d40  seclogon - ok
15:49:12.0898 0x0d40  [ B7B9EEBCB7466338403A75D15AC120D7, B8F79DA71F8CD0F30983F7D92B625A431C212DD543DE2B3DC03EC5A68C41B00D ] SENS            C:\windows\System32\sens.dll
15:49:12.0902 0x0d40  SENS - ok
15:49:12.0933 0x0d40  [ D14DD7D766664F880FECF44CE6017966, ECF966E3ACF4EBD5A3259468A076619A539E35F1B97AB6A98FBD7882F1FBBBAB ] SensorDataService C:\windows\System32\SensorDataService.exe
15:49:12.0953 0x0d40  SensorDataService - ok
15:49:12.0964 0x0d40  [ 3A96F324681545F135320A9E91793972, CD588AAF764705CAA8838776D20C88B60B9AC73EC3F4608FFCE63831AA80D3C4 ] SensorService   C:\windows\system32\SensorService.dll
15:49:12.0972 0x0d40  SensorService - ok
15:49:12.0978 0x0d40  [ 7363A65C738F5A5292D7BDBE55D8C3C2, C53C10A0AE58613DFCC91E62E004D9B188E4793C2A19B4BE871A705EEE77048E ] SensrSvc        C:\windows\system32\sensrsvc.dll
15:49:12.0984 0x0d40  SensrSvc - ok
15:49:12.0988 0x0d40  [ 67585C295FF2D221679E376B68893B35, 4B5E9A8DA8C6F7B1F7129F80A0603503D467E5650306FB4C309977D74037E46B ] SerCx           C:\windows\system32\drivers\SerCx.sys
15:49:12.0990 0x0d40  SerCx - ok
15:49:12.0996 0x0d40  [ B8C4852CBCAAC1374C08EC7445443824, DDE577A81B3E11B5B56096317BC47AA6E286573042407B96A9D29BE981F3FA4D ] SerCx2          C:\windows\system32\drivers\SerCx2.sys
15:49:12.0999 0x0d40  SerCx2 - ok
15:49:13.0002 0x0d40  [ D3A103944A8FCD78FD48B2B19092790C, 252DB8395DA8639E748658D3BE7863C1700E27AA5C41BB700CFCE193FE3F04E9 ] Serenum         C:\windows\System32\drivers\serenum.sys
15:49:13.0003 0x0d40  Serenum - ok
15:49:13.0007 0x0d40  [ 249A563C48DFD9E42A37587653E003BB, D022FAE2B7AC9D99B9F230A4DF0B045891588162587E1F468B5E05C8DA98AA9A ] Serial          C:\windows\System32\drivers\serial.sys
15:49:13.0009 0x0d40  Serial - ok
15:49:13.0014 0x0d40  [ 0F5B43074AE731D2C6F061241C9D84A6, 05CFEB30A4FC11441552D37687608C8C2FD6DC2F2266AE9D6526753E26283DE6 ] sermouse        C:\windows\System32\drivers\sermouse.sys
15:49:13.0015 0x0d40  sermouse - ok
15:49:13.0025 0x0d40  [ CD90E445F6458512A5BA884D561EFCF1, E792FAB8AFF4126C1977024060842D788A06475139782896AFD7B39C85FCDF3F ] SessionEnv      C:\windows\system32\sessenv.dll
15:49:13.0034 0x0d40  SessionEnv - ok
15:49:13.0037 0x0d40  [ D9FE59276BD56A9643C32D5FACE2F251, 591862D868A545F468496DE97DEE42C9DB3AFBFC0881CBA79EB6641A254AF033 ] sfloppy         C:\windows\System32\drivers\sfloppy.sys
15:49:13.0038 0x0d40  sfloppy - ok
15:49:13.0049 0x0d40  [ F8083C536BEDE61AFB4069D8A8C16DA7, 13AADAD7B5582911B8ABBE0CF7132CC517F7413A361CCF8ED502F803D061FFA3 ] SharedAccess    C:\windows\System32\ipnathlp.dll
15:49:13.0057 0x0d40  SharedAccess - ok
15:49:13.0074 0x0d40  [ AE6E4D3172FBF45B944668CB3998B8A8, E7D7F98CB464C236A17069987F7B678D7688D9D577334151EF09DF5C6F22AFFC ] ShellHWDetection C:\windows\System32\shsvcs.dll
15:49:13.0085 0x0d40  ShellHWDetection - ok
15:49:13.0089 0x0d40  [ ABBE803FE0BDAE0E5BE74DDEFBE62F23, 5009F489F7A6D66628C23A0FA3D7632399D0AD72BD11A1B70D7E768ED507377D ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
15:49:13.0090 0x0d40  SiSRaid2 - ok
15:49:13.0095 0x0d40  [ 6043DF55CFE3C7ACF477645FA64DEA98, 0E18EF8EC589841BC319C17FBABA7383FD247C9441ABF64A0D830976F3E611AE ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
15:49:13.0097 0x0d40  SiSRaid4 - ok
15:49:13.0100 0x0d40  [ B922D32039A3B5991E64429EC4EE52A9, 5EB7EB1F6D2C25F06044D8CA9F3BA0471FB40C8C96432BDC2C80CC36DC49BA0B ] smphost         C:\windows\System32\smphost.dll
15:49:13.0103 0x0d40  smphost - ok
15:49:13.0116 0x0d40  [ F07301C282AA222C33F8C28B4F545275, 2938943A3A62B33C8296DF3B57897D32293F5395A5E2A01C76B0160A98C12520 ] SmsRouter       C:\windows\system32\SmsRouterSvc.dll
15:49:13.0127 0x0d40  SmsRouter - ok
15:49:13.0132 0x0d40  [ 0B6BECB2651EF947249CDC3715E8B9CC, EB7281AF3529DE16FE8CD0C0C0C8877641865A5864D58628DBAB865B510B0D0B ] SNMPTRAP        C:\windows\System32\snmptrap.exe
15:49:13.0135 0x0d40  SNMPTRAP - ok
15:49:13.0150 0x0d40  [ 1A6CB30F0EFC1632E6F1B852CA892583, 0E6BDCEE837AEC3D02C437478143C75550C94A50E36895DDB095F54A2FA18E2A ] spaceport       C:\windows\system32\drivers\spaceport.sys
15:49:13.0158 0x0d40  spaceport - ok
15:49:13.0164 0x0d40  [ E1C158F6C00359278727A2CEE5D2ED71, 1591F942C6DD99D3BA7FD4D72D957864117B2263F205468A15F1D1417C6F799D ] SpbCx           C:\windows\system32\drivers\SpbCx.sys
15:49:13.0166 0x0d40  SpbCx - ok
15:49:13.0182 0x0d40  [ D1241DFC397FA8CCFB4BB4B63AAD31AC, F8C57C2F7CA8B6D8FEE1505A143A3FECF502C8DCFFC375F9C8848A87D9714C9E ] Spooler         C:\windows\System32\spoolsv.exe
15:49:13.0195 0x0d40  Spooler - ok
15:49:13.0347 0x0d40  [ 49B666BCCF59226549F64656584318EA, D7751FB921CE526322DF8CD95430EEA5337E894CE76E0FAA47827CA3B2C953C5 ] sppsvc          C:\windows\system32\sppsvc.exe
15:49:13.0436 0x0d40  sppsvc - ok
15:49:13.0453 0x0d40  [ BE88248427A6AA548A904FD867667F70, 37E7BB76881F4E896311721B1FCB7B1908524591D36F7D63B233CA0115FECC2C ] srv             C:\windows\system32\DRIVERS\srv.sys
15:49:13.0459 0x0d40  srv - ok
15:49:13.0476 0x0d40  [ 2568B86F6A50D254324CB89022CA9EFC, 001B7A0061227E8E78A35FDC095C71A6974F18B1289FA392FA0B864A88C20672 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
15:49:13.0486 0x0d40  srv2 - ok
15:49:13.0494 0x0d40  [ 6E520D6B16EA8AE23D1F81C1194F00C8, 42CAB0772D351023DBF1DAD4BDB1FC214827CEA660284838B41062B8DF89DF10 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
15:49:13.0498 0x0d40  srvnet - ok
15:49:13.0506 0x0d40  [ 8C1786C073A496B8C0C8A5450A4FFD5B, 13BF3B42A63CE6C461259D4CE767FB0DE1F10433512A11D2B2C033E36E652542 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
15:49:13.0512 0x0d40  SSDPSRV - ok
15:49:13.0519 0x0d40  [ 217A982201052EFC8C3C0C88D229791C, 11509E3446ED7B75C9A05CDC4A7AF18926CB463E0D98BAE1CD5DB43E88F94F90 ] SstpSvc         C:\windows\system32\sstpsvc.dll
15:49:13.0526 0x0d40  SstpSvc - ok
15:49:13.0579 0x0d40  [ 99435AD1BC9E7E7CEA528868E5B1F9B2, 66C490EB12BFF8834842D28B1138E69180B972CCFDD3D33263A94A79DED0C6CB ] StateRepository C:\windows\system32\windows.staterepository.dll
15:49:13.0619 0x0d40  StateRepository - ok
15:49:13.0635 0x0d40  [ ACDEB3ECC7150D899985C63A9AA94043, 5D660E67317AAAD70334CED2928109A8A96ADCD0B1438956898663B4B35478D3 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
15:49:13.0641 0x0d40  Stereo Service - ok
15:49:13.0644 0x0d40  [ CCDA497C880AD16D87EDFAEFCFB2EDF5, 622599AA35ACFF0375DA252210BE42E7E90F30EDFEFF2F62FDB14AE6E45B5F88 ] stexstor        C:\windows\system32\drivers\stexstor.sys
15:49:13.0646 0x0d40  stexstor - ok
15:49:13.0663 0x0d40  [ 75476CAA8FA0A4E573948CDE8C7F0304, 68C4405CACA77AEED71761875A9AF60BCFBDD39E356BEA1BA8226E099BAA5FA4 ] stisvc          C:\windows\System32\wiaservc.dll
15:49:13.0675 0x0d40  stisvc - ok
15:49:13.0681 0x0d40  [ BF8EA6FC3358C2F69678E3E94F764F84, D274DAD7B5756DD49CA44277C73497F1EC465C8E365CC730CD194932C3825920 ] storahci        C:\windows\system32\drivers\storahci.sys
15:49:13.0683 0x0d40  storahci - ok
15:49:13.0687 0x0d40  [ 32FF460DA8C1F370F5C08B7654899B73, 0C9D5D38D033109BA672ABAFEF0F0CD295E9FFA108ACFCA9044429D9B2CA9057 ] storflt         C:\windows\system32\drivers\vmstorfl.sys
15:49:13.0689 0x0d40  storflt - ok
15:49:13.0693 0x0d40  [ CC21DB3EF619B9480FE31A4EFE92CBEB, 256EFCA2F231F41D34250E1460BF88894D943EAE83A0B153FCADE700AB4DE11E ] stornvme        C:\windows\system32\drivers\stornvme.sys
15:49:13.0694 0x0d40  stornvme - ok
15:49:13.0699 0x0d40  [ 390B8A75768E2689586539C224520895, D72F52E6D7AC5DC318FF9C1DF1F4E8A435D65B6BB59D7F1642222EC026BC54DB ] storqosflt      C:\windows\system32\drivers\storqosflt.sys
15:49:13.0701 0x0d40  storqosflt - ok
15:49:13.0716 0x0d40  [ FE42F8A07885E518ED1E846C93E4B78C, 264B21A5E07654F159A3E324F3B38A8C11AF619F61B5779A46367DD99EBD00A6 ] StorSvc         C:\windows\system32\storsvc.dll
15:49:13.0727 0x0d40  StorSvc - ok
15:49:13.0732 0x0d40  [ 770A92D9D3A0BF61C97C3AFCB36847D9, 21A8CC3F8E63B971C4FF8DDED5C7032E093A7B0F16E2128A9BD2E890BA76A1D9 ] storufs         C:\windows\system32\drivers\storufs.sys
15:49:13.0733 0x0d40  storufs - ok
15:49:13.0736 0x0d40  [ 736A2418E3E7F3DB3CF6EB0A55D1D581, 2D3BBC4E0C7B51EDE7479A978E4BCD5F47A7257745179F01D2D9ECFD83CCCC82 ] storvsc         C:\windows\system32\drivers\storvsc.sys
15:49:13.0738 0x0d40  storvsc - ok
15:49:13.0741 0x0d40  [ FA8F6E3AD3F92B35D2673CC9FD20429C, 62F81CBACF7E16FEF9DE3BE95FA5C9BDB51BAE4667AE5AE71399864A390FF6D5 ] svsvc           C:\windows\system32\svsvc.dll
15:49:13.0744 0x0d40  svsvc - ok
15:49:13.0748 0x0d40  [ BD98B0225BCD49E8A62F4F8EE1D1F613, CDAD11969B2DA417079547724BECC3DB4FC4711B3C01590EB0D02774B69B6D90 ] swenum          C:\windows\System32\drivers\swenum.sys
15:49:13.0749 0x0d40  swenum - ok
15:49:13.0760 0x0d40  [ 22E539A9B96C66A713583EC017562616, 210DA61DFC7AA9AD23277D9CC0239B781F4EABD322D0803AEC9434D68B81FABD ] swprv           C:\windows\System32\swprv.dll
15:49:13.0770 0x0d40  swprv - ok
15:49:13.0774 0x0d40  [ CAE4B27B469C583131EA5AAE622F5D76, 3979006EB22489D1AAD2EC2E9F32C286EEDCDB83B37B97E58BA831263EC33B84 ] Synth3dVsc      C:\windows\System32\drivers\Synth3dVsc.sys
15:49:13.0776 0x0d40  Synth3dVsc - ok
15:49:13.0801 0x0d40  [ 34A3EB84B2A830E6F450B8F885AE4E6E, E61AC6D17B815CB71F26D71CA3CCAFD9E66A170E3ED2E64A4F20D097A0C683B5 ] SysMain         C:\windows\system32\sysmain.dll
15:49:13.0819 0x0d40  SysMain - ok
15:49:13.0829 0x0d40  [ FA8E0A9C648035CA1B47C9DA77EDB7EA, 4097AB89D2DB4741B138F3939AED4C5DB00BA124BF66E5DC2218ACF3A37513A3 ] SystemEventsBroker C:\windows\System32\SystemEventsBrokerServer.dll
15:49:13.0837 0x0d40  SystemEventsBroker - ok
15:49:13.0843 0x0d40  [ 6979A147C0D5C5CAB621ADC394D32B80, C30B8E3D271A1591D965559EA4A11A1BE63A34D832ED53B26CE91799C888DF77 ] TabletInputService C:\windows\System32\TabSvc.dll
15:49:13.0849 0x0d40  TabletInputService - ok
15:49:13.0858 0x0d40  [ 86B62FC8CB89946446F9B24FE49A66FD, 7B095310D1C78B82E5ACAC4713E101DD1323A3CF6FB39218C2E78ABE2B0385B5 ] TapiSrv         C:\windows\System32\tapisrv.dll
15:49:13.0866 0x0d40  TapiSrv - ok
15:49:13.0917 0x0d40  [ CF63BF6AAEDF721E37F9E216FD321B8E, 73FF268E5DBCEFA9C5322420729E0EAA4F74A7C51E6ED3C988134AC5E875A74C ] Tcpip           C:\windows\system32\drivers\tcpip.sys
15:49:13.0948 0x0d40  Tcpip - ok
15:49:14.0000 0x0d40  [ CF63BF6AAEDF721E37F9E216FD321B8E, 73FF268E5DBCEFA9C5322420729E0EAA4F74A7C51E6ED3C988134AC5E875A74C ] Tcpip6          C:\windows\system32\drivers\tcpip.sys
15:49:14.0032 0x0d40  Tcpip6 - ok
15:49:14.0041 0x0d40  [ 17F37EC9042D84561C550620643D9A85, B01620BA319A1383D403E6E50C7724879520F3267654556D975CAFFF91A82C78 ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
15:49:14.0042 0x0d40  tcpipreg - ok
15:49:14.0048 0x0d40  [ 91D3F2A6253EF83EFBD7903028F58C4D, C15768CCCF734093B0F8A5E76882B35927B716E4F14D91ACEE897E1C078D43D1 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
15:49:14.0050 0x0d40  tdx - ok
15:49:14.0054 0x0d40  [ E730D0EB1B84EBC98423FC8D285EDBC0, 442DD433F9D22304E64EC7ACFC4E04892D4D92D8AC545A3530FC932A2EEC4767 ] terminpt        C:\windows\System32\drivers\terminpt.sys
15:49:14.0055 0x0d40  terminpt - ok
15:49:14.0084 0x0d40  [ 14307D4801C8CEF0A615907C09E886B3, C7F34C294D70DE689F673E0B5E9253B27EFEBBE6FA38B68B3B0B0374A896407E ] TermService     C:\windows\System32\termsrv.dll
15:49:14.0101 0x0d40  TermService - ok
15:49:14.0106 0x0d40  [ D009D1BC14FD5F2AC93D1878735F6C39, D8BCE505B66E05BC00075E46B38359CA4D0FA484EB7981A74221885E8A1FFB87 ] Themes          C:\windows\system32\themeservice.dll
15:49:14.0110 0x0d40  Themes - ok
15:49:14.0119 0x0d40  [ 5F27DE2082E16D4C1D6C627C8ECBD341, 08DA3EB3EF2B2006B6F9F2C8C149DF55DE6738975D556206A814096CAB5C1411 ] TieringEngineService C:\windows\system32\TieringEngineService.exe
15:49:14.0127 0x0d40  TieringEngineService - ok
15:49:14.0139 0x0d40  [ EAB476E252CE866727624B5224A054E4, 1F84A1A99FA07AA1A8F4BF2FFD778562AE59612D549C1CC911CEE74CBE71F831 ] tiledatamodelsvc C:\windows\system32\tileobjserver.dll
15:49:14.0150 0x0d40  tiledatamodelsvc - ok
15:49:14.0156 0x0d40  [ 7E81E3E0D7F83BFE3C3975020B6C7F12, 316F9415646CC7A4E9A5F1E07310D433457E623B3E589543E4A6C73C4F77712C ] TimeBroker      C:\windows\System32\TimeBrokerServer.dll
15:49:14.0162 0x0d40  TimeBroker - ok
15:49:14.0168 0x0d40  [ 87B9ABB965F7AF987D52791F0DD1663D, 6E42F764D47ACAD644E5F547E503B7AEA8D700C335674D1B0EB5493914F747E7 ] TPM             C:\windows\System32\drivers\tpm.sys
15:49:14.0172 0x0d40  TPM - ok
15:49:14.0177 0x0d40  [ AA84AF93CE5AF1F05838B51D20295419, 85B3EE773C691EEDFA080CD9C59D31CB58A5BC577AEE91A929F5DFBE1368AB6D ] TrkWks          C:\windows\System32\trkwks.dll
15:49:14.0182 0x0d40  TrkWks - ok
15:49:14.0185 0x0d40  [ 0D5A09B08568760AE85A801FCBC0F83D, 347ACBA74FDCBEAC671521739F8A34EC0E378CAF716C31F55616F9F843E4D0D3 ] TrueSight       C:\Windows\System32\drivers\TrueSight.sys
15:49:14.0186 0x0d40  TrueSight - ok
15:49:14.0192 0x0d40  [ E50DD57F496CED8873FA3E7D38BCCD42, 36B95F6F2CF48078C6B19FB452C87BB07E95C8804A5C6B526D349AC6227CAB26 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
15:49:14.0194 0x0d40  TrustedInstaller - ok
15:49:14.0199 0x0d40  [ 48E828C66AB016E48F2CB4DD585315FD, 063809B610F6B177B65D62D12605FB94F108DB26A9FD3067E6D6C51F0D92E774 ] tsusbflt        C:\windows\system32\drivers\TsUsbFlt.sys
15:49:14.0201 0x0d40  tsusbflt - ok
15:49:14.0204 0x0d40  [ 267C76EE60736EA5A1811A53FA02AABE, 28D4C4CB972534204B8336D0403B70E4EFE4F8369ABDE7401FFCCF7D4E3EA165 ] TsUsbGD         C:\windows\System32\drivers\TsUsbGD.sys
15:49:14.0205 0x0d40  TsUsbGD - ok
15:49:14.0211 0x0d40  [ 8CE72F094B822AD5EE9C3A3AFC0C16B6, 827CCD849544E1DA364B03DBC82A848D2F93AD32BA14ED52709C609BC70CE5CA ] tunnel          C:\windows\System32\drivers\tunnel.sys
15:49:14.0213 0x0d40  tunnel - ok
15:49:14.0218 0x0d40  [ 127925766866C52F147A2FFC0C0358A5, DCDF38A456E0BAAEE1E54FD67C3DEB4A036F116036FBD28073201B6C27C2C2DD ] tzautoupdate    C:\windows\system32\tzautoupdate.dll
15:49:14.0223 0x0d40  tzautoupdate - ok
15:49:14.0227 0x0d40  [ 42C546414F80BD6C0137FC3A106F8A69, 067FFCAF0059935851888BD984E848E4E1A6CC1941A8F4534067CCF0B2A3B2E6 ] uagp35          C:\windows\system32\drivers\uagp35.sys
15:49:14.0228 0x0d40  uagp35 - ok
15:49:14.0233 0x0d40  [ 1686DBC81748B096232B15F16C302985, 63D72D1838C42A95599AF3C0B19A069E310ADB091208011D7D6FBAC968D1A59A ] UASPStor        C:\windows\System32\drivers\uaspstor.sys
15:49:14.0234 0x0d40  UASPStor - ok
15:49:14.0239 0x0d40  [ 82D3B1F4D80057826AA649D78147DE36, 344A738F6866BFD3095BB802206DDB2F9E9AD89DC39CAA7DE96455F410683829 ] UcmCx0101       C:\windows\system32\Drivers\UcmCx.sys
15:49:14.0241 0x0d40  UcmCx0101 - ok
15:49:14.0244 0x0d40  [ 1C95F7CE37D9EFB90EBE987A9712356C, B9EE7743ADA50276F05D735C5C29E44039D630A7DC93766A0EAF400DA037E4AF ] UcmUcsi         C:\windows\System32\drivers\UcmUcsi.sys
15:49:14.0246 0x0d40  UcmUcsi - ok
15:49:14.0252 0x0d40  [ AED081772091C98173905E2DF28C223B, 08541CF3354EBB634BD590E0019128F70A6FCA9075B7E785A9E9BD82EC234DD3 ] Ucx01000        C:\windows\system32\drivers\ucx01000.sys
15:49:14.0256 0x0d40  Ucx01000 - ok
15:49:14.0259 0x0d40  [ DCA34A111C29E4578DF2B8CEA3C7CDBD, 86BCE4C8EC228724D5896067A85A4768B6069D10A482ECC51A8F828DBD3880C9 ] UdeCx           C:\windows\system32\drivers\udecx.sys
15:49:14.0260 0x0d40  UdeCx - ok
15:49:14.0270 0x0d40  [ 718A956AE00CE086F381044AB66CC29C, E4EED1600C72CECE1D4507827C329A93D356BBA027470FCF6C4B5C1651DED643 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
15:49:14.0274 0x0d40  udfs - ok
15:49:14.0277 0x0d40  [ BA760F8E66428BA9FF1E8BFBC6248136, BE7DCBB293B12672CB3653E640C46F669BD738D320F34F4FA4A26F6B248561F0 ] UEFI            C:\windows\System32\drivers\UEFI.sys
15:49:14.0279 0x0d40  UEFI - ok
15:49:14.0286 0x0d40  [ 05DD22294A4F3F89E52351C7721E6D2C, 300A7D4BD5F26814CF73400E01DEB810CA3F91BD190B3D37B74ADF080F582829 ] Ufx01000        C:\windows\system32\drivers\ufx01000.sys
15:49:14.0290 0x0d40  Ufx01000 - ok
15:49:14.0295 0x0d40  [ 2B1DABA97DDF5365FC66EE7DEDD86A13, 2FF3355862938B37EE63FCA149415CE5032BF54747B07517BB21460733B65AD8 ] UfxChipidea     C:\windows\System32\drivers\UfxChipidea.sys
15:49:14.0297 0x0d40  UfxChipidea - ok
15:49:14.0302 0x0d40  [ 2A87EA182EA333D79AA0B03833EA67F2, 227792A8B4E63CF60A3DEECF829448C8FD59A40DEF3F42414E432820F8D34F64 ] ufxsynopsys     C:\windows\System32\drivers\ufxsynopsys.sys
15:49:14.0304 0x0d40  ufxsynopsys - ok
15:49:14.0311 0x0d40  [ 63451BD694651307254B8DD37A3D79C7, C781E2D876AF42D5972CCDCF86B7A59F6AF8AF0C6350647F3FA1B209119B5EF9 ] UI0Detect       C:\windows\system32\UI0Detect.exe
15:49:14.0316 0x0d40  UI0Detect - ok
15:49:14.0320 0x0d40  [ 6DE78C04BF32ECA7AF3064F53687C9A5, 164D3BB24EBA3EAF613799928063FE75220A4E583D985F53A895017782C18600 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
15:49:14.0321 0x0d40  uliagpkx - ok
15:49:14.0325 0x0d40  [ 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4, BA2E6F16B6B3B54C943F1E7B9F79A6D1332A7ED228D754CC5AE70E3CD78B1F37 ] umbus           C:\windows\System32\drivers\umbus.sys
15:49:14.0327 0x0d40  umbus - ok
15:49:14.0329 0x0d40  [ 11680607944A719EF20E0E740785712A, 1567C2B3AAD702DCC2DC9C6B7B92EE5B681C06701A39DAC3AA7E2BE9E1E04F47 ] UmPass          C:\windows\System32\drivers\umpass.sys
15:49:14.0330 0x0d40  UmPass - ok
15:49:14.0339 0x0d40  [ FD949725D9EB52C0B87435CDE1134668, 96E2B3D3379E9AE225E5A4C5251207F1E7DA573901F4F026758EDE9FAEF4F2C5 ] UmRdpService    C:\windows\System32\umrdp.dll
15:49:14.0347 0x0d40  UmRdpService - ok
15:49:14.0372 0x0d40  [ CB902A15DD21B363FECA5DCCF34F5C57, 6A0836A12A410EBD5C667982852B58CA9E9EDB11EA666C413CC0F811E01A549D ] UnistoreSvc     C:\windows\System32\unistore.dll
15:49:14.0392 0x0d40  UnistoreSvc - ok
15:49:14.0411 0x0d40  [ B85A8CF2BE74DFF1E80097AC94584112, B1DBACC33A4143FEE2CF54E567590A69580312AD7A053BCC85B487C4D451FBDA ] upnphost        C:\windows\System32\upnphost.dll
15:49:14.0421 0x0d40  upnphost - ok
15:49:14.0425 0x0d40  [ 2410A0C20D21A25E6C01979FA886BE90, DD3F92D8CF110D47B9E36BA0EB10EB34C0FDD28FE0D57E4B60F9326703388F75 ] UrsChipidea     C:\windows\System32\drivers\urschipidea.sys
15:49:14.0426 0x0d40  UrsChipidea - ok
15:49:14.0431 0x0d40  [ 6E59CE43B6BA5AA1ADCF36A4DBBB92BB, 647D66775A90F67D803043DE8C8AE8BC2F7A042A8DCF9C95BF5458C79609481B ] UrsCx01000      C:\windows\system32\drivers\urscx01000.sys
15:49:14.0433 0x0d40  UrsCx01000 - ok
15:49:14.0435 0x0d40  [ E8A59FA109A22FC07E44BDFCC9727DBD, 0DC5928C0FF7E5B38917660D6EFECCC22172DB0BB9B23216F33E750790529C16 ] UrsSynopsys     C:\windows\System32\drivers\urssynopsys.sys
15:49:14.0436 0x0d40  UrsSynopsys - ok
15:49:14.0442 0x0d40  [ D8A44550ECE102B6443F5D54DCE7DAB3, 97F5AE7B17DAC4A4F3186C77116BC8E49874FB0018C99D8E2CDA29D89E8B0912 ] usbccgp         C:\windows\System32\drivers\usbccgp.sys
15:49:14.0445 0x0d40  usbccgp - ok
15:49:14.0450 0x0d40  [ 66B3D22DAB5312FF238ABF5C6D9F8FAB, 4A644AFC1C27D692D352BEB8801398A00EA5B4055476063AF905A0A46DDBF8BB ] usbcir          C:\windows\System32\drivers\usbcir.sys
15:49:14.0452 0x0d40  usbcir - ok
15:49:14.0457 0x0d40  [ 3E4F20DB902D2E2914F3FF3DB9772200, F3D32BE06A26164B5F6E8DB67160D1DBBDC6D14666EEF84EA43C78CB7706E31C ] usbehci         C:\windows\System32\drivers\usbehci.sys
15:49:14.0459 0x0d40  usbehci - ok
15:49:14.0472 0x0d40  [ 41F7F00D76904416EF1F9EFA1A4C37A2, 7A4250EB2E2E0037B3AE1480C13B229ECFF5C575E68E4F934EE011DB1833B46A ] usbhub          C:\windows\System32\drivers\usbhub.sys
15:49:14.0479 0x0d40  usbhub - ok
15:49:14.0493 0x0d40  [ E7463CE8579A0418A98BE9BE42C647D7, 923CD51C82FCF9DC4E9EEA99E53634EE07EBF62FB5DFC337F01309D7D5C7622C ] USBHUB3         C:\windows\System32\drivers\UsbHub3.sys
15:49:14.0501 0x0d40  USBHUB3 - ok
15:49:14.0504 0x0d40  [ DAB35CCA86F5FBE77D870A40089BC4A1, 4A47D59D882D0F2B93F2EE7F10995E7D68B58009434E2CBD04C659E0D1F059D8 ] usbohci         C:\windows\System32\drivers\usbohci.sys
15:49:14.0505 0x0d40  usbohci - ok
15:49:14.0508 0x0d40  [ 21162F65C7756AAECAEBED9E67D0A5FE, DE3B43964171DB5B0464DA5E7A674A5D200A8695E6EF1AE2030681066ABA2688 ] usbprint        C:\windows\System32\drivers\usbprint.sys
15:49:14.0510 0x0d40  usbprint - ok
15:49:14.0514 0x0d40  [ D67B6A4A6FB99D29444C2DBA2B636799, 62BC778D60593B2AB0DA13C4DB3EA5971895AE09DA06E8AB2D03973C940C890C ] usbscan         C:\windows\system32\DRIVERS\usbscan.sys
15:49:14.0515 0x0d40  usbscan - ok
15:49:14.0519 0x0d40  [ 4AAD6547953D373A1EB5B2DF583D868B, 4E3DCEC9644550996C314FCC39F885DDE4AA7AD821B8596D96C5BEA5D60795F7 ] usbser          C:\windows\System32\drivers\usbser.sys
15:49:14.0521 0x0d40  usbser - ok
15:49:14.0526 0x0d40  [ 8949F77132A4F8F3BA17C6727099F002, 86AD4A2263B34983335180FDAE775D1744E042D2A11300D27DF546F15F285A25 ] USBSTOR         C:\windows\System32\drivers\USBSTOR.SYS
15:49:14.0528 0x0d40  USBSTOR - ok
15:49:14.0531 0x0d40  [ 8B3E458A8851F9A3B2109B1680EE1159, 753AC8F82F65564F00EA2F60B43E4B815FEAABE0DA35B6356210A5F4B1CA3EFC ] usbuhci         C:\windows\System32\drivers\usbuhci.sys
15:49:14.0533 0x0d40  usbuhci - ok
15:49:14.0542 0x0d40  [ 9E9D58F5E1702955B2F4D62996F80E8E, 6C21C250B9D98346D0D5CB7D6C11AB120A1D195C28313BDB0CE532663F0114E2 ] USBXHCI         C:\windows\System32\drivers\USBXHCI.SYS
15:49:14.0548 0x0d40  USBXHCI - ok
15:49:14.0579 0x0d40  [ 2771EBB565F5C121E66060B173991D4D, 1EB34A6262A18E47ADCA392FDB2D58E8428A1CA43EB4196D76A897F74A03CA7F ] UserDataSvc     C:\windows\System32\userdataservice.dll
15:49:14.0603 0x0d40  UserDataSvc - ok
15:49:14.0632 0x0d40  [ 36EC82F0E399F36BD25F593D63DC144A, 2A9E916A098ACD5A5074A5FD053ECAB027A0932A348C728F20CD63EF16289533 ] UserManager     C:\windows\System32\usermgr.dll
15:49:14.0648 0x0d40  UserManager - ok
15:49:14.0658 0x0d40  [ BF6C588423B2F856015AE8F61D93D01F, D45A3409E4EF026ECF1F8295EF9CFAA4C111776C2BA04171591744CDAB912479 ] UsoSvc          C:\windows\system32\usocore.dll
15:49:14.0667 0x0d40  UsoSvc - ok
15:49:14.0672 0x0d40  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] VaultSvc        C:\windows\system32\lsass.exe
15:49:14.0674 0x0d40  VaultSvc - ok
15:49:14.0678 0x0d40  [ E1BE37312785A71862516F66B3FD24CE, D248C513DBEACB192653C6E46809209F341771B146544BBF43B86369280B4F8B ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
15:49:14.0679 0x0d40  vdrvroot - ok
15:49:14.0698 0x0d40  [ 67A6E949395A09914AD8B38FE14B8D15, 593F2FAA880B2E0468F98BD58B5214A170E5890907B25294D7A47C66505A3D45 ] vds             C:\windows\System32\vds.exe
15:49:14.0711 0x0d40  vds - ok
15:49:14.0718 0x0d40  [ E42C0F2850735FF9D908B9DB581E6314, E2204A56BF37FC57CD2ED96E3F908882D72B4BFF1BFB97C5172C851F1E4F9650 ] VerifierExt     C:\windows\system32\drivers\VerifierExt.sys
15:49:14.0721 0x0d40  VerifierExt - ok
15:49:14.0739 0x0d40  [ EC15FD6A28757793E2DA394CD94ABD52, DC758BBEE9C6952D7B3F7171EF67B037B4068E88189A2C4A894122D1D1209468 ] vhdmp           C:\windows\System32\drivers\vhdmp.sys
15:49:14.0750 0x0d40  vhdmp - ok
15:49:14.0754 0x0d40  [ D0C9632C350F46786643A069251BC249, CF65BA0D3F3D2B821C10E2D4F53F5B6BF6236CA9767419392A561CFA79254C3B ] vhf             C:\windows\System32\drivers\vhf.sys
15:49:14.0755 0x0d40  vhf - ok
15:49:14.0759 0x0d40  [ E886CB75DA2B6EB35469EF10135624C7, 3AFC59A0709B984F517A918D5BBEBEB1C80001BEC87C133447DCEAEDE00E516D ] vmbus           C:\windows\system32\drivers\vmbus.sys
15:49:14.0761 0x0d40  vmbus - ok
15:49:14.0765 0x0d40  [ 46D2EC27820EC0F798F85821E53C2942, D298A7D6AC16F76A069F843C8DD323ECB340D361733CB9B076BCDE8FC5F1FEFC ] VMBusHID        C:\windows\System32\drivers\VMBusHID.sys
15:49:14.0766 0x0d40  VMBusHID - ok
15:49:14.0781 0x0d40  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicguestinterface C:\windows\System32\ICSvc.dll
15:49:14.0790 0x0d40  vmicguestinterface - ok
15:49:14.0803 0x0d40  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicheartbeat   C:\windows\System32\ICSvc.dll
15:49:14.0812 0x0d40  vmicheartbeat - ok
15:49:14.0826 0x0d40  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmickvpexchange C:\windows\System32\ICSvc.dll
15:49:14.0834 0x0d40  vmickvpexchange - ok
15:49:14.0848 0x0d40  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicrdv         C:\windows\System32\ICSvc.dll
15:49:14.0857 0x0d40  vmicrdv - ok
15:49:14.0870 0x0d40  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicshutdown    C:\windows\System32\ICSvc.dll
15:49:14.0879 0x0d40  vmicshutdown - ok
15:49:14.0893 0x0d40  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmictimesync    C:\windows\System32\ICSvc.dll
15:49:14.0901 0x0d40  vmictimesync - ok
15:49:14.0914 0x0d40  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvmsession   C:\windows\System32\ICSvc.dll
15:49:14.0922 0x0d40  vmicvmsession - ok
15:49:14.0936 0x0d40  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvss         C:\windows\System32\ICSvc.dll
15:49:14.0944 0x0d40  vmicvss - ok
15:49:14.0949 0x0d40  [ B9265F47E7A354BAAA0AF5CBA3F8F7CE, F836E7BEDC7CAB1C01225164D171A0210D8F909F52992E4C0BF3C92B365BCD52 ] volmgr          C:\windows\system32\drivers\volmgr.sys
15:49:14.0951 0x0d40  volmgr - ok
15:49:14.0962 0x0d40  [ BEE9C8B72AB752B794F69C2B9B3678AA, 49A5093C26F3CDCD60577F7F2D7F936C7B2BD010B27F2C49A7B6AA41E42DF98D ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
15:49:14.0967 0x0d40  volmgrx - ok
15:49:14.0980 0x0d40  [ E1F91A727A04C9F8199D04FF3BBBF63C, 076CAEE621DBF7DE24ED92BA239C440879FDB674CF3213DF3E35AEC03D0D2031 ] volsnap         C:\windows\system32\drivers\volsnap.sys
15:49:14.0986 0x0d40  volsnap - ok
15:49:14.0991 0x0d40  [ F7B1B1101271E31F43CC76E890704F51, 2282D82B220C3D13FF980ED8E40443C83816D3DA9557EACEA137873F92BB9CF4 ] vpci            C:\windows\System32\drivers\vpci.sys
15:49:14.0992 0x0d40  vpci - ok
15:49:15.0000 0x0d40  [ D48ED0A08BD2FD25A833E6AC99623091, 6CA7580878D3893E14B4938023A00CDFC9BE215A0CE4ED59A94F95DFD9FDF4D8 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
15:49:15.0003 0x0d40  vsmraid - ok
15:49:15.0036 0x0d40  [ 4CF5A1E0C4FCA956ACD6C654E2A8610E, 57F3C7200C25E8717AF92AF2ED7615C6605179D3514B432220FA6EA94CAB4F2E ] VSS             C:\windows\system32\vssvc.exe
15:49:15.0059 0x0d40  VSS - ok
15:49:15.0070 0x0d40  [ 6990D4AFDF545669D4E6C232F26DE1FB, 9B8F99A035188FD96BA79E935E8EF387BEA2223ECA0B74CF64AB993DABAA5722 ] VSTXRAID        C:\windows\system32\drivers\vstxraid.sys
15:49:15.0074 0x0d40  VSTXRAID - ok
15:49:15.0078 0x0d40  [ 1EE11F0508C58EF081F4176E66D6970B, 9069B3FC8850C7CF617909C6DBFC3753FEB59A9E708379CC57190F4097FB374E ] vwifibus        C:\windows\System32\drivers\vwifibus.sys
15:49:15.0079 0x0d40  vwifibus - ok
15:49:15.0083 0x0d40  [ 938E4EF58E42D252B742B0E243011B90, AC0C21FBAF15924CB271CA43ACB7A86287936C78B4852BCFC59EC7EC703E036C ] vwififlt        C:\windows\system32\drivers\vwififlt.sys
15:49:15.0084 0x0d40  vwififlt - ok
15:49:15.0101 0x0d40  [ 48C1A256591297C43ECFC4E30D144EAA, 8E66833ED2CEB6D7E499EB2E4282B4F9DFA28B6D21757BB88EC52FD069D7FACE ] W32Time         C:\windows\system32\w32time.dll
15:49:15.0111 0x0d40  W32Time - ok
15:49:15.0115 0x0d40  [ 00C27B64C758C111E5D78A70DE6CA2B6, C99761B9B671B3A1FF1C52796CCA3F4F825BF50D9657D13B551E849CDD82055D ] WacomPen        C:\windows\System32\drivers\wacompen.sys
15:49:15.0116 0x0d40  WacomPen - ok
15:49:15.0128 0x0d40  [ D76D1AC4F2C642D09A68227D129A4726, D14D6C4D94E9660848C74B220359683D91A4A3D70750E781A20B6D86D46794CE ] WalletService   C:\windows\system32\WalletService.dll
15:49:15.0138 0x0d40  WalletService - ok
15:49:15.0143 0x0d40  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarp          C:\windows\system32\DRIVERS\wanarp.sys
15:49:15.0145 0x0d40  wanarp - ok
15:49:15.0148 0x0d40  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
15:49:15.0150 0x0d40  wanarpv6 - ok
15:49:15.0190 0x0d40  [ 2598BBF11C9E7D0885DCA52E7FD5BCBD, 46B1FB080A2CD88C89A0EB8BA2594A1FA2C341ED77A6C6835CBFFE42907FAC55 ] wbengine        C:\windows\system32\wbengine.exe
15:49:15.0215 0x0d40  wbengine - ok
15:49:15.0230 0x0d40  [ 642EFABF900374FA85639D83B5533AFD, 292692D6AAC2A785D237ADFBC7CA3D379E8FC79FA366A8CE7D06F5CA5CE6866B ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
15:49:15.0242 0x0d40  WbioSrvc - ok
15:49:15.0257 0x0d40  [ 0BF8D8C7EC9FB15D6480A12101E88B71, E7BC6A4E53D8C9D73BF83097DFE43ED8038B7BED0AE56E5AF7983F74562F15A3 ] Wcmsvc          C:\windows\System32\wcmsvc.dll
15:49:15.0269 0x0d40  Wcmsvc - ok
15:49:15.0282 0x0d40  [ 53A036CED1270F2459E708A05922FD49, 2F281A72E4B0408DE6C8153F5988C9AA38591FB1E72558767D389637D0666A85 ] wcncsvc         C:\windows\System32\wcncsvc.dll
15:49:15.0292 0x0d40  wcncsvc - ok
15:49:15.0296 0x0d40  [ 965B6197A659782B6A0F68411A180AAD, 5541AB78B71E4FA655BCBF2D80D574B2A3B4AA8871F65D26620BDE549FA5459A ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
15:49:15.0300 0x0d40  WcsPlugInService - ok
15:49:15.0304 0x0d40  [ 069D3D6E20AD753B34FCE856F0436869, CF8C12295DDAA56E7350019AADBA533D7857CFB3F20DEE14E557963645A9331B ] WdBoot          C:\windows\system32\drivers\WdBoot.sys
15:49:15.0305 0x0d40  WdBoot - ok
15:49:15.0325 0x0d40  [ 6CC727E94CD84E9720FDCDA8089CABCC, BCF66056B06DED6BC2D329E910FCD3E685D627BAD3B5D7F4B0E970B45CD9CEF4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
15:49:15.0337 0x0d40  Wdf01000 - ok
15:49:15.0347 0x0d40  [ E3E97151A1D1E87BB2D5371F66C5F169, 0ED0B9852FE0533816F5EE2F06045B3964A00FD749A7011DB3C663AB6FA369E2 ] WdFilter        C:\windows\system32\drivers\WdFilter.sys
15:49:15.0351 0x0d40  WdFilter - ok
15:49:15.0356 0x0d40  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiServiceHost  C:\windows\system32\wdi.dll
15:49:15.0361 0x0d40  WdiServiceHost - ok
15:49:15.0365 0x0d40  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiSystemHost   C:\windows\system32\wdi.dll
15:49:15.0370 0x0d40  WdiSystemHost - ok
15:49:15.0386 0x0d40  [ 2BC2E99623119521EEF7910A11D0FDE0, 3F3E48A79534F0F65F961D9B170D534562E04901B630127B16DF02E6D42F2BBF ] wdiwifi         C:\windows\system32\DRIVERS\wdiwifi.sys
15:49:15.0396 0x0d40  wdiwifi - ok
15:49:15.0402 0x0d40  [ 07B043160399AF4009054E2EA3464BF4, 8D652D7CD75F8FB2B5414155355F0C970015914E1AC6522DBB8387BB8662F542 ] WdNisDrv        C:\windows\system32\Drivers\WdNisDrv.sys
15:49:15.0404 0x0d40  WdNisDrv - ok
15:49:15.0407 0x0d40  WdNisSvc - ok
15:49:15.0415 0x0d40  [ 9972D395DBD05D91DA5EDADEB9325680, 9382D846793F285721A1A0FED42F914035A53D856B902FADB0B7144C471BDA91 ] WebClient       C:\windows\System32\webclnt.dll
15:49:15.0421 0x0d40  WebClient - ok
15:49:15.0434 0x0d40  [ B6BF579761489720BCE787F723F596E5, 879B17F6A4F23F5E85A09126B7B407955DDCEB1BA4A8FFC0A418B7F47311C056 ] Wecsvc          C:\windows\system32\wecsvc.dll
15:49:15.0441 0x0d40  Wecsvc - ok
15:49:15.0444 0x0d40  [ 10C9CF8771A2A87F575F9FB56821474E, 15E3DFFE9CF6777F67E426ECF797D2DF743EA152DEE336DCC9C2F92A0E6EB9A3 ] WEPHOSTSVC      C:\windows\system32\wephostsvc.dll
15:49:15.0449 0x0d40  WEPHOSTSVC - ok
15:49:15.0453 0x0d40  [ 357C083FE35D030D991D163AAF622A06, F301852D49DBDEF0D28F56CD74CBDC71CA003EBD07D3F46EA5C870DC1BD07896 ] wercplsupport   C:\windows\System32\wercplsupport.dll
15:49:15.0458 0x0d40  wercplsupport - ok
15:49:15.0465 0x0d40  [ 2235AF716D15D9DFE4C59DC2AC0C440C, 2DCFCEBEA77E7E40CEF9A785BE1A794B390B36E40FBCF49B494F9CEA3F6A28C4 ] WerSvc          C:\windows\System32\WerSvc.dll
15:49:15.0470 0x0d40  WerSvc - ok
15:49:15.0476 0x0d40  [ C11272713719922DE5711094333BD166, 61D4F07E02AECF04964FF51EEA31069A2B0EAA549AD2B29B5FD3E1E6BB543593 ] WFPLWFS         C:\windows\system32\drivers\wfplwfs.sys
15:49:15.0479 0x0d40  WFPLWFS - ok
15:49:15.0483 0x0d40  [ 205A1FAE910F5C493D236245850BB62A, DBA4D1D734BAA3CDEB8A7F9C81A8DAA88CEA55AF5C4C5908E76FB8E522C5EC8A ] WiaRpc          C:\windows\System32\wiarpc.dll
15:49:15.0488 0x0d40  WiaRpc - ok
15:49:15.0492 0x0d40  [ EF536C54AB9281FDC4E83B07279FCFC4, 22E4F133170682EE14413CA8FDC2DBE73AB31960D6ACB728A6B398229FDDFD3B ] WIMMount        C:\windows\system32\drivers\wimmount.sys
15:49:15.0493 0x0d40  WIMMount - ok
15:49:15.0500 0x0d40  [ D8966A76408107224C6013993135DD78, 6159F69BC26FF817078E68C70E6DFC9075FEBF9EF9F4F046C7A65BC377544AE6 ] WindowsTrustedRT C:\windows\system32\drivers\WindowsTrustedRT.sys
15:49:15.0502 0x0d40  WindowsTrustedRT - ok
15:49:15.0504 0x0d40  [ 8B102A7B6CE326FD4208CC7C2D183343, E47C1D76CBFD2A382C3A7BB048D752FB6DD4616FADDEB1C3ADD5DDAE149742AF ] WindowsTrustedRTProxy C:\windows\system32\drivers\WindowsTrustedRTProxy.sys
15:49:15.0505 0x0d40  WindowsTrustedRTProxy - ok
15:49:15.0534 0x0d40  [ D4B30E23A3B373648F61290DAF432CB2, 7084E24A2E813BDD11C880F2B2D2626CD3600D9BABAA8AA8F068748E90BC8D58 ] WinHttpAutoProxySvc C:\windows\system32\winhttp.dll
15:49:15.0549 0x0d40  WinHttpAutoProxySvc - ok
15:49:15.0552 0x0d40  [ 4A53441C1C4D2878BEF27E381138BB2D, C221E74491E6FD2AF472B53876B46788D5CF62F4E645457F3B3816FD0ED2BAA1 ] WinMad          C:\windows\System32\drivers\winmad.sys
15:49:15.0554 0x0d40  WinMad - ok
15:49:15.0565 0x0d40  [ 1033C37122C7404C3B926ADF84874832, 163B3A7112F13AE7BB2655A28C6B19AF9B263F2AD2FF1B75314BE3E2B9118903 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
15:49:15.0569 0x0d40  Winmgmt - ok
15:49:15.0630 0x0d40  [ 703D0F62C5AA4D08EE8756516C0D125D, 02015A5E62490C11EC968160C528C2AFD1D7194AACA27F407B06EB462657511F ] WinRM           C:\windows\system32\WsmSvc.dll
15:49:15.0670 0x0d40  WinRM - ok
15:49:15.0681 0x0d40  [ 260907CE034FE327AC99BDA4153AB22F, B96501F43248713C2E153B9D22B78D51412A3C6989A2FB5F53A406C6CDC98D30 ] WINUSB          C:\windows\System32\drivers\WinUSB.SYS
15:49:15.0683 0x0d40  WINUSB - ok
15:49:15.0688 0x0d40  [ 40A3E8D729F458B2C9A8BD9380FF83D5, CD42FFC138969EF8C9588FD113F0B9A98FBA282D46A5B6BCFA765F55ED6E97A1 ] WinVerbs        C:\windows\System32\drivers\winverbs.sys
15:49:15.0690 0x0d40  WinVerbs - ok
15:49:15.0736 0x0d40  [ 453740989239803FE363FF8B40EA2E08, 25499705627C38D3431B3C336E0CF3BF55ABB0C461B88DA6D3767CAAE1E2B893 ] WlanSvc         C:\windows\System32\wlansvc.dll
15:49:15.0771 0x0d40  WlanSvc - ok
15:49:15.0816 0x0d40  [ E48BBF1363F843E030757EC190DD33E6, B37199495115ED423BA99B7317377CE865BB482D4E847861E871480AC49D4A84 ] wlidsvc         C:\windows\system32\wlidsvc.dll
15:49:15.0851 0x0d40  wlidsvc - ok
15:49:15.0859 0x0d40  [ 8F010BF65238F3F822D22BA12831796E, 2CA830F259B742D2F5CDD0437960BF512D40FB4A4C2342E3BABB38D468F79694 ] WmiAcpi         C:\windows\System32\drivers\wmiacpi.sys
15:49:15.0860 0x0d40  WmiAcpi - ok
15:49:15.0869 0x0d40  [ 74ACA5A7880C1F0BB9D60E32E1705A70, A89817BCCBFF94D7394614DA81D1C6C4F53AF47A539E674EEF6DC3FC496BF702 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
15:49:15.0873 0x0d40  wmiApSrv - ok
15:49:15.0875 0x0d40  WMPNetworkSvc - ok
15:49:15.0882 0x0d40  [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof             C:\windows\system32\drivers\Wof.sys
15:49:15.0885 0x0d40  Wof - ok
15:49:15.0931 0x0d40  [ 3B6CCFF7AD385842A9638DCF654ABCD4, 2E6605E5E1BD214D7F47F30E73481C07AE70CAE3A3B565FA37D1A551A58BFDB1 ] workfolderssvc  C:\windows\system32\workfolderssvc.dll
15:49:15.0960 0x0d40  workfolderssvc - ok
15:49:15.0967 0x0d40  [ 22C52D7EE7C7D0E02C8EFD8CAE8E3A71, 126605A12CEC9CC07DE3050F12E43CECABEAF0D00DF12300AF70F34700F7FE8E ] wpcfltr         C:\windows\system32\DRIVERS\wpcfltr.sys
15:49:15.0969 0x0d40  wpcfltr - ok
15:49:15.0974 0x0d40  [ 45FA01F8B7971ACB65202038E34D04A3, 9B2C2ABC7DB716295B0BD0AF04DA08E6B4200D7CF1C7DB59DD8FD8FEBD56D94C ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
15:49:15.0979 0x0d40  WPDBusEnum - ok
15:49:15.0982 0x0d40  [ 1C08E424CBDD5065BB7266F8C048C1B1, 0452C85EDA6CBAB75C2617886C5D8117ED25D91F1BE0F8377B08D55B6629B028 ] WpdUpFltr       C:\windows\system32\drivers\WpdUpFltr.sys
15:49:15.0984 0x0d40  WpdUpFltr - ok
15:49:15.0987 0x0d40  [ 2C6EEFFBB7FB1C51CCD3737C77AB9109, 8C2ED309FAF4312512E7BCCBBC51B1353603A3499077A1DE21991F0692AF1620 ] WpnService      C:\windows\system32\WpnService.dll
15:49:15.0992 0x0d40  WpnService - ok
15:49:15.0997 0x0d40  [ 638B43D39A3D0B47024555CF1095E6F1, C7EA0A6ED227A5256EB02CA76FEC538DF196B8DC38DA2A567757D2B221C9473E ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
15:49:15.0998 0x0d40  ws2ifsl - ok
15:49:16.0004 0x0d40  [ 5B813FADEA5BE9195F01C83287F823F7, B186175B12AF444F987FE9F0F9D329A0F9186C06E3D228824E0929BB0084853F ] wscsvc          C:\windows\System32\wscsvc.dll
15:49:16.0011 0x0d40  wscsvc - ok
15:49:16.0014 0x0d40  WSearch - ok
15:49:16.0097 0x0d40  [ 1E099AE79C6D58063E0B4F538732B87F, 0EDA8AA7CA1946DFF651AF6FBCBEBEE904FB269E67F6AB6739247C5242BCDC7E ] WSService       C:\windows\System32\WSService.dll
15:49:16.0146 0x0d40  WSService - ok
15:49:16.0196 0x0d40  [ BFB3F9076F9B6CBC540012842177DD63, 669C6BE8D7AF18FB8934267E713315F95B17AE6563352745FF594816BB581768 ] wuauserv        C:\windows\system32\wuaueng.dll
15:49:16.0231 0x0d40  wuauserv - ok
15:49:16.0239 0x0d40  [ A928F25CB62232F413EE655352856E10, 1D2B278A24DDDE8792ADE7649FF90A98E186B79F13AA296C30E4180293BE906A ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
15:49:16.0241 0x0d40  WudfPf - ok
15:49:16.0251 0x0d40  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFRd          C:\windows\system32\drivers\WudfRd.sys
15:49:16.0254 0x0d40  WUDFRd - ok
15:49:16.0259 0x0d40  [ 1336DA39FE006EAB2733CA4DE5B3560C, F0D6C71ADCB66D4D14EC6D09FD43F5521A3A8CA53F248DFD01696FB4F033BE77 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
15:49:16.0265 0x0d40  wudfsvc - ok
15:49:16.0274 0x0d40  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFWpdFs       C:\windows\system32\DRIVERS\WUDFRd.sys
15:49:16.0277 0x0d40  WUDFWpdFs - ok
15:49:16.0303 0x0d40  [ A17D939E89831694963802A729191D1F, 5DE24F3A19BC83589D3FEE19C4E44ED04450AD2F3225745A45BA7B702E7DDFD6 ] WwanSvc         C:\windows\System32\wwansvc.dll
15:49:16.0324 0x0d40  WwanSvc - ok
15:49:16.0346 0x0d40  [ 5DFAF8BE5A3CABAABF6795BC09EB7876, 1AFD0BC50EA5C2CCB2874E97FE5205175C80849BD6C9BDAF9FBC49174D478997 ] XblAuthManager  C:\windows\System32\XblAuthManager.dll
15:49:16.0364 0x0d40  XblAuthManager - ok
15:49:16.0392 0x0d40  [ 7118498F6E48758A2EF5A7D1982E2B62, 1FF75AE64CB6DB263E8B35515E092B325AA71A6B2210F8F2B0AD087B3BA33345 ] XblGameSave     C:\windows\System32\XblGameSave.dll
15:49:16.0412 0x0d40  XblGameSave - ok
15:49:16.0420 0x0d40  [ F279536122B83FD0D8E158AA753E1B7C, 6A542F28E24B30DBDC2EEE24DA33C2F4ADB3596AEDDD71DC1495DD40577CE4BB ] xboxgip         C:\windows\System32\drivers\xboxgip.sys
15:49:16.0424 0x0d40  xboxgip - ok
15:49:16.0450 0x0d40  [ 69E727F94BEA64E66C284F3C482F33E6, B3E0F287E7A251E0FC17C41089C45737027E54F0213BDE847356AC882B4D3700 ] XboxNetApiSvc   C:\windows\system32\XboxNetApiSvc.dll
15:49:16.0468 0x0d40  XboxNetApiSvc - ok
15:49:16.0472 0x0d40  [ DA0807D87A62D076C29C4E30F1E84F46, CA3079350038091AEE04D4DA7C06865E9DB3095120AE61AAB575AA77E86A6223 ] xinputhid       C:\windows\System32\drivers\xinputhid.sys
15:49:16.0473 0x0d40  xinputhid - ok
15:49:16.0475 0x0d40  ================ Scan global ===============================
15:49:16.0480 0x0d40  [ 82E25186617BA6C15010F0D47C705705, 5BF9E38918E6EAE86448137E2D120B80318AA1143CDDF539A2BFBEE227646816 ] C:\windows\system32\basesrv.dll
15:49:16.0486 0x0d40  [ 602060E8FD837EC184B10B32795D62AB, BC15589FF036A2FD2F598BA5D2E3F0D5EF348C73870F5CC763A3A04B8A9166F3 ] C:\windows\system32\winsrv.dll
15:49:16.0496 0x0d40  [ 09E92888FFF86F3334E59778724DCA6F, 2344763B52395EF565A9DE5F55BEDCA026AD2E8072FFD06F826BF366B3BA2AB4 ] C:\windows\system32\sxssrv.dll
15:49:16.0509 0x0d40  [ 6FF8248F3A9D69A095C7F3F42BC29CB2, 9077B1AA0AFB8DB329FDED0E51085DE1C51B22A986162F29037FCA404A80D512 ] C:\windows\system32\services.exe
15:49:16.0519 0x0d40  [ Global ] - ok
15:49:16.0519 0x0d40  ================ Scan MBR ==================================
15:49:16.0520 0x0d40  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:49:16.0768 0x0d40  \Device\Harddisk0\DR0 - ok
15:49:16.0771 0x0d40  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
15:49:16.0884 0x0d40  \Device\Harddisk1\DR1 - ok
15:49:16.0885 0x0d40  ================ Scan VBR ==================================
15:49:16.0886 0x0d40  [ CE26A885CEC662BA21E05BAB3B4BCEF2 ] \Device\Harddisk0\DR0\Partition1
15:49:16.0888 0x0d40  \Device\Harddisk0\DR0\Partition1 - ok
15:49:16.0889 0x0d40  [ 79D63A9C98F22161F6764FC28DA76EFE ] \Device\Harddisk1\DR1\Partition1
15:49:16.0890 0x0d40  \Device\Harddisk1\DR1\Partition1 - ok
15:49:16.0890 0x0d40  ================ Scan generic autorun ======================
15:49:16.0895 0x0d40  [ 0C3154D0620F974AD5C4E8D87626C8CF, 4E6B751F9C0D5D4833A12166BC5142E0A7402E98D00F570926ED9CA0936A8007 ] C:\windows\system32\igfxtray.exe
15:49:16.0899 0x0d40  IgfxTray - ok
15:49:16.0909 0x0d40  [ E4AA3D28753EF9DB333FE40079993B09, ECC60BAA7D21EF97CDA17F45277FBFE52B2169155DDB157E34A7AE2EC1BEC185 ] C:\windows\system32\hkcmd.exe
15:49:16.0916 0x0d40  HotKeysCmds - ok
15:49:16.0927 0x0d40  [ CF40080765D6F66FA93318C0DB6C7D1F, 015EE5BE439DAC6D3F7C7471EEF554C11F28947492E3F7AA14BB72622C327DCD ] C:\windows\system32\igfxpers.exe
15:49:16.0935 0x0d40  Persistence - ok
15:49:16.0983 0x0d40  [ 94A8196066774252DF015EEDF02CCA44, AD2DFDA427E3CCB5C8404F0AFAFE71C64B862D2E26A67E1BFC2B40738FD0B873 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
15:49:17.0013 0x0d40  NvBackend - ok
15:49:17.0020 0x0d40  [ 0DCB89B1F3689BC6262FF30BBD603171, 594E6E07BC6B161469848A477F28211B70E759A8D369276810F622EE00D97783 ] C:\windows\system32\rundll32.exe
15:49:17.0024 0x0d40  ShadowPlay - ok
15:49:17.0196 0x0d40  [ 432C164DB7A022F1B03BC8D2597B6FDC, A7179B4953BBEB649EE1572FAE7BCFB75BBA3783C60E742135C10E6E0155706B ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
15:49:17.0314 0x0d40  AvastUI.exe - ok
15:49:17.0469 0x0d40  [ A84BB2D34EA36F5262D18CBE4C9DF574, 6E7DCEEBC0EA83F5FB372401AE32A605BFB4689C6E90904F35DA0A8A78FDD40C ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
15:49:17.0571 0x0d40  SUPERAntiSpyware - ok
15:49:17.0660 0x0d40  [ 1C1072F58A01A87AC73D53AEEFAB4323, FE62D7CB39EA2CF16BD32FDFCD5E3F14971B5AF1D9D3C9A7B0E0FA53722D6C1B ] C:\Program Files\DAEMON Tools Lite\DTAgent.exe
15:49:17.0715 0x0d40  DAEMON Tools Lite Automount - ok
15:49:17.0742 0x0d40  [ 44A9229022A519ED45294A1934C05EEC, 6DEF0DB5F9B50E9B0AFEE1CF50066BEB4FB7E15E2DC829A499509925660D6992 ] C:\Users\Glenn\AppData\Local\FluxSoftware\Flux\flux.exe
15:49:17.0755 0x0d40  f.lux - ok
15:49:17.0756 0x0d40  Waiting for KSN requests completion. In queue: 200
15:49:18.0767 0x0d40  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.494 ), 0x60100 ( disabled : updated )
15:49:18.0767 0x0d40  AV detected via SS2: Avast Antivirus, C:\Program Files\AVAST Software\Avast\wsc_proxy.exe ( 12.2.3126.0 ), 0x41000 ( enabled : updated )
15:49:18.0768 0x0d40  FW detected via SS2: Avast Antivirus, C:\Program Files\AVAST Software\Avast\wsc_proxy.exe ( 12.2.3126.0 ), 0x41010 ( enabled )
15:49:18.0853 0x0d40  ============================================================
15:49:18.0853 0x0d40  Scan finished
15:49:18.0853 0x0d40  ============================================================
15:49:18.0857 0x1d1c  Detected object count: 0
15:49:18.0857 0x1d1c  Actual detected object count: 0


#8 HansJen

HansJen
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:02 PM

Posted 12 August 2016 - 08:53 AM

swMBR version 1.0.1.2252 Copyright© 2014 AVAST Software
Run date: 2016-08-12 15:50:48
-----------------------------
15:50:48.392    OS Version: Windows x64 6.2.9200 
15:50:48.392    Number of processors: 4 586 0x2A07
15:50:48.393    ComputerName: DESKTOP-R35L269  UserName: Glenn
15:50:48.606    Initialize success
15:50:48.618    VM: initialized successfully
15:50:48.619    VM: Intel CPU supported virtualized 
15:50:58.545    VM: disk I/O atapi.sys
15:51:05.858    AVAST engine defs: 16081201
15:51:20.429    Disk 0  \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T1L0-1
15:51:20.431    Disk 0 Vendor: WDC_WD5000AAJS-00YFA0 12.01C02 Size: 476940MB BusType: 3
15:51:20.445    Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP4T0L0-8
15:51:20.447    Disk 1 Vendor: OCZ-AGILITY3 2.15 Size: 114473MB BusType: 3
15:51:20.465    Disk 1 MBR read successfully
15:51:20.467    Disk 1 MBR scan
15:51:20.470    Disk 1 Windows 7 default MBR code
15:51:20.472    Disk 1 Partition 1 80 (A) 07    HPFS/NTFS NTFS       113972 MB offset 2048
15:51:20.481    Disk 1 scanning C:\windows\system32\drivers
15:51:23.320    Service scanning
15:51:30.135    Modules scanning
15:51:30.141    Disk 1 trace - called modules:
15:51:30.146    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys hal.dll PCIIDEX.SYS atapi.sys 
15:51:30.149    1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0xffffe001dd3f0060]
15:51:30.152    3 CLASSPNP.SYS[fffff80193147d95] -> nt!IofCallDriver -> [0xffffe001dd345470]
15:51:30.154    5 ACPI.sys[fffff80192471361] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP4T0L0-8[0xffffe001de859060]
15:51:30.378    AVAST engine scan C:\windows
15:51:30.689    AVAST engine scan C:\windows\system32
15:52:06.482    AVAST engine scan C:\windows\system32\drivers
15:52:10.351    AVAST engine scan C:\Users\Glenn
15:52:19.570    AVAST engine scan C:\ProgramData
15:52:25.600    Disk 1 statistics 2986544/0/0 @ 61,31 MB/s
15:52:25.604    Scan finished successfully
15:52:34.303    Disk 1 MBR has been saved successfully to "C:\Users\Glenn\Desktop\MBR.dat"
15:52:34.305    The log file has been saved successfully to "C:\Users\Glenn\Desktop\aswMBR.txt"


#9 HansJen

HansJen
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:02 PM

Posted 12 August 2016 - 08:55 AM

MBR.dat added

Attached Files

  • Attached File  MBR.zip   545bytes   2 downloads


#10 nasdaq

nasdaq

  • Malware Response Team
  • 40,544 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:02 PM

Posted 12 August 2016 - 10:34 AM

The logs are clean.

Lets run this cleaning tool.

Temporarily disable your AV program so it does not interfere.
Info on how to disable your security applications How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs - Security Mini-Guides.

Download Zeok tool from here

When the download appears, save to the Desktop.
On the Desktop, right-click the Zoek.exe file and select: Run as Administrator
(Give it a few seconds to appear.)

Next, copy/paste the entire script inside the code box below to the input field of Zoek:
createsrpoint;
autoclean;
emptyclsid;
emptyffcache;
FFdefaults;
emptyiecache;
iedefaults;
emptychrcache;
CHRdefaults;
emptyalltemp;
emptyfolderscheck;delete
ipconfig /flushdns;b
Now...
Close any open Browsers.
Click the Run script button, and wait. It takes a few minutes to run all the script.

When the tool finishes, the zoek-results.log is opened in Notepad.
The log is also found on the systemdrive, normally C:\
If a reboot is needed, the log is opened after the reboot.

Please attach the zoek-results.log in your reply.
===

Also, please provide an update on how the computer is behaving after running the above script.

Edited by nasdaq, 13 August 2016 - 09:55 AM.


#11 HansJen

HansJen
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:02 PM

Posted 13 August 2016 - 12:19 AM

Thank you very much, the log is here:

 

 
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Glenn on 13-08-2016 at  7:05:55,15.
Microsoft Windows 10 Pro 10.0.10586  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Glenn\Downloads\zoek.exe [Scan all users] [Script inserted] 
 
==== System Restore Info ======================
 
13-08-2016 07:06:24 Zoek.exe System Restore Point Created Successfully.
 
==== Empty Folders Check ======================
 
C:\PROGRA~2\Razer deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\Glenn\AppData\Local\ActiveSync deleted successfully
C:\Users\Glenn\AppData\Local\PeerDistRepub deleted successfully
C:\windows\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully
C:\windows\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully
C:\windows\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully
 
==== Deleting CLSID Registry Keys ======================
 
 
==== Deleting CLSID Registry Values ======================
 
 
==== Deleting Services ======================
 
 
==== FireFox Fix ======================
 
Deleted from C:\Users\Glenn\AppData\Roaming\Mozilla\Firefox\Profiles\de6t6l5a.default\prefs.js:
 
Added to C:\Users\Glenn\AppData\Roaming\Mozilla\Firefox\Profiles\de6t6l5a.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
 
==== Batch Command(s) Run By Tool======================
 
 
==== Deleting Files \ Folders ======================
 
C:\PROGRA~2\Razer not found
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\windows\wininit.ini deleted
 
==== Firefox Start and Search pages ======================
 
ProfilePath: C:\Users\Glenn\AppData\Roaming\Mozilla\Firefox\Profiles\de6t6l5a.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
 
==== Firefox Extensions Registry ======================
 
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [10-08-2016 12:10]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [10-08-2016 12:10]
 
==== Firefox Extensions ======================
 
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
 
==== Firefox Plugins ======================
 
 
==== Chromium Look ======================
 
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
daanglpcpkjjlkhcbladppjphglbigam - No path found[]
eofcbnmajmjmplflapaojjnihcjkigck - No path found[]
fcoadmpfijfcmokecmkgolhbaeclfage - No path found[]
gomekmidlodglbbmalcneegieacbdmki - No path found[]
 
Avast SafePrice - Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoadmpfijfcmokecmkgolhbaeclfage
Date Countdown - Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnbmbpihmhcjkagbbnfdikmjieigakgj
StumbleUpon - Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcahibnffhnnjcedflmchmokndkjnhpg
Chrome Media Router - Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
 
==== Set IE to Default ======================
 
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{A85F7451-49DC-423F-9A87-3C00C60BD427}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A85F7451-49DC-423F-9A87-3C00C60BD427}] not found
 
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
 
==== All HKLM and HKCU SearchScopes ======================
 
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
 
==== Reset Google Chrome ======================
 
C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
 
==== Empty IE Cache ======================
 
C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Glenn\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Glenn\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
 
==== Empty FireFox Cache ======================
 
No FireFox Profiles found
 
==== Empty Chrome Cache ======================
 
C:\Users\Glenn\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
 
==== Empty All Flash Cache ======================
 
No Flash Cache Found
 
==== Empty All Java Cache ======================
 
No Java Cache Found
 
==== C:\zoek_backup content ======================
 
C:\zoek_backup (files=20 folders=22 21420101 bytes)
 
==== Empty Temp Folders ======================
 
C:\windows\Temp will be emptied at reboot
 
==== After Reboot ======================
 
==== Empty Temp Folders ======================
 
C:\windows\Temp successfully emptied
C:\Users\Glenn\AppData\Local\Temp successfully emptied
 
==== Empty Recycle Bin ======================
 
C:\$RECYCLE.BIN successfully emptied
 
==== EOF on 13-08-2016 at  7:16:16,49 ======================

I will try to determine how the PC is working while using it t - I'll give feedback in a few hours!

 

Thanks for the assistance so far!



#12 HansJen

HansJen
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:10:02 PM

Posted 13 August 2016 - 08:47 AM

My PC is running smooth like a baby's butt!!

 

Thank you so much my good sir!!



#13 nasdaq

nasdaq

  • Malware Response Team
  • 40,544 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:02 PM

Posted 13 August 2016 - 09:56 AM

Glad we could help.

If all is well.

To learn more about how to protect yourself while on the internet read this little guide best security practices keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/

#14 nasdaq

nasdaq

  • Malware Response Team
  • 40,544 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:02 PM

Posted 19 August 2016 - 09:23 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users