==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Acer Crystal Eye Webcam Acer System Information Active@ Password Changer Professional 7 Adobe Acrobat XI Pro Adobe AIR Adobe Refresh Manager Adobe Shockwave Player 12.2 Aidfile recovery software professional version 3.6.6.4 Amazing Email Recovery Wizard version 5.8.8.8 Apple Application Support (32-bit) Apple Application Support (64-bit) Apple Mobile Device Support Apple Software Update Ashampoo Burning Studio 15 v.15.0.0 AVG AVG 2016 AVG Protection AviSynth 2.5 AVS Audio Converter 8.0 Belgium e-ID middleware 4.1.5 (build 1639) Bonjour BurnAware Professional 8.7 Canon IJ Network Scanner Selector EX Canon IJ Network Tool Canon IJ Scan Utility Canon Inkjet Printer/Scanner/Fax Extended Survey Program Canon MG2900 series MP Drivers Canon MG2900 series On-screen Manual Canon MP280 series MP Drivers Canon My Image Garden Canon My Image Garden Design Files Canon My Printer Canon Quick Menu CardRecoveryPro 2.1.5 CCleaner CyberLink YouCam 6 CycloAgent D3DX10 Definition Update for Microsoft Office 2016 (KB3115407) 64-Bit Edition Digicam Photo Recovery versie 1.8.0.0 Dolby Digital Plus Home Theater Dropbox Dropbox Update Helper ELAN Touchpad 15.6.3.3_X64_WHQL Facebook Video Calling 3.1.0.521 FMW 1 Freemake Video Converter versie 4.1.9 Gebruikersregistratie voor Canon MG2900 series Gebruikersregistratie voor Canon MP280 series GetDataBack Simple Glary Utilities PRO 5.58 Google Chrome Google Update Helper GoogleClean GrabIt 1.7.3 Beta (build 1010) iCloud ImagXpress ImgBurn Inpaint 5.1 InstaCards Intel Driver Update Utility Intel(R) Driver Update Utility 2.2.0.5 Intel(R) Management Engine Components Intel(R) Processor Graphics Intel© Trusted Connect Service Client iTunes Java 8 Update 101 Java 8 Update 102 (64-bit) Java Auto Updater KMSpico KMSpico v9.0.5.20131118 Launch Manager Malwarebytes Anti-Malware versie 2.2.1.1043 Microsoft Access MUI (Dutch) 2016 Microsoft Application Error Reporting Microsoft DCF MUI (Dutch) 2016 Microsoft Excel MUI (Dutch) 2016 Microsoft Groove MUI (Dutch) 2016 Microsoft InfoPath MUI (Dutch) 2016 Microsoft Office 32-bit Components 2016 Microsoft Office Korrekturhilfen 2016 - Deutsch Microsoft Office OSM MUI (Dutch) 2016 Microsoft Office OSM UX MUI (Dutch) 2016 Microsoft Office Professional Plus 2016 Microsoft Office Proofing (Dutch) 2016 Microsoft Office Proofing Tools 2016 - English Microsoft Office Shared 32-bit MUI (Dutch) 2016 Microsoft Office Shared MUI (Dutch) 2016 Microsoft OneNote MUI (Dutch) 2016 Microsoft Outlook MUI (Dutch) 2016 Microsoft PowerPoint MUI (Dutch) 2016 Microsoft Publisher MUI (Dutch) 2016 Microsoft Silverlight Microsoft Skype for Business MUI (Dutch) 2016 Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Microsoft Word MUI (Dutch) 2016 MiniTool Photo Recovery Free MiniTool Power Data Recovery Mio Share Movie Maker MSVCRT MSVCRT110 MSVCRT110_amd64 ophcrack 3.6.0 Outils de v‚rification linguistique 2016 de Microsoft Office˙- Fran‡ais Password Recovery Bundle 2015 PasswordRecoveryBundle PDF Architect 4 PDF Architect 4 Create Module PDF Architect 4 Edit Module PDF Architect 4 View Module PDFCreator PeugeotAlertZone Photo Common Photo Gallery Picasa 3 PowerISO PRO-GEN 3.21 (C:\\PG30) QoQReVerse Qualcomm Atheros Bluetooth Suite (64) Qualcomm Atheros WLAN and Bluetooth Client Installation Program QuickPar 0.9 Realtek Card Reader Realtek High Definition Audio Driver Recover Passwords RescuePRO 3.3 Revo Uninstaller 1.95 Revo Uninstaller 2.0.0 RS Office Recovery 2.3 Security Update for Microsoft Excel 2016 (KB3118290) 64-Bit Edition Security Update for Microsoft Office 2016 (KB3085538) 64-Bit Edition Security Update for Microsoft Office 2016 (KB3085635) 64-Bit Edition Security Update for Microsoft Office 2016 (KB3118292) 64-Bit Edition Security Update for Microsoft OneNote 2016 (KB3115419) 64-Bit Edition Security Update for Microsoft Outlook 2016 (KB3118293) 64-Bit Edition Security Update for Microsoft Publisher 2016 (KB2920680) 64-Bit Edition Security Update for Skype for Business 2016 (KB3115408) 64-Bit Edition SkypeT 7.24 SlimDrivers Spotnet Stuurprogrammapakket voor Windows - Fedict SmartCard (08/08/2015 4.1.5) SUPERAntiSpyware swMSM Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD Taalprogramma's voor Microsoft Office 2016 - Nederlands TAP-Windows 9.9.2 TeamViewer 11 TomTom MyDrive Connect 4.1.0.2658 Update for Microsoft Access 2016 (KB3115142) 64-Bit Edition Update for Microsoft Office 2016 (KB2910954) 64-Bit Edition Update for Microsoft Office 2016 (KB2910979) 64-Bit Edition Update for Microsoft Office 2016 (KB2920678) 64-Bit Edition Update for Microsoft Office 2016 (KB2920684) 64-Bit Edition Update for Microsoft Office 2016 (KB2920712) 64-Bit Edition Update for Microsoft Office 2016 (KB2920718) 64-Bit Edition Update for Microsoft Office 2016 (KB2920720) 64-Bit Edition Update for Microsoft Office 2016 (KB2920724) 64-Bit Edition Update for Microsoft Office 2016 (KB3114369) 64-Bit Edition Update for Microsoft Office 2016 (KB3114708) 64-Bit Edition Update for Microsoft Office 2016 (KB3114709) 64-Bit Edition Update for Microsoft Office 2016 (KB3114903) 64-Bit Edition Update for Microsoft Office 2016 (KB3115081) 64-Bit Edition Update for Microsoft Office 2016 (KB3115099) 64-Bit Edition Update for Microsoft Office 2016 (KB3115100) 64-Bit Edition Update for Microsoft Office 2016 (KB3115141) 64-Bit Edition Update for Microsoft Office 2016 (KB3115270) 64-Bit Edition Update for Microsoft Office 2016 (KB3115276) 64-Bit Edition Update for Microsoft Office 2016 (KB3115410) 64-Bit Edition Update for Microsoft Office 2016 (KB3115416) 64-Bit Edition Update for Microsoft Office 2016 (KB3115417) 64-Bit Edition Update for Microsoft Office 2016 (KB3115418) 64-Bit Edition Update for Microsoft Office 2016 (KB3115420) 64-Bit Edition Update for Microsoft Office 2016 (KB3115421) 64-Bit Edition Update for Microsoft Office 2016 (KB3115422) 64-Bit Edition Update for Microsoft Office 2016 (KB3115495) 64-Bit Edition Update for Microsoft Office 2016 (KB3118259) 64-Bit Edition Update for Microsoft Office 2016 (KB3118260) 64-Bit Edition Update for Microsoft OneDrive for Business (KB3118265) 64-Bit Edition Update for Microsoft PowerPoint 2016 (KB3115498) 64-Bit Edition Update for Microsoft Project 2016 (KB3118266) 64-Bit Edition Update for Microsoft Visio 2016 (KB3115494) 64-Bit Edition Update for Microsoft Word 2016 (KB3118291) 64-Bit Edition Update for Skype for Business 2016 (KB3118288) 64-Bit Edition Virtual COM Port Driver Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables Visual Studio C++ 10.0 Runtime Windows 10-upgradeassistent Windows 7 USB/DVD Download Tool Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack WinRAR 5.40 beta 1 (64-bit) Wise Care 365 4.26 ==== Running Processes ====================== C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Launch Manager\dsiwmis.exe C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe C:\Program Files (x86)\Launch Manager\LMutilps32.exe C:\Program Files (x86)\TeamViewer\TeamViewer.exe C:\Program Files (x86)\TeamViewer\tv_w32.exe C:\Program Files (x86)\Launch Manager\LManager.exe C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe C:\Program Files (x86)\AVG\Framework\Common\avguix.exe C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Glary Utilities 5\Integrator.exe C:\Users\admin\Desktop\zoek.exe C:\WINDOWS\SysWoW64\cmd.exe C:\WINDOWS\SysWoW64\cmd.exe C:\WINDOWS\SysWoW64\cmd.exe ==== Deleting Services ====================== ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8011 MB CPU Info: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz CPU Speed: 2429,9 MHz Sound Card: Luidsprekers (Realtek High Defi | Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1600 X 900 - 32 bit Network: Network Present Network Adapters: This Qualcomm Atheros network Controller connects you to the network. | TAP-Windows Adapter V9 | Bluetooth PAN HelpText | Qualcomm Atheros AR5BWB222 Wireless Network Adapter | Microsoft Wi-Fi Direct Virtual Adapter CD / DVD Drives: 1x (D: | ) D: HL-DT-STDVDRAM GT90N Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 446,7GB | E: 350,0MB | F: 250,6GB Hard Disks - Free: C: 370,5GB | E: 51,6MB | F: 211,6GB Manufacturer *: Insyde Corp. BIOS Info: AT/AT COMPATIBLE | 05/31/13 | ACRSYS - 1 Time Zone: Romance (standaardtijd) Motherboard *: Acer VA70_HC Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Internet Explorer Version: 11.187.14393.0 Google Chrome version: 53.0.2785.116 Sun Java version: 1.8.0_102 (32-bit) Sun Java version: 1.8.0_102 (64-bit) Shockwave Player version: 12.2.4r194 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2016-09-16 05:55:11 99F5D5BBD351694638DF3C0CC4A919A3 7623 ----a-w- C:\WINDOWS\diagwrn.xml 2016-09-16 05:55:11 99F5D5BBD351694638DF3C0CC4A919A3 7623 ----a-w- C:\WINDOWS\diagerr.xml 2016-09-16 05:22:16 D77FBBB502900E568C2D4E8C09F66F45 67584 --s-a-w- C:\WINDOWS\bootstat.dat ====== C:\Users\admin\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2016-09-17 17:24:29 A636D341E03F15A161068383B538EFF1 176632 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2016-09-17 17:24:29 1C6F31756DE0CAC502A743382892C620 828408 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-09-17 17:22:44 C618D56F8AFBD86427EADB111F3267AF 289280 ----a-w- C:\WINDOWS\SysWOW64\NmaDirect.dll 2016-09-17 17:22:44 574215F12BFB5EC2A7011C7383BE443A 58880 ----a-w- C:\WINDOWS\SysWOW64\MosHostClient.dll 2016-09-17 17:22:43 D7703B80051C3E5E5DC438B0546EAC01 838144 ----a-w- C:\WINDOWS\SysWOW64\JpMapControl.dll 2016-09-17 17:22:43 9557D17FC4836D38A079100AE537058F 822784 ----a-w- C:\WINDOWS\SysWOW64\Chakradiag.dll 2016-09-17 17:22:43 2576CB441AB886AF104B412D6898EB01 70656 ----a-w- C:\WINDOWS\SysWOW64\MosStorage.dll 2016-09-17 17:22:42 CE9D967E2347A05C30E97EA6C0D48143 635904 ----a-w- C:\WINDOWS\SysWOW64\jscript9diag.dll 2016-09-17 17:22:42 4F023C4C31048E9F7C81F7403101F056 116224 ----a-w- C:\WINDOWS\SysWOW64\MapsBtSvc.dll 2016-09-17 17:22:42 28DD6E3A216F4425B7E0945904F23655 331264 ----a-w- C:\WINDOWS\SysWOW64\MapConfiguration.dll 2016-09-17 17:22:42 19E7B87856BF75039B3D11391BD68898 5376000 ----a-w- C:\WINDOWS\SysWOW64\BingMaps.dll 2016-09-17 17:22:42 12559576CCE18136E18CF41F2FAA02AE 536576 ----a-w- C:\WINDOWS\SysWOW64\BingOnlineServices.dll 2016-09-17 17:22:41 887A0C46FCC65DAEC16F3A0D64DB8735 3667456 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2016-09-17 17:22:41 6E4B127566702816CA86AC572D5E5927 2107392 ----a-w- C:\WINDOWS\SysWOW64\MapGeocoder.dll 2016-09-17 17:22:41 432DE270220BB195F2F2ED16F8C2017D 853344 ----a-w- C:\WINDOWS\SysWOW64\LicenseManager.dll 2016-09-17 17:22:41 397395AF1AF2430E3B98677B5672BAF4 260096 ----a-w- C:\WINDOWS\SysWOW64\Phoneutil.dll 2016-09-17 17:22:40 F9E36CEA34539DAF1CC1C556E4D5DAC3 6043136 ----a-w- C:\WINDOWS\SysWOW64\Chakra.dll 2016-09-17 17:22:40 F096ACC9EE737E087D16B294AF968E54 508416 ----a-w- C:\WINDOWS\SysWOW64\vbscript.dll 2016-09-17 17:22:39 F34F554AE030BBFDD852A2CA626C1465 45568 ----a-w- C:\WINDOWS\SysWOW64\jsproxy.dll 2016-09-17 17:22:39 EA981D4947642A0C113D68DB524D5805 761344 ----a-w- C:\WINDOWS\SysWOW64\NMAA.dll 2016-09-17 17:22:39 CC1FC1B7F0D1913B1FB61952A212DDB5 715264 ----a-w- C:\WINDOWS\SysWOW64\MapControlCore.dll 2016-09-17 17:22:39 5935D04E14F04EE4C910DAF766ACE1C2 2360832 ----a-w- C:\WINDOWS\SysWOW64\MapRouter.dll 2016-09-17 17:22:39 55AAAA3C2A11EE0F48BFB10D222C4A7F 461312 ----a-w- C:\WINDOWS\SysWOW64\DbgModel.dll 2016-09-17 17:22:38 DD1038EFB43AD0D017CD13027FB62B9B 340832 ----a-w- C:\WINDOWS\SysWOW64\msv1_0.dll 2016-09-17 17:22:38 9A4950893ACEE2CB33F83A81F820ED49 5684736 ----a-w- C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-09-17 17:22:36 DA2A595B7D9DEDABFCFDA95153768FF5 1980768 ----a-w- C:\WINDOWS\SysWOW64\msxml6.dll 2016-09-17 17:22:36 4406A3C1D05048CAC6FA68187D65C820 1509376 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll 2016-09-17 17:22:35 E8F8456B3E763449A80477E790E7D2EB 8192 ----a-w- C:\WINDOWS\SysWOW64\UserDataAccessRes.dll 2016-09-17 17:22:35 D508341E723C1A9E96083947A6632479 2217472 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2016-09-17 17:22:35 57895C7CFF374517ABC79CCCC3C77716 4557824 ----a-w- C:\WINDOWS\SysWOW64\dbgeng.dll 2016-09-17 17:22:34 F05624A666CECC5181AD269AEFDAA77C 54784 ----a-w- C:\WINDOWS\SysWOW64\AddressParser.dll 2016-09-17 17:22:34 638112A3FD6ACFBF08904BD0A9F9B1BC 94208 ----a-w- C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll 2016-09-17 17:22:34 52165927A7B04DF0B7E28901AA70EB76 6109184 ----a-w- C:\WINDOWS\SysWOW64\mos.dll 2016-09-17 17:22:33 C9EB13B0633AE97BFB10595A34C09D38 1503032 ----a-w- C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2016-09-17 17:22:32 DCDB83C9FE90EB6390EF0ACDFC83BDA8 755200 ----a-w- C:\WINDOWS\SysWOW64\kerberos.dll 2016-09-17 17:22:28 6656BFCE4868408604C047E839977C93 110080 ----a-w- C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll 2016-09-17 17:22:24 72BE3687002C4E2BA3A05604EF5EBDB5 409088 ----a-w- C:\WINDOWS\SysWOW64\MosResource.dll 2016-09-17 17:22:24 5750D828D956B7B0247C291540746497 121344 ----a-w- C:\WINDOWS\SysWOW64\Chakrathunk.dll 2016-09-17 17:22:23 269F9347BA8420679673C1E254AFEF8C 19417088 ----a-w- C:\WINDOWS\SysWOW64\edgehtml.dll 2016-09-17 17:22:22 FAEA49C46D260C0E93364FDB48284723 81408 ----a-w- C:\WINDOWS\SysWOW64\mshtmled.dll 2016-09-17 17:22:22 6D6B1D985326848BFA5C951DF72489DB 198656 ----a-w- C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-09-17 17:22:21 C801A619AEAC6F37C4B011B14D651921 19416576 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2016-09-17 17:22:18 381960815341F3833389172B4E785376 6653592 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2016-09-17 17:22:10 0DE78B30264A8E98D1F1A558ED911AB5 873472 ----a-w- C:\WINDOWS\SysWOW64\aadtb.dll 2016-09-17 17:22:04 F91D27953FFEDE18D8BA84317D38ADAC 3305984 ----a-w- C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2016-09-17 17:22:01 95CFC05F34079A4B2CE4BBABC05BDEDA 197120 ----a-w- C:\WINDOWS\SysWOW64\eappcfg.dll 2016-09-17 17:22:01 31CEC1815AF7F92E1C466F49EC944751 57344 ----a-w- C:\WINDOWS\SysWOW64\eappprxy.dll 2016-09-17 17:22:00 F998BC859F9AE1224848D828B9AA6ABD 243712 ----a-w- C:\WINDOWS\SysWOW64\eapp3hst.dll 2016-09-17 17:22:00 8FC85E2CFA234AE5857A3AA9CDB109F6 235008 ----a-w- C:\WINDOWS\SysWOW64\eapphost.dll 2016-09-17 17:22:00 762656B24568CA509EC05E137C54C5B2 1656320 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll 2016-09-17 17:22:00 1889FC75DC32B5EDAB5853CAFC7B5931 1534464 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll 2016-09-17 17:21:58 41C66BB9044FEFC880DBE294AB91C13D 20965248 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll 2016-09-17 17:21:54 D8A199D0F984727101123ADFF149EFD3 7623680 ----a-w- C:\WINDOWS\SysWOW64\twinui.dll 2016-09-17 17:21:53 9E0E004695FBAFF4762465086050D083 1013248 ----a-w- C:\WINDOWS\SysWOW64\Windows.Web.Http.dll 2016-09-17 17:21:53 0F3D1BE4F5A839DFA74A8E554B0B0E86 674304 ----a-w- C:\WINDOWS\SysWOW64\Windows.Networking.dll 2016-09-17 17:21:52 C49FE8A972196C78B44A89C280B4B439 751104 ----a-w- C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2016-09-17 17:21:51 F44F1134552C9B021533F40F46BA1220 2755584 ----a-w- C:\WINDOWS\SysWOW64\mshtml.tlb 2016-09-17 17:21:48 1239C51284092F90C31583F699FA1062 91648 ----a-w- C:\WINDOWS\SysWOW64\eappgnui.dll 2016-09-17 17:21:47 F4AEED76A0758813E9504F3D8731EFF8 866816 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll 2016-09-17 17:21:46 7125B3879C393E14070E6D262A7C39CA 55808 ----a-w- C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll 2016-09-17 17:21:46 0203CAE673FF9072FEC0B63262D53DB2 18944 ----a-w- C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll 2016-09-17 17:21:45 BA68FB1944EA1C024E47915A25EEC0C5 5721808 ----a-w- C:\WINDOWS\SysWOW64\windows.storage.dll 2016-09-17 17:21:42 B9C66D12CE1BB9DA007537AA3313A6FE 12174336 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2016-09-17 17:21:40 6F6752D968D1FA91579FC190E6DC5AA4 500224 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll 2016-09-17 17:21:40 29F0526733193BBCEE9611A13BD3450A 48128 ----a-w- C:\WINDOWS\SysWOW64\ContactActivation.dll 2016-09-17 17:21:39 204BE0AB9AE9045B80061BBC24103A06 1430208 ----a-w- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2016-09-17 17:21:36 79F3B1B6C2AE6A655C57DB32A0DE7A34 38400 ----a-w- C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll 2016-09-17 17:21:36 16D4E494EFE58C5CC837E0C088FFB01E 147456 ----a-w- C:\WINDOWS\SysWOW64\VCardParser.dll 2016-09-17 17:21:36 069737BD87ACD7E070DC1B9FF5E8A40E 37888 ----a-w- C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll 2016-09-17 17:21:35 DEB504EA38A82FB93FC733E2C0113864 12345856 ----a-w- C:\WINDOWS\SysWOW64\wmp.dll 2016-09-17 17:21:32 E6FFE8E3CC7D4F912E8DA883C36FCAC9 3893376 ----a-w- C:\WINDOWS\SysWOW64\mfcore.dll 2016-09-17 17:21:30 2F742E62CE8B03FEE742FA0C9F270162 13867520 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2016-09-17 17:21:27 7C24C4B6F34B1DD483858494F0F86780 224256 ----a-w- C:\WINDOWS\SysWOW64\ExSMime.dll 2016-09-17 17:21:25 D08A3CF28956D952D854E97981BACB92 9728 ----a-w- C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll 2016-09-17 17:21:25 D0458ECE826EA39CF3ABEBF7E82B4707 284672 ----a-w- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll 2016-09-17 17:21:25 503C1D01A5C52D01E543E32A8C5C4D77 9216 ----a-w- C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll 2016-09-17 17:21:24 DB169C16620112169F801CE7C58F396C 231936 ----a-w- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2016-09-17 17:21:22 533730C3449FAA3F13EA58D0AF494525 2166232 ----a-w- C:\WINDOWS\SysWOW64\combase.dll 2016-09-17 17:21:18 A53210AC2711617F23300AA955185E12 601200 ----a-w- C:\WINDOWS\SysWOW64\oleaut32.dll 2016-09-17 17:21:17 210B201DB4254094F75BFE098AD0B738 391168 ----a-w- C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2016-09-17 17:21:16 F9BFEAB747DE538139A746CDA3B7CBB0 114176 ----a-w- C:\WINDOWS\SysWOW64\setupugc.exe 2016-09-17 17:21:16 539EDA2424DCCB4197440E69B5717BAF 2048496 ----a-w- C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2016-09-17 17:21:14 4D0BBCC85007F01B1E69B926B97D38FA 118272 ----a-w- C:\WINDOWS\SysWOW64\AppointmentActivation.dll 2016-09-17 17:21:12 E4EAC933AF8ADBB1249747641FBA838A 1264912 ----a-w- C:\WINDOWS\SysWOW64\msctf.dll 2016-09-17 17:21:12 3B12E33EFC631609A7C57370C8047928 4612608 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.dll 2016-09-17 17:21:08 BDEFEE2A9EA074C3F385E484129FFEED 57344 ----a-w- C:\WINDOWS\SysWOW64\POSyncServices.dll 2016-09-17 17:21:07 3E7DF95A65E1A6EC036763B0413C8B92 1557296 ----a-w- C:\WINDOWS\SysWOW64\winmde.dll 2016-09-17 17:21:06 677DB65B78EC1BE250371B53C1D1C42B 1595904 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2016-09-17 17:21:05 2466B7CF57CF5E1BF273665D1BCA3F27 1707512 ----a-w- C:\WINDOWS\SysWOW64\KernelBase.dll 2016-09-17 17:21:03 6EDEFA6A8F3FAD2836588D4ECE1AFAE1 1123360 ----a-w- C:\WINDOWS\SysWOW64\mfplat.dll 2016-09-17 17:21:02 9B1CE49762BAAB1DB9D02F98CD5CB984 529928 ----a-w- C:\WINDOWS\SysWOW64\mf.dll 2016-09-17 17:21:02 96D97C53938CAFDB2D9076514160711C 2251432 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2016-09-17 17:21:01 95282F6BBE2AF779E03EDA100B38ED07 2999296 ----a-w- C:\WINDOWS\SysWOW64\win32kfull.sys 2016-09-17 17:21:01 47F407D8B4F7C17A525165F6A30E7107 1993216 ----a-w- C:\WINDOWS\SysWOW64\dwmcore.dll 2016-09-17 17:21:01 1B8E91090B00A80B4DB99B64BF2F54D8 955520 ----a-w- C:\WINDOWS\SysWOW64\mfsvr.dll 2016-09-17 17:21:00 F00602EC1E269BE4610996FC428BDC4F 7468032 ----a-w- C:\WINDOWS\SysWOW64\mstscax.dll 2016-09-17 17:21:00 5E6C609A05EB9CEA4A2B12D38F0139FD 711680 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2016-09-17 17:20:59 389A5D051A6E5038BA10366968C1D649 1362504 ----a-w- C:\WINDOWS\SysWOW64\wmpmde.dll 2016-09-17 17:20:58 9D966551A9046C1E05702ACF803B23A5 1966288 ----a-w- C:\WINDOWS\SysWOW64\hevcdecoder.dll 2016-09-17 17:20:56 82EAA0F38238DFB086DF42575C4A3987 1556992 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2016-09-17 17:20:54 D797013FEACE7C0E6382C651E1B785BF 1106944 ----a-w- C:\WINDOWS\SysWOW64\wsp_health.dll 2016-09-17 17:20:54 069F2DAFB360367EBAF313B5D6E0CC21 498688 ----a-w- C:\WINDOWS\SysWOW64\LogonController.dll 2016-09-17 17:20:53 EABD32261BCF4591B2E4FD68346A6A10 782176 ----a-w- C:\WINDOWS\SysWOW64\WWAHost.exe 2016-09-17 17:20:50 E649B9DE608BFA72970A8371F6AA732F 2206496 ----a-w- C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2016-09-17 17:20:48 7026F563648DDBC9A7D893F1EAF31583 509792 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2016-09-17 17:20:48 464017E65F4D1389C5DD638A728C9CC4 1316352 ----a-w- C:\WINDOWS\SysWOW64\wsp_fs.dll 2016-09-17 17:20:47 EBC4D08F2F3AD53C23BAB613FD34E6CA 709120 ----a-w- C:\WINDOWS\SysWOW64\CPFilters.dll 2016-09-17 17:20:42 A8A1972707EDB245529005D4507CD220 321792 ----a-w- C:\WINDOWS\SysWOW64\LockAppHost.exe 2016-09-17 17:20:41 7E1DE305D91428A2AE496EA0BCEFFA3E 5398016 ----a-w- C:\WINDOWS\SysWOW64\aclui.dll 2016-09-17 17:20:40 A6F88E43D61C03C7B6CE73F4C498F951 2423296 ----a-w- C:\WINDOWS\SysWOW64\MSAJApi.dll 2016-09-17 17:20:38 9A435497B368358CC7A73113E5C43A15 1631232 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll 2016-09-17 17:20:37 C6BF51DA6A0432F44B911EF145D85B1B 798208 ----a-w- C:\WINDOWS\SysWOW64\authui.dll 2016-09-17 17:20:37 482987D63FFF38BF849991949853E285 1360456 ----a-w- C:\WINDOWS\SysWOW64\mfnetsrc.dll 2016-09-17 17:20:34 F2711C746D3AD450E6276139F177422D 959104 ----a-w- C:\WINDOWS\SysWOW64\ole32.dll 2016-09-17 17:20:33 0058020C56CB74431BEDF93AC04503F4 846560 ----a-w- C:\WINDOWS\SysWOW64\WinTypes.dll 2016-09-17 17:20:31 D45DF2552C3C38024D4CADE4EBED061A 117240 ----a-w- C:\WINDOWS\SysWOW64\sspicli.dll 2016-09-17 17:20:31 ABC62EE7A92EABED1DB81F73FCAC08D4 1853232 ----a-w- C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2016-09-17 17:20:31 533E0CA205CE52DC0E1BB31F9895F455 1228288 ----a-w- C:\WINDOWS\SysWOW64\usercpl.dll 2016-09-17 17:20:30 27AC95586AFF51433B70210F80861C0F 860672 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2016-09-17 17:20:29 804DCE6D165D93ED74A5472B84B6D429 640976 ----a-w- C:\WINDOWS\SysWOW64\evr.dll 2016-09-17 17:20:28 F5E677316259341EEE87FD29B82CB73F 895488 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2016-09-17 17:20:28 DBAC0006851C7A147586B1B28A16C4FF 1456640 ----a-w- C:\WINDOWS\SysWOW64\GdiPlus.dll 2016-09-17 17:20:28 93B29353460403142BD6A6692908123D 980824 ----a-w- C:\WINDOWS\SysWOW64\mfnetcore.dll 2016-09-17 17:20:21 3CCE02A473021A686FBE71BFE627B7C7 483840 ----a-w- C:\WINDOWS\SysWOW64\CoreMessaging.dll 2016-09-17 17:20:21 1230F2B67CA6286F19F49A1FC0407CCC 2138112 ----a-w- C:\WINDOWS\SysWOW64\InputService.dll 2016-09-17 17:20:20 E1061870262AD595A16154C453A0BEAE 484584 ----a-w- C:\WINDOWS\SysWOW64\AudioSes.dll 2016-09-17 17:20:20 9D8F7BD41657B515DD46C7BF90A26CDB 79536 ----a-w- C:\WINDOWS\SysWOW64\win32u.dll 2016-09-17 17:20:20 5E7F1F15E5A9573C460770FB77B9F05C 1255936 ----a-w- C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2016-09-17 17:20:16 BD9E37B44AD50E435B0E2B1058F48C89 2560 ----a-w- C:\WINDOWS\SysWOW64\tzres.dll 2016-09-17 17:20:16 A16F26BA3232C1FD4529FF990B7C197C 1293312 ----a-w- C:\WINDOWS\SysWOW64\WMPDMC.exe 2016-09-17 17:20:16 8DD77C980928EDC2EED5C1B563E408A7 795648 ----a-w- C:\WINDOWS\SysWOW64\MiracastReceiver.dll 2016-09-17 17:20:16 5E668EB6662982A4722F9EBBA4FA1087 2560 ----a-w- C:\WINDOWS\SysWOW64\msxml6r.dll 2016-09-17 17:20:16 4287D0E235DAAF930FB161825FB610A0 2560 ----a-w- C:\WINDOWS\SysWOW64\PhoneutilRes.dll 2016-09-17 17:20:16 079208EE62F7D67AA9CB92038C8CB4B1 2560 ----a-w- C:\WINDOWS\SysWOW64\MapControlStringsRes.dll 2016-09-17 17:20:15 5ADA9E0F63AA30EE62FFD35D4F171636 426496 ----a-w- C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2016-09-17 17:20:14 56EAAD601833231995F809A4B671151E 846336 ----a-w- C:\WINDOWS\SysWOW64\WebcamUi.dll 2016-09-17 17:20:14 307C3247BA806912FC18CA91041DA113 1077760 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll 2016-09-17 17:20:13 B81F9232875F0BD99CECC074B125EF55 1755136 ----a-w- C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll 2016-09-17 17:20:13 732A014DED200D675472FB6787F94034 3105792 ----a-w- C:\WINDOWS\SysWOW64\mstsc.exe 2016-09-17 17:20:11 F91694EC6E9C772E9A8335B46E6DB81F 1220608 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll 2016-09-17 17:20:11 9C2EEE789125E9D68131922ED7CC8B29 444416 ----a-w- C:\WINDOWS\SysWOW64\SettingSync.dll 2016-09-17 17:20:11 9675B603537218820C682400BC8622D6 2026496 ----a-w- C:\WINDOWS\SysWOW64\inetcpl.cpl 2016-09-17 17:20:11 596152E3166D97782FB9A724CAE4FC79 253952 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll 2016-09-17 17:20:10 E20D986769963ACE3904334A92C37F2A 343040 ----a-w- C:\WINDOWS\SysWOW64\PlayToDevice.dll 2016-09-17 17:20:10 260A7E9D5FF720446F6CAA436E8F22A0 248832 ----a-w- C:\WINDOWS\SysWOW64\dlnashext.dll 2016-09-17 17:20:10 24568A7EA6F05FFA53FC6994D8DC1492 554496 ----a-w- C:\WINDOWS\SysWOW64\StoreAgent.dll 2016-09-17 17:20:09 4D9244DE98B45DA1E285189D422F32D0 285184 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll 2016-09-17 17:20:08 D35621D22A4839A58ECCC85B6FD71CBC 355328 ----a-w- C:\WINDOWS\SysWOW64\RTMediaFrame.dll 2016-09-17 17:20:07 73FDD16B5C87C1C98E310C85D63940CC 575488 ----a-w- C:\WINDOWS\SysWOW64\qdvd.dll 2016-09-17 17:20:07 5ED84F4377D60298D22084ADEE11CDAC 171520 ----a-w- C:\WINDOWS\SysWOW64\ClipboardServer.dll 2016-09-17 17:20:07 4A1A91703A20DB81E8E2ACFCE5F339E6 558080 ----a-w- C:\WINDOWS\SysWOW64\clusapi.dll 2016-09-17 17:20:07 2E966C10310A85BB7D569A035D153DAB 340480 ----a-w- C:\WINDOWS\SysWOW64\iedkcs32.dll 2016-09-17 17:20:07 147EE8D338BAB6C90FBB92BCDA6222AD 220672 ----a-w- C:\WINDOWS\SysWOW64\PlayToReceiver.dll 2016-09-17 17:20:06 A76EB76BC591B186FBCAFD1E921C492F 491520 ----a-w- C:\WINDOWS\SysWOW64\bcastdvr.exe 2016-09-17 17:20:06 1F75B08FEC95C062B50BDC8ABBAB3FD0 222720 ----a-w- C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe 2016-09-17 17:20:03 B30EF73AC4993A1B2D540B0B9E5D3978 47104 ----a-w- C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll 2016-09-17 17:20:03 55336C6F59AD2162F9DBF877395B85B6 150528 ----a-w- C:\WINDOWS\SysWOW64\win32k.sys 2016-09-17 17:20:00 740B1748A7B9F11B5F5852B79EF3302D 298496 ----a-w- C:\WINDOWS\SysWOW64\resutils.dll 2016-09-17 17:19:58 7CB21D73BB04088F9EC6171B4092F477 34304 ----a-w- C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2016-09-17 17:19:58 6AAF7906DA9D1CDC174AF9EFEDC35C29 640000 ----a-w- C:\WINDOWS\SysWOW64\MCRecvSrc.dll 2016-09-17 17:19:58 1CCEBE614817D0F516A92BBFA2638DC2 179712 ----a-w- C:\WINDOWS\SysWOW64\InstallAgent.exe 2016-09-16 06:19:35 380B81B7BF8C5687460C018A6CD73AC1 44653 ----a-w- C:\WINDOWS\SysWOW64\license.rtf 2016-09-16 06:14:20 EA9D4CD0F30337BC51F50CBAD8097933 592384 ----a-w- C:\WINDOWS\SysWOW64\GamePanel.exe 2016-09-16 06:14:20 BD3CC07916DE6906E95635E8FF7B1CBC 231424 ----a-w- C:\WINDOWS\SysWOW64\CloudBackupSettings.dll 2016-09-16 06:14:20 4C74A9678409A531F016121897E0B684 156672 ----a-w- C:\WINDOWS\SysWOW64\BcastDVRHelper.dll 2016-09-16 06:14:15 EC510ABC727F564F47DE1F7BDD97AE80 38912 ----a-w- C:\WINDOWS\SysWOW64\wfdprov.dll 2016-09-16 06:14:15 E8719A43DCBFC9A86374B8F53920D5FC 121368 ----a-w- C:\WINDOWS\SysWOW64\mfps.dll 2016-09-16 06:14:15 E82E788C7E7B8309C9B460C71C7BC487 15360 ----a-w- C:\WINDOWS\SysWOW64\wlanhlp.dll 2016-09-16 06:14:15 BA7E31838CE6BFB3F0DB8DA7A519B47A 68096 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll 2016-09-16 06:14:15 553F523EB712473F0EBCA116EB768EC9 198144 ----a-w- C:\WINDOWS\SysWOW64\FSClient.dll 2016-09-16 06:14:15 4A176D179AC43240482C0C26DA82FEAE 313560 ----a-w- C:\WINDOWS\SysWOW64\wlanapi.dll 2016-09-16 06:14:15 483BEFF11EB11AB6FDEAB013301754CE 9260032 ----a-w- C:\WINDOWS\SysWOW64\wmploc.DLL 2016-09-16 06:14:15 42F8062B5B0216A890EB98621EFFA51F 181760 ----a-w- C:\WINDOWS\SysWOW64\mfsensorgroup.dll 2016-09-16 06:14:15 28220013C6DB1BAC7613E2B55D11B50F 9216 ----a-w- C:\WINDOWS\SysWOW64\spwmp.dll 2016-09-16 06:14:15 18F63F35EC3A59D2E6E0AB0AC1C814E4 1343928 ----a-w- C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2016-09-16 06:14:14 F05DA5C0AF9464137A4BD12C4FA80D90 1570680 ----a-w- C:\WINDOWS\SysWOW64\ntdll.dll 2016-09-16 06:14:14 CCC20EF7F89FCD11BC809B90C8768182 118272 ----a-w- C:\WINDOWS\SysWOW64\slc.dll 2016-09-16 06:14:14 CC8FAB9F22A20B9C314DF2F1E9247482 5120 ----a-w- C:\WINDOWS\SysWOW64\msdxm.ocx 2016-09-16 06:14:14 CC8FAB9F22A20B9C314DF2F1E9247482 5120 ----a-w- C:\WINDOWS\SysWOW64\dxmasf.dll 2016-09-16 06:14:14 B968615375D2C4922A0245A9558893BB 105984 ----a-w- C:\WINDOWS\SysWOW64\sppc.dll 2016-09-16 06:14:14 B13834EC0DF49734EDB55B95B291F345 19968 ----a-w- C:\WINDOWS\SysWOW64\slcext.dll 2016-09-16 06:14:14 A5B3274588A455D586827056E11C192C 58880 ----a-w- C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll 2016-09-16 06:14:14 990E927E27B0FF1191C55472EBEA3DD2 181760 ----a-w- C:\WINDOWS\SysWOW64\tcpipcfg.dll 2016-09-16 06:14:14 6CF01BB82C4ECBAB088863BFFCB3239B 466432 ----a-w- C:\WINDOWS\SysWOW64\sppcext.dll 2016-09-16 06:14:14 6019DC32EC94E1AA3637FFD13DEE5837 141824 ----a-w- C:\WINDOWS\SysWOW64\DscCoreConfProv.dll 2016-09-16 06:14:14 41C1C773DBBF8DC04834CE8263085359 61440 ----a-w- C:\WINDOWS\SysWOW64\iesetup.dll 2016-09-16 06:14:14 28AA5EEBF4FD13B2871F719D7E8E4267 691712 ----a-w- C:\WINDOWS\SysWOW64\msfeeds.dll 2016-09-16 06:14:14 16A7D35F3BE1CE2D91120AB28257C362 29696 ----a-w- C:\WINDOWS\SysWOW64\iernonce.dll 2016-09-16 06:14:14 05FE3C95087AC75E302FCD184931B9E9 25600 ----a-w- C:\WINDOWS\SysWOW64\netiougc.exe 2016-09-16 06:14:14 056E20BF43207E95A92D38B539656E3E 790760 ----a-w- C:\WINDOWS\SysWOW64\rpcrt4.dll 2016-09-16 06:14:12 AA41F294289B678E23B3C63792E29C79 939872 ----a-w- C:\WINDOWS\SysWOW64\pidgenx.dll 2016-09-16 06:14:08 F5D73C1EA686BB78E9B5C0AA3F5845A2 806912 ----a-w- C:\WINDOWS\SysWOW64\D3D12.dll 2016-09-16 06:14:08 EE869580454C8359124B2D9454B0245B 1170944 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2016-09-16 06:14:08 E5C6864827D5B0E0502F4298B2FFD4BC 226304 ----a-w- C:\WINDOWS\SysWOW64\container.dll 2016-09-16 06:14:08 B85F0EAD2FE91C3B9FF2D246FC412085 102400 ----a-w- C:\WINDOWS\SysWOW64\offlinelsa.dll 2016-09-16 06:14:08 B028CD98CDAE50817A842DA3BCB2D426 2143232 ----a-w- C:\WINDOWS\SysWOW64\storagewmi.dll 2016-09-16 06:14:08 A4DE7801642001F4836E9FA6A8128770 389632 ----a-w- C:\WINDOWS\SysWOW64\schannel.dll 2016-09-16 06:14:08 937B06DABA76DE5D4D538A8CCCA4A9C6 20992 ----a-w- C:\WINDOWS\SysWOW64\smphost.dll 2016-09-16 06:14:08 93065DFEC4704E4D5BB4C2573A35FECD 468992 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll 2016-09-16 06:14:08 8DE2BD969738C7A09B65BB00CE90DC02 20992 ----a-w- C:\WINDOWS\SysWOW64\delegatorprovider.dll 2016-09-16 06:14:08 85D307B6D6B8EBD87E18469F976200D9 544768 ----a-w- C:\WINDOWS\SysWOW64\uReFS.dll 2016-09-16 06:14:08 7DF2D4948EB52D84B77CB60FD9F700C0 210432 ----a-w- C:\WINDOWS\SysWOW64\offlinesam.dll 2016-09-16 06:14:08 7CEDA4ED28857BC683A3CCD41818EC60 22528 ----a-w- C:\WINDOWS\SysWOW64\encapi.dll 2016-09-16 06:14:08 7CDDAD654C65002B53F7F7503CCA5539 568832 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll 2016-09-16 06:14:08 682E99D14AEC1ED0874872433FC63C0F 14336 ----a-w- C:\WINDOWS\SysWOW64\C_IS2022.DLL 2016-09-16 06:14:08 646456D5F61E896AB100F07B42FE5630 225280 ----a-w- C:\WINDOWS\SysWOW64\C_G18030.DLL 2016-09-16 06:14:08 5F4A1DEA64CDBF5FD25709FFDE3F77AF 361096 ----a-w- C:\WINDOWS\SysWOW64\tsmf.dll 2016-09-16 06:14:08 5651FD48B4D458F50E78B8B43651B432 74240 ----a-w- C:\WINDOWS\SysWOW64\updatepolicy.dll 2016-09-16 06:14:08 53CAEB549848695EFE764887D9F1AA27 136032 ----a-w- C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll 2016-09-16 06:14:08 4FEB654E5FA74B089BDD1776DEA4E7EB 20480 ----a-w- C:\WINDOWS\SysWOW64\storagewmi_passthru.dll 2016-09-16 06:14:08 4CD0CB032114D0D87BE7EA74438E523F 2711040 ----a-w- C:\WINDOWS\SysWOW64\mispace.dll 2016-09-16 06:14:08 4C74CE81E514FEDB1D5FF6676524BF56 36168 ----a-w- C:\WINDOWS\SysWOW64\mfpmp.exe 2016-09-16 06:14:08 3771CC8B586F6E953073E07735C46D98 86016 ----a-w- C:\WINDOWS\SysWOW64\samlib.dll 2016-09-16 06:14:08 2540DB1A9F7AD778FDAA8A073CDA3AB9 12800 ----a-w- C:\WINDOWS\SysWOW64\c_GSM7.DLL 2016-09-16 06:14:08 1973DCFB255213400D1BAC19C37086E8 184832 ----a-w- C:\WINDOWS\SysWOW64\mfksproxy.dll 2016-09-16 06:14:08 0D76DAA261682157606F740C96FA6E33 297552 ----a-w- C:\WINDOWS\SysWOW64\wevtapi.dll 2016-09-16 06:14:08 03EDC391936C4CFDEC874E4840CFC22A 35328 ----a-w- C:\WINDOWS\SysWOW64\deviceassociation.dll 2016-09-16 06:14:08 039C8465C730E7E9713819AB859505E9 1435896 ----a-w- C:\WINDOWS\SysWOW64\user32.dll 2016-09-16 06:14:08 00B851A939D04EED611C4674F0EEFF98 288768 ----a-w- C:\WINDOWS\SysWOW64\wincorlib.dll 2016-09-16 06:06:47 EBB019782606C198813D621DF161B5F0 35480 ----a-w- C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2016-09-16 06:06:47 989CF65E711803AEF6163FFC66D6C530 103120 ----a-w- C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2016-09-16 06:06:47 01B89BD21BE07010F812F9610B94D63C 778936 ----a-w- C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2016-09-16 05:23:54 D0818657648366B03C7CB4AA2DCED253 2716672 ----a-w- C:\WINDOWS\SysWOW64\PrintConfig.dll 2016-09-16 05:23:17 6587CEC591522F2D0EFE091B59ACCBCC 77832 ----a-w- C:\WINDOWS\SysWOW64\OpenCL.DLL 2016-09-14 04:49:55 D434FDB6EB8A384FA5ADD41DD1592506 14848 ----a-w- C:\WINDOWS\SysWOW64\mqcertui.dll 2016-09-14 04:49:55 89684D4742EB07174F5056F68D0F7140 635904 ----a-w- C:\WINDOWS\SysWOW64\mqsnap.dll 2016-09-12 15:37:12 F78D2BF2C551BE9DF6A2F3210A2964C1 97856 ----a-w- C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2016-09-17 17:22:45 AA5EE98CE729DB181B789CFBCFFA78EA 78848 ----a-w- C:\WINDOWS\Sysnative\MosHostClient.dll 2016-09-17 17:22:45 7C56370359E42E7ADA21B02D65B6291C 40448 ----a-w- C:\WINDOWS\Sysnative\mapsupdatetask.dll 2016-09-17 17:22:45 54D7849E41B05131F28F9F18E60C0B6C 49152 ----a-w- C:\WINDOWS\Sysnative\mapstoasttask.dll 2016-09-17 17:22:45 3CE841CC4ACEB503CD643A493A9A71A1 95232 ----a-w- C:\WINDOWS\Sysnative\MapsCSP.dll 2016-09-17 17:22:45 3726EF4008DFFB6258778D975AA8C890 25088 ----a-w- C:\WINDOWS\Sysnative\nativemap.dll 2016-09-17 17:22:44 ED5B42D75F3DEE93040B3930DA9F3009 77312 ----a-w- C:\WINDOWS\Sysnative\moshost.dll 2016-09-17 17:22:44 D06617FC96D8B0581E902795A5AAC160 88064 ----a-w- C:\WINDOWS\Sysnative\MosStorage.dll 2016-09-17 17:22:44 8C269C9B1A5EA49B92E2057F0BDC0180 313856 ----a-w- C:\WINDOWS\Sysnative\moshostcore.dll 2016-09-17 17:22:44 5B5800C896A4E27BEF4EDD6CE1B51D6A 133632 ----a-w- C:\WINDOWS\Sysnative\MediaFoundation.DefaultPerceptionProvider.dll 2016-09-17 17:22:44 47AEF5D01CF8EB9B61BB2A878E97F0C7 2424320 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.Perception.dll 2016-09-17 17:22:44 36970CA9668201F0FEE8F409E43FC159 446464 ----a-w- C:\WINDOWS\Sysnative\MapConfiguration.dll 2016-09-17 17:22:44 2B4E090D06C60853C5C00CF255F9E02A 1312768 ----a-w- C:\WINDOWS\Sysnative\SensorDataService.exe 2016-09-17 17:22:44 1FC92CE59786C5B18A536F081551F629 150528 ----a-w- C:\WINDOWS\Sysnative\MapsBtSvc.dll 2016-09-17 17:22:44 1E619B8774710B2603C7E4666947AA65 366592 ----a-w- C:\WINDOWS\Sysnative\NmaDirect.dll 2016-09-17 17:22:44 00350F126205876E948A4AA4B5D08AD1 1060352 ----a-w- C:\WINDOWS\Sysnative\JpMapControl.dll 2016-09-17 17:22:43 ADBAE62EA6497B01ADEED82ACBB2A969 3435008 ----a-w- C:\WINDOWS\Sysnative\MapRouter.dll 2016-09-17 17:22:43 974FA5866D2F4FB4D7FDEB4BDB911071 820736 ----a-w- C:\WINDOWS\Sysnative\BingOnlineServices.dll 2016-09-17 17:22:43 6E10195D98E708B11D2A78AF4C51D1B8 7792640 ----a-w- C:\WINDOWS\Sysnative\BingMaps.dll 2016-09-17 17:22:43 12E35897D1969CA3220B354224CB5958 2208768 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.Printing.3D.dll 2016-09-17 17:22:43 102732A12AEE82635C0C83797C9A8180 1029632 ----a-w- C:\WINDOWS\Sysnative\MapsStore.dll 2016-09-17 17:22:42 65C1C36CCC92C0241AD5072BE5692511 2947072 ----a-w- C:\WINDOWS\Sysnative\MapGeocoder.dll 2016-09-17 17:22:41 5725D2F9E67D2D2F944777384BFC5EC3 1081856 ----a-w- C:\WINDOWS\Sysnative\Chakradiag.dll 2016-09-17 17:22:41 127612A7EEDAE57787AAB1ECA9D3E1CE 4747776 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2016-09-17 17:22:40 B6D1C3A260C55CCE398B6FF9EC0FBA68 315904 ----a-w- C:\WINDOWS\Sysnative\Phoneutil.dll 2016-09-17 17:22:40 ABDEFBFA05C3BD84A10EC7A7FB1DA597 65024 ----a-w- C:\WINDOWS\Sysnative\POSyncServices.dll 2016-09-17 17:22:40 A972DDEFFEF76A9643A65F07C6762154 140288 ----a-w- C:\WINDOWS\Sysnative\Chakrathunk.dll 2016-09-17 17:22:39 9E78D7CF1E781E9A3E8F3434E6EDF49E 8192 ----a-w- C:\WINDOWS\Sysnative\UserDataAccessRes.dll 2016-09-17 17:22:38 F787916668CAD51DB1163F3CDAFA29E1 805888 ----a-w- C:\WINDOWS\Sysnative\jscript9diag.dll 2016-09-17 17:22:38 844360AD40F7A4E23B164C3A68DB739A 1280352 ----a-w- C:\WINDOWS\Sysnative\LicenseManager.dll 2016-09-17 17:22:38 45D020AB611938B2657BAFC6B69369CC 88576 ----a-w- C:\WINDOWS\Sysnative\mshtmled.dll 2016-09-17 17:22:37 BDF29C72FE1EE3AFC138186261503B0C 590848 ----a-w- C:\WINDOWS\Sysnative\vbscript.dll 2016-09-17 17:22:37 82B8932A600DB0787C42947886E41320 8122880 ----a-w- C:\WINDOWS\Sysnative\Chakra.dll 2016-09-17 17:22:36 B07ECD0CDCA2328AB8050FC3EF3B172C 678912 ----a-w- C:\WINDOWS\Sysnative\PhoneProviders.dll 2016-09-17 17:22:35 AEACA1EC0BFD8B391AA885F84B7547A0 23552 ----a-w- C:\WINDOWS\Sysnative\ExtrasXmlParser.dll 2016-09-17 17:22:35 AA614E179022050A89FED112EFAF03E8 44032 ----a-w- C:\WINDOWS\Sysnative\UserDataLanguageUtil.dll 2016-09-17 17:22:35 A81E1560E8D2002E3949B07883E250A0 52224 ----a-w- C:\WINDOWS\Sysnative\jsproxy.dll 2016-09-17 17:22:35 7E430C33D24BC0DC76F56FF459EFA44D 650240 ----a-w- C:\WINDOWS\Sysnative\DbgModel.dll 2016-09-17 17:22:35 50469D6A7AA765EAB8E758F4DFBBD011 45568 ----a-w- C:\WINDOWS\Sysnative\UserDataTypeHelperUtil.dll 2016-09-17 17:22:34 86B3A2029E6271039E6BE17FB9379570 936448 ----a-w- C:\WINDOWS\Sysnative\NMAA.dll 2016-09-17 17:22:34 512D1E8943E4622EAF985599711A1035 110080 ----a-w- C:\WINDOWS\Sysnative\Microsoft-Windows-MapControls.dll 2016-09-17 17:22:33 62E11028D11890DC615430ECDEFA0A68 905216 ----a-w- C:\WINDOWS\Sysnative\MapControlCore.dll 2016-09-17 17:22:33 45AD36ADEF6ADEDB0A80ACB8965295B7 7220224 ----a-w- C:\WINDOWS\Sysnative\Windows.Data.Pdf.dll 2016-09-17 17:22:32 F729F21451A7948444ACA11FE3E51C48 54784 ----a-w- C:\WINDOWS\Sysnative\ContactActivation.dll 2016-09-17 17:22:32 EE732D0F6A47F579DEEE96F31A189742 405344 ----a-w- C:\WINDOWS\Sysnative\msv1_0.dll 2016-09-17 17:22:32 0A1417285A4A6C8EBD16CF0CEFCB272D 23681024 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2016-09-17 17:22:31 761D711A1684F94ED4BF813BA12BA12E 1637888 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2016-09-17 17:22:30 D0D57322ABC7473E54472D8374169CC5 781824 ----a-w- C:\WINDOWS\Sysnative\PhoneService.dll 2016-09-17 17:22:30 91563D956CB14CACF2D52CCA895BEC5A 2630144 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2016-09-17 17:22:30 6D65E9129CBF98C3E8EC92748BAF6B1E 261120 ----a-w- C:\WINDOWS\Sysnative\indexeddbserver.dll 2016-09-17 17:22:30 353F92BD712689498AE1554B0DB9C136 2446696 ----a-w- C:\WINDOWS\Sysnative\msxml6.dll 2016-09-17 17:22:29 BDCF02173186A49AB4B9EAEF5B555ED1 68096 ----a-w- C:\WINDOWS\Sysnative\AddressParser.dll 2016-09-17 17:22:29 7DF46A143A6D9918D840B25D1733AE6B 118784 ----a-w- C:\WINDOWS\Sysnative\UserDataTimeUtil.dll 2016-09-17 17:22:29 7B8270ADE3831F59CB0A1FBE2B650E45 5384192 ----a-w- C:\WINDOWS\Sysnative\dbgeng.dll 2016-09-17 17:22:29 4AD49C57D4EBF99E94A17419F874FD8A 187904 ----a-w- C:\WINDOWS\Sysnative\VCardParser.dll 2016-09-17 17:22:28 CCDF9A041D4DBAE87B2BB750C89B982E 7654912 ----a-w- C:\WINDOWS\Sysnative\mos.dll 2016-09-17 17:22:28 7B3B3E87A3F4657D6D0D2C27EA24940F 263680 ----a-w- C:\WINDOWS\Sysnative\ExSMime.dll 2016-09-17 17:22:27 F0FBEC32E7733D7D67CC9D0396F45474 924672 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.BackgroundTransfer.dll 2016-09-17 17:22:27 E08C00B7044F58E7D53CB4F6451D3ABB 227840 ----a-w- C:\WINDOWS\Sysnative\cdd.dll 2016-09-17 17:22:27 594E6BE368E2496EE62EBB54DD0B3FAB 1738040 ----a-w- C:\WINDOWS\Sysnative\WindowsCodecs.dll 2016-09-17 17:22:27 3E2D8603946EDC84B9A2F83FD5782D47 1328128 ----a-w- C:\WINDOWS\Sysnative\Windows.Web.Http.dll 2016-09-17 17:22:26 6683024745B10EB18A25F13256E0E1D1 911872 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.dll 2016-09-17 17:22:26 605512D704E13808FBD3398AC036E171 611328 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.Printing.dll 2016-09-17 17:22:26 53EF35950835BE17496AFFB16A28528C 358912 ----a-w- C:\WINDOWS\Sysnative\Windows.ApplicationModel.dll 2016-09-17 17:22:26 4E5A691D828F74BB01A37C77C8F46896 932864 ----a-w- C:\WINDOWS\Sysnative\kerberos.dll 2016-09-17 17:22:25 63D8CA127F687EFE4ECFCDC3581622C3 22566400 ----a-w- C:\WINDOWS\Sysnative\edgehtml.dll 2016-09-17 17:22:21 BCE92B3274515F014920690F44B67767 409088 ----a-w- C:\WINDOWS\Sysnative\MosResource.dll 2016-09-17 17:22:20 08C01875C30D949BE2D08B6DFA74D684 8156592 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Protection.PlayReady.dll 2016-09-17 17:22:17 36E594EF1B8F040C4F2C452D126C0215 5622600 ----a-w- C:\WINDOWS\Sysnative\sppsvc.exe 2016-09-17 17:22:15 E2AAF07BEB81E6E4CAC382F0B2CA551C 140288 ----a-w- C:\WINDOWS\Sysnative\AppointmentActivation.dll 2016-09-17 17:22:14 8E3318880571891DC244A72CC7B65721 959488 ----a-w- C:\WINDOWS\Sysnative\modernexecserver.dll 2016-09-17 17:22:14 8C59437748797591C59F709EEFD087C6 64512 ----a-w- C:\WINDOWS\Sysnative\UserDataPlatformHelperUtil.dll 2016-09-17 17:22:14 203D279E5B5538A4B3954234A8E4834B 22218808 ----a-w- C:\WINDOWS\Sysnative\shell32.dll 2016-09-17 17:22:10 09D68D6E464F2D77A623E9CE9A2E031A 1107456 ----a-w- C:\WINDOWS\Sysnative\aadtb.dll 2016-09-17 17:22:07 BA91D5976F340304A1898401261ED529 9128448 ----a-w- C:\WINDOWS\Sysnative\twinui.dll 2016-09-17 17:22:06 C62578B495990431FB1C3A01DE66EE2A 137728 ----a-w- C:\WINDOWS\Sysnative\wificonnapi.dll 2016-09-17 17:22:06 940D27811B8613CF0DE102546E38E520 423776 ----a-w- C:\WINDOWS\Sysnative\wifitask.exe 2016-09-17 17:22:06 61C1E2E2F4F4ECC08C7CEF7A8042CA24 1349120 ----a-w- C:\WINDOWS\Sysnative\wifinetworkmanager.dll 2016-09-17 17:22:05 E510EC98F5114BE003D2C61E98BFEFA3 17187840 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll 2016-09-17 17:22:00 D72285D7D0E485BC8167A807337EB127 7219672 ----a-w- C:\WINDOWS\Sysnative\windows.storage.dll 2016-09-17 17:21:59 9B3299A537477779F55BEC8CC267F3CA 1388544 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Cred.dll 2016-09-17 17:21:56 E3ECD6675874EBBED4BF325B300159A1 7813472 ----a-w- C:\WINDOWS\Sysnative\ntoskrnl.exe 2016-09-17 17:21:55 31ECE355DF8302355451A18A31AAC076 13081088 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2016-09-17 17:21:53 51AB18D662F77FBD559C5081F7CDC9C7 2481768 ----a-w- C:\WINDOWS\Sysnative\msmpeg2vdec.dll 2016-09-17 17:21:51 A60CAE46657189DAE840AA3BABF4240C 2755584 ----a-w- C:\WINDOWS\Sysnative\mshtml.tlb 2016-09-17 17:21:48 6314D8E070122C9FEF0FD9E6C46F8F9C 71168 ----a-w- C:\WINDOWS\Sysnative\eappprxy.dll 2016-09-17 17:21:48 3D5B06EC01C5772DDB8AB82A769A0D97 105984 ----a-w- C:\WINDOWS\Sysnative\eappgnui.dll 2016-09-17 17:21:47 FCF73CA285F50E66BD669CF7747C8AAB 4749312 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers_nt.dll 2016-09-17 17:21:47 E02113EEBBD2689486B49F08103C70C8 327168 ----a-w- C:\WINDOWS\Sysnative\eapp3hst.dll 2016-09-17 17:21:47 D4A0A180E2C1A26F5DE4C3517DE0C414 243200 ----a-w- C:\WINDOWS\Sysnative\eappcfg.dll 2016-09-17 17:21:47 B6E61F3A3FFE0CE73446BAE0CEDDFA40 302592 ----a-w- C:\WINDOWS\Sysnative\eapphost.dll 2016-09-17 17:21:45 5C0293A5D8A8F5400953E12881E847A7 4130944 ----a-w- C:\WINDOWS\Sysnative\mfcore.dll 2016-09-17 17:21:44 AB3140208A2E8FF00A2E8FE028D1C170 13434368 ----a-w- C:\WINDOWS\Sysnative\wmp.dll 2016-09-17 17:21:39 CA215EB71078C73306DFF131CD00E9F6 3776512 ----a-w- C:\WINDOWS\Sysnative\MFMediaEngine.dll 2016-09-17 17:21:36 368A8616AC761763DC41AAAEE3642B55 2681200 ----a-w- C:\WINDOWS\Sysnative\CoreUIComponents.dll 2016-09-17 17:21:28 F7FF21247B546F203583EBCA2515098D 1908224 ----a-w- C:\WINDOWS\Sysnative\AzureSettingSyncProvider.dll 2016-09-17 17:21:26 879DA389BCF21EDA85969EF18A264F5A 2264064 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentServer.dll 2016-09-17 17:21:26 3E0D2395AD6E1E5608329DB32F061E7B 595488 ----a-w- C:\WINDOWS\Sysnative\mf.dll 2016-09-17 17:21:26 00E5B97D1C265BD8D1C6D817037A71F0 324608 ----a-w- C:\WINDOWS\Sysnative\Windows.ApplicationModel.LockScreen.dll 2016-09-17 17:21:25 C655B54A03DF0944368EE274A6EDB3B8 9728 ----a-w- C:\WINDOWS\Sysnative\Microsoft-Windows-MosTrace.dll 2016-09-17 17:21:25 B1F78E588635D91D829D936C572D491C 2913104 ----a-w- C:\WINDOWS\Sysnative\combase.dll 2016-09-17 17:21:25 138A8D7DAE9F4DBEC3D1A80F0F9DC51B 9216 ----a-w- C:\WINDOWS\Sysnative\Microsoft-Windows-MosHost.dll 2016-09-17 17:21:24 00D26DFCB55A8F1EE67A5EE3614F9C75 461312 ----a-w- C:\WINDOWS\Sysnative\CredProvDataModel.dll 2016-09-17 17:21:20 29587B4E32ED328FC016F833C5B16998 8075776 ----a-w- C:\WINDOWS\Sysnative\mstscax.dll 2016-09-17 17:21:19 7EA48C30C37BA5F75E474AA9099B27AC 6285312 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.dll 2016-09-17 17:21:18 A3EC577CE4CF5E2C50C34AD83A181C40 2745224 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2016-09-17 17:21:17 4953EA5B815BA55C8E114FFDFF08B119 773200 ----a-w- C:\WINDOWS\Sysnative\oleaut32.dll 2016-09-17 17:21:17 2A4755DC0F7D3D2ED7D5C10EE85C2658 1232384 ----a-w- C:\WINDOWS\Sysnative\dosvc.dll 2016-09-17 17:21:16 D155A734A823D6A41FB1A8E410F0D6DB 1418304 ----a-w- C:\WINDOWS\Sysnative\msctf.dll 2016-09-17 17:21:16 D0F82A43D9CD0FF1D8EE77D5C5602832 2852864 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsThresholdAdminFlowUI.dll 2016-09-17 17:21:16 2F672DAB25C830B5CCA6DAAFFA5F6DFB 125952 ----a-w- C:\WINDOWS\Sysnative\setupugc.exe 2016-09-17 17:21:15 D9088048BB7C61CF4647840122160781 3617792 ----a-w- C:\WINDOWS\Sysnative\win32kfull.sys 2016-09-17 17:21:13 E2EDBA97D10B630E7DA48B09253CAAF5 1859264 ----a-w- C:\WINDOWS\Sysnative\Windows.ApplicationModel.Store.dll 2016-09-17 17:21:13 613C4D37D0C1F1602E1D62DAFE8A5DA9 909312 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Search.dll 2016-09-17 17:21:11 AA6C31B703D2C8B44AA0CC271FADCC97 1472536 ----a-w- C:\WINDOWS\Sysnative\mfplat.dll 2016-09-17 17:21:11 955815A7DE4E764936238224403B33BE 1905664 ----a-w- C:\WINDOWS\Sysnative\wsp_fs.dll 2016-09-17 17:21:11 60B3708BC68B378B8037DC68222D4857 764936 ----a-w- C:\WINDOWS\Sysnative\CoreMessaging.dll 2016-09-17 17:21:11 60931F113781C1FE5B9DFB2BD2FBE08B 1694712 ----a-w- C:\WINDOWS\Sysnative\winmde.dll 2016-09-17 17:21:09 F723552F65D44FE693DB1A383825B3A8 95232 ----a-w- C:\WINDOWS\Sysnative\tzautoupdate.dll 2016-09-17 17:21:09 37E901D019DB45445B5F64B017449D95 2214784 ----a-w- C:\WINDOWS\Sysnative\KernelBase.dll 2016-09-17 17:21:09 1E9B4FCA29395AF5079042145FF51470 4148224 ----a-w- C:\WINDOWS\Sysnative\rdpcorets.dll 2016-09-17 17:21:08 731AA93CBBD05C7F966979CB5F3D6D96 2083840 ----a-w- C:\WINDOWS\Sysnative\DeviceFlows.DataModel.dll 2016-09-17 17:21:07 AE554E278C53E1D04069DEB535683AE1 1066104 ----a-w- C:\WINDOWS\Sysnative\mfsvr.dll 2016-09-17 17:21:06 F5CE6B08E4E3F474F7D00D6B555E6BE3 2049480 ----a-w- C:\WINDOWS\Sysnative\wmpmde.dll 2016-09-17 17:21:06 46CCDDAB599D4F8442A4DCE0A8A2AB3F 2510848 ----a-w- C:\WINDOWS\Sysnative\NetworkMobileSettings.dll 2016-09-17 17:21:04 FC4CEA31278FBD2EE7DDDFDDB8E1EDEF 2183792 ----a-w- C:\WINDOWS\Sysnative\hevcdecoder.dll 2016-09-17 17:21:04 94B31437502D942B8C8BA3B17049C835 1547264 ----a-w- C:\WINDOWS\Sysnative\wsp_health.dll 2016-09-17 17:21:03 A202D35D81D24303896611D2E823E9B5 2289664 ----a-w- C:\WINDOWS\Sysnative\dwmcore.dll 2016-09-17 17:21:03 92C741014DA532BAEC1CDDBCF8705B5E 3116544 ----a-w- C:\WINDOWS\Sysnative\MSAJApi.dll 2016-09-17 17:21:03 6DC285761193CDDA2CC55E7BFEA0F5D0 1891328 ----a-w- C:\WINDOWS\Sysnative\pnidui.dll 2016-09-17 17:21:02 B3DEE8AD2A53818CDC47F2060F744E25 1062912 ----a-w- C:\WINDOWS\Sysnative\SettingSyncCore.dll 2016-09-17 17:21:01 B806307A60DFB681EF841DDC8B298C4D 1274712 ----a-w- C:\WINDOWS\Sysnative\ole32.dll 2016-09-17 17:20:59 EF02767A0BDDD1BD85874510B962A27B 1078784 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Streaming.dll 2016-09-17 17:20:59 62DB63BA7A9BC04D7BBB83D558797A97 857440 ----a-w- C:\WINDOWS\Sysnative\WWAHost.exe 2016-09-17 17:20:59 087FB55FF57F7C4732290BD422D04F5D 590952 ----a-w- C:\WINDOWS\Sysnative\AudioSes.dll 2016-09-17 17:20:57 92E3A595ECA98F09B72A1E68ACB4651A 2315264 ----a-w- C:\WINDOWS\Sysnative\wuaueng.dll 2016-09-17 17:20:57 433E2F086F3BD7DB52B3286A0FCB65B6 374784 ----a-w- C:\WINDOWS\Sysnative\resutils.dll 2016-09-17 17:20:56 7A6428929BBDB854042D83494DD13101 5511680 ----a-w- C:\WINDOWS\Sysnative\aclui.dll 2016-09-17 17:20:55 8D2D008AEC7B20C5188F9532897424D9 1163696 ----a-w- C:\WINDOWS\Sysnative\winload.exe 2016-09-17 17:20:53 FB4B1295B2E53AB23C6A797A6C3E5F64 775168 ----a-w- C:\WINDOWS\Sysnative\GamePanel.exe 2016-09-17 17:20:53 82733B78ECC440E88CFFFB309FF43EB5 885824 ----a-w- C:\WINDOWS\Sysnative\winresume.exe 2016-09-17 17:20:52 E3BAD602586FAB4B9F66313063B3F99D 172528 ----a-w- C:\WINDOWS\Sysnative\sspicli.dll 2016-09-17 17:20:52 D64EFD0A74A953ACEA525E663EC96605 1469120 ----a-w- C:\WINDOWS\Sysnative\appraiser.dll 2016-09-17 17:20:52 4018B38B6F7E6DB6B72F3E63154189FA 811416 ----a-w- C:\WINDOWS\Sysnative\MFCaptureEngine.dll 2016-09-17 17:20:51 F2954BD07A717B88B7F7AC05CF1B009A 1046976 ----a-w- C:\WINDOWS\Sysnative\winresume.efi 2016-09-17 17:20:51 5D955FBA0D79B62243BC3E8647E138D7 1812480 ----a-w- C:\WINDOWS\Sysnative\ResetEngine.dll 2016-09-17 17:20:51 36D5B4C6107F695E3DF767F4510F425C 584544 ----a-w- C:\WINDOWS\Sysnative\SettingSyncHost.exe 2016-09-17 17:20:50 729D859A5FF0C0C27274992B06CEB2BA 1006080 ----a-w- C:\WINDOWS\Sysnative\D3D12.dll 2016-09-17 17:20:49 F537103777447A728EE867481BDF86E9 1780736 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2016-09-17 17:20:49 2F9E20EBCBEF629812D49B1DA27020AF 944640 ----a-w- C:\WINDOWS\Sysnative\audiosrv.dll 2016-09-17 17:20:49 03B156D30D2EF0A5C9ADA5EBC2A808AC 770048 ----a-w- C:\WINDOWS\Sysnative\bisrv.dll 2016-09-17 17:20:48 D5D6826EA81C3089EE79BB701820D1B3 1359360 ----a-w- C:\WINDOWS\Sysnative\usercpl.dll 2016-09-17 17:20:48 C3134F73199A0B88BE3B64C9E618DB59 1690112 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentExtensions.onecore.dll 2016-09-17 17:20:47 86C62045B7C3BF027F59040C18A2A7D8 509952 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers_Bluetooth.dll 2016-09-17 17:20:47 294DD2DF665F0B014559B654CE5CCC83 1349120 ----a-w- C:\WINDOWS\Sysnative\winload.efi 2016-09-17 17:20:47 07FBC9D725A04D25E9D799550B2E5CBC 1491968 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2016-09-17 17:20:45 97A339EA172BA7693C7F8488689BC270 1105408 ----a-w- C:\WINDOWS\Sysnative\MiracastReceiver.dll 2016-09-17 17:20:45 7E2F080D02FE2D426A2D518F9FF13CFE 523712 ----a-w- C:\WINDOWS\Sysnative\DMRServer.dll 2016-09-17 17:20:44 D4F2FFCF5D199152DD01026D3AA38138 1282048 ----a-w- C:\WINDOWS\Sysnative\wwansvc.dll 2016-09-17 17:20:44 7671078AEF4C0203B053A9642C401FF7 2370048 ----a-w- C:\WINDOWS\Sysnative\wlansvc.dll 2016-09-17 17:20:44 6F8E95716C1A27FF2FE96D30B147F1C1 57400 ----a-w- C:\WINDOWS\Sysnative\lsass.exe 2016-09-17 17:20:44 2EA1B437C30DEDA3A251803E45B3598E 996192 ----a-w- C:\WINDOWS\Sysnative\SecConfig.efi 2016-09-17 17:20:41 56FE23313A840471CF2C7FC8CA7AA637 468992 ----a-w- C:\WINDOWS\Sysnative\wwanconn.dll 2016-09-17 17:20:41 4C9EB8B2F81D8A34E5CBAFB0B859251C 1631232 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.Resources.dll 2016-09-17 17:20:39 6556AD05BB97D007B81E94C7DA3DE003 587968 ----a-w- C:\WINDOWS\Sysnative\generaltel.dll 2016-09-17 17:20:39 4B7C137D91740E9BB647189362022C1E 50880 ----a-w- C:\WINDOWS\Sysnative\CompatTelRunner.exe 2016-09-17 17:20:39 02863D0B6D8502477B95587B339D1C30 552288 ----a-w- C:\WINDOWS\Sysnative\devinv.dll 2016-09-17 17:20:38 E85D26F8E558C77EC0BFFBB6D610F08B 942432 ----a-w- C:\WINDOWS\Sysnative\hvloader.efi 2016-09-17 17:20:38 77B6273299687F112C46D00394C941D2 1267504 ----a-w- C:\WINDOWS\Sysnative\WinTypes.dll 2016-09-17 17:20:37 F78870C8520BC47B5B83083356A59316 360040 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsAdminFlows.exe 2016-09-17 17:20:36 F3D957A6E524592C3482E1FC2DBCB18D 540160 ----a-w- C:\WINDOWS\Sysnative\SettingSync.dll 2016-09-17 17:20:35 AAD9D7162339D9309CA8D4EF1F05C0C4 881664 ----a-w- C:\WINDOWS\Sysnative\authui.dll 2016-09-17 17:20:35 460DA0C05CCB0CFF811D21899EFD93CB 717824 ----a-w- C:\WINDOWS\Sysnative\LogonController.dll 2016-09-17 17:20:32 A0164A9FEF887AE1E693F8763AFB9D24 605184 ----a-w- C:\WINDOWS\Sysnative\bcastdvr.exe 2016-09-17 17:20:31 CB452DA937BF1977FA21973062AD325E 956416 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentExtensions.desktop.dll 2016-09-17 17:20:31 9AC7627EEFF9883E55AF7FFD625931C2 1217880 ----a-w- C:\WINDOWS\Sysnative\aeinv.dll 2016-09-17 17:20:31 63036AE43B673B6C57B999251CD5E8A4 382272 ----a-w- C:\WINDOWS\Sysnative\LockAppHost.exe 2016-09-17 17:20:31 17CA16C7B5AFE34B919D5C86C0E41C5D 289792 ----a-w- C:\WINDOWS\Sysnative\DeveloperOptionsSettingsHandlers.dll 2016-09-17 17:20:30 B00CE075546F0FD20917FA0755259BD1 988000 ----a-w- C:\WINDOWS\Sysnative\hvax64.exe 2016-09-17 17:20:30 9CFE44AC893CFDD9D923D804F91A837B 1217024 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Audio.dll 2016-09-17 17:20:30 94C2E7EA2DECB9D472DED99C36DD5984 1071728 ----a-w- C:\WINDOWS\Sysnative\mfnetcore.dll 2016-09-17 17:20:30 4F9CF843068D4B798704F9C80EDED818 755656 ----a-w- C:\WINDOWS\Sysnative\evr.dll 2016-09-17 17:20:29 F4F0BF823CC5E817BA22A290AC1C7CDB 526848 ----a-w- C:\WINDOWS\Sysnative\OneDriveSettingSyncProvider.dll 2016-09-17 17:20:29 A6A6DA69CBF625D829C9A7A4FD5D2827 1453992 ----a-w- C:\WINDOWS\Sysnative\mfnetsrc.dll 2016-09-17 17:20:29 6E407A512E48C0DDDCEDB4DFFCB39D23 1099616 ----a-w- C:\WINDOWS\Sysnative\hvix64.exe 2016-09-17 17:20:29 55AD1D10E6956654B365F71E0E9606D6 1726976 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Immersive.dll 2016-09-17 17:20:29 51BC3949AA4D326EA2CB81A209CE8A80 15360 ----a-w- C:\WINDOWS\Sysnative\MapsBtSvcProxy.dll 2016-09-17 17:20:29 47DEFB5838C0764C5109433837040F07 92512 ----a-w- C:\WINDOWS\Sysnative\rdpudd.dll 2016-09-17 17:20:28 8DC162262762E46F37D89D31B59EF69D 26408 ----a-w- C:\WINDOWS\Sysnative\wuauclt.exe 2016-09-17 17:20:28 0482CFC6D06935953519340A0D360329 114192 ----a-w- C:\WINDOWS\Sysnative\win32u.dll 2016-09-17 17:20:27 C6E3E68B52A17348D22D4EBF3ED9F2CF 160096 ----a-w- C:\WINDOWS\Sysnative\CloudExperienceHostBroker.dll 2016-09-17 17:20:27 64BE4A72B2D9251019865EE849F981F6 20320 ----a-w- C:\WINDOWS\Sysnative\kdhvcom.dll 2016-09-17 17:20:27 64245A85E4E6D29143B3A256908DE06C 758784 ----a-w- C:\WINDOWS\Sysnative\msfeeds.dll 2016-09-17 17:20:27 621BE7A39C4A2E06E2D9A223A8AB2DD2 178528 ----a-w- C:\WINDOWS\Sysnative\CloudExperienceHostUser.dll 2016-09-17 17:20:23 DD1698F4D841DE09965F3F5D710CA429 963584 ----a-w- C:\WINDOWS\Sysnative\WebcamUi.dll 2016-09-17 17:20:23 AD63B2330BCA0C30AB872FC8F1085316 1990640 ----a-w- C:\WINDOWS\Sysnative\mfmp4srcsnk.dll 2016-09-17 17:20:21 F1E2170B311D75405C53DFDFBDB6DC01 58368 ----a-w- C:\WINDOWS\Sysnative\csrsrv.dll 2016-09-17 17:20:21 E4BF5B9D5DE1EA3E60A45AFBC64ABB72 1555456 ----a-w- C:\WINDOWS\Sysnative\WMPDMC.exe 2016-09-17 17:20:21 A96FA9F1D6F4272A2CF21E0EFDA3055F 432128 ----a-w- C:\WINDOWS\Sysnative\WpAXHolder.dll 2016-09-17 17:20:21 88AC6B6BB198A74296A687F563A08473 807776 ----a-w- C:\WINDOWS\Sysnative\hvloader.exe 2016-09-17 17:20:20 4363ECA0BE56C43B19D4150F9B12248D 3299328 ----a-w- C:\WINDOWS\Sysnative\mstsc.exe 2016-09-17 17:20:19 50C7A70C5C5D043E367A672EDDE75A65 2095616 ----a-w- C:\WINDOWS\Sysnative\inetcpl.cpl 2016-09-17 17:20:19 31540C866B8BD453E26A97E3CCC0AB7A 303968 ----a-w- C:\WINDOWS\Sysnative\invagent.dll 2016-09-17 17:20:19 0235D9E03C7D42E31594907237E7308A 715264 ----a-w- C:\WINDOWS\Sysnative\clusapi.dll 2016-09-17 17:20:18 6EF2E07E84A1FFE9EC9F4F011F15D86D 1656320 ----a-w- C:\WINDOWS\Sysnative\GdiPlus.dll 2016-09-17 17:20:18 3ED5CD5AAC16C71F48F27A152C488986 2820096 ----a-w- C:\WINDOWS\Sysnative\InputService.dll 2016-09-17 17:20:17 37AE763690826DE44C19360E71C7D32F 349184 ----a-w- C:\WINDOWS\Sysnative\provengine.dll 2016-09-17 17:20:16 F73F93BEF14F667DD3020D188C19D3D3 2560 ----a-w- C:\WINDOWS\Sysnative\PhoneServiceRes.dll 2016-09-17 17:20:16 F539E9DA822B8F2D6B42ABBAF063D11E 2560 ----a-w- C:\WINDOWS\Sysnative\PhoneutilRes.dll 2016-09-17 17:20:16 C11126DCD217F5213CED85E7D990B5AB 2560 ----a-w- C:\WINDOWS\Sysnative\tzres.dll 2016-09-17 17:20:16 A2CB862ACA913DAF3B26D40443C18C95 2560 ----a-w- C:\WINDOWS\Sysnative\MapControlStringsRes.dll 2016-09-17 17:20:16 6146F7C1804A477B0AD016A70DDBEBAE 2560 ----a-w- C:\WINDOWS\Sysnative\msxml6r.dll 2016-09-17 17:20:16 1C060B94A530FBBA0D0BE14C47B09300 642048 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.InkControls.dll 2016-09-17 17:20:15 D909A0DA4753420B637608EC0656518F 438784 ----a-w- C:\WINDOWS\Sysnative\EncDec.dll 2016-09-17 17:20:15 46E63A5C51B03214DD031A394254D3A0 886784 ----a-w- C:\WINDOWS\Sysnative\CPFilters.dll 2016-09-17 17:20:14 E1D53F44C76E413E4A73D4FB06CC210D 104960 ----a-w- C:\WINDOWS\Sysnative\CastLaunch.dll 2016-09-17 17:20:14 DD49AC962516E5ADBFE8D0502F157A71 1403392 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Editing.dll 2016-09-17 17:20:12 91B02606FC2F92673C8DAEA9BEE9C84B 442368 ----a-w- C:\WINDOWS\Sysnative\PlayToDevice.dll 2016-09-17 17:20:12 8C8AFEFE1ED3C1E605BBDDAED2AF3631 266240 ----a-w- C:\WINDOWS\Sysnative\ConsoleLogon.dll 2016-09-17 17:20:12 68396E8D4D14F93272AD5D355660DC70 743424 ----a-w- C:\WINDOWS\Sysnative\StoreAgent.dll 2016-09-17 17:20:11 D14A397FD0DF8DBFEF68F69B16F0160C 6574592 ----a-w- C:\WINDOWS\Sysnative\wwanmm.dll 2016-09-17 17:20:10 85DE7DC5329739FB2BD481ECDE38388E 363520 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.BioFeedback.dll 2016-09-17 17:20:09 F551B77EEB5DE06AE992E6E0B421C034 279552 ----a-w- C:\WINDOWS\Sysnative\PlayToReceiver.dll 2016-09-17 17:20:09 9DC8DFD3C90783D60AEA940175A13F8B 458752 ----a-w- C:\WINDOWS\Sysnative\RTMediaFrame.dll 2016-09-17 17:20:09 67AA275094BF77BC92C193D447CEBE5F 418304 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.BlockedShutdown.dll 2016-09-17 17:20:09 5A14B5B990D991E445E8B9F37F972048 295424 ----a-w- C:\WINDOWS\Sysnative\dlnashext.dll 2016-09-17 17:20:09 1F32156F2C7C3842C91DC2C13F5D94C0 231424 ----a-w- C:\WINDOWS\Sysnative\shutdownux.dll 2016-09-17 17:20:08 927622A38022A0B1DB7538B3133327FA 1082368 ----a-w- C:\WINDOWS\Sysnative\reseteng.dll 2016-09-17 17:20:07 E3D3A23AD03ADC3C54925A43B9722B10 223744 ----a-w- C:\WINDOWS\Sysnative\ie4uinit.exe 2016-09-17 17:20:07 C1448641F2FFFEAB54DE9274BD3E65FD 147456 ----a-w- C:\WINDOWS\Sysnative\winsrv.dll 2016-09-17 17:20:07 B740472F6A76DF422DD557AF957B70BE 157696 ----a-w- C:\WINDOWS\Sysnative\XamlTileRender.dll 2016-09-17 17:20:07 69DFAB574E4CD63DC6C8DA14F52E3DF1 115200 ----a-w- C:\WINDOWS\Sysnative\IdCtrls.dll 2016-09-17 17:20:07 561AE74AEA63C9182749FF3FA8F29424 484352 ----a-w- C:\WINDOWS\Sysnative\MDEServer.exe 2016-09-17 17:20:07 1FAD8BB61127B02934C015CF9B159016 323584 ----a-w- C:\WINDOWS\Sysnative\domgmt.dll 2016-09-17 17:20:06 C50FBFDC76EAF8D22EC203B433D0EEFE 200704 ----a-w- C:\WINDOWS\Sysnative\ClipboardServer.dll 2016-09-17 17:20:06 8909765835EEE337C718EAF2CA931A2C 170496 ----a-w- C:\WINDOWS\Sysnative\AppCapture.dll 2016-09-17 17:20:06 22D240F8745F0F64C4638E472F30BB7D 471552 ----a-w- C:\WINDOWS\Sysnative\DscCore.dll 2016-09-17 17:20:05 3CF052C22F34174BE783DAF2F3A81D8A 210944 ----a-w- C:\WINDOWS\Sysnative\win32k.sys 2016-09-17 17:20:03 862B5A128CC64904FDAB54CEEC3C57CD 1014784 ----a-w- C:\WINDOWS\Sysnative\XblAuthManager.dll 2016-09-17 17:20:03 6FB48F624829BFD03D67E3666822D170 58880 ----a-w- C:\WINDOWS\Sysnative\Windows.Shell.Search.UriHandler.dll 2016-09-17 17:20:03 2C5C98166F96A67F25D5474569D07D2E 259584 ----a-w- C:\WINDOWS\Sysnative\InstallAgentUserBroker.exe 2016-09-17 17:20:02 EF4A6C0CD82605DF6575780B99ED78DA 32768 ----a-w- C:\WINDOWS\Sysnative\wups2.dll 2016-09-17 17:19:59 C4792A381CAD4D49DC2959894277DD32 49152 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Shell.dll 2016-09-17 17:19:58 97FC02DD857AF0B599A1D778335A5439 936960 ----a-w- C:\WINDOWS\Sysnative\MCRecvSrc.dll 2016-09-17 17:19:58 284FB9A8807C14BC0FD3A60F4BA1F6D3 43008 ----a-w- C:\WINDOWS\Sysnative\LaunchWinApp.exe 2016-09-17 17:19:58 22559865AB6745D8878777692B63B575 211456 ----a-w- C:\WINDOWS\Sysnative\InstallAgent.exe 2016-09-16 06:19:35 380B81B7BF8C5687460C018A6CD73AC1 44653 ----a-w- C:\WINDOWS\Sysnative\license.rtf 2016-09-16 06:14:20 CE29091FC549D1C6C9FA92CE6A86874E 27136 ----a-w- C:\WINDOWS\Sysnative\encapi.dll 2016-09-16 06:14:20 58D536F0064D618C13DB4DCBB0032335 268800 ----a-w- C:\WINDOWS\Sysnative\mfksproxy.dll 2016-09-16 06:14:15 EB29E99F261CCC1DFD21D2698C986A41 396168 ----a-w- C:\WINDOWS\Sysnative\wlanapi.dll 2016-09-16 06:14:15 E0ECAB9B4C275B63C0D43E3E91798DFB 298496 ----a-w- C:\WINDOWS\Sysnative\wifiprofilessettinghandler.dll 2016-09-16 06:14:15 DD74F18227ACC837D9856E24282D446D 447488 ----a-w- C:\WINDOWS\Sysnative\das.dll 2016-09-16 06:14:15 C7314937819DFE5A693CB42C52EE4E1D 314880 ----a-w- C:\WINDOWS\Sysnative\FSClient.dll 2016-09-16 06:14:15 BA071F454E5AF40CE4E7A8540DB0D532 76800 ----a-w- C:\WINDOWS\Sysnative\wwanprotdim.dll 2016-09-16 06:14:15 B782165C241E3A47D33A93F0E7D77CF6 83968 ----a-w- C:\WINDOWS\Sysnative\SettingSyncPolicy.dll 2016-09-16 06:14:15 AF0811F38B56B57B3FF53F14E04AA1B0 804864 ----a-w- C:\WINDOWS\Sysnative\FrameServer.dll 2016-09-16 06:14:15 8FEE878731141BCED2C698F3227BF3E1 47104 ----a-w- C:\WINDOWS\Sysnative\wfdprov.dll 2016-09-16 06:14:15 8E4FF5FE5DC971ADF687101D57F52A63 1847048 ----a-w- C:\WINDOWS\Sysnative\mfsrcsnk.dll 2016-09-16 06:14:15 72FD49FE3028ECA74E40EAEE30056FB0 412160 ----a-w- C:\WINDOWS\Sysnative\wlanmsm.dll 2016-09-16 06:14:15 6F12B244B6BAC8EEEB506C0BEE04F8CB 94720 ----a-w- C:\WINDOWS\Sysnative\dasHost.exe 2016-09-16 06:14:15 6A96D47A249C59F51AF97CD860C1F8C2 27648 ----a-w- C:\WINDOWS\Sysnative\WiFiConfigSP.dll 2016-09-16 06:14:15 61B66562773BE5BB068E49841077B171 26112 ----a-w- C:\WINDOWS\Sysnative\wlansvcpal.dll 2016-09-16 06:14:15 5791AC0F4802B34B90CA83015EFBAE4D 462336 ----a-w- C:\WINDOWS\Sysnative\wlansec.dll 2016-09-16 06:14:15 43E8AFCABA1926E9745F9B56A10D22A8 215040 ----a-w- C:\WINDOWS\Sysnative\fveapibase.dll 2016-09-16 06:14:15 388D8F174114ED37337F3C7C67B016B4 15872 ----a-w- C:\WINDOWS\Sysnative\wlanhlp.dll 2016-09-16 06:14:15 3634BD4A6093FCA4BC4049FE33B9FC44 726016 ----a-w- C:\WINDOWS\Sysnative\fveapi.dll 2016-09-16 06:14:15 20BE541385E830C9D21E595D9C9DBEDF 244816 ----a-w- C:\WINDOWS\Sysnative\mfps.dll 2016-09-16 06:14:15 0D16BFB3D49F7041C4C48CCC96F22540 47616 ----a-w- C:\WINDOWS\Sysnative\deviceassociation.dll 2016-09-16 06:14:15 0C8FF2286E8D1CDB6B80A6FE2E2874EE 100864 ----a-w- C:\WINDOWS\Sysnative\wpninprc.dll 2016-09-16 06:14:15 0A41D661518CC1A073C86DDC3375D737 294912 ----a-w- C:\WINDOWS\Sysnative\mfsensorgroup.dll 2016-09-16 06:14:15 08E9936BA132ABE0733BF028C57659FA 295424 ----a-w- C:\WINDOWS\Sysnative\CloudBackupSettings.dll 2016-09-16 06:14:14 F69E1CD342416987B53E5F91332BA747 387584 ----a-w- C:\WINDOWS\Sysnative\iedkcs32.dll 2016-09-16 06:14:14 CC73C60BE3BE01F8A46723189EE05D9F 10752 ----a-w- C:\WINDOWS\Sysnative\spwmp.dll 2016-09-16 06:14:14 C8FFA2202CE96D92F91A3289C91C122F 6656 ----a-w- C:\WINDOWS\Sysnative\msdxm.ocx 2016-09-16 06:14:14 C8FFA2202CE96D92F91A3289C91C122F 6656 ----a-w- C:\WINDOWS\Sysnative\dxmasf.dll 2016-09-16 06:14:14 BD8F10CB5BE1A1972483F2FFB8DD06AA 1176664 ----a-w- C:\WINDOWS\Sysnative\rpcrt4.dll 2016-09-16 06:14:14 826FCA980E38A61F95EB9A319B23062A 34304 ----a-w- C:\WINDOWS\Sysnative\iernonce.dll 2016-09-16 06:14:14 7BCB8EEE8A3ECBF09A66F9BE025660CA 9260032 ----a-w- C:\WINDOWS\Sysnative\wmploc.DLL 2016-09-16 06:14:14 6BFF06B45CC55C272A4E59E6BE986B45 280064 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers_WorkAccess.dll 2016-09-16 06:14:14 592BC8791F54CBCCE3F532E042942AE3 1883784 ----a-w- C:\WINDOWS\Sysnative\ntdll.dll 2016-09-16 06:14:14 47A9262E3CE601AFB985933CA30254F5 66560 ----a-w- C:\WINDOWS\Sysnative\iesetup.dll 2016-09-16 06:14:14 283C16D643CB63EAB818EB6092235770 151224 ----a-w- C:\WINDOWS\Sysnative\acmigration.dll 2016-09-16 06:14:14 1616FBBFC15A7125D84697986F33FA4B 408600 ----a-w- C:\WINDOWS\Sysnative\tsmf.dll 2016-09-16 06:14:12 FF2D3C069615D8E2FC747E1D98F87B7A 61952 ----a-w- C:\WINDOWS\Sysnative\RemovableMediaProvisioningPlugin.dll 2016-09-16 06:14:12 FC4B43596C8686A8264DF2A47A869533 85504 ----a-w- C:\WINDOWS\Sysnative\BarcodeProvisioningPlugin.dll 2016-09-16 06:14:12 F8812C33996D74261E06FF0F32576AB5 30208 ----a-w- C:\WINDOWS\Sysnative\netiougc.exe 2016-09-16 06:14:12 EEF36A62B356D690B297FCAC3A1D9289 538112 ----a-w- C:\WINDOWS\Sysnative\sppcext.dll 2016-09-16 06:14:12 E23FA43A03B99B164423779A4D15146C 295424 ----a-w- C:\WINDOWS\Sysnative\provhandlers.dll 2016-09-16 06:14:12 E0F28E81A536E82802BBA4B0F9CFDAC3 627200 ----a-w- C:\WINDOWS\Sysnative\uReFS.dll 2016-09-16 06:14:12 D848E4A7A36996CCC3E81EC181F73BED 86016 ----a-w- C:\WINDOWS\Sysnative\provdatastore.dll 2016-09-16 06:14:12 D3CFB16A26EA9FE29CC56D92B9FF5855 83968 ----a-w- C:\WINDOWS\Sysnative\ProvPluginEng.dll 2016-09-16 06:14:12 C61490A7DB706B7D156C66A3E34ED34C 17408 ----a-w- C:\WINDOWS\Sysnative\C_IS2022.DLL 2016-09-16 06:14:12 C15FAEB360558BEF4515E39862521871 119808 ----a-w- C:\WINDOWS\Sysnative\KnobsCsp.dll 2016-09-16 06:14:12 BAF5E62564002B36FAD01384F87E4079 1377008 ----a-w- C:\WINDOWS\Sysnative\ClipUp.exe 2016-09-16 06:14:12 BA15F36D93174EFCB66FA9EB6F6E1EC7 49664 ----a-w- C:\WINDOWS\Sysnative\StorageUsage.dll 2016-09-16 06:14:12 B74C2CBC41ACC7946BFC58E738F733E5 1066328 ----a-w- C:\WINDOWS\Sysnative\pidgenx.dll 2016-09-16 06:14:12 B50025354EF7C48EBF0A21A0D485DFB4 227840 ----a-w- C:\WINDOWS\Sysnative\C_G18030.DLL 2016-09-16 06:14:12 ACB6C92547FC890FBFB9B8FB7B3C0BE6 665768 ----a-w- C:\WINDOWS\Sysnative\GenValObj.exe 2016-09-16 06:14:12 A74F8336B0813BC8A5BAC9A7D925487A 22016 ----a-w- C:\WINDOWS\Sysnative\slcext.dll 2016-09-16 06:14:12 8F44453338E9B745023478AF4DA4B9EE 203776 ----a-w- C:\WINDOWS\Sysnative\AppXApplicabilityBlob.dll 2016-09-16 06:14:12 7CF84329545035CC0833119C7268A620 138240 ----a-w- C:\WINDOWS\Sysnative\sppc.dll 2016-09-16 06:14:12 77DBAF6D7F5F176157DB7F7F57CA46A5 14848 ----a-w- C:\WINDOWS\Sysnative\c_GSM7.DLL 2016-09-16 06:14:12 76C1CC611352499326001F25A3ED15F8 520192 ----a-w- C:\WINDOWS\Sysnative\w32time.dll 2016-09-16 06:14:12 74A9DD6039575D2A36E7EEDF053937DF 234496 ----a-w- C:\WINDOWS\Sysnative\tcpipcfg.dll 2016-09-16 06:14:12 73BBDD6A450AF2708B089B0DFEE74252 495104 ----a-w- C:\WINDOWS\Sysnative\DataSenseHandlers.dll 2016-09-16 06:14:12 6C982BC7E4DB161530A0D831718D7113 396800 ----a-w- C:\WINDOWS\Sysnative\StorSvc.dll 2016-09-16 06:14:12 6C73C817F42D3BD2FD1638B7A7DB646D 66048 ----a-w- C:\WINDOWS\Sysnative\provtool.exe 2016-09-16 06:14:12 688F531DFEF5CCAE897F26CCA4C21FE6 41824 ----a-w- C:\WINDOWS\Sysnative\SysResetErr.exe 2016-09-16 06:14:12 67322D2AC2F543C8458F155FFDF05D7A 204288 ----a-w- C:\WINDOWS\Sysnative\DscCoreConfProv.dll 2016-09-16 06:14:12 5783CAF6C64513FB937D7E56F37D6CA7 28672 ----a-w- C:\WINDOWS\Sysnative\Windows.Management.Provisioning.ProxyStub.dll 2016-09-16 06:14:12 4F80785DFEA2B907D3652DD54DB5699A 235008 ----a-w- C:\WINDOWS\Sysnative\KnobsCore.dll 2016-09-16 06:14:12 3CC81C06630B17913BE6D872F9F84658 11264 ----a-w- C:\WINDOWS\Sysnative\ResetEngine.exe 2016-09-16 06:14:12 3A6F144F316E0308BD046E3F6C975F04 354264 ----a-w- C:\WINDOWS\Sysnative\systemreset.exe 2016-09-16 06:14:12 38DBE72073C8ACEAAE21DF30A1AAC76E 200704 ----a-w- C:\WINDOWS\Sysnative\provisioningcsp.dll 2016-09-16 06:14:12 2D45A814BA589161CACB2E7E100447AD 97792 ----a-w- C:\WINDOWS\Sysnative\NFCProvisioningPlugin.dll 2016-09-16 06:14:12 1955F78D9E7E16099DBABAB36FE3CC3C 162850 ----a-w- C:\WINDOWS\Sysnative\C_932.NLS 2016-09-16 06:14:12 1406A27DA83687AA07453C081024823D 220672 ----a-w- C:\WINDOWS\Sysnative\provops.dll 2016-09-16 06:14:12 060E11DCB875D981E948073986E295DC 135168 ----a-w- C:\WINDOWS\Sysnative\slc.dll 2016-09-16 06:14:08 F1572B629205079F2707E7E01C275245 268800 ----a-w- C:\WINDOWS\Sysnative\DeviceCensus.exe 2016-09-16 06:14:08 E8DFB39E831BFAA438B28ADC11C6E9FD 186880 ----a-w- C:\WINDOWS\Sysnative\MusNotification.exe 2016-09-16 06:14:08 E186BD3988C5BBD8F30AD3BD6786C6A5 239104 ----a-w- C:\WINDOWS\Sysnative\dafpos.dll 2016-09-16 06:14:08 DECB256AD35F3D7E03CF167FC2861583 391168 ----a-w- C:\WINDOWS\Sysnative\wuuhext.dll 2016-09-16 06:14:08 D685C4335F586BFB98389BD94B5F6EB7 410624 ----a-w- C:\WINDOWS\Sysnative\facecredentialprovider.dll 2016-09-16 06:14:08 CC86A87136C6D856C4899349420ED127 114688 ----a-w- C:\WINDOWS\Sysnative\offlinelsa.dll 2016-09-16 06:14:08 C6C101B0510C222C1223ACCBC8AEC99D 89600 ----a-w- C:\WINDOWS\Sysnative\updatepolicy.dll 2016-09-16 06:14:08 C465566BE0477B49763820A21F04F292 25600 ----a-w- C:\WINDOWS\Sysnative\storagewmi_passthru.dll 2016-09-16 06:14:08 BC27BF1FCD63540A194E549FB80C9C8D 1052672 ----a-w- C:\WINDOWS\Sysnative\qmgr.dll 2016-09-16 06:14:08 B93AED6C0949BE5BF7284D22C9E06D19 44472 ----a-w- C:\WINDOWS\Sysnative\mfpmp.exe 2016-09-16 06:14:08 B0BDB04AE820EEC777263DCD41C59B64 521728 ----a-w- C:\WINDOWS\Sysnative\MusUpdateHandlers.dll 2016-09-16 06:14:08 ABAF65774CEA41C5B335DD12E2C3109B 57344 ----a-w- C:\WINDOWS\Sysnative\WinBioDataModelOOBE.exe 2016-09-16 06:14:08 9AF7C47F4ECC0483D55C34C32F8B52D4 568832 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Speech.UXRes.dll 2016-09-16 06:14:08 958AD14CDF4EBB6BADDB13F8B39A97CF 1461200 ----a-w- C:\WINDOWS\Sysnative\user32.dll 2016-09-16 06:14:08 88522C196AC0FAFBB28F2C6EB1EE2573 123904 ----a-w- C:\WINDOWS\Sysnative\samlib.dll 2016-09-16 06:14:08 86094D34C06F24B5E54582883819C7AD 237568 ----a-w- C:\WINDOWS\Sysnative\offlinesam.dll 2016-09-16 06:14:08 77592C79381DC55D70773F36C75AFD52 884224 ----a-w- C:\WINDOWS\Sysnative\samsrv.dll 2016-09-16 06:14:08 5A23E4BE0CCF49663C4CF7EB74C20278 26112 ----a-w- C:\WINDOWS\Sysnative\LicenseManagerSvc.dll 2016-09-16 06:14:08 57B57C4AA1A6F3B865CA0153251F4F73 1643008 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Speech.dll 2016-09-16 06:14:08 50F9CA3E5799C16E1E0260FDC3BD576F 243712 ----a-w- C:\WINDOWS\Sysnative\WinBioDataModel.dll 2016-09-16 06:14:08 504798F48398E973299C1051E62281D3 2846208 ----a-w- C:\WINDOWS\Sysnative\storagewmi.dll 2016-09-16 06:14:08 4B53781598D1DB2D33DE9F7248F5A26F 1708544 ----a-w- C:\WINDOWS\Sysnative\wevtsvc.dll 2016-09-16 06:14:08 3EB12F95C259907F976B9FFCD26FA047 23552 ----a-w- C:\WINDOWS\Sysnative\smphost.dll 2016-09-16 06:14:08 3D333C37AA062BCCB3D0DE3EF42DC7DD 380928 ----a-w- C:\WINDOWS\Sysnative\wincorlib.dll 2016-09-16 06:14:08 3965B7007FC32D4D14383A10B5828660 476672 ----a-w- C:\WINDOWS\Sysnative\schannel.dll 2016-09-16 06:14:08 37BD0ED26D65A28E7CAA32F446BDA67A 389000 ----a-w- C:\WINDOWS\Sysnative\wevtapi.dll 2016-09-16 06:14:08 2CDF36D9F14BD0B8E99B0BFD7905FA53 1508864 ----a-w- C:\WINDOWS\Sysnative\win32kbase.sys 2016-09-16 06:14:08 1DEE7AB0BD53C820E6CABC52274671BE 3245056 ----a-w- C:\WINDOWS\Sysnative\mispace.dll 2016-09-16 06:14:08 0F3C4209200F3DAD2015DA3044FA8DC3 539136 ----a-w- C:\WINDOWS\Sysnative\usocore.dll 2016-09-16 06:14:08 06283D1A7B1901F027C0C7AD520A2835 327680 ----a-w- C:\WINDOWS\Sysnative\container.dll 2016-09-16 06:14:08 03B40B32AE8631F64FA60CD294AE4191 26112 ----a-w- C:\WINDOWS\Sysnative\delegatorprovider.dll 2016-09-16 06:06:42 DB5CEDD2D9B6BEC1F008AB32F6430407 35480 ----a-w- C:\WINDOWS\Sysnative\TsWpfWrp.exe 2016-09-16 06:06:42 CAF55CA39F076939E6CF4C8660235610 1166520 ----a-w- C:\WINDOWS\Sysnative\PresentationNative_v0300.dll 2016-09-16 06:06:42 587DDEDEA34DBDF2B7C4F5EEC1685A19 124624 ----a-w- C:\WINDOWS\Sysnative\PresentationCFFRasterizerNative_v0300.dll 2016-09-16 06:00:21 9F45771914360A925252A1B7226EC7EC 451 ----a-w- C:\WINDOWS\Sysnative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2016-09-16 05:23:17 3FF007DCE48038E858DA50353324D50D 81416 ----a-w- C:\WINDOWS\Sysnative\OpenCL.DLL 2016-09-16 05:20:47 157A2E4C3DD98202114D65E26AE3D32A 4973224 ----a-w- C:\WINDOWS\Sysnative\FNTCACHE.DAT 2016-09-12 15:37:12 DF200F84AC4DFAA279A4C4100A39AC01 110144 ----a-w- C:\WINDOWS\Sysnative\WindowsAccessBridge-64.dll 2016-09-12 13:11:32 BEA69742E859577C7308236B4AFF26E8 42792 ----a-w- C:\WINDOWS\Sysnative\DbxSvc.exe ====== C:\WINDOWS\Sysnative\drivers ===== 2016-09-17 17:22:27 A90C76FB62526DEB5A5557A8839841AB 2190688 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2016-09-17 17:21:59 4F0F1E9A7281B4522F16B190F7661291 658272 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms2.sys 2016-09-17 17:21:59 14AE4AAED71AE09151AED376420B630D 402272 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2016-09-17 17:21:57 E83830BB74AE8CBECEA0ECD94DE436F9 409088 ----a-w- C:\WINDOWS\Sysnative\drivers\srv.sys 2016-09-17 17:21:57 B728AB4A8FBBCF5269DD5290D3F1F1EF 279904 ----a-w- C:\WINDOWS\Sysnative\drivers\sdbus.sys 2016-09-17 17:21:57 7878A65B1D949B4E2880DD2EF7B8D8D7 187232 ----a-w- C:\WINDOWS\Sysnative\drivers\dumpsd.sys 2016-09-17 17:21:56 8833A059270A60CE347FEB9A7951B3F4 681304 ----a-w- C:\WINDOWS\Sysnative\drivers\ClipSp.sys 2016-09-17 17:21:55 F13EE0DB1FB1D6946AC3228D7EFCFC8F 248320 ----a-w- C:\WINDOWS\Sysnative\drivers\srvnet.sys 2016-09-17 17:21:55 2C2D61825A3D036CACA7E34FF75B8207 714240 ----a-w- C:\WINDOWS\Sysnative\drivers\srv2.sys 2016-09-17 17:21:41 200E4A385F5F370D8866BAE25B0D9D32 282624 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb10.sys 2016-09-17 17:21:10 5DD8CB01C0394F8D052763D2E3C6E684 2256224 ----a-w- C:\WINDOWS\Sysnative\drivers\ntfs.sys 2016-09-17 17:20:44 E671EDAB0726E05ECEF4058B4CD73C4D 450392 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb.sys 2016-09-17 17:20:43 5008FF3BBB078956C60DCA0044CF175B 379744 ----a-w- C:\WINDOWS\Sysnative\drivers\Classpnp.sys 2016-09-17 17:20:41 705C0F8BCCEF6E7CB704CCB454192D7E 133472 ----a-w- C:\WINDOWS\Sysnative\drivers\ksecdd.sys 2016-09-17 17:20:37 B705D8E3011268160833518FBD80FBCE 2537824 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2016-09-17 17:20:33 57A8C77BD62F4C052ECC40EB221A7078 224096 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys 2016-09-17 17:20:30 2A9817B5A9260D8F60D52E36BEF10443 118112 ----a-w- C:\WINDOWS\Sysnative\drivers\EhStorTcgDrv.sys 2016-09-17 17:20:27 74FC79C52395B10FFD0B55CF22CF88FC 73568 ----a-w- C:\WINDOWS\Sysnative\drivers\hvservice.sys 2016-09-17 17:20:27 68FDFCE44D29EE8AE52E3CCB46BB0554 409944 ----a-w- C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS 2016-09-16 06:14:15 9EA203A07EFA6D74F07F32EF0DAB5CA6 108384 ----a-w- C:\WINDOWS\Sysnative\drivers\pdc.sys 2016-09-16 06:14:14 64E0AA114871B2A37908E44A18F35A73 128352 ----a-w- C:\WINDOWS\Sysnative\drivers\partmgr.sys 2016-09-16 06:14:14 392CD98739F4A8F188A3CB34F6AB193E 435040 ----a-w- C:\WINDOWS\Sysnative\drivers\rdbss.sys 2016-09-16 06:14:12 68B1E0DA1BB1680494227E88CE821E2F 62816 ----a-w- C:\WINDOWS\Sysnative\drivers\dam.sys 2016-09-16 06:14:08 DC5955E589C55E2313D69B64E1A183F3 84992 ----a-w- C:\WINDOWS\Sysnative\drivers\BTHUSB.SYS 2016-09-16 06:14:08 D8536CB438CC4CCDAE047B768EED22B2 38400 ----a-w- C:\WINDOWS\Sysnative\drivers\hidusb.sys 2016-09-16 06:14:08 D82592B327C43AC9381E9FBEF79C7F68 156672 ----a-w- C:\WINDOWS\Sysnative\drivers\hidclass.sys 2016-09-16 06:14:08 D14D2ACB1CA47ABC2844E93EF5B43FF0 247296 ----a-w- C:\WINDOWS\Sysnative\drivers\BthLEEnum.sys 2016-09-16 06:14:08 B9A33B9298BAFCE11E9823B1056D5BB0 40960 ----a-w- C:\WINDOWS\Sysnative\drivers\hidparse.sys 2016-09-16 06:14:08 B739FF1C1FAF9D0ADFBFB0FD59A5AB37 77664 ----a-w- C:\WINDOWS\Sysnative\drivers\stornvme.sys 2016-09-16 06:14:08 B4F448F2424492F99F83D3676A453553 226816 ----a-w- C:\WINDOWS\Sysnative\drivers\usbvideo.sys 2016-09-16 06:14:08 7A167521DC7A190B2FC37D6AB660CBF1 965120 ----a-w- C:\WINDOWS\Sysnative\drivers\bthport.sys 2016-09-16 06:14:08 77630A51FAF6A07922FEE835F4DED8F6 114176 ----a-w- C:\WINDOWS\Sysnative\drivers\bthenum.sys 2016-09-16 06:14:08 63088A3361D9A308F328F11E9099DD87 43520 ----a-w- C:\WINDOWS\Sysnative\drivers\xinputhid.sys 2016-09-16 06:14:08 55AD13E2BAFC5AB53A10F8C271F5D242 168800 ----a-w- C:\WINDOWS\Sysnative\drivers\ksecpkg.sys 2016-09-16 06:14:08 3E502EB1701CF54CF237B6250FBE38EA 619368 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2016-09-16 06:06:26 43C8D087B31C592163B33A4BDA540E40 199008 ----a-w- C:\WINDOWS\Sysnative\drivers\wof.sys 2016-09-16 05:23:32 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_Kernel_ETD_01011.Wdf 2016-09-16 05:23:20 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf 2016-09-12 16:12:18 8A93EF289B0F9355E513C4AC08EBF8ED 32400 ----a-w- C:\WINDOWS\Sysnative\drivers\gfiutil.sys 2016-09-12 13:05:54 9516B0A2506DFAD604A0CDC42E21650D 73840 ----a-w- C:\WINDOWS\Sysnative\drivers\dbx-stable.sys 2016-09-12 13:05:54 9516B0A2506DFAD604A0CDC42E21650D 73840 ----a-w- C:\WINDOWS\Sysnative\drivers\dbx-dev.sys 2016-09-12 13:05:54 9516B0A2506DFAD604A0CDC42E21650D 73840 ----a-w- C:\WINDOWS\Sysnative\drivers\dbx-canary.sys 2016-08-23 14:31:14 381FB91B6FD4AD81659ECA806C0FB0A4 310016 ----a-w- C:\WINDOWS\Sysnative\drivers\avgidsdrivera.sys ====== C:\WINDOWS\Tasks ====== 2016-09-16 05:54:19 13BBDDCEFC024FD4E2451CB599097F44 3320 ----a-w- C:\WINDOWS\Sysnative\Tasks\User_Feed_Synchronization-{309A46B8-43D0-43E4-AFE0-E61B21E3A1DF} 2016-09-16 05:54:19 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\WPD 2016-09-16 05:54:18 EC689886FCBC914F1D27C2D1967042D7 2940 ----a-w- C:\WINDOWS\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3972835978-2593449753-3170096110-1001 2016-09-16 05:54:18 6DF21BEED02FE033572300EBFA8B5138 3262 ----a-w- C:\WINDOWS\Sysnative\Tasks\User_Feed_Synchronization-{17ADDD51-8A22-4DF1-A002-FF36FB5CE8AA} 2016-09-16 05:54:18 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\R@1n-KMS 2016-09-16 05:54:18 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\OfficeSoftwareProtectionPlatform 2016-09-16 05:54:15 E33787B528AE449FF6794C0061B57878 3296 ----a-w- C:\WINDOWS\Sysnative\Tasks\FacebookUpdateTaskUserS-1-5-21-3972835978-2593449753-3170096110-1001Core 2016-09-16 05:54:15 C312D947A5696CDC1583E06B8571553C 3350 ----a-w- C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineCore 2016-09-16 05:54:15 A2A01A37C6441C219D4C6E0E2D3FD1BD 3538 ----a-w- C:\WINDOWS\Sysnative\Tasks\FacebookUpdateTaskUserS-1-5-21-3972835978-2593449753-3170096110-1001UA 2016-09-16 05:54:15 9F9278D3A3FC390A07F6C7317E146152 2274 ----a-w- C:\WINDOWS\Sysnative\Tasks\DolbySelectorTask 2016-09-16 05:54:15 8FAEE2ECC578747B71181DF2D70E48D5 3000 ----a-w- C:\WINDOWS\Sysnative\Tasks\GlaryOneClickOptimizer 5 2016-09-16 05:54:15 8C4C6ED06DBC6F990BD8889EEB4CFAD0 3532 ----a-w- C:\WINDOWS\Sysnative\Tasks\DropboxUpdateTaskMachineUA 2016-09-16 05:54:15 763ACDE5E5BEF8D0F93F45B0662F5C94 2226 ----a-w- C:\WINDOWS\Sysnative\Tasks\GU5SkipUAC 2016-09-16 05:54:15 6B341687E8B83C76B3922CF33A802233 3094 ----a-w- C:\WINDOWS\Sysnative\Tasks\Java Platform SE Auto Updater 2016-09-16 05:54:15 5EE72231EA3B109343C943A8BD9C71BC 3482 ----a-w- C:\WINDOWS\Sysnative\Tasks\Adobe Acrobat Update Task 2016-09-16 05:54:15 4C20469DFE127ECEFEF80E18861424D3 3574 ----a-w- C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineUA 2016-09-16 05:54:15 212F9DFA5BBC66FA6AFB8B5BF14D33DB 2508 ----a-w- C:\WINDOWS\Sysnative\Tasks\GlaryInitialize 5 2016-09-16 05:54:15 1E3199AB44B62DB7BC0ADD0FD92FD181 3308 ----a-w- C:\WINDOWS\Sysnative\Tasks\DropboxUpdateTaskMachineCore 2016-09-16 05:54:15 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\Apple ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-09-19 04:02:06 -------- d-----w- C:\Program Files\trend micro 2016-09-16 06:07:21 -------- d-----w- C:\Program Files\Reference Assemblies 2016-09-16 06:07:21 -------- d-----w- C:\Program Files\MSBuild 2016-09-16 05:24:08 -------- d-----w- C:\Program Files\Common Files\Atheros 2016-09-16 05:23:36 -------- d-----w- C:\Program Files\Realtek 2016-09-16 05:23:21 -------- d-----w- C:\Program Files\Elantech 2016-09-16 05:23:19 -------- d-----w- C:\Program Files\Synaptics 2016-09-16 05:23:00 -------- d-----w- C:\Program Files\Intel 2016-09-15 12:11:26 -------- d-----w- C:\Program Files\iPod 2016-09-15 12:11:25 -------- d-----w- C:\Program Files\iTunes 2016-09-04 09:49:39 -------- d---a-w- C:\Program Files\PDF Architect 4 2016-09-04 09:48:56 -------- d-----w- C:\Program Files\PDFCreator 2016-09-04 09:46:29 -------- d-----w- C:\Program Files\VS Revo Group ======= C:\PROGRA~2 ===== 2016-09-16 06:07:21 -------- d-----w- C:\PROGRA~2\Reference Assemblies 2016-09-16 06:07:21 -------- d-----w- C:\PROGRA~2\MSBuild 2016-09-16 05:40:44 -------- d--h--w- C:\PROGRA~2\Uninstall Information 2016-09-16 05:22:50 -------- d-----w- C:\PROGRA~2\COMMON~1\Intel 2016-09-04 09:49:52 -------- d---a-w- C:\PROGRA~2\PDF Architect 4 2016-09-04 09:49:39 -------- d---a-w- C:\PROGRA~2\COMMON~1\PDF Software 2016-09-04 09:46:04 -------- d-----w- C:\PROGRA~2\COMMON~1\Java ======= C: ===== 2016-09-17 18:05:50 D781A836612644CB0D9891BBDCAD8AC7 387066 --sha-r- C:\bootmgr 2016-09-17 18:05:50 93B885ADFE0DA089CDF634904FD59F71 1 --sha-w- C:\BOOTNXT ====== C:\Users\admin\AppData\Roaming ====== 2016-09-19 12:21:36 AA0D038639825787DBFD67240A2059A4 4909792 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat 2016-09-19 08:46:27 -------- d-----w- C:\Users\admin\AppData\Local\Temp 2016-09-17 06:06:35 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\DataSharing 2016-09-16 09:50:54 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\ConnectedDevicesPlatform 2016-09-16 06:10:15 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft 2016-09-16 06:10:15 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Roaming 2016-09-16 06:02:50 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Apps 2016-09-16 05:59:41 -------- d-----w- C:\Users\admin\AppData\Local\ConnectedDevicesPlatform 2016-09-16 05:40:26 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\ConnectedDevicesPlatform 2016-09-16 05:40:22 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\AvgSetupLog 2016-09-16 05:40:22 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Avg 2016-09-16 05:40:15 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft 2016-09-16 05:39:12 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Avg 2016-09-16 05:35:57 -------- d-----w- C:\Users\Default\AppData\Local\Microsoft Help 2016-09-16 05:35:57 -------- d-----w- C:\Users\Default User\AppData\Local\Microsoft Help 2016-09-16 05:27:16 -------- d-----w- C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-09-16 05:27:16 -------- d-----w- C:\Users\admin\AppData\Roaming 2016-09-16 05:27:16 -------- d-----w- C:\Users\admin\AppData\Local\Microsoft 2016-09-16 05:27:16 -------- d-----w- C:\Users\admin\AppData\Local 2016-09-16 05:27:16 -------- d-----r- C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-09-16 05:27:16 -------- d-----r- C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-09-16 05:27:16 -------- d-----r- C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-09-16 05:27:16 -------- d-----r- C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-09-16 05:27:16 -------- d-----r- C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-09-16 05:26:35 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Packages 2016-09-16 05:21:34 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache 2016-09-16 05:21:04 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp 2016-09-16 05:21:04 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Microsoft 2016-09-16 05:21:04 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local 2016-09-16 05:20:59 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Roaming 2016-09-16 05:20:59 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp 2016-09-16 05:20:59 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Microsoft 2016-09-16 05:20:59 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local ====== C:\Users\admin ====== 2016-09-17 16:58:36 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp 2016-09-16 06:10:15 -------- d--h--w- C:\WINDOWS\serviceprofiles\Localservice\AppData 2016-09-16 06:03:15 -------- d-----w- C:\ProgramData\Microsoft OneDrive 2016-09-16 06:00:26 -------- d-----w- C:\ProgramData\USOShared 2016-09-16 05:59:39 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\admin\ntuser.ini 2016-09-16 05:27:16 -------- d--h--w- C:\Users\admin\AppData 2016-09-16 05:23:55 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\ProgramData\DP45977C.lfl 2016-09-16 05:21:04 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\Saved Games 2016-09-16 05:21:04 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Videos 2016-09-16 05:21:04 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Pictures 2016-09-16 05:21:04 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Music 2016-09-16 05:21:04 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Links 2016-09-16 05:21:04 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Favorites 2016-09-16 05:21:04 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Downloads 2016-09-16 05:21:04 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Documents 2016-09-16 05:21:04 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Desktop 2016-09-16 05:20:59 -------- d--h--w- C:\WINDOWS\serviceprofiles\networkservice\AppData 2016-09-16 05:20:59 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\Saved Games 2016-09-16 05:20:59 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Videos 2016-09-16 05:20:59 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Pictures 2016-09-16 05:20:59 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Music 2016-09-16 05:20:59 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Links 2016-09-16 05:20:59 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Favorites 2016-09-16 05:20:59 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Downloads 2016-09-16 05:20:59 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Documents 2016-09-16 05:20:59 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Desktop 2016-09-15 19:02:49 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-09-15 12:11:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2016-09-12 16:09:28 -------- d-----w- C:\ProgramData\PC1Data 2016-09-04 09:50:00 -------- d-----w- C:\ProgramData\pdfforge 2016-09-04 09:49:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 4 2016-09-04 09:49:03 -------- d-----w- C:\ProgramData\PDF Architect 4 2016-09-04 09:48:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2016-09-04 09:46:30 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2016-09-01 11:18:04 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud ====== C: exe-files == 2016-09-19 12:24:57 45CE67E7A4921119F8B7BF9E72C8B568 16407136 ----a-w- C:\Users\admin\AppData\Local\Temp\gusetup7.exe 2016-09-19 12:24:57 45CE67E7A4921119F8B7BF9E72C8B568 16407136 ----a-w- C:\Users\admin\AppData\Local\Microsoft\Windows\INetCache\IE\6DE9UK2Y\gup5setup[1].exe 2016-09-19 06:08:57 D0FA8813EDF8B38A4ED34E0659A69704 56475224 ----a-w- C:\Program Files (x86)\Google\Update\Install\{71CBF45D-A95D-4E23-A6E1-D12651208B5C}\53.0.2785.116_chrome_installer.exe 2016-09-19 06:08:55 D0FA8813EDF8B38A4ED34E0659A69704 56475224 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\53.0.2785.116\53.0.2785.116_chrome_installer.exe 2016-09-19 04:02:06 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\admin.exe 2016-09-17 18:05:50 E09CAF9D738F726DD7B959FD0CDC4864 799072 ----a-w- C:\Boot\memtest.exe 2016-09-17 17:24:29 1C6F31756DE0CAC502A743382892C620 828408 ----a-w- C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-09-17 17:22:44 2B4E090D06C60853C5C00CF255F9E02A 1312768 ----a-w- C:\Windows\System32\SensorDataService.exe 2016-09-17 17:22:17 36E594EF1B8F040C4F2C452D126C0215 5622600 ----a-w- C:\Windows\System32\sppsvc.exe 2016-09-17 17:22:12 71F582ABF871B8F9881683408CF2FD7F 10652512 ----a-w- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 2016-09-17 17:22:09 010D5E06B7F9CB63375442E937A50850 7652720 ----a-w- C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe 2016-09-17 17:22:06 F80BC99AE16ECD40E60F11713D311A98 705376 ----a-w- C:\Windows\SystemApps\Microsoft.BioEnrollment_cw5n1h2txyewy\BioEnrollmentHost.exe 2016-09-17 17:22:06 940D27811B8613CF0DE102546E38E520 423776 ----a-w- C:\Windows\System32\wifitask.exe 2016-09-17 17:22:06 21A5BC2460CF0FE0A4F4FC097BDE1419 275296 ----a-w- C:\Windows\SystemApps\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\Microsoft.AAD.BrokerPlugin.exe 2016-09-17 17:21:56 E3ECD6675874EBBED4BF325B300159A1 7813472 ----a-w- C:\Windows\System32\ntoskrnl.exe 2016-09-17 17:21:41 426DC7AAE17A5AAE8D144E1CA0475B7B 2587488 ----a-w- C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe 2016-09-17 17:21:35 1842CA6AD5D0A31423AC564E7600AFE7 1653600 ----a-w- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 2016-09-17 17:21:16 F9BFEAB747DE538139A746CDA3B7CBB0 114176 ----a-w- C:\Windows\SysWOW64\setupugc.exe 2016-09-17 17:21:16 2F672DAB25C830B5CCA6DAAFFA5F6DFB 125952 ----a-w- C:\Windows\System32\setupugc.exe 2016-09-17 17:21:10 EBBB4D68A3F7CDD7048B1BEE36CA582B 116224 ----a-w- C:\Windows\System32\Speech_OneCore\Common\SpeechModelDownload.exe 2016-09-17 17:21:07 D5B3E22F1D494CBDD27E956BB2D47DCB 99840 ----a-w- C:\Windows\SysWOW64\Speech_OneCore\Common\SpeechModelDownload.exe 2016-09-17 17:20:59 62DB63BA7A9BC04D7BBB83D558797A97 857440 ----a-w- C:\Windows\System32\WWAHost.exe 2016-09-17 17:20:55 8D2D008AEC7B20C5188F9532897424D9 1163696 ----a-w- C:\Windows\System32\winload.exe 2016-09-17 17:20:55 8D2D008AEC7B20C5188F9532897424D9 1163696 ----a-w- C:\Windows\System32\Boot\winload.exe 2016-09-17 17:20:53 FB4B1295B2E53AB23C6A797A6C3E5F64 775168 ----a-w- C:\Windows\System32\GamePanel.exe 2016-09-17 17:20:53 EABD32261BCF4591B2E4FD68346A6A10 782176 ----a-w- C:\Windows\SysWOW64\WWAHost.exe 2016-09-17 17:20:53 82733B78ECC440E88CFFFB309FF43EB5 885824 ----a-w- C:\Windows\System32\winresume.exe 2016-09-17 17:20:53 82733B78ECC440E88CFFFB309FF43EB5 885824 ----a-w- C:\Windows\System32\Boot\winresume.exe 2016-09-17 17:20:51 36D5B4C6107F695E3DF767F4510F425C 584544 ----a-w- C:\Windows\System32\SettingSyncHost.exe 2016-09-17 17:20:48 7026F563648DDBC9A7D893F1EAF31583 509792 ----a-w- C:\Windows\SysWOW64\SettingSyncHost.exe 2016-09-17 17:20:44 6F8E95716C1A27FF2FE96D30B147F1C1 57400 ----a-w- C:\Windows\System32\lsass.exe 2016-09-17 17:20:42 A8A1972707EDB245529005D4507CD220 321792 ----a-w- C:\Windows\SysWOW64\LockAppHost.exe 2016-09-17 17:20:39 4B7C137D91740E9BB647189362022C1E 50880 ----a-w- C:\Windows\System32\CompatTelRunner.exe 2016-09-17 17:20:37 F78870C8520BC47B5B83083356A59316 360040 ----a-w- C:\Windows\System32\SystemSettingsAdminFlows.exe 2016-09-17 17:20:34 DB7A29D54BBC4050E904BE62464DE3EB 495616 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2016-09-17 17:20:32 A0164A9FEF887AE1E693F8763AFB9D24 605184 ----a-w- C:\Windows\System32\bcastdvr.exe 2016-09-17 17:20:31 63036AE43B673B6C57B999251CD5E8A4 382272 ----a-w- C:\Windows\System32\LockAppHost.exe 2016-09-17 17:20:30 B00CE075546F0FD20917FA0755259BD1 988000 ----a-w- C:\Windows\System32\hvax64.exe 2016-09-17 17:20:29 6E407A512E48C0DDDCEDB4DFFCB39D23 1099616 ----a-w- C:\Windows\System32\hvix64.exe 2016-09-17 17:20:29 050DA02DBEC0CF936151FAF5A6DD89B3 1815904 ----a-w- C:\Windows\SystemApps\Microsoft.PPIProjection_cw5n1h2txyewy\Receiver.exe 2016-09-17 17:20:28 E09CAF9D738F726DD7B959FD0CDC4864 799072 ----a-w- C:\Windows\Boot\PCAT\memtest.exe 2016-09-17 17:20:28 D7CF6362CF4E4580EF636CBED87C3D1B 695136 ----a-w- C:\Windows\SystemApps\Microsoft.AccountsControl_cw5n1h2txyewy\AccountsControlHost.exe 2016-09-17 17:20:28 A91F621A8A0DE91FAE53D3051303809B 83704 ----a-w- C:\Windows\ImmersiveControlPanel\SystemSettings.exe 2016-09-17 17:20:28 8DC162262762E46F37D89D31B59EF69D 26408 ----a-w- C:\Windows\System32\wuauclt.exe 2016-09-17 17:20:28 7FF79BEDE9020AC1E19E4FA54C604132 478720 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2016-09-17 17:20:27 5CB2F567BD4EADC2639DAAF57F2D4FB1 78704 ----a-w- C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 2016-09-17 17:20:27 37CAF0C314C9D593051922F9E35ED930 315744 ----a-w- C:\Windows\SystemApps\Microsoft.Windows.SecondaryTileExperience_cw5n1h2txyewy\SecondaryTileExperience.exe 2016-09-17 17:20:21 E4BF5B9D5DE1EA3E60A45AFBC64ABB72 1555456 ----a-w- C:\Windows\System32\WMPDMC.exe 2016-09-17 17:20:21 88AC6B6BB198A74296A687F563A08473 807776 ----a-w- C:\Windows\System32\hvloader.exe 2016-09-17 17:20:20 4363ECA0BE56C43B19D4150F9B12248D 3299328 ----a-w- C:\Windows\System32\mstsc.exe 2016-09-17 17:20:16 A16F26BA3232C1FD4529FF990B7C197C 1293312 ----a-w- C:\Windows\SysWOW64\WMPDMC.exe 2016-09-17 17:20:15 4CA710106AACB967F1CF4740DC4CA5D7 171008 ----a-w- C:\Windows\System32\oobe\msoobe.exe 2016-09-17 17:20:13 B3F74E43A73504F3C1D2B10948E67EC4 1184256 ----a-w- C:\Program Files\Windows Media Player\wmpnetwk.exe 2016-09-17 17:20:13 732A014DED200D675472FB6787F94034 3105792 ----a-w- C:\Windows\SysWOW64\mstsc.exe 2016-09-17 17:20:08 FBE0AF143BADE2F01F86970E133D2336 241664 ----a-w- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe 2016-09-17 17:20:08 A5CC94CBC0F774B641BAC5982DB1A69D 387072 ----a-w- C:\Windows\System32\F12\F12Chooser.exe 2016-09-17 17:20:07 E3D3A23AD03ADC3C54925A43B9722B10 223744 ----a-w- C:\Windows\System32\ie4uinit.exe 2016-09-17 17:20:07 561AE74AEA63C9182749FF3FA8F29424 484352 ----a-w- C:\Windows\System32\MDEServer.exe 2016-09-17 17:20:06 A76EB76BC591B186FBCAFD1E921C492F 491520 ----a-w- C:\Windows\SysWOW64\bcastdvr.exe 2016-09-17 17:20:06 1F75B08FEC95C062B50BDC8ABBAB3FD0 222720 ----a-w- C:\Windows\SysWOW64\InstallAgentUserBroker.exe 2016-09-17 17:20:04 D37D56BF2550DFB4E25B43255E9D1B2C 578048 ----a-w- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\PlacesServer.exe 2016-09-17 17:20:04 70E409EB416694B41133A869511396F4 477696 ----a-w- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersShareTargetApp.exe 2016-09-17 17:20:03 2C5C98166F96A67F25D5474569D07D2E 259584 ----a-w- C:\Windows\System32\InstallAgentUserBroker.exe 2016-09-17 17:19:59 B5AE46B11468E3F88BE63E04D4202CEA 105472 ----a-w- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe 2016-09-17 17:19:58 7CB21D73BB04088F9EC6171B4092F477 34304 ----a-w- C:\Windows\SysWOW64\LaunchWinApp.exe 2016-09-17 17:19:58 284FB9A8807C14BC0FD3A60F4BA1F6D3 43008 ----a-w- C:\Windows\System32\LaunchWinApp.exe 2016-09-17 17:19:58 22559865AB6745D8878777692B63B575 211456 ----a-w- C:\Windows\System32\InstallAgent.exe 2016-09-17 17:19:58 1CCEBE614817D0F516A92BBFA2638DC2 179712 ----a-w- C:\Windows\SysWOW64\InstallAgent.exe 2016-09-16 06:14:20 EA9D4CD0F30337BC51F50CBAD8097933 592384 ----a-w- C:\Windows\SysWOW64\GamePanel.exe 2016-09-16 06:14:15 B1419B38FBD14C65CB73D26D5577BD99 166912 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe 2016-09-16 06:14:15 6F12B244B6BAC8EEEB506C0BEE04F8CB 94720 ----a-w- C:\Windows\System32\dasHost.exe 2016-09-16 06:14:15 33F8EBD289346E20E58F2DE28D12A398 104448 ----a-w- C:\Program Files (x86)\Windows Media Player\wmpshare.exe 2016-09-16 06:14:14 ADB4E49FA88CFE2D6CD1AB0C798114E8 102400 ----a-w- C:\Program Files (x86)\Windows Media Player\wmpconfig.exe 2016-09-16 06:14:14 7F44C62301131DC4235B978DD9012F29 169984 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe 2016-09-16 06:14:14 4FC20CD9B2E079C966B73A963A795145 106496 ----a-w- C:\Program Files\Windows Media Player\wmpshare.exe 2016-09-16 06:14:14 0E95DAD7FC69B2BDE60B7DFFFAAF6BB1 103424 ----a-w- C:\Program Files\Windows Media Player\wmpconfig.exe 2016-09-16 06:14:14 05FE3C95087AC75E302FCD184931B9E9 25600 ----a-w- C:\Windows\SysWOW64\netiougc.exe 2016-09-16 06:14:12 F8812C33996D74261E06FF0F32576AB5 30208 ----a-w- C:\Windows\System32\netiougc.exe 2016-09-16 06:14:12 BAF5E62564002B36FAD01384F87E4079 1377008 ----a-w- C:\Windows\System32\ClipUp.exe 2016-09-16 06:14:12 ACB6C92547FC890FBFB9B8FB7B3C0BE6 665768 ----a-w- C:\Windows\System32\GenValObj.exe 2016-09-16 06:14:12 8F1F1C4EDA2CFA2073E82A409BBE35D0 214016 ----a-w- C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell_ise.exe 2016-09-16 06:14:12 6C73C817F42D3BD2FD1638B7A7DB646D 66048 ----a-w- C:\Windows\System32\provtool.exe 2016-09-16 06:14:12 688F531DFEF5CCAE897F26CCA4C21FE6 41824 ----a-w- C:\Windows\System32\SysResetErr.exe 2016-09-16 06:14:12 3F06E220C3E591F458D549B01ECCCB95 212992 ----a-w- C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe 2016-09-16 06:14:12 3CC81C06630B17913BE6D872F9F84658 11264 ----a-w- C:\Windows\System32\ResetEngine.exe 2016-09-16 06:14:12 3A6F144F316E0308BD046E3F6C975F04 354264 ----a-w- C:\Windows\System32\systemreset.exe 2016-09-16 06:14:08 F1572B629205079F2707E7E01C275245 268800 ----a-w- C:\Windows\System32\DeviceCensus.exe 2016-09-16 06:14:08 E8DFB39E831BFAA438B28ADC11C6E9FD 186880 ----a-w- C:\Windows\System32\MusNotification.exe 2016-09-16 06:14:08 B93AED6C0949BE5BF7284D22C9E06D19 44472 ----a-w- C:\Windows\System32\mfpmp.exe 2016-09-16 06:14:08 ABAF65774CEA41C5B335DD12E2C3109B 57344 ----a-w- C:\Windows\System32\WinBioDataModelOOBE.exe 2016-09-16 06:14:08 4C74CE81E514FEDB1D5FF6676524BF56 36168 ----a-w- C:\Windows\SysWOW64\mfpmp.exe 2016-09-16 06:06:47 EBB019782606C198813D621DF161B5F0 35480 ----a-w- C:\Windows\SysWOW64\TsWpfWrp.exe 2016-09-16 06:06:42 DB5CEDD2D9B6BEC1F008AB32F6430407 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe 2016-09-16 06:04:36 FD9A7F99A09DB266D0C1361B0ACCBD7E 554176 ----a-w- C:\Users\admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe 2016-09-16 06:04:36 1496120E3867FD75AE5D4EAD6E618E7A 8886976 ----a-w- C:\Users\admin\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\OneDriveSetup.exe 2016-09-16 06:04:07 84CC1BFB840EB83B1805B963C5B6BA14 178880 ----a-w- C:\Users\admin\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\FileSyncConfig.exe 2016-09-16 06:03:58 3227C123728C9FD072CFD7271B64F695 176832 ----a-w- C:\Users\admin\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\FileCoAuth.exe 2016-09-16 06:03:48 81C67B616A02BE4BB43FBBCBE1C0DF46 493256 ----a-w- C:\Users\admin\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\OneDriveStandaloneUpdater.exe 2016-09-15 19:02:31 48FF823D8ACF145CE616DE5C3853C7E8 18392 ----a-w- C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe 2016-09-15 19:02:30 840106898ED7FD9375057C2ABF3A16CB 174056 ----a-w- C:\Program Files (x86)\Dropbox\Client\DropboxUninstaller.exe 2016-09-15 19:02:30 576E6621ACE80AA7195DE284458AA7EA 25347616 ----a-w- C:\Program Files (x86)\Dropbox\Client\Dropbox.exe 2016-09-15 19:02:30 46E5FACF3B022D8C44F1434B09FB0C8E 36648 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbxsvc.exe 2016-09-15 19:02:29 BEA69742E859577C7308236B4AFF26E8 42792 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbxsvc.exe 2016-09-15 19:01:36 A8536FD131F73D02750CED723E038FA0 70514752 ----a-w- C:\Program Files (x86)\Dropbox\Update\Download\{CC46080E-4C33-4981-859A-BBA2F780F31E}\10.4.25\DropboxClient_10.4.25.exe 2016-09-15 12:08:37 A13734F5BAD6F86BB23CA3687FFE3A57 85832 ----a-w- C:\ProgramData\Apple Computer\Installer Cache\iTunes 12.5.1.21\SetupAdmin.exe 2016-09-15 03:59:10 FA808FDF12832F961059AF3FA6D54150 797016 -c--a-w- C:\Windows\Panther\Rollback\Boot\memtest.exe 2016-09-15 03:59:10 FA808FDF12832F961059AF3FA6D54150 797016 ----a-w- C:\$WINDOWS.~BT\Sources\Rollback\Boot\memtest.exe 2016-09-14 15:20:49 445628416AC69213158D248E8DDE52AC 419560 ----a-w- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\Temp\2085118636\AdobeARMHelper.exe 2016-09-13 19:01:47 B2530DDCA047CB311CCE047031EEC1B9 78608 ----a-w- C:\ProgramData\Avg\Setup\av\avguirux.exe 2016-09-13 19:01:47 743978718BE5C4728B8260A397B6C17F 6112000 ----a-w- C:\ProgramData\Avg\Setup\av\avgmfapx.exe 2016-09-13 18:59:04 B2530DDCA047CB311CCE047031EEC1B9 78608 ----a-w- C:\Program Files (x86)\AVG\Av\avguirux.exe 2016-09-13 18:59:04 743978718BE5C4728B8260A397B6C17F 6112000 ----a-w- C:\Program Files (x86)\AVG\Av\avgmfapx.exe 2016-09-12 15:39:37 E9A3537989CD73293593D62408BF748F 3178232 ----a-w- C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe 2016-09-12 15:39:37 CA13E6C1761AA7916063E4A2C5456DDA 37112 ----a-w- C:\Program Files (x86)\Wise\Wise Care 365\BootLauncher.exe 2016-09-12 15:39:37 8F1241907C381F075C9FA7A03A47C6F0 1573624 ----a-w- C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe 2016-09-12 15:39:36 8819C824F465F3CDB71383B07F21B330 1091320 ----a-w- C:\Program Files (x86)\Wise\Wise Care 365\UninstallTP.exe 2016-09-12 15:39:36 7AB48187722FF1BA6994C17A55C37721 1343736 ----a-w- C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe 2016-09-12 15:39:36 7127639FD2074229E680612927689E67 1204984 ----a-w- C:\Program Files (x86)\Wise\Wise Care 365\WiseBootBooster.exe 2016-09-12 15:39:36 55F2705FAB8A3A34DC2C0C97EFE0B0F4 1312504 ----a-w- C:\Program Files (x86)\Wise\Wise Care 365\AutoUpdate.exe 2016-09-12 15:39:36 1ADCADCB9F59F03209DD73044832B35E 8994040 ----a-w- C:\Program Files (x86)\Wise\Wise Care 365\WiseCare365.exe 2016-09-12 15:39:35 912931EC6CFE4868BE5F8DBCB84005B1 1195936 ----a-w- C:\Program Files (x86)\Wise\Wise Care 365\unins000.exe 2016-09-12 15:37:12 FF0799F8511A41C6BF9E14DFA02A5DFB 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe 2016-09-12 15:37:12 C383DF5DDCDE726DE79CFDADC416C086 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe 2016-09-12 15:37:12 0B3B0C032E78F5488548C068B3F40805 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe 2016-09-12 15:37:04 FF0799F8511A41C6BF9E14DFA02A5DFB 318528 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\javaws.exe 2016-09-12 15:37:04 E537939934C9F937F8E22B24B69DBD37 111680 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\jp2launcher.exe 2016-09-12 15:37:04 DF3D997BDC7D27BB981C4C2642EA4AD9 16448 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\ktab.exe 2016-09-12 15:37:04 D71950E90369BABAB39A6DD4004BA32B 15936 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\jjs.exe 2016-09-12 15:37:04 C6958959A645C117D60132F5B33A0CC9 16448 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\keytool.exe 2016-09-12 15:37:04 C383DF5DDCDE726DE79CFDADC416C086 206400 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\java.exe 2016-09-12 15:37:04 B65DD30674217C73CDDC552120B33EF5 16448 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\orbd.exe 2016-09-12 15:37:04 8632E1250E05FA68A35F8D7B4E9D0AC9 16448 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\pack200.exe 2016-09-12 15:37:04 818609D0CE9D893261A39B80FF2F3770 16448 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\policytool.exe 2016-09-12 15:37:04 68BBDAB597D5A76AE2463426B674780F 69696 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\ssvagent.exe 2016-09-12 15:37:04 5B03585092B7B1282924A759A41761FE 34368 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\jabswitch.exe 2016-09-12 15:37:04 583589602986ADE90312330D551CD218 16448 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\rmiregistry.exe 2016-09-12 15:37:04 44A968AA285B7503FD6A04C34076F276 16448 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\servertool.exe 2016-09-12 15:37:04 3A467CC4D55E9FBE77AAFF772CBF2F64 16448 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\klist.exe 2016-09-12 15:37:04 27758436ECC8A9B535760EF5FA5E6FE2 16448 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\kinit.exe 2016-09-12 15:37:04 0F5B9DE1EFB52D967AE383F5F4AED985 15936 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\rmid.exe 2016-09-12 15:37:04 0F4FE2EECBCAA7270AA3092A33DC3092 15936 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\java-rmi.exe 2016-09-12 15:37:04 0E3AB48144A23ACDF7D8C115F1C83E67 16448 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\tnameserv.exe 2016-09-12 15:37:04 0D9525C418288DD05E9E42BB5730188C 79936 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\javacpl.exe 2016-09-12 15:37:04 0B3B0C032E78F5488548C068B3F40805 206912 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\javaw.exe 2016-09-12 15:37:04 01B0ECB19642979B8B77A95DE4282F2B 197184 ----a-w- C:\Program Files\Java\jre1.8.0_102\bin\unpack200.exe 2016-09-12 13:11:32 BEA69742E859577C7308236B4AFF26E8 42792 ----a-w- C:\Windows\System32\DbxSvc.exe === C: other files == 2016-09-17 17:22:27 A90C76FB62526DEB5A5557A8839841AB 2190688 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2016-09-17 17:21:59 4F0F1E9A7281B4522F16B190F7661291 658272 ----a-w- C:\Windows\System32\drivers\dxgmms2.sys 2016-09-17 17:21:59 14AE4AAED71AE09151AED376420B630D 402272 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2016-09-17 17:21:57 E83830BB74AE8CBECEA0ECD94DE436F9 409088 ----a-w- C:\Windows\System32\drivers\srv.sys 2016-09-17 17:21:57 B728AB4A8FBBCF5269DD5290D3F1F1EF 279904 ----a-w- C:\Windows\System32\drivers\sdbus.sys 2016-09-17 17:21:57 7878A65B1D949B4E2880DD2EF7B8D8D7 187232 ----a-w- C:\Windows\System32\drivers\dumpsd.sys 2016-09-17 17:21:56 8833A059270A60CE347FEB9A7951B3F4 681304 ----a-w- C:\Windows\System32\drivers\ClipSp.sys 2016-09-17 17:21:55 F13EE0DB1FB1D6946AC3228D7EFCFC8F 248320 ----a-w- C:\Windows\System32\drivers\srvnet.sys 2016-09-17 17:21:55 2C2D61825A3D036CACA7E34FF75B8207 714240 ----a-w- C:\Windows\System32\drivers\srv2.sys 2016-09-17 17:21:41 200E4A385F5F370D8866BAE25B0D9D32 282624 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2016-09-17 17:21:15 D9088048BB7C61CF4647840122160781 3617792 ----a-w- C:\Windows\System32\win32kfull.sys 2016-09-17 17:21:10 5DD8CB01C0394F8D052763D2E3C6E684 2256224 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2016-09-17 17:21:01 95282F6BBE2AF779E03EDA100B38ED07 2999296 ----a-w- C:\Windows\SysWOW64\win32kfull.sys 2016-09-17 17:20:44 E671EDAB0726E05ECEF4058B4CD73C4D 450392 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2016-09-17 17:20:43 5008FF3BBB078956C60DCA0044CF175B 379744 ----a-w- C:\Windows\System32\drivers\Classpnp.sys 2016-09-17 17:20:41 705C0F8BCCEF6E7CB704CCB454192D7E 133472 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2016-09-17 17:20:37 B705D8E3011268160833518FBD80FBCE 2537824 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2016-09-17 17:20:33 57A8C77BD62F4C052ECC40EB221A7078 224096 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2016-09-17 17:20:30 2A9817B5A9260D8F60D52E36BEF10443 118112 ----a-w- C:\Windows\System32\drivers\EhStorTcgDrv.sys 2016-09-17 17:20:27 74FC79C52395B10FFD0B55CF22CF88FC 73568 ----a-w- C:\Windows\System32\drivers\hvservice.sys 2016-09-17 17:20:27 68FDFCE44D29EE8AE52E3CCB46BB0554 409944 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2016-09-17 17:20:05 3CF052C22F34174BE783DAF2F3A81D8A 210944 ----a-w- C:\Windows\System32\win32k.sys 2016-09-17 17:20:03 55336C6F59AD2162F9DBF877395B85B6 150528 ----a-w- C:\Windows\SysWOW64\win32k.sys 2016-09-16 06:14:15 9EA203A07EFA6D74F07F32EF0DAB5CA6 108384 ----a-w- C:\Windows\System32\drivers\pdc.sys 2016-09-16 06:14:14 64E0AA114871B2A37908E44A18F35A73 128352 ----a-w- C:\Windows\System32\drivers\partmgr.sys 2016-09-16 06:14:14 392CD98739F4A8F188A3CB34F6AB193E 435040 ----a-w- C:\Windows\System32\drivers\rdbss.sys 2016-09-16 06:14:12 68B1E0DA1BB1680494227E88CE821E2F 62816 ----a-w- C:\Windows\System32\drivers\dam.sys 2016-09-16 06:14:08 DC5955E589C55E2313D69B64E1A183F3 84992 ----a-w- C:\Windows\System32\drivers\BTHUSB.SYS 2016-09-16 06:14:08 D8536CB438CC4CCDAE047B768EED22B2 38400 ----a-w- C:\Windows\System32\drivers\hidusb.sys 2016-09-16 06:14:08 D82592B327C43AC9381E9FBEF79C7F68 156672 ----a-w- C:\Windows\System32\drivers\hidclass.sys 2016-09-16 06:14:08 D14D2ACB1CA47ABC2844E93EF5B43FF0 247296 ----a-w- C:\Windows\System32\drivers\BthLEEnum.sys 2016-09-16 06:14:08 B9A33B9298BAFCE11E9823B1056D5BB0 40960 ----a-w- C:\Windows\System32\drivers\hidparse.sys 2016-09-16 06:14:08 B739FF1C1FAF9D0ADFBFB0FD59A5AB37 77664 ----a-w- C:\Windows\System32\drivers\stornvme.sys 2016-09-16 06:14:08 B4F448F2424492F99F83D3676A453553 226816 ----a-w- C:\Windows\System32\drivers\usbvideo.sys 2016-09-16 06:14:08 7A167521DC7A190B2FC37D6AB660CBF1 965120 ----a-w- C:\Windows\System32\drivers\bthport.sys 2016-09-16 06:14:08 77630A51FAF6A07922FEE835F4DED8F6 114176 ----a-w- C:\Windows\System32\drivers\bthenum.sys 2016-09-16 06:14:08 63088A3361D9A308F328F11E9099DD87 43520 ----a-w- C:\Windows\System32\drivers\xinputhid.sys 2016-09-16 06:14:08 55AD13E2BAFC5AB53A10F8C271F5D242 168800 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2016-09-16 06:14:08 3E502EB1701CF54CF237B6250FBE38EA 619368 ----a-w- C:\Windows\System32\drivers\cng.sys 2016-09-16 06:14:08 2CDF36D9F14BD0B8E99B0BFD7905FA53 1508864 ----a-w- C:\Windows\System32\win32kbase.sys 2016-09-16 06:06:26 43C8D087B31C592163B33A4BDA540E40 199008 ----a-w- C:\Windows\System32\drivers\wof.sys 2016-09-16 06:03:48 8CF4163521FDB8E53482003C7EFA7121 5850 ----a-w- C:\Users\admin\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\CollectOneDriveLogs.bat 2016-09-16 06:00:21 9F45771914360A925252A1B7226EC7EC 451 ----a-w- C:\Windows\System32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2016-09-15 19:02:29 9516B0A2506DFAD604A0CDC42E21650D 73840 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-stable.sys 2016-09-15 19:02:29 9516B0A2506DFAD604A0CDC42E21650D 73840 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-dev.sys 2016-09-15 19:02:29 9516B0A2506DFAD604A0CDC42E21650D 73840 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-canary.sys 2016-09-15 19:02:29 7D564ACBF730162DFFB3552A84022B15 62064 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-stable.sys 2016-09-15 19:02:29 7D564ACBF730162DFFB3552A84022B15 62064 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-dev.sys 2016-09-15 19:02:29 7D564ACBF730162DFFB3552A84022B15 62064 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-canary.sys 2016-09-14 07:14:04 B32F13993145E815D7280C6F55B9523B 277848 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\sdbus.sys 2016-09-14 07:13:49 734D21F5B05D05DA2F85BE7EEF77DD43 286208 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\mrxsmb10.sys 2016-09-14 07:13:48 B5C5436E7DEA7048822809D16B6E861D 407040 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\srv.sys 2016-09-14 07:13:47 1F186B561EC82AB3EB4D039FEE0D9012 604920 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\cng.sys 2016-09-14 07:13:32 0B1013A5204A6B9EEB38F4EE1E430CE6 131424 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\ufxsynopsys.sys 2016-09-14 07:13:30 6922ACEB62812748401DD25C0744F5D3 405856 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\FWPKCLNT.SYS 2016-09-14 07:13:30 38DADD5178E0299A1BB5A805B2136DEC 129888 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\ksecdd.sys 2016-09-14 07:13:29 655491B1173E0F6322F6972A596B93F7 218624 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\ahcache.sys 2016-09-14 07:13:26 D65DB6F9285AF96151C937ABF027AEA8 15872 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\MTConfig.sys 2016-09-14 07:13:09 BD94675E1C036C94B4A39660B099CB96 1988448 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\dxgkrnl.sys 2016-09-14 07:13:09 9D86C1A36319E048D70BDAE2FC46B72B 3589120 ----a-w- C:\Windows.old\WINDOWS\System32\win32kfull.sys 2016-09-14 07:13:00 315FB5AEFC044656B84738F3793D3033 1387520 ----a-w- C:\Windows.old\WINDOWS\System32\win32kbase.sys 2016-09-14 07:12:48 143DD64D88994C557222E7D8DF0ABA08 638816 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\ClipSp.sys 2016-09-14 07:12:38 E7D59C52DE0C19C3179114D028EAA4B7 430944 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\mrxsmb.sys 2016-09-14 07:12:36 600D5CC9DD2AE16691C71DCD4DAF8F1D 216416 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\mrxsmb20.sys 2016-09-14 07:12:33 FEABA2601AD0D819760F84D1A3ECE5AF 236544 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\srvnet.sys 2016-09-14 07:12:33 ACCFA2FAAF77F5F9D72D3496B36057A8 689664 ----a-w- C:\Windows.old\WINDOWS\System32\drivers\srv2.sys 2016-09-12 16:12:18 8A93EF289B0F9355E513C4AC08EBF8ED 32400 ----a-w- C:\Windows\System32\drivers\gfiutil.sys 2016-09-12 16:12:03 CF0B4FD1C219AD2F9A610866A94B2A4B 40584 ----a-w- C:\ProgramData\PC1Data\av\d\gfiark64.sys 2016-09-12 16:12:03 8A93EF289B0F9355E513C4AC08EBF8ED 32400 ----a-w- C:\ProgramData\PC1Data\av\d\gfiutl64.sys 2016-09-12 16:12:03 734F7465C0B2CF3655112BC4891F3843 25440 ----a-w- C:\ProgramData\PC1Data\av\d\gfiutl32.sys 2016-09-12 16:12:03 02CD1BCC6DB7D4AF10619BE0E79C6079 43176 ----a-w- C:\ProgramData\PC1Data\av\d\gfiark32.sys 2016-09-12 15:37:04 1A8B735B8072CF035AA51356BB0CA92E 14156 ----a-w- C:\Program Files\Java\jre1.8.0_102\lib\deploy\ffjcext.zip 2016-09-12 13:05:54 9516B0A2506DFAD604A0CDC42E21650D 73840 ----a-w- C:\Windows\System32\drivers\dbx-stable.sys 2016-09-12 13:05:54 9516B0A2506DFAD604A0CDC42E21650D 73840 ----a-w- C:\Windows\System32\drivers\dbx-dev.sys 2016-09-12 13:05:54 9516B0A2506DFAD604A0CDC42E21650D 73840 ----a-w- C:\Windows\System32\drivers\dbx-canary.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-3972835978-2593449753-3170096110-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "GUDelayStartup"="C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe -delayrun" "MyDriveConnect.exe"="C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe -startwithoutDA" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AVG_UI"="C:\Program Files (x86)\AVG\Av\avuirunnerx.exe C:\Program Files (x86)\AVG\Av\avgui.exe" "AvgUi"="C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe /lps=fmw" "PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE -startup" "CanonQuickMenu"="C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon" "IJNetworkScannerSelectorEX"="C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE" "Dropbox"="C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GUDelayStartup"="C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe -delayrun" "MyDriveConnect.exe"="C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe -startwithoutDA" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4" "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe " ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BthHFSrv] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\bthserv] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TeamViewer] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\WiseBootAssistant] ==== Startup Folders ====================== 2015-11-05 09:41:32 1686 --sha-w- C:\Users\admin\AppData\Roaming\Microsoft\LastFlashConfig.wfc ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job --a-------- C:8C:\ProgramC:FilesC:x86\Dropbox\Update\DropboxUpdate.exe [] C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job --a-------- C:8C:\ProgramC:FilesC:x86\Dropbox\Update\DropboxUpdate.exe [] C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3972835978-2593449753-3170096110-1001Core.job --a-------- C:\Users\admin\AppData\Local\Facebook\Update\FacebookUpdate.exe [15/11/2014 15:31] C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3972835978-2593449753-3170096110-1001UA.job --a-------- C:\Users\admin\AppData\Local\Facebook\Update\FacebookUpdate.exe [15/11/2014 15:31] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/03/2015 14:23] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/03/2015 14:23] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\DolbySelectorTask" [%ProgramFiles%\Dolby Digital Plus\ddp.exe] "C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskMachineCore" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe] "C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskMachineUA" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe] "C:\WINDOWS\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-3972835978-2593449753-3170096110-1001Core" [C:\Users\admin\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\WINDOWS\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-3972835978-2593449753-3170096110-1001UA" [C:\Users\admin\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\WINDOWS\SysNative\tasks\GlaryInitialize 5" [C:\Program Files (x86)\Glary Utilities 5\Initialize.exe] "C:\WINDOWS\SysNative\tasks\GlaryOneClickOptimizer 5" [C:\Program Files (x86)\Glary Utilities 5\OneClickMaintenance.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GU5SkipUAC" [C:\Program Files (x86)\Glary Utilities 5\Integrator.exe] "C:\WINDOWS\SysNative\tasks\Java Platform SE Auto Updater" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{17ADDD51-8A22-4DF1-A002-FF36FB5CE8AA}" [C:\Windows\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{309A46B8-43D0-43E4-AFE0-E61B21E3A1DF}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\WINDOWS\SysNative\tasks\R@1n-KMS\Office14ProPlus" [wmic] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [11/03/2016 09:10] ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[18/12/2015 00:27] Google Slides - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf eID Chrome Extension - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc YouTube - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Adobe Acrobat - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj Google Sheets - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Chrome Web Store Payments - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Chrome Media Router - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Old Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Old Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit= O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll O2 - BHO: PDF Architect 4 Helper - {38279E1A-7019-40C1-B579-E99DFB3312E8} - C:\Program Files (x86)\PDF Architect 4\creator-ie-helper.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avuirunnerx.exe" C:\Program Files (x86)\AVG\Av\avgui.exe O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE -startup O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup O4 - HKCU\..\Run: [GUDelayStartup] "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun O4 - HKCU\..\Run: [MyDriveConnect.exe] "C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe" -startwithoutDA O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\Program Files\Microsoft Office\Office16\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\Program Files\Microsoft Office\Office16\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Downloads\InPixio.Photo.eRaser.v7.00.Multilingual\InPixio.Photo.eRaser.v7.00.Multilingual\Set up\APAX.dll (file missing) O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Downloads\InPixio.Photo.eRaser.v7.00.Multilingual\InPixio.Photo.eRaser.v7.00.Multilingual\Set up\APAX.dll (file missing) O9 - Extra button: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - F:\Downloads\InPixio.Photo.eRaser.v7.00.Multilingual\InPixio.Photo.eRaser.v7.00.Multilingual\Set up\APAX.dll (file missing) O9 - Extra 'Tools' menuitem: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - F:\Downloads\InPixio.Photo.eRaser.v7.00.Multilingual\InPixio.Photo.eRaser.v7.00.Multilingual\Set up\APAX.dll (file missing) O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - F:\Downloads\InPixio.Photo.eRaser.v7.00.Multilingual\InPixio.Photo.eRaser.v7.00.Multilingual\Set up\APAX.dll (file missing) O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - F:\Downloads\InPixio.Photo.eRaser.v7.00.Multilingual\InPixio.Photo.eRaser.v7.00.Multilingual\Set up\APAX.dll (file missing) O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagenta.exe O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvca.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: Dropbox-update-service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe O23 - Service: Dropbox-update-service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe O23 - Service: DbxSvc - Unknown owner - C:\WINDOWS\system32\DbxSvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing) O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: KMS-R@1n - Unknown owner - C:\Windows\KMS-R@1n.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: PDF Architect 4 - pdfforge GmbH - C:\Program Files\PDF Architect 4\ws.exe O23 - Service: PDF Architect 4 CrashHandler - pdfforge GmbH - C:\Program Files\PDF Architect 4\crash-handler-ws.exe O23 - Service: PDF Architect 4 Creator - pdfforge GmbH - C:\Program Files\PDF Architect 4\creator-ws.exe O23 - Service: PDF Architect 4 Manager - © pdfforge GmbH. - C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: Wise Boot Assistant (WiseBootAssistant) - WiseCleaner.com - C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\admin\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\admin\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\admin\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=34 folders=29 33831636 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\admin\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 19/09/2016 at 14:54:11,72 ======================