ADVERTISEMENT

OTL.Txt

Sprawdzenie logów FRST i procesu WMI Provider Host w tle

Dobrze, a co z działającym w tle procesie WMI Provider Host? @edit załączam logi OTL


Download file - link to post

OTL logfile created on: 12.07.2017 13:05:21 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Marcin\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.15063.0)
Locale: 00000415 | Country: Poland | Language: PLK | Date Format: dd.MM.yyyy

15,91 Gb Total Physical Memory | 12,07 Gb Available Physical Memory | 75,86% Memory free
18,29 Gb Paging File | 14,37 Gb Available in Paging File | 78,60% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 118,75 Gb Total Space | 37,18 Gb Free Space | 31,31% Space Free | Partition Type: NTFS
Drive D: | 491,83 Gb Total Space | 191,58 Gb Free Space | 38,95% Space Free | Partition Type: NTFS
Drive E: | 429,69 Gb Total Space | 416,15 Gb Free Space | 96,85% Space Free | Partition Type: NTFS
Drive F: | 10,00 Gb Total Space | 5,25 Gb Free Space | 52,50% Space Free | Partition Type: NTFS

Computer Name: DESKTOP-C6PBEUH | User Name: Marcin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - File not found --
PRC - [2017.07.12 13:05:07 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Marcin\Downloads\OTL.exe
PRC - [2017.07.12 03:47:24 | 003,469,600 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
PRC - [2017.07.12 03:47:22 | 003,062,048 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
PRC - [2017.07.12 03:47:22 | 001,608,480 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
PRC - [2017.07.07 08:57:25 | 000,626,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\fontdrvhost.exe
PRC - [2017.06.21 09:07:14 | 000,450,168 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
PRC - [2017.06.21 09:07:07 | 000,450,168 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
PRC - [2017.06.21 09:07:04 | 015,553,656 | ---- | M] (Node.js) -- C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
PRC - [2017.06.15 10:44:42 | 003,148,184 | ---- | M] (Electronic Arts) -- C:\Program Files (x86)\Origin\OriginWebHelperService.exe
PRC - [2017.06.08 02:02:23 | 000,462,968 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
PRC - [2017.05.24 12:59:44 | 000,288,848 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
PRC - [2017.02.24 19:03:42 | 001,659,592 | ---- | M] (Foxit Software Inc.) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
PRC - [2009.07.09 15:54:42 | 000,160,768 | ---- | M] (Micro-Star International Co., Ltd.) -- C:\Windows\SysWOW64\MSIService.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2017.07.12 03:47:26 | 002,496,800 | ---- | M] () -- C:\Program Files (x86)\Steam\video.dll
MOD - [2017.07.12 03:47:24 | 000,878,368 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
MOD - [2017.07.12 03:47:22 | 000,385,824 | ---- | M] () -- C:\Program Files (x86)\Steam\Steam.dll
MOD - [2017.07.06 19:58:16 | 073,088,800 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
MOD - [2017.06.21 09:07:07 | 001,040,504 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
MOD - [2017.06.20 22:58:22 | 002,449,856 | ---- | M] () -- \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
MOD - [2017.06.20 22:58:22 | 001,162,688 | ---- | M] () -- \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node
MOD - [2017.06.20 22:58:22 | 000,587,712 | ---- | M] () -- \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
MOD - [2017.06.20 22:58:22 | 000,522,872 | ---- | M] () -- \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvBackendAPINode.node
MOD - [2017.06.20 22:58:22 | 000,480,376 | ---- | M] () -- \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
MOD - [2017.06.20 22:58:22 | 000,463,808 | ---- | M] () -- \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameStreamAPINode.node
MOD - [2017.06.20 22:58:22 | 000,394,872 | ---- | M] () -- \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
MOD - [2017.06.20 22:58:22 | 000,386,496 | ---- | M] () -- \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
MOD - [2017.06.20 22:58:22 | 000,383,096 | ---- | M] () -- \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvUtil.node
MOD - [2017.06.20 22:58:22 | 000,364,664 | ---- | M] () -- \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
MOD - [2017.05.17 03:54:06 | 000,678,176 | ---- | M] () -- C:\Program Files (x86)\Steam\SDL2.dll
MOD - [2017.05.17 03:54:06 | 000,678,176 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
MOD - [2016.09.01 03:02:12 | 004,969,248 | ---- | M] () -- C:\Program Files (x86)\Steam\v8.dll
MOD - [2016.09.01 03:02:06 | 001,563,936 | ---- | M] () -- C:\Program Files (x86)\Steam\icui18n.dll
MOD - [2016.09.01 03:02:06 | 001,195,296 | ---- | M] () -- C:\Program Files (x86)\Steam\icuuc.dll
MOD - [2016.07.05 00:17:58 | 000,266,560 | ---- | M] () -- C:\Program Files (x86)\Steam\openvr_api.dll
MOD - [2016.01.27 09:49:46 | 002,549,760 | ---- | M] () -- C:\Program Files (x86)\Steam\libavcodec-56.dll
MOD - [2016.01.27 09:49:46 | 000,491,008 | ---- | M] () -- C:\Program Files (x86)\Steam\libavformat-56.dll
MOD - [2016.01.27 09:49:46 | 000,485,888 | ---- | M] () -- C:\Program Files (x86)\Steam\libswscale-3.dll
MOD - [2016.01.27 09:49:46 | 000,442,880 | ---- | M] () -- C:\Program Files (x86)\Steam\libavutil-54.dll
MOD - [2016.01.27 09:49:46 | 000,332,800 | ---- | M] () -- C:\Program Files (x86)\Steam\libavresample-2.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2017.07.07 09:20:19 | 000,923,040 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV:[b]64bit:[/b] - [2017.07.07 09:13:19 | 000,872,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC)
SRV:[b]64bit:[/b] - [2017.07.07 09:13:07 | 000,336,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SecurityHealthService.exe -- (SecurityHealthService)
SRV:[b]64bit:[/b] - [2017.07.07 09:08:56 | 000,846,752 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\AppVClient.exe -- (AppVClient)
SRV:[b]64bit:[/b] - [2017.07.07 08:18:36 | 000,548,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorService.dll -- (SensorService)
SRV:[b]64bit:[/b] - [2017.07.07 08:17:02 | 000,536,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV:[b]64bit:[/b] - [2017.07.07 08:12:06 | 001,305,088 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc)
SRV:[b]64bit:[/b] - [2017.06.21 09:07:10 | 000,495,224 | ---- | M] (NVIDIA Corporation) [On_Demand | Stopped] -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -- (NvContainerNetworkService)
SRV:[b]64bit:[/b] - [2017.06.21 09:07:10 | 000,495,224 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -- (NvContainerLocalSystem)
SRV:[b]64bit:[/b] - [2017.06.20 08:01:21 | 000,102,816 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2017.06.20 07:11:29 | 000,200,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2017.06.20 07:09:41 | 000,555,008 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WFDSConMgrSvc.dll -- (WFDSConMgrSvc)
SRV:[b]64bit:[/b] - [2017.06.20 07:07:09 | 000,632,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\tileobjserver.dll -- (tiledatamodelsvc)
SRV:[b]64bit:[/b] - [2017.06.20 07:06:00 | 000,847,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2017.06.20 07:05:53 | 000,585,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2017.06.20 07:04:35 | 001,177,600 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc)
SRV:[b]64bit:[/b] - [2017.06.20 07:04:22 | 000,802,816 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2017.06.20 07:02:54 | 000,681,984 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\usocore.dll -- (UsoSvc)
SRV:[b]64bit:[/b] - [2017.06.20 07:02:40 | 002,804,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2017.06.20 06:58:49 | 000,625,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2017.06.20 06:56:18 | 000,600,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FrameServer.dll -- (FrameServer)
SRV:[b]64bit:[/b] - [2017.06.08 02:02:23 | 000,462,968 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -- (NVDisplay.ContainerLocalSystem)
SRV:[b]64bit:[/b] - [2017.06.03 10:58:32 | 001,046,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc)
SRV:[b]64bit:[/b] - [2017.06.03 10:58:21 | 002,516,480 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2017.05.20 08:06:05 | 000,192,512 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\Windows.SharedPC.AccountManager.dll -- (shpamsvc)
SRV:[b]64bit:[/b] - [2017.05.20 08:01:49 | 000,149,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode)
SRV:[b]64bit:[/b] - [2017.05.20 08:01:35 | 000,970,240 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc)
SRV:[b]64bit:[/b] - [2017.05.20 08:00:27 | 001,067,008 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc)
SRV:[b]64bit:[/b] - [2017.05.16 23:55:50 | 000,279,104 | ---- | M] (Synaptics Incorporated) [Auto | Running] -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe -- (SynTPEnhService)
SRV:[b]64bit:[/b] - [2017.04.28 01:58:36 | 001,054,208 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TokenBroker.dll -- (TokenBroker)
SRV:[b]64bit:[/b] - [2017.04.24 09:55:52 | 001,471,168 | ---- | M] (Disc Soft Ltd) [On_Demand | Stopped] -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe -- (Disc Soft Lite Bus Service)
SRV:[b]64bit:[/b] - [2017.04.14 01:37:14 | 000,301,056 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV:[b]64bit:[/b] - [2017.04.14 01:29:46 | 000,647,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo)
SRV:[b]64bit:[/b] - [2017.04.13 20:26:48 | 000,515,768 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\ibtsiva.exe -- (ibtsiva)
SRV:[b]64bit:[/b] - [2017.03.21 01:59:20 | 000,324,096 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\igfxCUIService.exe -- (igfxCUIService2.0.0.0)
SRV:[b]64bit:[/b] - [2017.03.21 01:59:14 | 000,463,360 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\IntelCpHDCPSvc.exe -- (cplspcon)
SRV:[b]64bit:[/b] - [2017.03.21 01:59:14 | 000,285,696 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\IntelCpHeciSvc.exe -- (cphs)
SRV:[b]64bit:[/b] - [2017.03.19 04:29:00 | 003,913,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe -- (Sense)
SRV:[b]64bit:[/b] - [2017.03.19 04:28:58 | 001,200,640 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\AgentService.exe -- (UevAgentService)
SRV:[b]64bit:[/b] - [2017.03.19 04:28:55 | 000,196,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:[b]64bit:[/b] - [2017.03.18 22:59:53 | 000,428,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:33 | 000,706,048 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:32 | 000,689,152 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\DevicesFlowBroker.dll -- (DevicesFlowUserSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:29 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:24 | 000,081,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:22 | 000,086,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 002,155,008 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 001,135,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,777,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,582,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,334,848 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,093,696 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,047,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (WpnUserService_284120)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,047,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_284120)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,047,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_284120)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,047,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_284120)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,047,664 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_284120)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,047,664 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_284120)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,047,664 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (DevicesFlowUserSvc_284120)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:21 | 000,047,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (CDPUserSvc_284120)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:18 | 000,055,296 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:17 | 001,191,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SEMgrSvc.dll -- (SEMgrSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:17 | 000,772,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:17 | 000,152,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RMapi.dll -- (RmSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:16 | 001,013,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:16 | 000,524,288 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\cdpusersvc.dll -- (CDPUserSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:16 | 000,342,528 | ---- | M] (Microsoft Corporation) [Disabled | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:16 | 000,072,704 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\WpnUserService.dll -- (WpnUserService)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:13 | 000,276,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:12 | 000,149,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:10 | 001,628,672 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:10 | 001,295,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lpasvc.dll -- (wlpasvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:10 | 001,284,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:10 | 000,302,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dusmsvc.dll -- (DusmSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:10 | 000,057,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:09 | 000,090,624 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:09 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:07 | 000,233,984 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:07 | 000,210,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:07 | 000,182,272 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:04 | 000,301,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\xbgmsvc.dll -- (xbgm)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:04 | 000,043,520 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:04 | 000,033,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:04 | 000,026,624 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:04 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\xboxgipsvc.dll -- (XboxGipSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:01 | 000,723,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NaturalAuth.dll -- (NaturalAuthentication)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:01 | 000,064,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipxlatcfg.dll -- (IpxlatCfgSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:01 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2017.03.18 22:58:00 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:58 | 000,877,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:58 | 000,519,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:58 | 000,165,888 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBrokerSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:58 | 000,095,744 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:54 | 000,346,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:54 | 000,292,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:54 | 000,059,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hvhostsvc.dll -- (HvHost)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:47 | 000,699,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FlightSettings.dll -- (wisvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:47 | 000,261,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:46 | 005,302,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:46 | 000,455,168 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:24 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:16 | 000,121,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:16 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:15 | 000,302,592 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:05 | 000,891,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Spectrum.exe -- (spectrum)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:03 | 000,167,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:57:00 | 000,051,712 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:56 | 001,832,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,342,264 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,307,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,307,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:20 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2017.03.18 22:56:19 | 000,431,616 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
SRV - [2017.07.12 03:47:22 | 001,608,480 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2017.07.12 00:51:47 | 000,272,384 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2017.07.07 08:23:46 | 000,583,160 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2017.07.07 08:04:29 | 000,394,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2017.06.21 09:07:14 | 000,450,168 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe -- (NvTelemetryContainer)
SRV - [2017.06.20 06:39:05 | 000,969,728 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc)
SRV - [2017.06.15 10:44:42 | 003,148,184 | ---- | M] (Electronic Arts) [Auto | Running] -- C:\Program Files (x86)\Origin\OriginWebHelperService.exe -- (Origin Web Helper Service)
SRV - [2017.06.15 10:44:36 | 002,168,208 | ---- | M] (Electronic Arts) [On_Demand | Stopped] -- C:\Program Files (x86)\Origin\OriginClientService.exe -- (Origin Client Service)
SRV - [2017.05.23 19:43:04 | 000,383,016 | ---- | M] (EasyAntiCheat Ltd) [On_Demand | Stopped] -- C:\Windows\SysWOW64\EasyAntiCheat.exe -- (EasyAntiCheat)
SRV - [2017.05.09 23:37:45 | 001,536,520 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\BattlEye\BEService.exe -- (BEService)
SRV - [2017.04.28 02:40:07 | 000,799,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\TokenBroker.dll -- (TokenBroker)
SRV - [2017.03.21 01:59:20 | 000,324,096 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\igfxCUIService.exe -- (igfxCUIService2.0.0.0)
SRV - [2017.03.21 01:59:14 | 000,463,360 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\IntelCpHDCPSvc.exe -- (cplspcon)
SRV - [2017.03.21 01:59:14 | 000,285,696 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\IntelCpHeciSvc.exe -- (cphs)
SRV - [2017.03.18 22:58:47 | 004,212,624 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository)
SRV - [2017.03.18 22:58:46 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2017.03.18 22:56:20 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2017.02.24 19:03:42 | 001,659,592 | ---- | M] (Foxit Software Inc.) [Auto | Running] -- C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe -- (FoxitReaderService)
SRV - [2009.07.09 15:54:42 | 000,160,768 | ---- | M] (Micro-Star International Co., Ltd.) [Auto | Running] -- C:\Windows\SysWOW64\MSIService.exe -- (Micro Star SCM)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2017.07.07 09:24:00 | 000,117,664 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2017.07.07 09:20:52 | 000,382,368 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2017.07.07 09:13:20 | 000,554,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2017.06.21 09:07:16 | 000,057,976 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvhci.sys -- (nvvhci)
DRV:[b]64bit:[/b] - [2017.06.21 09:07:15 | 000,048,248 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:[b]64bit:[/b] - [2017.06.21 09:06:45 | 000,030,328 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:[b]64bit:[/b] - [2017.06.20 08:00:36 | 000,142,752 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\wcifs.sys -- (wcifs)
DRV:[b]64bit:[/b] - [2017.06.20 07:07:09 | 000,757,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi)
DRV:[b]64bit:[/b] - [2017.06.09 02:03:28 | 014,461,344 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\nvmii.inf_amd64_9b7717e891662118\nvlddmkm.sys -- (nvlddmkm)
DRV:[b]64bit:[/b] - [2017.06.03 12:00:17 | 000,219,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2017.06.03 11:11:56 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2017.05.24 11:57:30 | 000,047,672 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtliteusbbus.sys -- (dtliteusbbus)
DRV:[b]64bit:[/b] - [2017.05.24 11:57:27 | 000,030,264 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtlitescsibus.sys -- (dtlitescsibus)
DRV:[b]64bit:[/b] - [2017.05.20 09:07:32 | 000,287,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2017.05.20 08:59:08 | 000,112,544 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2017.05.20 08:54:43 | 000,144,288 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2017.05.20 08:07:38 | 000,277,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip)
DRV:[b]64bit:[/b] - [2017.05.16 23:55:38 | 000,940,088 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2017.04.28 02:59:04 | 000,388,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2017.04.19 08:18:19 | 000,118,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2017.04.13 20:26:50 | 000,244,744 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ibtusb.sys -- (ibtusb)
DRV:[b]64bit:[/b] - [2017.03.21 01:57:28 | 011,070,432 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2017.03.19 04:29:01 | 000,037,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2017.03.19 04:28:59 | 000,230,816 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mssecflt.sys -- (MsSecFlt)
DRV:[b]64bit:[/b] - [2017.03.19 04:28:58 | 000,040,344 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\UevAgentDriver.sys -- (UevAgentDriver)
DRV:[b]64bit:[/b] - [2017.03.19 04:28:55 | 000,125,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:[b]64bit:[/b] - [2017.03.19 04:28:55 | 000,030,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2017.03.19 04:28:54 | 000,161,696 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AppvVemgr.sys -- (AppvVemgr)
DRV:[b]64bit:[/b] - [2017.03.19 04:28:54 | 000,143,776 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AppvVfs.sys -- (AppvVfs)
DRV:[b]64bit:[/b] - [2017.03.19 04:28:54 | 000,127,904 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AppVStrm.sys -- (AppvStrm)
DRV:[b]64bit:[/b] - [2017.03.18 22:59:50 | 000,030,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:33 | 000,079,872 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:18 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:16 | 000,127,488 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:04 | 000,263,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:04 | 000,179,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmTcpciCx.sys -- (UcmTcpciCx0101)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:04 | 000,104,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:04 | 000,070,232 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:04 | 000,059,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:04 | 000,036,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IndirectKmd.sys -- (IndirectKmd)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\applockerfltr.sys -- (applockerfltr)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:01 | 000,217,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winnat.sys -- (WinNat)
DRV:[b]64bit:[/b] - [2017.03.18 22:58:01 | 000,012,288 | ---- | M] (Microsoft Corporation) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\cldflt.sys -- (CldFlt)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:58 | 000,154,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:58 | 000,083,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:58 | 000,074,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hvservice.sys -- (hvservice)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:58 | 000,039,840 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:57 | 000,075,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:57 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\registry.sys -- (clreg)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:54 | 000,208,288 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:54 | 000,169,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:54 | 000,128,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:53 | 000,164,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:53 | 000,072,192 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wcnfs.sys -- (wcnfs)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:47 | 000,080,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:39 | 001,735,584 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:39 | 000,936,864 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refsv1.sys -- (ReFSv1)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:39 | 000,239,616 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:39 | 000,215,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:39 | 000,033,688 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:38 | 000,056,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:38 | 000,049,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iorate.sys -- (iorate)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:35 | 000,122,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NetAdapterCx.sys -- (NetAdapterCx)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:24 | 000,088,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:05 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:03 | 000,120,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\irda.sys -- (irda)
DRV:[b]64bit:[/b] - [2017.03.18 22:57:00 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,294,816 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,121,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:44 | 000,044,632 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:41 | 000,213,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:41 | 000,127,392 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:41 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:41 | 000,054,272 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:41 | 000,045,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:41 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:35 | 000,098,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xusb22.sys -- (xusb22)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:35 | 000,094,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:35 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:35 | 000,051,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:35 | 000,051,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:35 | 000,039,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:35 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:35 | 000,018,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:34 | 000,181,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthA2DP.sys -- (BthA2DP)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:34 | 000,138,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:34 | 000,098,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:34 | 000,096,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:34 | 000,049,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:34 | 000,047,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthHfAud.sys -- (BthHFAud)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:34 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:34 | 000,029,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:34 | 000,028,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:34 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:34 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,168,448 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C_BXT_P.sys -- (iaLPSS2i_I2C_BXT_P)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,165,376 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,085,504 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2_BXT_P.sys -- (iaLPSS2i_GPIO2_BXT_P)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,081,408 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iai2c.sys -- (iai2c)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,074,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,070,656 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2.sys -- (iaLPSS2i_GPIO2)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,053,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CAD.sys -- (CAD)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,047,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,033,280 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iagpio.sys -- (iagpio)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:28 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgid.sys -- (vmgid)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,673,184 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,587,168 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,405,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mausbhost.sys -- (mausbhost)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,101,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pmem.sys -- (pmem)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,095,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,091,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\scmbus.sys -- (scmbus)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,080,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvdimmn.sys -- (nvdimmn)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,078,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,071,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,051,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mausbip.sys -- (mausbip)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,036,760 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,031,128 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SDFRd.sys -- (SDFRd)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,029,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,016,288 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volume.sys -- (volume)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:26 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 002,104,224 | ---- | M] (Chelsio Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cht4vx64.sys -- (cht4vbd)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 001,135,512 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,842,656 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,526,240 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,347,032 | ---- | M] (Chelsio Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cht4sx64.sys -- (cht4iscsi)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,305,568 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,259,488 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,123,808 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,122,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\capimg.sys -- (CapImg)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,121,344 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C63x64.sys -- (L1C)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,108,960 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,107,424 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,103,328 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,083,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,082,848 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,064,920 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,064,416 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,064,416 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\MegaSas2i.sys -- (megasas2i)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,063,904 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,061,848 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,058,784 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,032,160 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,031,136 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,027,040 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AcpiDev.sys -- (AcpiDev)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:25 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:23 | 003,419,040 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:23 | 000,533,920 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:23 | 000,074,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:23 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:23 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:20 | 007,218,176 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Netwtw04.sys -- (Netwtw04)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:20 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:20 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:19 | 000,119,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:19 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:19 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:19 | 000,043,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:19 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_de4c68ea4fb1be53\CompositeBus.sys -- (CompositeBus)
DRV:[b]64bit:[/b] - [2017.03.18 22:56:19 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2017.01.10 11:56:46 | 000,045,928 | ---- | M] (SteelSeries ApS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sshid.sys -- (sshid)
DRV:[b]64bit:[/b] - [2016.12.05 14:31:18 | 000,820,752 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2016.12.02 05:09:42 | 000,204,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverW8x64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2016.10.27 11:04:50 | 000,418,784 | ---- | M] (Realsil Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsUer.sys -- (RTSUER)
DRV:[b]64bit:[/b] - [2015.01.26 09:23:56 | 000,037,376 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgandnetmodem64.sys -- (ANDNetModem)
DRV:[b]64bit:[/b] - [2015.01.26 09:22:42 | 000,030,720 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgandnetdiag64.sys -- (AndNetDiag)
DRV:[b]64bit:[/b] - [2015.01.21 13:55:54 | 000,020,992 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgandnetbus64.sys -- (AndnetBus)
DRV - [2017.07.12 12:52:26 | 000,044,928 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{90D277F6-CB0F-4CE9-83FB-BD1AD017CBBB}\MpKsle70d61f4.sys -- (MpKsle70d61f4)
DRV - [2017.06.09 02:03:28 | 014,461,344 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_9b7717e891662118\nvlddmkm.sys -- (nvlddmkm)
DRV - [2017.03.21 01:57:28 | 011,070,432 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\igdkmd64.sys -- (igfx)
DRV - [2017.03.18 22:56:19 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_de4c68ea4fb1be53\CompositeBus.sys -- (CompositeBus)
DRV - [2013.11.21 10:22:10 | 000,115,448 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys -- (ISODrive)
DRV - [2010.06.07 09:36:30 | 000,015,160 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files (x86)\MSI\Dragon Gaming Center\WinIo64.sys -- (WINIO)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: " URL " = http://www.bing.com/search?q={searchTerms} & FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: " URL " = http://www.bing.com/search?q={searchTerms} & FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: " ProxyEnable " = 0


[color=#E56717]========== FireFox ==========[/color]

FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll (Google Inc.)



[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\
CHR - Extension: No name found = C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\3.13.0_0\
CHR - Extension: No name found = C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.2_0\
CHR - Extension: No name found = C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch\4.1_0\
CHR - Extension: No name found = C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
CHR - Extension: No name found = C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5917.424.0.6_0\

O1 HOSTS File: ([2017.07.12 12:46:22 | 000,004,931 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 0.0.0.0 a.ads1.msn.com
O1 - Hosts: 0.0.0.0 a.ads2.msads.net
O1 - Hosts: 0.0.0.0 a.ads2.msn.com
O1 - Hosts: 0.0.0.0 a.rad.msn.com
O1 - Hosts: 0.0.0.0 a-0001.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0002.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0003.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0004.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0005.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0006.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0007.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0008.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0009.a-msedge.net
O1 - Hosts: 0.0.0.0 ac3.msn.com
O1 - Hosts: 0.0.0.0 ad.doubleclick.net
O1 - Hosts: 0.0.0.0 adnexus.net
O1 - Hosts: 0.0.0.0 adnxs.com
O1 - Hosts: 0.0.0.0 ads.msn.com
O1 - Hosts: 0.0.0.0 ads1.msads.net
O1 - Hosts: 0.0.0.0 ads1.msn.com
O1 - Hosts: 0.0.0.0 aidps.atdmt.com
O1 - Hosts: 0.0.0.0 aka-cdn-ns.adtech.de
O1 - Hosts: 0.0.0.0 a-msedge.net
O1 - Hosts: 0.0.0.0 apps.skype.com
O1 - Hosts: 0.0.0.0 az361816.vo.msecnd.net
O1 - Hosts: 91 more lines...
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [SecurityHealth] C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite Automount] C:\Program Files\DAEMON Tools Lite\DTAgent.exe (Disc Soft Ltd)
O4 - HKCU..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
O4 - HKCU..\Run: [HP ENVY 4500 series (NET)] C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Development Company, LP)
O4 - HKCU..\Run: [OneDrive] C:\Users\Marcin\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O9:[b]64bit:[/b] - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9 - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{99eed587-eef8-417a-8cdf-d16ae626354b}: DhcpNameServer = 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\mso-minsb.16 - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\mso-minsb-roaming.16 - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\osf.16 - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\osf-roaming.16 - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- " %1 " %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- " %1 " %*
O35 - HKLM\..comfile [open] -- " %1 " %*
O35 - HKLM\..exefile [open] -- " %1 " %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- " %1 " %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- " %1 " %*
O37 - HKLM\...com [@ = comfile] -- " %1 " %*
O37 - HKLM\...exe [@ = exefile] -- " %1 " %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2017.07.12 01:02:31 | 003,667,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_47.dll
[2017.07.12 01:02:31 | 002,597,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2017.07.12 01:02:31 | 002,132,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2017.07.12 01:02:31 | 001,121,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsvr.dll
[2017.07.12 01:02:31 | 000,368,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InstallAgentUserBroker.exe
[2017.07.12 01:02:30 | 004,056,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2017.07.12 01:02:30 | 003,377,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2017.07.12 01:02:30 | 001,529,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winmde.dll
[2017.07.12 01:02:30 | 001,285,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbghelp.dll
[2017.07.12 01:02:30 | 000,626,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontdrvhost.exe
[2017.07.12 01:02:30 | 000,329,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InstallAgent.exe
[2017.07.12 01:02:29 | 002,298,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2017.07.12 01:02:29 | 002,199,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.Resources.dll
[2017.07.12 01:02:29 | 001,019,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aadtb.dll
[2017.07.12 01:02:29 | 000,181,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxAllUserStore.dll
[2017.07.12 01:02:28 | 002,956,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32kfull.sys
[2017.07.12 01:02:28 | 002,671,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2017.07.12 01:02:28 | 001,451,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAutomationCore.dll
[2017.07.12 01:02:27 | 005,806,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2017.07.12 01:02:27 | 004,559,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbgeng.dll
[2017.07.12 01:02:27 | 002,330,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\combase.dll
[2017.07.12 01:02:27 | 000,583,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreMessaging.dll
[2017.07.12 01:02:26 | 013,839,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2017.07.12 01:02:26 | 001,248,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AzureSettingSyncProvider.dll
[2017.07.12 01:02:26 | 000,790,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.dll
[2017.07.12 01:02:26 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActivationManager.dll
[2017.07.12 01:02:25 | 006,728,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll
[2017.07.12 01:02:25 | 005,820,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\windows.storage.dll
[2017.07.12 01:02:25 | 002,259,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreUIComponents.dll
[2017.07.12 01:02:25 | 002,211,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InputService.dll
[2017.07.12 01:02:24 | 006,759,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Protection.PlayReady.dll
[2017.07.12 01:02:24 | 004,469,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2017.07.12 01:02:23 | 000,754,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LicenseManager.dll
[2017.07.12 01:02:22 | 005,961,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Data.Pdf.dll
[2017.07.12 01:02:22 | 005,719,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BingMaps.dll
[2017.07.12 01:02:22 | 002,679,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SRH.dll
[2017.07.12 01:02:22 | 000,365,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\daxexec.dll
[2017.07.12 01:02:21 | 004,417,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2017.07.12 01:02:20 | 002,588,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapRouter.dll
[2017.07.12 01:02:20 | 001,517,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppVEntSubsystems32.dll
[2017.07.12 01:02:20 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WpcWebFilter.dll
[2017.07.12 01:02:19 | 007,596,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2017.07.12 01:02:19 | 000,455,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAudDecMFT.dll
[2017.07.12 01:02:19 | 000,336,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SecurityHealthService.exe
[2017.07.12 01:02:18 | 002,750,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2017.07.12 01:02:18 | 001,492,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Devices.Bluetooth.dll
[2017.07.12 01:02:18 | 001,355,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OpcServices.dll
[2017.07.12 01:02:18 | 001,237,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.Maps.dll
[2017.07.12 01:02:18 | 000,969,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Unistore.dll
[2017.07.12 01:02:18 | 000,438,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.dll
[2017.07.12 01:02:18 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scksp.dll
[2017.07.12 01:02:18 | 000,176,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\basecsp.dll
[2017.07.12 01:02:18 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cldapi.dll
[2017.07.12 01:02:17 | 006,123,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mos.dll
[2017.07.12 01:02:17 | 002,782,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll
[2017.07.12 01:02:17 | 001,494,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActiveSyncProvider.dll
[2017.07.12 01:02:17 | 001,077,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webservices.dll
[2017.07.12 01:02:17 | 000,787,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2017.07.12 01:02:17 | 000,192,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aepic.dll
[2017.07.12 01:02:17 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dataclen.dll
[2017.07.12 01:02:16 | 001,301,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdc.dll
[2017.07.12 01:02:16 | 000,750,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WWAHost.exe
[2017.07.12 01:02:16 | 000,646,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MbaeApi.dll
[2017.07.12 01:02:16 | 000,554,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS
[2017.07.12 01:02:16 | 000,443,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFCaptureEngine.dll
[2017.07.12 01:02:16 | 000,433,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Internal.Bluetooth.dll
[2017.07.12 01:02:16 | 000,406,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\policymanager.dll
[2017.07.12 01:02:16 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Payments.dll
[2017.07.12 01:02:16 | 000,364,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2017.07.12 01:02:16 | 000,329,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SensorsApi.dll
[2017.07.12 01:02:16 | 000,123,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Clipc.dll
[2017.07.12 01:02:16 | 000,096,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dmcmnutils.dll
[2017.07.12 01:02:16 | 000,035,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wininitext.dll
[2017.07.12 01:02:15 | 001,178,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxPackaging.dll
[2017.07.12 01:02:15 | 000,949,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dcomp.dll
[2017.07.12 01:02:15 | 000,601,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVolSSO.dll
[2017.07.12 01:02:15 | 000,346,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CloudExperienceHostCommon.dll
[2017.07.12 01:02:15 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msinfo32.exe
[2017.07.12 01:02:15 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BluetoothApis.dll
[2017.07.12 01:02:15 | 000,138,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CloudExperienceHostUser.dll
[2017.07.12 01:02:14 | 000,899,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msctfuimanager.dll
[2017.07.12 01:02:14 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AboveLockAppHost.dll
[2017.07.12 01:02:14 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ClipboardServer.dll
[2017.07.12 01:02:14 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wincredui.dll
[2017.07.12 01:02:14 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
[2017.07.12 01:02:14 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sendmail.dll
[2017.07.12 01:02:14 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.System.Profile.RetailInfo.dll
[2017.07.12 01:02:14 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2017.07.12 01:02:14 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TokenBrokerUI.dll
[2017.07.12 01:02:13 | 002,814,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themeui.dll
[2017.07.12 01:02:13 | 001,448,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\GdiPlus.dll
[2017.07.12 01:02:13 | 001,171,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe
[2017.07.12 01:02:13 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
[2017.07.12 01:02:13 | 000,342,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2017.07.12 01:02:13 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PlayToDevice.dll
[2017.07.12 01:02:12 | 000,734,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bcastdvr.exe
[2017.07.12 01:02:12 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmsys.cpl
[2017.07.12 01:02:12 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certca.dll
[2017.07.12 01:02:12 | 000,502,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairing.dll
[2017.07.12 01:02:12 | 000,471,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
[2017.07.12 01:02:12 | 000,446,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastls.dll
[2017.07.12 01:02:12 | 000,394,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Internal.Management.dll
[2017.07.12 01:02:12 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\credprovhost.dll
[2017.07.12 01:02:12 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
[2017.07.12 01:02:11 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2017.07.12 01:02:11 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\edputil.dll
[2017.07.12 01:02:11 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\raschap.dll
[2017.07.12 01:02:11 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapprovp.dll
[2017.07.12 01:02:07 | 001,055,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LicenseManager.dll
[2017.07.12 01:02:02 | 001,670,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmde.dll
[2017.07.12 01:02:02 | 000,985,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWorkspace.dll
[2017.07.12 01:02:01 | 008,211,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2017.07.12 01:02:01 | 001,177,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Unistore.dll
[2017.07.12 01:02:01 | 000,722,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MusUpdateHandlers.dll
[2017.07.12 01:02:01 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TDLMigration.dll
[2017.07.12 01:02:01 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InstallAgentUserBroker.exe
[2017.07.12 01:02:01 | 000,374,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InstallAgent.exe
[2017.07.12 01:02:01 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MusNotification.exe
[2017.07.12 01:02:00 | 001,339,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
[2017.07.12 01:02:00 | 000,820,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WWAHost.exe
[2017.07.12 01:02:00 | 000,632,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tileobjserver.dll
[2017.07.12 01:02:00 | 000,551,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Payments.dll
[2017.07.12 01:01:59 | 002,021,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2017.07.12 01:01:59 | 000,548,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorService.dll
[2017.07.12 01:01:59 | 000,328,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PsmServiceExtHost.dll
[2017.07.12 01:01:59 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinBioDataModel.dll
[2017.07.12 01:01:59 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PlayToReceiver.dll
[2017.07.12 01:01:59 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storewuauth.dll
[2017.07.12 01:01:59 | 000,117,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pdc.sys
[2017.07.12 01:01:59 | 000,094,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2017.07.12 01:01:59 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinBioDataModelOOBE.exe
[2017.07.12 01:01:58 | 000,329,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webplatstorageserver.dll
[2017.07.12 01:01:57 | 020,504,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\edgehtml.dll
[2017.07.12 01:01:57 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2017.07.12 01:01:56 | 001,220,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsvr.dll
[2017.07.12 01:01:56 | 000,254,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2017.07.12 01:01:55 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2017.07.12 01:01:54 | 003,784,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapRouter.dll
[2017.07.12 01:01:54 | 002,008,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2017.07.12 01:01:54 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
[2017.07.12 01:01:52 | 006,287,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Chakra.dll
[2017.07.12 01:01:52 | 004,730,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2017.07.12 01:01:52 | 004,536,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2017.07.12 01:01:51 | 006,554,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2017.07.12 01:01:51 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2017.07.12 01:01:50 | 008,331,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BingMaps.dll
[2017.07.12 01:01:50 | 002,399,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2017.07.12 01:01:50 | 001,674,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpncore.dll
[2017.07.12 01:01:50 | 001,142,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2017.07.12 01:01:49 | 002,938,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InputService.dll
[2017.07.12 01:01:49 | 002,077,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2017.07.12 01:01:49 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2017.07.12 01:01:48 | 008,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Chakra.dll
[2017.07.12 01:01:48 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2017.07.12 01:01:47 | 023,677,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\edgehtml.dll
[2017.07.12 01:01:47 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2017.07.12 01:01:47 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2017.07.12 01:01:46 | 000,588,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2017.07.12 01:01:43 | 007,149,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mos.dll
[2017.07.12 01:01:43 | 000,411,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAudDecMFT.dll
[2017.07.12 01:01:42 | 032,688,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsRaw.dll
[2017.07.12 01:01:42 | 000,823,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MbaeApi.dll
[2017.07.12 01:01:42 | 000,467,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFCaptureEngine.dll
[2017.07.12 01:01:42 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsApi.dll
[2017.07.12 01:01:41 | 031,652,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WindowsCodecsRaw.dll
[2017.07.12 01:01:39 | 000,570,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PhotoScreensaver.scr
[2017.07.12 01:01:39 | 000,519,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2017.07.12 01:01:39 | 000,508,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PhotoScreensaver.scr
[2017.07.12 01:01:39 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2017.07.12 01:01:38 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2017.07.12 01:01:38 | 000,557,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2017.07.12 01:01:38 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Narrator.exe
[2017.07.12 01:01:38 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prntvpt.dll
[2017.07.12 01:01:38 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Chakradiag.dll
[2017.07.12 01:01:38 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2017.07.12 01:01:37 | 001,325,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2017.07.12 01:01:37 | 000,847,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll
[2017.07.12 01:01:37 | 000,687,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LogonController.dll
[2017.07.12 01:01:37 | 000,646,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LockHostingFramework.dll
[2017.07.12 01:01:37 | 000,585,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppReadiness.dll
[2017.07.12 01:01:37 | 000,422,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WpAXHolder.dll
[2017.07.12 01:01:37 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActivationManager.dll
[2017.07.12 01:01:36 | 007,325,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\windows.storage.dll
[2017.07.12 01:01:36 | 004,847,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2017.07.12 01:01:36 | 002,969,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CoreUIComponents.dll
[2017.07.12 01:01:36 | 000,706,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2017.07.12 01:01:36 | 000,360,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ConhostV2.dll
[2017.07.12 01:01:35 | 008,318,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2017.07.12 01:01:35 | 005,557,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbgeng.dll
[2017.07.12 01:01:35 | 004,396,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_47.dll
[2017.07.12 01:01:35 | 000,142,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wcifs.sys
[2017.07.12 01:01:33 | 003,803,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2017.07.12 01:01:33 | 002,829,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2017.07.12 01:01:33 | 002,499,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.pcshell.dll
[2017.07.12 01:01:32 | 002,171,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Devices.Bluetooth.dll
[2017.07.12 01:01:32 | 001,760,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2017.07.12 01:01:32 | 001,150,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ucrtbase.dll
[2017.07.12 01:01:32 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsEnvironment.Desktop.dll
[2017.07.12 01:01:31 | 005,892,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2017.07.12 01:01:30 | 001,930,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2017.07.12 01:01:30 | 001,395,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2017.07.12 01:01:30 | 000,626,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Internal.Bluetooth.dll
[2017.07.12 01:01:30 | 000,251,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scksp.dll
[2017.07.12 01:01:30 | 000,204,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\basecsp.dll
[2017.07.12 01:01:29 | 001,186,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2017.07.12 01:01:29 | 001,065,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2017.07.12 01:01:29 | 000,899,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2017.07.12 01:01:29 | 000,899,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmartcardCredentialProvider.dll
[2017.07.12 01:01:29 | 000,833,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EditionUpgradeManagerObj.dll
[2017.07.12 01:01:29 | 000,335,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dcntel.dll
[2017.07.12 01:01:29 | 000,233,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll
[2017.07.12 01:01:28 | 001,425,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe
[2017.07.12 01:01:28 | 001,057,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MrmCoreR.dll
[2017.07.12 01:01:28 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDXTaskFactory.dll
[2017.07.12 01:01:28 | 000,382,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\clfs.sys
[2017.07.12 01:01:28 | 000,353,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wldap32.dll
[2017.07.12 01:01:28 | 000,318,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wininit.exe
[2017.07.12 01:01:28 | 000,208,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psmsrv.dll
[2017.07.12 01:01:28 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ScDeviceEnum.dll
[2017.07.12 01:01:28 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EditionUpgradeHelper.dll
[2017.07.12 01:01:28 | 000,102,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CredentialUIBroker.exe
[2017.07.12 01:01:28 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DmApiSetExtImplDesktop.dll
[2017.07.12 01:01:28 | 000,041,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wininitext.dll
[2017.07.12 01:01:28 | 000,034,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceCensus.exe
[2017.07.12 01:01:27 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2017.07.12 01:01:27 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wincredui.dll
[2017.07.12 01:01:27 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2017.07.12 01:01:26 | 007,336,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Data.Pdf.dll
[2017.07.12 01:01:26 | 000,923,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CoreMessaging.dll
[2017.07.12 01:01:25 | 017,364,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2017.07.12 01:01:25 | 001,818,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAutomationCore.dll
[2017.07.12 01:01:25 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AboveLockAppHost.dll
[2017.07.12 01:01:24 | 004,447,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers_nt.dll
[2017.07.12 01:01:24 | 001,468,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.desktop.dll
[2017.07.12 01:01:24 | 001,305,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dosvc.dll
[2017.07.12 01:01:24 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InputSwitch.dll
[2017.07.12 01:01:24 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\domgmt.dll
[2017.07.12 01:01:23 | 005,477,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OneCoreUAPCommonProxyStub.dll
[2017.07.12 01:01:23 | 001,886,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.onecore.dll
[2017.07.12 01:01:23 | 001,878,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AzureSettingSyncProvider.dll
[2017.07.12 01:01:23 | 001,076,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.appcore.dll
[2017.07.12 01:01:22 | 007,931,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll
[2017.07.12 01:01:22 | 004,707,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2017.07.12 01:01:22 | 001,050,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.dll
[2017.07.12 01:01:22 | 001,024,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvax64.exe
[2017.07.12 01:01:22 | 000,840,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2017.07.12 01:01:22 | 000,750,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontdrvhost.exe
[2017.07.12 01:01:21 | 002,649,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2017.07.12 01:01:21 | 000,255,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxAllUserStore.dll
[2017.07.12 01:01:21 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2017.07.12 01:01:20 | 002,804,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2017.07.12 01:01:20 | 002,055,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32kbase.sys
[2017.07.12 01:01:20 | 001,147,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvix64.exe
[2017.07.12 01:01:19 | 003,670,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32kfull.sys
[2017.07.12 01:01:19 | 000,872,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ClipSVC.dll
[2017.07.12 01:01:18 | 007,904,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Protection.PlayReady.dll
[2017.07.12 01:01:16 | 003,332,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SRH.dll
[2017.07.12 01:01:15 | 002,199,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Resources.dll
[2017.07.12 01:01:15 | 001,260,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GamePanel.exe
[2017.07.12 01:01:14 | 002,229,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVEntSubsystems64.dll
[2017.07.12 01:01:14 | 001,854,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVEntVirtualization.dll
[2017.07.12 01:01:14 | 000,925,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WpcWebFilter.dll
[2017.07.12 01:01:14 | 000,848,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVOrchestration.dll
[2017.07.12 01:01:14 | 000,699,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVCatalog.dll
[2017.07.12 01:01:14 | 000,520,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\daxexec.dll
[2017.07.12 01:01:13 | 001,693,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVIntegration.dll
[2017.07.12 01:01:13 | 001,458,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVEntSubsystemController.dll
[2017.07.12 01:01:13 | 001,293,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aadtb.dll
[2017.07.12 01:01:13 | 000,844,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVEntStreamingManager.dll
[2017.07.12 01:01:13 | 000,527,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aadcloudap.dll
[2017.07.12 01:01:13 | 000,372,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CloudExperienceHost.dll
[2017.07.12 01:01:12 | 003,204,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Microsoft.Bluetooth.Profiles.Gatt.dll
[2017.07.12 01:01:12 | 002,177,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OpcServices.dll
[2017.07.12 01:01:12 | 000,846,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVClient.exe
[2017.07.12 01:01:12 | 000,681,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usocore.dll
[2017.07.12 01:01:12 | 000,625,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll
[2017.07.12 01:01:12 | 000,406,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MMDevAPI.dll
[2017.07.12 01:01:12 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cldapi.dll
[2017.07.12 01:01:11 | 003,059,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NetworkMobileSettings.dll
[2017.07.12 01:01:11 | 003,057,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2017.07.12 01:01:11 | 000,443,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PerceptionSimulationExtensions.dll
[2017.07.12 01:01:11 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\provengine.dll
[2017.07.12 01:01:11 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\updatehandlers.dll
[2017.07.12 01:01:10 | 001,564,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2017.07.12 01:01:10 | 001,420,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Maps.dll
[2017.07.12 01:01:10 | 000,672,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVPublishing.dll
[2017.07.12 01:01:09 | 001,337,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll
[2017.07.12 01:01:09 | 001,214,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2017.07.12 01:01:09 | 001,054,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2017.07.12 01:01:09 | 000,986,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2017.07.12 01:01:09 | 000,558,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.dll
[2017.07.12 01:01:09 | 000,399,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVScripting.dll
[2017.07.12 01:01:08 | 003,139,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll
[2017.07.12 01:01:08 | 001,171,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dcomp.dll
[2017.07.12 01:01:08 | 000,629,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
[2017.07.12 01:01:08 | 000,583,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2017.07.12 01:01:08 | 000,544,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
[2017.07.12 01:01:08 | 000,472,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\policymanager.dll
[2017.07.12 01:01:07 | 001,713,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActiveSyncProvider.dll
[2017.07.12 01:01:07 | 001,403,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdc.dll
[2017.07.12 01:01:07 | 001,100,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVPolicy.dll
[2017.07.12 01:01:07 | 000,778,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DolbyHrtfEnc.dll
[2017.07.12 01:01:07 | 000,555,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WFDSConMgrSvc.dll
[2017.07.12 01:01:07 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Shell.BlueLightReduction.dll
[2017.07.12 01:01:07 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msinfo32.exe
[2017.07.12 01:01:07 | 000,365,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers_Notifications.dll
[2017.07.12 01:01:07 | 000,334,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
[2017.07.12 01:01:07 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DolbyMATEnc.dll
[2017.07.12 01:01:07 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SIHClient.exe
[2017.07.12 01:01:07 | 000,147,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Clipc.dll
[2017.07.12 01:01:07 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dataclen.dll
[2017.07.12 01:01:06 | 001,640,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GdiPlus.dll
[2017.07.12 01:01:06 | 001,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SecConfig.efi
[2017.07.12 01:01:06 | 000,802,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wcmsvc.dll
[2017.07.12 01:01:06 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\omadmclient.exe
[2017.07.12 01:01:06 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BluetoothApis.dll
[2017.07.12 01:01:06 | 000,119,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dmcmnutils.dll
[2017.07.12 01:01:06 | 000,096,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CompatTelRunner.exe
[2017.07.12 01:01:05 | 000,965,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvloader.efi
[2017.07.12 01:01:05 | 000,821,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvloader.exe
[2017.07.12 01:01:05 | 000,774,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVReporting.dll
[2017.07.12 01:01:05 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdiWiFi.sys
[2017.07.12 01:01:05 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
[2017.07.12 01:01:05 | 000,600,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FrameServer.dll
[2017.07.12 01:01:05 | 000,426,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CloudExperienceHostCommon.dll
[2017.07.12 01:01:05 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuuhext.dll
[2017.07.12 01:01:05 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ClipboardServer.dll
[2017.07.12 01:01:05 | 000,203,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CloudExperienceHostBroker.dll
[2017.07.12 01:01:05 | 000,136,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2017.07.12 01:01:05 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\officecsp.dll
[2017.07.12 01:01:04 | 001,703,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aitstatic.exe
[2017.07.12 01:01:04 | 000,992,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppVManifest.dll
[2017.07.12 01:01:04 | 000,809,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasapi32.dll
[2017.07.12 01:01:04 | 000,506,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TransportDSA.dll
[2017.07.12 01:01:04 | 000,179,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CloudExperienceHostUser.dll
[2017.07.12 01:01:04 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuuhosdeployment.dll
[2017.07.12 01:01:04 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActiveSyncCsp.dll
[2017.07.12 01:01:04 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TokenBrokerUI.dll
[2017.07.12 01:01:03 | 000,970,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctfuimanager.dll
[2017.07.12 01:01:03 | 000,859,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM.dll
[2017.07.12 01:01:03 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CloudDomainJoinDataModelServer.dll
[2017.07.12 01:01:03 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
[2017.07.12 01:01:03 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sendmail.dll
[2017.07.12 01:01:03 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2017.07.12 01:01:02 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themeui.dll
[2017.07.12 01:01:02 | 000,696,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmsys.cpl
[2017.07.12 01:01:02 | 000,577,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\duser.dll
[2017.07.12 01:01:02 | 000,563,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairing.dll
[2017.07.12 01:01:02 | 000,536,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Internal.Management.dll
[2017.07.12 01:01:02 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PlayToDevice.dll
[2017.07.12 01:01:02 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2017.07.12 01:01:02 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rascustom.dll
[2017.07.12 01:01:02 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2017.07.12 01:01:02 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.System.Profile.RetailInfo.dll
[2017.07.12 01:01:02 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DMPushRouterCore.dll
[2017.07.12 01:01:02 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CloudDomainJoinAUG.dll
[2017.07.12 01:01:01 | 000,916,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcastdvr.exe
[2017.07.12 01:01:01 | 000,791,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certca.dll
[2017.07.12 01:01:01 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rastls.dll
[2017.07.12 01:01:01 | 000,455,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2017.07.12 01:01:01 | 000,253,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\edputil.dll
[2017.07.12 01:01:01 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\raschap.dll
[2017.07.12 01:01:01 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WFDSConMgr.dll
[2017.07.12 01:01:01 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapprovp.dll
[2017.07.08 12:25:47 | 000,000,000 | ---D | C] -- C:\Users\Marcin\ansel
[2017.07.08 12:25:26 | 000,000,000 | ---D | C] -- C:\Users\Marcin\Documents\The Witcher 3
[2017.07.08 12:20:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
[2017.07.08 12:09:21 | 000,000,000 | ---D | C] -- C:\GOG Games
[2017.07.07 20:37:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2017.07.05 13:23:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BattlEye
[2017.07.05 13:16:22 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Local\SCE
[2017.07.05 13:16:20 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Local\Daybreak Game Company
[2017.07.03 14:06:58 | 000,000,000 | ---D | C] -- C:\Users\Marcin\Documents\LG PC Suite
[2017.07.03 13:20:38 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Roaming\LG Electronics
[2017.07.03 13:19:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG PC Suite
[2017.07.03 13:19:13 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Local\LG Electronics
[2017.07.03 13:18:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LG Electronics
[2017.06.30 17:04:44 | 000,000,000 | ---D | C] -- C:\Users\Marcin\Desktop\justyna
[2017.06.30 13:34:42 | 000,179,320 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvaudcap64v.dll
[2017.06.30 13:34:42 | 000,146,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvaudcap32v.dll
[2017.06.26 15:36:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
[2017.06.26 15:36:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\EZB Systems
[2017.06.26 15:36:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\UltraISO
[2017.06.26 15:36:18 | 000,000,000 | ---D | C] -- C:\Users\Marcin\Documents\My ISO Files
[2017.06.26 11:45:39 | 000,000,000 | ---D | C] -- C:\FRST
[2017.06.21 12:16:05 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Roaming\IrfanView
[2017.06.20 20:52:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Hewlett-Packard
[2017.06.20 20:52:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Visan
[2017.06.20 20:52:17 | 000,000,000 | ---D | C] -- C:\ProgramData\HP Photo Creations
[2017.06.20 20:52:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HP Photo Creations
[2017.06.20 20:52:15 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Roaming\HpUpdate
[2017.06.20 20:52:14 | 000,763,912 | ---- | C] (Hewlett-Packard Development Company, LP) -- C:\Windows\SysNative\HPDiscoPMC511.dll
[2017.06.20 20:52:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2017.06.20 20:51:09 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2017.06.20 20:51:09 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2017.06.20 20:51:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HP
[2017.06.20 20:50:32 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Local\HP
[2017.06.18 12:11:09 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Local\Tibia
[2017.06.18 12:05:12 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Roaming\Tibia
[2017.06.18 12:05:09 | 006,811,648 | ---- | C] (CipSoft GmbH) -- C:\Users\Marcin\Desktop\Hexera.exe
[2017.06.16 02:11:00 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Local\PAYDAY 2
[2017.06.16 02:10:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2017.06.14 01:04:44 | 000,476,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OneDriveSettingSyncProvider.dll
[2017.06.14 01:04:43 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcconf.dll
[2017.06.14 01:04:42 | 001,409,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gdi32full.dll
[2017.06.14 01:04:42 | 001,292,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSVPXENC.dll
[2017.06.14 01:04:42 | 000,909,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSyncCore.dll
[2017.06.14 01:04:42 | 000,311,200 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2017.06.14 01:04:42 | 000,038,912 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2017.06.14 01:04:41 | 000,807,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\StoreAgent.dll
[2017.06.14 01:04:41 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssprxy.dll
[2017.06.14 01:04:40 | 004,672,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll
[2017.06.14 01:04:40 | 001,474,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll
[2017.06.14 01:04:40 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserDataTimeUtil.dll
[2017.06.14 01:04:39 | 002,424,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll
[2017.06.14 01:04:39 | 001,266,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinapi.appcore.dll
[2017.06.14 01:04:38 | 002,088,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapGeocoder.dll
[2017.06.14 01:04:38 | 001,536,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Immersive.dll
[2017.06.14 01:04:38 | 001,455,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2017.06.14 01:04:38 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BasicRender.sys
[2017.06.14 01:04:37 | 001,984,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DeviceFlows.DataModel.dll
[2017.06.14 01:04:37 | 000,899,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.appcore.dll
[2017.06.14 01:04:37 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppXDeploymentClient.dll
[2017.06.14 01:04:37 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Devices.Midi.dll
[2017.06.14 01:04:37 | 000,287,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys
[2017.06.14 01:04:37 | 000,266,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\capauthz.dll
[2017.06.14 01:04:37 | 000,219,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tpm.sys
[2017.06.14 01:04:37 | 000,188,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpsd.sys
[2017.06.14 01:04:37 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Web.Diagnostics.dll
[2017.06.14 01:04:37 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RstrtMgr.dll
[2017.06.14 01:04:37 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devicengccredprov.dll
[2017.06.14 01:04:37 | 000,144,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storahci.sys
[2017.06.14 01:04:37 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\smartscreenps.dll
[2017.06.14 01:04:37 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NPSM.dll
[2017.06.14 01:04:36 | 006,535,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mspaint.exe
[2017.06.14 01:04:36 | 001,035,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ShareHost.dll
[2017.06.14 01:04:36 | 000,826,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NPSMDesktopProvider.dll
[2017.06.14 01:04:36 | 000,809,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SecurityHealthSSO.dll
[2017.06.14 01:04:36 | 000,754,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MessagingDataModel2.dll
[2017.06.14 01:04:36 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TpmCoreProvisioning.dll
[2017.06.14 01:04:36 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.System.Launcher.dll
[2017.06.14 01:04:36 | 000,394,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DictationManager.dll
[2017.06.14 01:04:36 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\xboxgip.sys
[2017.06.14 01:04:36 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Security.Authentication.Identity.Provider.dll
[2017.06.14 01:04:36 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XblGameSaveExt.dll
[2017.06.14 01:04:32 | 002,516,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagtrack.dll
[2017.06.14 01:04:32 | 001,911,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.dll
[2017.06.14 01:04:32 | 001,078,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StoreAgent.dll
[2017.06.14 01:04:31 | 001,046,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ngcsvc.dll
[2017.06.14 01:04:31 | 000,546,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2017.06.14 01:04:31 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Web.Diagnostics.dll
[2017.06.14 01:04:31 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserDataTimeUtil.dll
[2017.06.14 01:04:31 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MusNotificationUx.exe
[2017.06.14 01:04:31 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\musdialoghandlers.dll
[2017.06.14 01:04:30 | 001,003,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ucrtbase.dll
[2017.06.14 01:04:30 | 000,259,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MusNotifyIcon.exe
[2017.06.14 01:04:30 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\utcutil.dll
[2017.06.14 01:04:30 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rootmdm.sys
[2017.06.14 01:04:27 | 000,805,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieproxy.dll
[2017.06.14 01:04:27 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieproxy.dll
[2017.06.14 01:04:24 | 000,777,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2017.06.14 01:04:22 | 004,709,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll
[2017.06.14 01:04:21 | 003,135,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapGeocoder.dll
[2017.06.14 01:04:21 | 002,604,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll
[2017.06.14 01:04:21 | 001,700,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2017.06.14 01:04:21 | 001,141,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapsStore.dll
[2017.06.14 01:04:21 | 000,794,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pwcreator.exe
[2017.06.14 01:04:21 | 000,387,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpps.dll
[2017.06.14 01:04:21 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\devicengccredprov.dll
[2017.06.14 01:04:20 | 000,909,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ISM.dll
[2017.06.14 01:04:20 | 000,827,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2017.06.14 01:04:20 | 000,557,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnprv.dll
[2017.06.14 01:04:20 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Core.TextInput.dll
[2017.06.14 01:04:20 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Security.Authentication.Identity.Provider.dll
[2017.06.14 01:04:20 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NPSM.dll
[2017.06.14 01:04:20 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbcconf.dll
[2017.06.14 01:04:17 | 000,211,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserbroker.dll
[2017.06.14 01:04:15 | 000,975,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\HelpPane.exe
[2017.06.14 01:04:14 | 001,102,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSyncCore.dll
[2017.06.14 01:04:14 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OneDriveSettingSyncProvider.dll
[2017.06.14 01:04:12 | 000,382,368 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2017.06.14 01:04:11 | 001,596,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32full.dll
[2017.06.14 01:04:11 | 000,047,104 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2017.06.14 01:04:10 | 000,712,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms2.sys
[2017.06.14 01:04:10 | 000,543,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\securekernel.exe
[2017.06.14 01:04:09 | 001,028,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\modernexecserver.dll
[2017.06.14 01:04:08 | 002,438,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ResetEngine.dll
[2017.06.14 01:04:06 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbonRes.dll
[2017.06.14 01:04:06 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbonRes.dll
[2017.06.14 01:04:05 | 002,730,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smartscreen.exe
[2017.06.14 01:04:05 | 001,506,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinapi.appcore.dll
[2017.06.14 01:04:04 | 002,347,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceFlows.DataModel.dll
[2017.06.14 01:04:04 | 001,706,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Immersive.dll
[2017.06.14 01:04:03 | 006,726,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mspaint.exe
[2017.06.14 01:04:03 | 001,459,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2017.06.14 01:04:03 | 000,961,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\efscore.dll
[2017.06.14 01:04:03 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers_Display.dll
[2017.06.14 01:04:03 | 000,439,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Devices.Midi.dll
[2017.06.14 01:04:03 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.SharedPC.AccountManager.dll
[2017.06.14 01:04:02 | 001,275,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ShareHost.dll
[2017.06.14 01:04:02 | 000,970,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdpsvc.dll
[2017.06.14 01:04:02 | 000,892,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MessagingDataModel2.dll
[2017.06.14 01:04:02 | 000,660,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2017.06.14 01:04:02 | 000,654,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentClient.dll
[2017.06.14 01:04:02 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdbui.dll
[2017.06.14 01:04:02 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TpmCoreProvisioning.dll
[2017.06.14 01:04:02 | 000,549,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DictationManager.dll
[2017.06.14 01:04:02 | 000,370,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemSettingsAdminFlows.exe
[2017.06.14 01:04:02 | 000,321,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\capauthz.dll
[2017.06.14 01:04:02 | 000,209,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smartscreenps.dll
[2017.06.14 01:04:02 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RstrtMgr.dll
[2017.06.14 01:04:02 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdboot.exe
[2017.06.14 01:04:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\embeddedmodesvc.dll
[2017.06.14 01:04:02 | 000,130,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tm.sys
[2017.06.14 01:04:02 | 000,112,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dam.sys
[2017.06.14 01:04:02 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceCredentialDeployment.exe
[2017.06.14 01:04:02 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2017.06.14 01:04:01 | 001,067,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XboxNetApiSvc.dll
[2017.06.14 01:04:01 | 001,046,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comdlg32.dll
[2017.06.14 01:04:01 | 000,866,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NPSMDesktopProvider.dll
[2017.06.14 01:04:01 | 000,616,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowManagement.dll
[2017.06.14 01:04:01 | 000,601,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.System.Launcher.dll
[2017.06.14 01:04:01 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrvext.dll
[2017.06.14 01:04:01 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vss_ps.dll
[2017.06.14 01:04:00 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2017.07.12 12:47:35 | 003,055,586 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2017.07.12 12:47:35 | 001,253,888 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2017.07.12 12:47:35 | 001,225,522 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2017.07.12 12:47:35 | 000,289,868 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2017.07.12 12:47:35 | 000,279,286 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2017.07.12 12:43:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2017.07.12 12:41:23 | 000,386,160 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2017.07.12 12:41:18 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2017.07.12 12:41:15 | 2538,754,047 | -HS- | M] () -- C:\hiberfil.sys
[2017.07.08 12:20:37 | 000,000,960 | ---- | M] () -- C:\Users\Public\Desktop\The Witcher® 3 - Wild Hunt.lnk
[2017.07.07 09:27:41 | 000,750,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\fontdrvhost.exe
[2017.07.07 09:27:37 | 000,965,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvloader.efi
[2017.07.07 09:27:35 | 001,024,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvax64.exe
[2017.07.07 09:27:35 | 000,821,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvloader.exe
[2017.07.07 09:27:32 | 001,147,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvix64.exe
[2017.07.07 09:26:00 | 001,065,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2017.07.07 09:25:40 | 000,899,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2017.07.07 09:24:00 | 000,117,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pdc.sys
[2017.07.07 09:23:03 | 002,399,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2017.07.07 09:22:45 | 001,186,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2017.07.07 09:22:32 | 008,318,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2017.07.07 09:22:11 | 000,119,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dmcmnutils.dll
[2017.07.07 09:21:28 | 032,688,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsRaw.dll
[2017.07.07 09:21:07 | 002,969,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CoreUIComponents.dll
[2017.07.07 09:20:52 | 000,382,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\clfs.sys
[2017.07.07 09:20:23 | 002,021,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2017.07.07 09:20:19 | 000,923,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CoreMessaging.dll
[2017.07.07 09:20:19 | 000,519,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2017.07.07 09:17:42 | 001,017,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SecConfig.efi
[2017.07.07 09:14:55 | 001,760,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2017.07.07 09:14:39 | 007,325,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\windows.storage.dll
[2017.07.07 09:14:31 | 001,171,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dcomp.dll
[2017.07.07 09:14:30 | 005,477,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\OneCoreUAPCommonProxyStub.dll
[2017.07.07 09:13:20 | 000,554,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS
[2017.07.07 09:13:19 | 000,872,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ClipSVC.dll
[2017.07.07 09:13:13 | 000,147,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Clipc.dll
[2017.07.07 09:13:07 | 000,336,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SecurityHealthService.exe
[2017.07.07 09:12:23 | 000,318,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wininit.exe
[2017.07.07 09:11:14 | 000,094,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2017.07.07 09:11:12 | 007,904,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Protection.PlayReady.dll
[2017.07.07 09:10:50 | 001,670,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winmde.dll
[2017.07.07 09:10:40 | 000,254,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2017.07.07 09:10:37 | 001,337,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll
[2017.07.07 09:10:26 | 001,325,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2017.07.07 09:10:00 | 000,372,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CloudExperienceHost.dll
[2017.07.07 09:09:24 | 000,041,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wininitext.dll
[2017.07.07 09:08:57 | 000,992,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVManifest.dll
[2017.07.07 09:08:56 | 000,846,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVClient.exe
[2017.07.07 09:08:52 | 001,100,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVPolicy.dll
[2017.07.07 09:08:51 | 002,229,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVEntSubsystems64.dll
[2017.07.07 09:08:44 | 001,693,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVIntegration.dll
[2017.07.07 09:08:44 | 000,774,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVReporting.dll
[2017.07.07 09:08:44 | 000,699,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVCatalog.dll
[2017.07.07 09:08:44 | 000,506,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TransportDSA.dll
[2017.07.07 09:08:43 | 001,854,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVEntVirtualization.dll
[2017.07.07 09:08:43 | 000,848,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVOrchestration.dll
[2017.07.07 09:08:43 | 000,844,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVEntStreamingManager.dll
[2017.07.07 09:08:43 | 000,672,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVPublishing.dll
[2017.07.07 09:08:42 | 001,458,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVEntSubsystemController.dll
[2017.07.07 09:08:42 | 000,399,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppVScripting.dll
[2017.07.07 08:57:25 | 000,626,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\fontdrvhost.exe
[2017.07.07 08:40:44 | 023,677,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\edgehtml.dll
[2017.07.07 08:39:10 | 000,096,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dmcmnutils.dll
[2017.07.07 08:37:56 | 031,652,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WindowsCodecsRaw.dll
[2017.07.07 08:37:56 | 002,259,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreUIComponents.dll
[2017.07.07 08:37:24 | 001,339,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
[2017.07.07 08:31:01 | 005,820,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\windows.storage.dll
[2017.07.07 08:30:56 | 000,750,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WWAHost.exe
[2017.07.07 08:30:55 | 000,949,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dcomp.dll
[2017.07.07 08:29:31 | 000,123,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Clipc.dll
[2017.07.07 08:27:57 | 003,670,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\win32kfull.sys
[2017.07.07 08:27:53 | 000,859,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM.dll
[2017.07.07 08:27:51 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.dll
[2017.07.07 08:27:28 | 001,640,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\GdiPlus.dll
[2017.07.07 08:27:23 | 000,360,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ConhostV2.dll
[2017.07.07 08:27:21 | 006,759,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Protection.PlayReady.dll
[2017.07.07 08:27:19 | 000,557,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2017.07.07 08:27:17 | 000,577,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\duser.dll
[2017.07.07 08:27:00 | 000,443,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\PerceptionSimulationExtensions.dll
[2017.07.07 08:26:52 | 001,529,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\winmde.dll
[2017.07.07 08:26:09 | 017,364,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2017.07.07 08:25:37 | 000,035,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wininitext.dll
[2017.07.07 08:25:29 | 002,199,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Resources.dll
[2017.07.07 08:24:51 | 001,517,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\AppVEntSubsystems32.dll
[2017.07.07 08:24:13 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\officecsp.dll
[2017.07.07 08:23:50 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2017.07.07 08:23:46 | 000,583,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreMessaging.dll
[2017.07.07 08:23:35 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Chakradiag.dll
[2017.07.07 08:23:20 | 000,113,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuuhosdeployment.dll
[2017.07.07 08:23:17 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\eapprovp.dll
[2017.07.07 08:22:55 | 007,931,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll
[2017.07.07 08:22:08 | 000,520,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\daxexec.dll
[2017.07.07 08:21:56 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2017.07.07 08:21:18 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ActiveSyncCsp.dll
[2017.07.07 08:20:59 | 008,331,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\BingMaps.dll
[2017.07.07 08:20:13 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\prntvpt.dll
[2017.07.07 08:19:47 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\raschap.dll
[2017.07.07 08:19:46 | 000,256,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\domgmt.dll
[2017.07.07 08:19:38 | 000,527,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aadcloudap.dll
[2017.07.07 08:19:26 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\storewuauth.dll
[2017.07.07 08:19:02 | 007,149,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mos.dll
[2017.07.07 08:18:55 | 007,336,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Data.Pdf.dll
[2017.07.07 08:18:36 | 000,548,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SensorService.dll
[2017.07.07 08:18:34 | 000,274,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2017.07.07 08:18:18 | 000,563,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairing.dll
[2017.07.07 08:18:16 | 000,353,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Wldap32.dll
[2017.07.07 08:17:46 | 001,260,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\GamePanel.exe
[2017.07.07 08:17:45 | 000,422,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WpAXHolder.dll
[2017.07.07 08:17:34 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2017.07.07 08:17:30 | 000,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SIHClient.exe
[2017.07.07 08:17:28 | 001,878,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AzureSettingSyncProvider.dll
[2017.07.07 08:17:12 | 000,588,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2017.07.07 08:17:02 | 000,536,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Internal.Management.dll
[2017.07.07 08:16:58 | 000,925,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WpcWebFilter.dll
[2017.07.07 08:16:53 | 000,545,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
[2017.07.07 08:15:14 | 008,238,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Chakra.dll
[2017.07.07 08:14:59 | 000,570,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\PhotoScreensaver.scr
[2017.07.07 08:14:54 | 008,211,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2017.07.07 08:14:52 | 000,790,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.dll
[2017.07.07 08:14:47 | 000,497,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rastls.dll
[2017.07.07 08:14:41 | 002,956,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\win32kfull.sys
[2017.07.07 08:14:30 | 001,448,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\GdiPlus.dll
[2017.07.07 08:14:08 | 003,784,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MapRouter.dll
[2017.07.07 08:13:35 | 013,839,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2017.07.07 08:13:14 | 005,892,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2017.07.07 08:13:09 | 000,840,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2017.07.07 08:12:26 | 001,142,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2017.07.07 08:12:22 | 002,199,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.Resources.dll
[2017.07.07 08:12:19 | 002,055,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\win32kbase.sys
[2017.07.07 08:12:19 | 001,713,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ActiveSyncProvider.dll
[2017.07.07 08:12:09 | 001,420,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Maps.dll
[2017.07.07 08:12:06 | 001,305,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dosvc.dll
[2017.07.07 08:12:04 | 004,730,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2017.07.07 08:12:04 | 002,499,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.pcshell.dll
[2017.07.07 08:12:01 | 000,706,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2017.07.07 08:12:00 | 001,293,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aadtb.dll
[2017.07.07 08:11:50 | 002,649,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2017.07.07 08:11:36 | 000,986,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2017.07.07 08:11:26 | 002,177,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\OpcServices.dll
[2017.07.07 08:11:09 | 000,406,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuuhext.dll
[2017.07.07 08:11:06 | 002,829,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2017.07.07 08:11:03 | 003,139,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll
[2017.07.07 08:10:44 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2017.07.07 08:10:34 | 004,707,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2017.07.07 08:10:19 | 005,557,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dbgeng.dll
[2017.07.07 08:10:14 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\eapprovp.dll
[2017.07.07 08:09:07 | 000,365,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\daxexec.dll
[2017.07.07 08:09:00 | 020,504,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\edgehtml.dll
[2017.07.07 08:07:26 | 000,272,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\PlayToReceiver.dll
[2017.07.07 08:07:21 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\PlayToDevice.dll
[2017.07.07 08:07:08 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2017.07.07 08:07:07 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\raschap.dll
[2017.07.07 08:06:59 | 000,412,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsApi.dll
[2017.07.07 08:05:52 | 000,502,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairing.dll
[2017.07.07 08:05:23 | 006,728,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll
[2017.07.07 08:05:17 | 005,719,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\BingMaps.dll
[2017.07.07 08:05:06 | 000,370,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msinfo32.exe
[2017.07.07 08:04:59 | 001,703,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aitstatic.exe
[2017.07.07 08:04:58 | 001,403,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wdc.dll
[2017.07.07 08:04:29 | 000,394,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Internal.Management.dll
[2017.07.07 08:04:06 | 005,961,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Data.Pdf.dll
[2017.07.07 08:04:04 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2017.07.07 08:04:00 | 001,248,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\AzureSettingSyncProvider.dll
[2017.07.07 08:03:49 | 000,636,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WpcWebFilter.dll
[2017.07.07 08:03:30 | 000,446,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\rastls.dll
[2017.07.07 08:03:19 | 006,123,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mos.dll
[2017.07.07 08:02:41 | 000,508,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\PhotoScreensaver.scr
[2017.07.07 08:01:13 | 006,287,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Chakra.dll
[2017.07.07 08:00:50 | 002,588,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MapRouter.dll
[2017.07.07 08:00:37 | 001,019,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\aadtb.dll
[2017.07.07 08:00:18 | 007,596,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2017.07.07 07:59:58 | 000,787,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2017.07.07 07:59:54 | 001,494,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ActiveSyncProvider.dll
[2017.07.07 07:59:25 | 004,417,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2017.07.07 07:59:08 | 001,355,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\OpcServices.dll
[2017.07.07 07:58:58 | 002,298,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2017.07.07 07:58:48 | 004,559,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dbgeng.dll
[2017.07.07 07:58:43 | 001,237,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.Maps.dll
[2017.07.07 07:58:40 | 002,782,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll
[2017.07.07 07:55:06 | 000,342,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2017.07.07 07:55:03 | 000,329,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SensorsApi.dll
[2017.07.07 07:53:21 | 000,338,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msinfo32.exe
[2017.07.07 07:53:02 | 001,301,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wdc.dll
[2017.07.03 14:07:13 | 000,000,882 | ---- | M] () -- C:\Users\Marcin\Desktop\PCSuite_contact_20170703T140713.csv
[2017.07.02 00:52:09 | 000,031,932 | ---- | M] () -- C:\Windows\SysNative\edgehtmlpluginpolicy.bin
[2017.06.30 17:02:03 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2017.06.30 13:35:03 | 000,001,449 | ---- | M] () -- C:\Users\Public\Desktop\GeForce Experience.lnk
[2017.06.26 15:36:21 | 000,001,040 | ---- | M] () -- C:\Users\Public\Desktop\UltraISO.lnk
[2017.06.21 09:07:20 | 001,903,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspcap64.dll
[2017.06.21 09:07:20 | 001,489,528 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspcap.dll
[2017.06.21 09:07:19 | 001,755,256 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspbridge64.dll
[2017.06.21 09:07:19 | 001,317,496 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspbridge.dll
[2017.06.21 09:07:19 | 000,121,464 | ---- | M] () -- C:\Windows\SysNative\NvRtmpStreamer64.dll
[2017.06.21 09:07:16 | 000,057,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvhci.sys
[2017.06.21 09:07:15 | 000,179,320 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvaudcap64v.dll
[2017.06.21 09:07:15 | 000,146,552 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvaudcap32v.dll
[2017.06.21 09:07:15 | 000,048,248 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvad64v.sys
[2017.06.20 22:58:22 | 000,001,951 | ---- | M] () -- C:\Windows\NvTelemetryContainerRecovery.bat
[2017.06.20 20:52:13 | 000,002,213 | ---- | M] () -- C:\Users\Public\Desktop\HP ENVY 4500 series.lnk
[2017.06.20 20:51:06 | 000,000,057 | ---- | M] () -- C:\ProgramData\Ament.ini
[2017.06.20 08:18:42 | 000,096,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CompatTelRunner.exe
[2017.06.20 08:18:31 | 001,564,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2017.06.20 08:17:57 | 000,034,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceCensus.exe
[2017.06.20 08:17:54 | 000,136,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2017.06.20 08:17:37 | 000,334,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
[2017.06.20 08:17:22 | 000,629,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
[2017.06.20 08:17:00 | 000,544,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
[2017.06.20 08:16:40 | 001,214,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2017.06.20 08:16:10 | 000,335,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dcntel.dll
[2017.06.20 08:15:56 | 000,233,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll
[2017.06.20 08:11:39 | 000,411,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MSAudDecMFT.dll
[2017.06.20 08:11:38 | 001,395,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2017.06.20 08:10:49 | 001,930,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2017.06.20 08:05:03 | 001,057,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MrmCoreR.dll
[2017.06.20 08:04:56 | 000,472,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\policymanager.dll
[2017.06.20 08:04:03 | 004,847,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2017.06.20 08:03:47 | 000,102,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CredentialUIBroker.exe
[2017.06.20 08:03:12 | 000,179,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CloudExperienceHostUser.dll
[2017.06.20 08:03:08 | 000,820,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WWAHost.exe
[2017.06.20 08:02:59 | 000,426,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CloudExperienceHostCommon.dll
[2017.06.20 08:02:46 | 001,055,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\LicenseManager.dll
[2017.06.20 08:00:56 | 000,558,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.dll
[2017.06.20 08:00:36 | 000,142,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wcifs.sys
[2017.06.20 08:00:29 | 000,255,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppxAllUserStore.dll
[2017.06.20 07:59:25 | 000,467,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MFCaptureEngine.dll
[2017.06.20 07:59:23 | 006,554,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2017.06.20 07:59:23 | 001,054,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2017.06.20 07:59:05 | 000,583,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2017.06.20 07:59:01 | 001,220,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mfsvr.dll
[2017.06.20 07:58:59 | 000,406,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MMDevAPI.dll
[2017.06.20 07:58:25 | 000,203,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CloudExperienceHostBroker.dll
[2017.06.20 07:58:10 | 000,833,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\EditionUpgradeManagerObj.dll
[2017.06.20 07:57:42 | 000,204,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\basecsp.dll
[2017.06.20 07:34:53 | 000,192,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\aepic.dll
[2017.06.20 07:16:35 | 000,970,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msctfuimanager.dll
[2017.06.20 07:16:23 | 000,417,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2017.06.20 07:15:58 | 000,455,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAudDecMFT.dll
[2017.06.20 07:14:59 | 001,150,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ucrtbase.dll
[2017.06.20 07:13:47 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2017.06.20 07:13:45 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WFDSConMgr.dll
[2017.06.20 07:13:22 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WinBioDataModelOOBE.exe
[2017.06.20 07:13:11 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
[2017.06.20 07:12:57 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MusNotification.exe
[2017.06.20 07:12:47 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DolbyMATEnc.dll
[2017.06.20 07:12:23 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.System.Profile.RetailInfo.dll
[2017.06.20 07:11:59 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2017.06.20 07:11:29 | 000,200,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ScDeviceEnum.dll
[2017.06.20 07:10:41 | 000,778,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DolbyHrtfEnc.dll
[2017.06.20 07:10:25 | 000,189,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\BluetoothApis.dll
[2017.06.20 07:10:22 | 000,315,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsEnvironment.Desktop.dll
[2017.06.20 07:10:08 | 000,188,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wincredui.dll
[2017.06.20 07:10:04 | 000,722,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MusUpdateHandlers.dll
[2017.06.20 07:10:00 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2017.06.20 07:09:59 | 000,497,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Shell.BlueLightReduction.dll
[2017.06.20 07:09:56 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2017.06.20 07:09:41 | 000,555,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WFDSConMgrSvc.dll
[2017.06.20 07:09:41 | 000,205,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ClipboardServer.dll
[2017.06.20 07:09:31 | 000,710,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UMDF\NfcCx.dll
[2017.06.20 07:09:26 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dataclen.dll
[2017.06.20 07:09:20 | 000,357,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Narrator.exe
[2017.06.20 07:09:17 | 000,427,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\provengine.dll
[2017.06.20 07:09:12 | 000,406,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\policymanager.dll
[2017.06.20 07:09:10 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\psmsrv.dll
[2017.06.20 07:09:05 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sendmail.dll
[2017.06.20 07:09:01 | 000,551,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Payments.dll
[2017.06.20 07:08:58 | 000,791,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\certca.dll
[2017.06.20 07:08:56 | 000,365,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers_Notifications.dll
[2017.06.20 07:08:51 | 000,251,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\scksp.dll
[2017.06.20 07:08:50 | 000,327,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WinBioDataModel.dll
[2017.06.20 07:08:45 | 000,274,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2017.06.20 07:08:23 | 000,328,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\PsmServiceExtHost.dll
[2017.06.20 07:08:14 | 004,469,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2017.06.20 07:08:07 | 000,646,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\LockHostingFramework.dll
[2017.06.20 07:07:57 | 000,621,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
[2017.06.20 07:07:47 | 000,411,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\updatehandlers.dll
[2017.06.20 07:07:32 | 000,823,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MbaeApi.dll
[2017.06.20 07:07:31 | 000,510,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TDLMigration.dll
[2017.06.20 07:07:29 | 000,626,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Internal.Bluetooth.dll
[2017.06.20 07:07:23 | 000,138,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CloudExperienceHostUser.dll
[2017.06.20 07:07:09 | 000,757,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdiWiFi.sys
[2017.06.20 07:07:09 | 000,632,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tileobjserver.dll
[2017.06.20 07:07:05 | 000,916,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\bcastdvr.exe
[2017.06.20 07:07:03 | 000,346,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CloudExperienceHostCommon.dll
[2017.06.20 07:06:49 | 000,754,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\LicenseManager.dll
[2017.06.20 07:06:48 | 000,299,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AboveLockAppHost.dll
[2017.06.20 07:06:41 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TokenBrokerUI.dll
[2017.06.20 07:06:37 | 000,411,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ActivationManager.dll
[2017.06.20 07:06:34 | 000,455,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2017.06.20 07:06:27 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CloudDomainJoinDataModelServer.dll
[2017.06.20 07:06:12 | 000,751,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2017.06.20 07:06:10 | 000,253,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\edputil.dll
[2017.06.20 07:06:00 | 000,847,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll
[2017.06.20 07:05:58 | 000,696,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mmsys.cpl
[2017.06.20 07:05:53 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppReadiness.dll
[2017.06.20 07:05:53 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\InstallAgentUserBroker.exe
[2017.06.20 07:05:42 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cldapi.dll
[2017.06.20 07:05:36 | 000,687,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\LogonController.dll
[2017.06.20 07:05:34 | 002,873,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\themeui.dll
[2017.06.20 07:05:33 | 000,406,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\InputSwitch.dll
[2017.06.20 07:05:25 | 004,447,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers_nt.dll
[2017.06.20 07:05:25 | 000,374,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\InstallAgent.exe
[2017.06.20 07:05:05 | 001,468,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.desktop.dll
[2017.06.20 07:05:05 | 000,364,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2017.06.20 07:05:02 | 000,438,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.dll
[2017.06.20 07:04:58 | 001,178,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxPackaging.dll
[2017.06.20 07:04:56 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\EditionUpgradeHelper.dll
[2017.06.20 07:04:51 | 001,818,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UIAutomationCore.dll
[2017.06.20 07:04:45 | 000,400,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RDXTaskFactory.dll
[2017.06.20 07:04:39 | 002,330,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\combase.dll
[2017.06.20 07:04:35 | 001,177,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Unistore.dll
[2017.06.20 07:04:32 | 000,181,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxAllUserStore.dll
[2017.06.20 07:04:29 | 001,425,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe
[2017.06.20 07:04:29 | 001,077,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\webservices.dll
[2017.06.20 07:04:22 | 000,802,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wcmsvc.dll
[2017.06.20 07:04:18 | 000,899,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SmartcardCredentialProvider.dll
[2017.06.20 07:03:22 | 005,806,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2017.06.20 07:03:14 | 002,077,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2017.06.20 07:03:07 | 000,443,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MFCaptureEngine.dll
[2017.06.20 07:02:59 | 001,121,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsvr.dll
[2017.06.20 07:02:54 | 000,681,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\usocore.dll
[2017.06.20 07:02:40 | 002,804,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2017.06.20 07:02:40 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CloudDomainJoinAUG.dll
[2017.06.20 07:02:36 | 003,377,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2017.06.20 07:02:30 | 003,204,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Microsoft.Bluetooth.Profiles.Gatt.dll
[2017.06.20 07:02:10 | 001,886,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.onecore.dll
[2017.06.20 07:01:45 | 004,396,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_47.dll
[2017.06.20 07:01:43 | 000,176,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\basecsp.dll
[2017.06.20 07:01:37 | 003,803,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2017.06.20 07:01:37 | 003,059,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\NetworkMobileSettings.dll
[2017.06.20 07:01:36 | 000,397,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rascustom.dll
[2017.06.20 07:01:28 | 001,076,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.appcore.dll
[2017.06.20 07:01:25 | 003,332,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SRH.dll
[2017.06.20 07:01:20 | 000,809,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rasapi32.dll
[2017.06.20 07:01:19 | 004,536,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2017.06.20 07:00:48 | 002,597,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2017.06.20 07:00:31 | 003,057,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2017.06.20 07:00:29 | 002,171,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Devices.Bluetooth.dll
[2017.06.20 06:59:59 | 002,938,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\InputService.dll
[2017.06.20 06:59:26 | 001,674,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wpncore.dll
[2017.06.20 06:58:49 | 000,625,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll
[2017.06.20 06:57:54 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DMPushRouterCore.dll
[2017.06.20 06:57:53 | 000,290,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\omadmclient.exe
[2017.06.20 06:56:58 | 000,985,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TSWorkspace.dll
[2017.06.20 06:56:18 | 000,600,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\FrameServer.dll
[2017.06.20 06:54:37 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DmApiSetExtImplDesktop.dll
[2017.06.20 06:49:48 | 000,899,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msctfuimanager.dll
[2017.06.20 06:46:15 | 000,132,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
[2017.06.20 06:45:34 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.System.Profile.RetailInfo.dll
[2017.06.20 06:45:10 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2017.06.20 06:43:48 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\BluetoothApis.dll
[2017.06.20 06:43:37 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wincredui.dll
[2017.06.20 06:43:35 | 000,329,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\webplatstorageserver.dll
[2017.06.20 06:43:24 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2017.06.20 06:43:15 | 000,124,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2017.06.20 06:43:06 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ClipboardServer.dll
[2017.06.20 06:43:00 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dataclen.dll
[2017.06.20 06:42:38 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\sendmail.dll
[2017.06.20 06:42:27 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Payments.dll
[2017.06.20 06:42:24 | 000,641,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\certca.dll
[2017.06.20 06:42:16 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\scksp.dll
[2017.06.20 06:41:46 | 000,201,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\credprovhost.dll
[2017.06.20 06:41:39 | 000,601,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVolSSO.dll
[2017.06.20 06:41:17 | 000,734,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\bcastdvr.exe
[2017.06.20 06:41:14 | 000,646,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MbaeApi.dll
[2017.06.20 06:41:14 | 000,433,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Internal.Bluetooth.dll
[2017.06.20 06:40:38 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\AboveLockAppHost.dll
[2017.06.20 06:40:30 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\TokenBrokerUI.dll
[2017.06.20 06:40:27 | 000,356,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ActivationManager.dll
[2017.06.20 06:40:17 | 000,342,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2017.06.20 06:40:12 | 000,368,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\InstallAgentUserBroker.exe
[2017.06.20 06:40:06 | 000,230,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\edputil.dll
[2017.06.20 06:39:55 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mmsys.cpl
[2017.06.20 06:39:25 | 002,814,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\themeui.dll
[2017.06.20 06:39:22 | 000,471,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
[2017.06.20 06:39:05 | 000,969,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Unistore.dll
[2017.06.20 06:39:00 | 002,671,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2017.06.20 06:38:54 | 001,171,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe
[2017.06.20 06:38:49 | 001,451,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAutomationCore.dll
[2017.06.20 06:38:37 | 000,648,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
[2017.06.20 06:38:28 | 001,285,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dbghelp.dll
[2017.06.20 06:38:06 | 000,329,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\InstallAgent.exe
[2017.06.20 06:37:47 | 002,008,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2017.06.20 06:36:52 | 003,667,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_47.dll
[2017.06.20 06:35:35 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\cldapi.dll
[2017.06.20 06:35:21 | 002,132,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2017.06.20 06:35:00 | 002,679,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SRH.dll
[2017.06.20 06:34:45 | 002,750,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2017.06.20 06:34:31 | 001,492,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Devices.Bluetooth.dll
[2017.06.20 06:34:18 | 004,056,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2017.06.20 06:34:03 | 002,211,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\InputService.dll
[2017.06.20 06:31:06 | 000,334,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\PlayToDevice.dll
[2017.06.20 06:30:23 | 000,157,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
[2017.06.13 12:46:55 | 000,000,671 | ---- | M] () -- C:\Users\Public\Desktop\FIFA 17.lnk

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2017.07.12 01:01:30 | 000,031,932 | ---- | C] () -- C:\Windows\SysNative\edgehtmlpluginpolicy.bin
[2017.07.08 12:20:37 | 000,000,960 | ---- | C] () -- C:\Users\Public\Desktop\The Witcher® 3 - Wild Hunt.lnk
[2017.07.03 14:07:13 | 000,000,882 | ---- | C] () -- C:\Users\Marcin\Desktop\PCSuite_contact_20170703T140713.csv
[2017.06.30 17:02:03 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2017.06.26 15:36:21 | 000,001,040 | ---- | C] () -- C:\Users\Public\Desktop\UltraISO.lnk
[2017.06.20 20:52:13 | 000,002,213 | ---- | C] () -- C:\Users\Public\Desktop\HP ENVY 4500 series.lnk
[2017.06.20 20:51:06 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2017.06.18 12:05:09 | 184,719,314 | ---- | C] () -- C:\Users\Marcin\Desktop\Tibia.spr
[2017.06.18 12:05:09 | 004,064,636 | ---- | C] () -- C:\Users\Marcin\Desktop\Tibia.pic
[2017.06.18 12:05:09 | 002,081,670 | ---- | C] () -- C:\Users\Marcin\Desktop\Tibia.dat
[2017.06.14 01:04:36 | 000,059,904 | ---- | C] () -- C:\Windows\SysWow64\xboxgipsynthetic.dll
[2017.06.14 01:04:02 | 000,778,240 | ---- | C] () -- C:\Windows\SysNative\MBR2GPT.EXE
[2017.06.14 01:04:01 | 000,086,016 | ---- | C] () -- C:\Windows\SysNative\xboxgipsynthetic.dll
[2017.05.24 11:42:02 | 000,004,608 | ---- | C] () -- C:\Windows\SECOH-QAD.exe
[2017.05.24 11:42:02 | 000,003,584 | ---- | C] () -- C:\Windows\SECOH-QAD.dll
[2017.05.23 18:40:23 | 000,525,600 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1.dll
[2017.05.23 18:40:23 | 000,233,760 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo.exe
[2017.05.23 17:07:22 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2017.05.23 16:56:24 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2017.03.21 01:57:36 | 000,141,312 | ---- | C] () -- C:\Windows\SysWow64\libEGL.dll
[2017.03.21 01:57:36 | 000,112,128 | ---- | C] () -- C:\Windows\SysWow64\libGLESv2.dll
[2017.03.21 01:57:36 | 000,101,376 | ---- | C] () -- C:\Windows\SysWow64\libGLESv1_CM.dll
[2017.03.18 23:03:42 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2017.03.18 23:03:41 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2017.03.18 22:58:56 | 000,054,272 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2017.03.18 22:58:54 | 000,116,824 | ---- | C] () -- C:\Windows\SysWow64\InputHost.dll
[2017.03.18 22:58:54 | 000,112,128 | ---- | C] () -- C:\Windows\SysWow64\HeatCore.dll
[2017.03.18 22:58:54 | 000,086,528 | ---- | C] () -- C:\Windows\SysWow64\WindowsDefaultHeatProcessor.dll
[2017.03.18 22:58:52 | 003,200,000 | ---- | C] () -- C:\Windows\SysWow64\Windows.UI.Input.Inking.Analysis.dll
[2017.03.18 22:58:51 | 000,167,640 | ---- | C] () -- C:\Windows\SysWow64\chs_singlechar_pinyin.dat
[2017.03.18 22:58:48 | 000,002,307 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2017.03.18 22:58:42 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2017.03.18 22:58:39 | 000,307,200 | ---- | C] () -- C:\Windows\SysWow64\ssdm.dll
[2017.03.18 22:58:37 | 001,859,072 | ---- | C] () -- C:\Windows\SysWow64\Windows.Mirage.dll
[2017.03.18 22:57:47 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2017.03.18 22:57:03 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2017.03.10 23:17:28 | 000,525,600 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1-1-0-42-1.dll
[2017.03.10 23:17:20 | 000,233,760 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo-1-1-0-42-1.exe
[2016.11.23 02:23:44 | 000,271,648 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1-1-0-33-0.dll
[2016.11.23 02:23:14 | 000,110,880 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo-1-1-0-33-0.exe

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2017.05.25 23:36:04 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
" " = C:\Windows\SysNative\windows.storage.dll -- [2017.07.07 09:14:39 | 007,325,584 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
" " = %SystemRoot%\system32\windows.storage.dll -- [2017.07.07 08:31:01 | 005,820,984 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
" " = C:\Windows\SysNative\wbem\fastprox.dll -- [2017.03.18 22:57:58 | 000,961,024 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
" " = %systemroot%\system32\wbem\fastprox.dll -- [2017.03.18 22:58:50 | 000,770,560 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
" " = C:\Windows\SysNative\wbem\wbemess.dll -- [2017.03.18 22:57:53 | 000,510,464 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

& lt; End of report & gt;