prosím o kontrolu logu, samovolně se otvírají okna

[Rybiz]

Zoek.exe Version 5.0.0.2 Updated 03-May-2018
Tool run by Rybiz80 on Łt 07.08.2018 at 5:31:51,18.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Safe Mode MINIMAL No Internet Access Detected
Launched: C:\Users\Rybiz80\Desktop\zoek.exe [Scan all users] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2018-08-06-173104.log 368 bytes

==== Running Processes ======================

C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== System Specs ======================

Operating System: Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 64-bit
Manufacturer: extracomputer - Model: D3161-B1
Install Date: 23.7.2018 12:21:07
Last Boot: 7.8.2018 5:30:31
Processor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Number of Processors: 8
Work Station
Bootmode: Fail-safe boot
Total RAM: 16297 MB (free 14307 MB - 87)
Computername: Rybiz80-PC
Domain: WORKGROUP
User: Rybiz80 (Administrator account)
Local Disk: C:\ - NTFS - 465 GB (free 313 GB)
CD \ DVD Drive: D:\
Local Disk: E:\ - NTFS - 111 GB (free 111 GB)
Bootdevice: \Device\HarddiskVolume1
Windows update:
Country: ¬esk ˙republika
Language: CSY

==== System Specs (Software) ======================

Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated)
Anti-Spyware: Microsoft Security Essentials disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Google Chrome 68.0.3440.84
Internet Explorer Version: 11.0.9600.19080
Google Chrome version: 68.0.3440.84

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2018-07-24 06:29:34 12589371C087A76B6E8E152939E59E98 16896 ----a-w- C:\Windows\hh.exe
2018-07-24 06:29:30 A66E522F3CBFB8709EA37844922A002E 733696 ----a-w- C:\Windows\HelpPane.exe
2018-07-23 11:15:04 E185BDA84E5F03F4E1D8DCA30E209277 1912 ----a-w- C:\Windows\epplauncher.mif
2018-07-11 11:00:33 74F28574BB8F61FFC7DD419FE6B6E0D5 1951 ----a-w- C:\Windows\NvTelemetryContainerRecovery.bat
2018-07-11 10:59:58 74F28574BB8F61FFC7DD419FE6B6E0D5 1951 ----a-w- C:\Windows\NvContainerRecovery.bat
====== C:\Users\Rybiz80\AppData\Local\Temp ====
2018-08-06 17:29:12 8377C99BF813BE986D07730F5C433382 68096 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\ZAScan.exe
2018-08-06 17:29:12 75375C22C72F1BEB76BEA39C22A1ED68 167936 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\unzip.exe
2018-08-06 17:29:12 1A3F82F420340222F13C5633AEB716D6 533851 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\sr.exe
2018-08-06 17:02:55 E40542C4CC75E658A4615BFEFB308570 1790024 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\JRT_NewerVersion\JRT.exe
2018-08-06 17:02:51 2F9C7FDA92C346CB5AA32091536AE0CB 43520 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\nfo\nircmdc.exe
2018-08-03 15:13:24 8D49B6321F1C1AA6C0D49BA3B022E1A8 25775920 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\setup.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2018-07-24 08:45:26 960AE99A15B1C8C9FBDDDE97606478F9 3550208 ----a-w- C:\Windows\SysWOW64\D3DCompiler_47.dll
2018-07-24 06:29:35 F14C2821DDB2D09A527FF258EC434B52 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-07-24 06:29:35 81CB1981A9CC574008E9839AB137FB2F 17240 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-07-24 06:29:35 2838609DD1AFA03D4A68228F2C818CEA 2048 ----a-w- C:\Windows\SysWOW64\user.exe
2018-07-24 06:29:34 FF8B6558BB9CD8890253FFC01E57E3EC 282624 ----a-w- C:\Windows\SysWOW64\mstext40.dll
2018-07-24 06:29:34 FCEE7E4A37BB971ED4A11E9D496C7274 299008 ----a-w- C:\Windows\SysWOW64\ntprint.dll
2018-07-24 06:29:34 FB8B6E9543FEFF706967BC9437197CC5 12120 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-07-24 06:29:34 F6E1AE3EF2BED36CB739BB90478B6493 17240 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-24 06:29:34 F5357CAC91CAA28CC97BFAADF95C1C20 82944 ----a-w- C:\Windows\SysWOW64\bcrypt.dll
2018-07-24 06:29:34 F05F26DD4B8640CB71F8C40BD6530FD1 16384 ----a-w- C:\Windows\SysWOW64\winnsi.dll
2018-07-24 06:29:34 EC5A71B7AB0902B82177FCE9769F6C36 12120 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-07-24 06:29:34 E53488EA2F13C3E93FABABDAE10C36C1 184320 ----a-w- C:\Windows\SysWOW64\scksp.dll
2018-07-24 06:29:34 E44701B42419962136EF5CAC198F8D1C 77312 ----a-w- C:\Windows\SysWOW64\mfmjpegdec.dll
2018-07-24 06:29:34 E1A2A1C53E354D9016E68B16B86AE570 343552 ----a-w- C:\Windows\SysWOW64\msrd3x40.dll
2018-07-24 06:29:34 DE7337C3EDD617029AE585724DA0DC7A 26112 ----a-w- C:\Windows\SysWOW64\oleres.dll
2018-07-24 06:29:34 D9A9C40BE182CB3E4644971D8E6D59BC 13152 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-24 06:29:34 D5FDF7E990A1AE2E19C64E1FF267580A 444928 ----a-w- C:\Windows\SysWOW64\wvc.dll
2018-07-24 06:29:34 D1DE6861C97B6184A81C010E78CBF272 59392 ----a-w- C:\Windows\SysWOW64\msscntrs.dll
2018-07-24 06:29:34 C508CD60FB68D39482966EDEFBD7CB43 290816 ----a-w- C:\Windows\SysWOW64\msjtes40.dll
2018-07-24 06:29:34 C08A83FD5F3D495F1267CC98727B70BD 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll
2018-07-24 06:29:34 BDCBA6F7B8C538305FE8C0A7D78D2683 15192 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-07-24 06:29:34 BB1D7E779FFC9D4D58DE6D6C39429FF1 103424 ----a-w- C:\Windows\SysWOW64\resmon.exe
2018-07-24 06:29:34 B8AF75A6FB1BEA49A38C00B3EEDBEFCE 22528 ----a-w- C:\Windows\SysWOW64\rasser.dll
2018-07-24 06:29:34 B2EF83F99837C68E646BA5E419F8D16A 172544 ----a-w- C:\Windows\SysWOW64\cic.dll
2018-07-24 06:29:34 AE033EA471A27FE2138FF4C83E95E51F 164352 ----a-w- C:\Windows\SysWOW64\SearchProtocolHost.exe
2018-07-24 06:29:34 A554AE8240E2C8EE389E6BCD76E05198 337408 ----a-w- C:\Windows\SysWOW64\mssph.dll
2018-07-24 06:29:34 A2A5D487D0C3D55739A0491B6872480D 1401344 ----a-w- C:\Windows\SysWOW64\mmc.exe
2018-07-24 06:29:34 9E4BC729899C1E1C5FA6DE50FFAFDBB7 1549824 ----a-w- C:\Windows\SysWOW64\tquery.dll
2018-07-24 06:29:34 9B2BA304828D5FABF87348D59D635AC7 91368 ----a-w- C:\Windows\SysWOW64\MigAutoPlay.exe
2018-07-24 06:29:34 9A8DA9190702FAA9944AE3099BD3EF1C 104448 ----a-w- C:\Windows\SysWOW64\mssitlb.dll
2018-07-24 06:29:34 970CD7D328C23D9865FF54B7B10E33A3 197120 ----a-w- C:\Windows\SysWOW64\mssphtb.dll
2018-07-24 06:29:34 970B24D86AA519A66CA2A03E18D5B68B 54272 ----a-w- C:\Windows\SysWOW64\wermgr.exe
2018-07-24 06:29:34 94D10B11B61DB26940B4FB1B3ECFCE84 310272 ----a-w- C:\Windows\SysWOW64\msrd2x40.dll
2018-07-24 06:29:34 94A4BD919D8D6FEAE8DAC69A1FBE7094 518144 ----a-w- C:\Windows\SysWOW64\msjetoledb40.dll
2018-07-24 06:29:34 857999CECCB0C9D255D5F7FCF3BA0C2C 427520 ----a-w- C:\Windows\SysWOW64\SearchIndexer.exe
2018-07-24 06:29:34 8066F32DBF9E7BAF35758849F90776B1 342528 ----a-w- C:\Windows\SysWOW64\certcli.dll
2018-07-24 06:29:34 741E8E1DD841506A58F9A28895D7FE2E 1363968 ----a-w- C:\Windows\SysWOW64\Query.dll
2018-07-24 06:29:34 6F3E6F978E6DF7D751C2EA62F60EF788 7168 ----a-w- C:\Windows\SysWOW64\MsraLegacy.tlb
2018-07-24 06:29:34 66CFEF9459FE5771D640BDADE2840192 83968 ----a-w- C:\Windows\SysWOW64\msjter40.dll
2018-07-24 06:29:34 6691B0F9B2F8CF2146A46C4F33779D6B 128512 ----a-w- C:\Windows\SysWOW64\mmcshext.dll
2018-07-24 06:29:34 633CD8A938AB8C6B2D0166A4A55A225F 409600 ----a-w- C:\Windows\SysWOW64\msexch40.dll
2018-07-24 06:29:34 568B65A1B16264570F1B4E3565F49519 47104 ----a-w- C:\Windows\SysWOW64\pdhui.dll
2018-07-24 06:29:34 53FF7C0EF6A7E6DAFAEE2FE1B526A01A 157184 ----a-w- C:\Windows\SysWOW64\perfmon.exe
2018-07-24 06:29:34 527BB14847DB8264C31380C40CBC1CD7 8192 ----a-w- C:\Windows\SysWOW64\spwmp.dll
2018-07-24 06:29:34 51EA6BD2E56AEF9691A82C05D60D07A7 28672 ----a-w- C:\Windows\SysWOW64\werdiagcontroller.dll
2018-07-24 06:29:34 4FDF9502D0B57D3EDB185DA4B6848BFE 1400320 ----a-w- C:\Windows\SysWOW64\mssrch.dll
2018-07-24 06:29:34 4BF00F7ACDC0B9F81EC6BBFF3648BC44 4096 ----a-w- C:\Windows\SysWOW64\msdxm.ocx
2018-07-24 06:29:34 4BF00F7ACDC0B9F81EC6BBFF3648BC44 4096 ----a-w- C:\Windows\SysWOW64\dxmasf.dll
2018-07-24 06:29:34 4A61E18E7EBCC2886653E771D785D9EA 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2018-07-24 06:29:34 44227E048D0A7BB5A7AEB839936BF9DE 7168 ----a-w- C:\Windows\SysWOW64\comcat.dll
2018-07-24 06:29:34 3635DED9860DC2570D47462752090C36 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-07-24 06:29:34 2DC31C166BF979BC5488932C84810D80 86528 ----a-w- C:\Windows\SysWOW64\SearchFilterHost.exe
2018-07-24 06:29:34 2B7A702E23751739AF46760436873929 390144 ----a-w- C:\Windows\SysWOW64\sysmon.ocx
2018-07-24 06:29:34 290142B625251D993BEAE6521619D5C6 330240 ----a-w- C:\Windows\SysWOW64\zipfldr.dll
2018-07-24 06:29:34 1AB31F3FD29D74074BCC64DE8FEE5540 103424 ----a-w- C:\Windows\SysWOW64\mfps.dll
2018-07-24 06:29:34 1AA810BFEEE8695BF4CB49C7786B7827 18776 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-24 06:29:34 1A49393991C4BF4A56EE64B686C584E8 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-07-24 06:29:34 17A4059BB257051EF3A6480815DCA419 9728 ----a-w- C:\Windows\SysWOW64\msshooks.dll
2018-07-24 06:29:34 0723A00C740A0D1B5460FBFE048C3E68 8704 ----a-w- C:\Windows\SysWOW64\nsi.dll
2018-07-24 06:29:34 0436312135E0A5B8DDDAFAF976821D51 23040 ----a-w- C:\Windows\SysWOW64\mfpmp.exe
2018-07-24 06:29:34 02D425A51431FC87E3274D90B2B6A062 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-07-24 06:29:33 FFEAED0E3BD67DA3559231F762B6E201 866816 ----a-w- C:\Windows\SysWOW64\mswdat10.dll
2018-07-24 06:29:33 FC8A22A65745A620DDEE41669765BB56 1329664 ----a-w- C:\Windows\SysWOW64\quartz.dll
2018-07-24 06:29:33 F0A6576528FD5AF099821D5360770CC8 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll
2018-07-24 06:29:33 F02EB1D48A1A0CD59C81462055A69AD1 142848 ----a-w- C:\Windows\SysWOW64\itss.dll
2018-07-24 06:29:33 E0FC6700E341A2026C08DF29A9B4FEAD 20480 ----a-w- C:\Windows\SysWOW64\WcnEapPeerProxy.dll
2018-07-24 06:29:33 D03CBC7A13DB67F83EAD4BB2B1B2C9D2 616448 ----a-w- C:\Windows\SysWOW64\msrepl40.dll
2018-07-24 06:29:33 C67881BF26EEDCBE0E97875AC7AECCD8 2048 ----a-w- C:\Windows\SysWOW64\mferror.dll
2018-07-24 06:29:33 C614AA3804DF9FCAA829B57E98945DC1 363520 ----a-w- C:\Windows\SysWOW64\StructuredQuery.dll
2018-07-24 06:29:33 AF0002DF9D2AC73587596C29886D505C 91136 ----a-w- C:\Windows\SysWOW64\inseng.dll
2018-07-24 06:29:33 A7999BEEE52B87FDBF15E60F207B51C8 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2018-07-24 06:29:33 A03B2893AB4DC114870F425809C030B2 148160 ----a-w- C:\Windows\SysWOW64\basecsp.dll
2018-07-24 06:29:33 9F49B8E154DBAC9D60125CBBE3609C70 217600 ----a-w- C:\Windows\SysWOW64\P2P.dll
2018-07-24 06:29:33 87745417DFFEE0F341144063F11FFAFA 83968 ----a-w- C:\Windows\SysWOW64\wlanhlp.dll
2018-07-24 06:29:33 75326D9940A86E23AB8283D6E31B70DE 497664 ----a-w- C:\Windows\SysWOW64\win32spl.dll
2018-07-24 06:29:33 71BA6F21132623EEC68E25779843FD0A 9728 ----a-w- C:\Windows\SysWOW64\sscore.dll
2018-07-24 06:29:33 6EBE64B2FA84F9A3A3070C79CDCF19E0 382976 ----a-w- C:\Windows\SysWOW64\wer.dll
2018-07-24 06:29:33 6CBFBC933B6D98C2E349B02D2B07813B 81920 ----a-w- C:\Windows\SysWOW64\fdWCN.dll
2018-07-24 06:29:33 57C122CBD283A1E6FE5A5509AFA35CB2 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe
2018-07-24 06:29:33 5483D87CA77CE60B29D46BCB4C4C21FB 973312 ----a-w- C:\Windows\SysWOW64\DXPTaskRingtone.dll
2018-07-24 06:29:33 5119041A556E15DB1B62E5D5246E5105 573440 ----a-w- C:\Windows\SysWOW64\wuapi.dll
2018-07-24 06:29:33 417BB0E54DB7B7208520A8E71255CECC 8704 ----a-w- C:\Windows\SysWOW64\msjint40.dll
2018-07-24 06:29:33 3273C18621DE987823E5433BD7F658DE 33280 ----a-w- C:\Windows\SysWOW64\traffic.dll
2018-07-24 06:29:33 28BE06FF78CC94F13276583170540E50 805376 ----a-w- C:\Windows\SysWOW64\cdosys.dll
2018-07-24 06:29:33 20CF6E763CCCCA5E09A7512604CAA529 2048 ----a-w- C:\Windows\SysWOW64\msxml6r.dll
2018-07-24 06:29:33 1E614D1B8C522ED15E9151409F6E9A4D 223232 ----a-w- C:\Windows\SysWOW64\ncrypt.dll
2018-07-24 06:29:33 1D7EFFA5EDE72D3FC1CF20DE998259C6 340480 ----a-w- C:\Windows\SysWOW64\msexcl40.dll
2018-07-24 06:29:33 149FE64A2BD27129CB731D09AF4ACDDE 75264 ----a-w- C:\Windows\SysWOW64\mprdim.dll
2018-07-24 06:29:33 12CDAF1592A33096CD90FDB411EA6337 666624 ----a-w- C:\Windows\SysWOW64\mssvp.dll
2018-07-24 06:29:33 09B61B4894B05723BACE59F46EF892D4 1508352 ----a-w- C:\Windows\SysWOW64\pla.dll
2018-07-24 06:29:32 F14AB91AA612D0AD5839C5D13B218360 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2018-07-24 06:29:32 EBA82F1B920E64DDFCD1E0BF9706B8F3 15704 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-24 06:29:32 E859E76A8766B7F1925EB7D0792CC3C1 33280 ----a-w- C:\Windows\SysWOW64\rasmxs.dll
2018-07-24 06:29:32 E5A2788702F4603CBBEEA230ACFAADB1 86528 ----a-w- C:\Windows\SysWOW64\WcnApi.dll
2018-07-24 06:29:32 DE8A6902C401DDD252954C7894C895A2 827904 ----a-w- C:\Windows\SysWOW64\rdpcore.dll
2018-07-24 06:29:32 C7C2A39C4B3F1B37F3C816A282D3E332 35328 ----a-w- C:\Windows\SysWOW64\wuapp.exe
2018-07-24 06:29:32 C27751B11ACCAB98BA087A38C469B907 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll
2018-07-24 06:29:32 ABAD533F465380421B66687D4FBA807E 34816 ----a-w- C:\Windows\SysWOW64\mssprxy.dll
2018-07-24 06:29:32 A8D212AF14E65905B5631742656A3C43 43008 ----a-w- C:\Windows\SysWOW64\hhsetup.dll
2018-07-24 06:29:32 9AD4807BFD28CD14362FAE2DE0AA7890 1227264 ----a-w- C:\Windows\SysWOW64\wdc.dll
2018-07-24 06:29:32 94052D294092794E1D1C0D7417161381 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe
2018-07-24 06:29:32 93DD6BEE13FF4CB917F8E1234F2A464F 21848 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-07-24 06:29:32 837E870DBDEE3D19122C833389D81CC9 80896 ----a-w- C:\Windows\SysWOW64\wlanapi.dll
2018-07-24 06:29:32 6CB8D5AF44F0F07565DE45F86528B073 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe
2018-07-24 06:29:32 6673E73084216129F3E64FDD819368EC 2150912 ----a-w- C:\Windows\SysWOW64\mmcndmgr.dll
2018-07-24 06:29:32 61259DE5266CC28045856882B144F804 30208 ----a-w- C:\Windows\SysWOW64\wups.dll
2018-07-24 06:29:32 5ADEF0B67913448A7850836010F48ED9 1311744 ----a-w- C:\Windows\SysWOW64\msjet40.dll
2018-07-24 06:29:32 56E994E79DB22F583683C8EB7493C45E 111616 ----a-w- C:\Windows\SysWOW64\racpldlg.dll
2018-07-24 06:29:32 516BA2B650C242C17AAE680BFD08814E 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll
2018-07-24 06:29:32 4BDF9C2B4B517B55BFCC49B8E44B40C7 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll
2018-07-24 06:29:32 49A1DFA86B6733E5D98CB0EA81B13AF3 3207168 ----a-w- C:\Windows\SysWOW64\mf.dll
2018-07-24 06:29:32 47D0B25AEAFEFC8937D86F22C7C5278F 13656 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-07-24 06:29:32 42B2F788D85DEBF29F6E4A6ED5004C2D 2292224 ----a-w- C:\Windows\SysWOW64\MSVidCtl.dll
2018-07-24 06:29:32 3650AD6EA1A9CD1CD1BBF4EB93E7604D 93696 ----a-w- C:\Windows\SysWOW64\wudriver.dll
2018-07-24 06:29:32 361BBC8BE82ECF8A27F57BD4631B9164 158720 ----a-w- C:\Windows\SysWOW64\itircl.dll
2018-07-24 06:29:32 2F58C0DD4BCFE7CD9752EEDE8B08C261 240640 ----a-w- C:\Windows\SysWOW64\msltus40.dll
2018-07-24 06:29:32 2DBA413FACC332703C12EFD3B997938B 275456 ----a-w- C:\Windows\SysWOW64\KernelBase.dll
2018-07-24 06:29:32 2AF284D0737FE5BCB3581DA8C536CDF7 32768 ----a-w- C:\Windows\SysWOW64\WcsPlugInService.dll
2018-07-24 06:29:32 249C741009425ED4DA99080333691016 50176 ----a-w- C:\Windows\SysWOW64\rrinstaller.exe
2018-07-24 06:29:32 1C92F07DB3B860294251C31C4DD97D4B 1390080 ----a-w- C:\Windows\SysWOW64\msxml6.dll
2018-07-24 06:29:32 11D1846FCA7D8A5EB825CD731A0F6304 19968 ----a-w- C:\Windows\SysWOW64\WcnEapAuthProxy.dll
2018-07-24 06:29:32 0A613D0301B0EACE35508D11B4D0423A 392704 ----a-w- C:\Windows\SysWOW64\wlansec.dll
2018-07-24 06:29:32 050AB578E032A7C9CA722F632A4018AC 15360 ----a-w- C:\Windows\SysWOW64\hh.exe
2018-07-24 06:29:32 01AEB7B9C67E38E14088D108F024631C 375808 ----a-w- C:\Windows\SysWOW64\mspbde40.dll
2018-07-24 06:29:31 CF679F83D98C4873EDA7E4F96F7E6FD9 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll
2018-07-24 06:29:31 AC81B22606B50A61B02F2082EA2CE187 640512 ----a-w- C:\Windows\SysWOW64\mswstr10.dll
2018-07-24 06:29:31 81063E39D04B73670ACAD9E9AD45A53C 12574208 ----a-w- C:\Windows\SysWOW64\wmploc.DLL
2018-07-24 06:29:31 75B35268C9B882825672FBFB94953222 84480 ----a-w- C:\Windows\SysWOW64\INETRES.dll
2018-07-24 06:29:31 2D8302C12657BC51C3382553D3329011 2755072 ----a-w- C:\Windows\SysWOW64\themeui.dll
2018-07-24 06:29:31 258D04C8877C8645FEC99853E6A334BA 348824 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
2018-07-24 06:29:31 1AC3F87F3141181653E7D222E27151A2 11410944 ----a-w- C:\Windows\SysWOW64\wmp.dll
2018-07-24 06:29:31 01EA2D445830658A62D45ED228AC7D58 1313792 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2018-07-24 06:29:28 F9F3C19B1029BB7C63EF478D4A237941 953344 ----a-w- C:\Windows\SysWOW64\gpedit.dll
2018-07-24 06:29:28 F58B62BFD8C64F860FB2365FCF5CA375 3405824 ----a-w- C:\Windows\SysWOW64\xpsrchvw.exe
2018-07-24 06:29:28 F4B6F8839170EDF9FD65B0745E3638B5 36352 ----a-w- C:\Windows\SysWOW64\cryptbase.dll
2018-07-24 06:29:28 F112E8D8B5EF4F6AE02DCE3E062C0CBD 696320 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2018-07-24 06:29:28 E419FE2098168F7CEA2A233EA81674F3 428032 ----a-w- C:\Windows\SysWOW64\wlanmsm.dll
2018-07-24 06:29:28 E14FC4B37C6DFDCAFB4EA349D9D66EAB 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll
2018-07-24 06:29:28 CFD3330A45D8C292C4C6DE89325A57F1 18944 ----a-w- C:\Windows\SysWOW64\wfapigp.dll
2018-07-24 06:29:28 CB10DC5D6E2D8FFB6290303DF3BC9875 65880 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-07-24 06:29:28 C648901695E275C8F2AD04B687A68CE2 45056 ----a-w- C:\Windows\SysWOW64\rundll32.exe
2018-07-24 06:29:28 C0ADC3DABA23072F8A7AA64ABE8AA9A6 61952 ----a-w- C:\Windows\SysWOW64\ntprint.exe
2018-07-24 06:29:28 B0B6C6F78E5FC9F90D7C7345E214A4C7 276992 ----a-w- C:\Windows\SysWOW64\wcncsvc.dll
2018-07-24 06:29:28 AF40FDAB98B0FF209632C3403DB6C39F 830464 ----a-w- C:\Windows\SysWOW64\msctf.dll
2018-07-24 06:29:28 8F16118E9C9EAB9237FC8FC57BA9165F 10240 ----a-w- C:\Windows\SysWOW64\dciman32.dll
2018-07-24 06:29:28 6B47A9ECFBA6A3775B36780FAF5D533E 50688 ----a-w- C:\Windows\SysWOW64\appidapi.dll
2018-07-24 06:29:28 585987A92FDD082A032CCE1FBF654D22 309760 ----a-w- C:\Windows\SysWOW64\actxprxy.dll
2018-07-24 06:29:28 48B8FD7C090A8B8EC47BF7A9AF8B954B 475648 ----a-w- C:\Windows\SysWOW64\msxbde40.dll
2018-07-24 06:29:28 47E0F093BA5B11C13362740F30D2D9EE 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-07-24 06:29:28 47B6897054A76E8F56718DEEFB2B2737 67584 ----a-w- C:\Windows\SysWOW64\asycfilt.dll
2018-07-24 06:29:28 4481672EB5DECBC35D6BC77410277897 254464 ----a-w- C:\Windows\SysWOW64\schannel.dll
2018-07-24 06:29:28 414E182C926F903360B6726EC160C0A6 498176 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2018-07-24 06:29:28 411D8E3A2B55B9A2873C884A5743F88F 304640 ----a-w- C:\Windows\SysWOW64\taskcomp.dll
2018-07-24 06:29:28 3BD3BEFFA4348B8B5F8320EDABD6B3C8 523776 ----a-w- C:\Windows\SysWOW64\hhctrl.ocx
2018-07-24 06:29:28 3B58E0C9ABC280044ADB770F52C4622D 130048 ----a-w- C:\Windows\SysWOW64\occache.dll
2018-07-24 06:29:28 3964B9FF1C2AFDB5E61B17E66CF8BAF9 8192 ----a-w- C:\Windows\SysWOW64\iprtprio.dll
2018-07-24 06:29:28 38A6B70D44AF764307F7B8964DE205A2 174080 ----a-w- C:\Windows\SysWOW64\wuwebv.dll
2018-07-24 06:29:28 351F369731B85DFF224115B3A751F852 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll
2018-07-24 06:29:28 3433D2B85A2A325509BF85707D2611EA 13824 ----a-w- C:\Windows\SysWOW64\wshqos.dll
2018-07-24 06:29:28 2C7FC26E90C858C793226A6D18F1D68A 139776 ----a-w- C:\Windows\SysWOW64\PeerDist.dll
2018-07-24 06:29:28 29F8B58C22BD2F97EC2E8F0B87CF631C 1499648 ----a-w- C:\Windows\SysWOW64\ExplorerFrame.dll
2018-07-24 06:29:28 13FDF0CBACAF55BEAFF80F943EE3AAC8 1806848 ----a-w- C:\Windows\SysWOW64\authui.dll
2018-07-24 06:29:28 1107555801A14488CAFA1831D54CC821 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll
2018-07-24 06:29:28 0BDA99A6A2FB8AF0C4BD40541F659A7F 279040 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2018-07-24 06:29:27 B73966CFD747762F93CC27DF6544BC50 2060288 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2018-07-24 06:29:27 6A25198AA332CA656BD76B03D7B29F03 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
2018-07-24 06:29:27 638DEF534C723534A0048AD1AA4F7C2D 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2018-07-24 06:29:27 24FF25A3D32E8B0C1D640DADBA81DC66 20286464 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2018-07-24 06:29:27 071F0D72D938DE283AEBBB0CD0E95200 2295296 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2018-07-24 06:29:26 25AA0C561E288AE52D3E97E3997A506A 12880384 ----a-w- C:\Windows\SysWOW64\shell32.dll
2018-07-24 06:29:25 FB8032DFBE22B7C48AC9A4EC2FEAE3F1 134656 ----a-w- C:\Windows\SysWOW64\WinSCard.dll
2018-07-24 06:29:25 F9CAB9D2E5BF1D9C8B01CC59C9F4F51C 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2018-07-24 06:29:25 F92D1A5B21D241D789E2541208621EBA 4050624 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
2018-07-24 06:29:25 EAD9FBA82C6A66FBD088E9CCB8480C57 303104 ----a-w- C:\Windows\SysWOW64\mmcbase.dll
2018-07-24 06:29:25 E597131CF7FCF899C77947641296AD7E 662016 ----a-w- C:\Windows\SysWOW64\jscript.dll
2018-07-24 06:29:25 E53022747443FC3E8A69C7858E7248A0 918296 ----a-w- C:\Windows\SysWOW64\ucrtbase.dll
2018-07-24 06:29:25 E174722F442E9FA3EAB830357A10A913 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll
2018-07-24 06:29:25 E097B097231DF2C03F6B5083092A6F95 70144 ----a-w- C:\Windows\SysWOW64\TSpkg.dll
2018-07-24 06:29:25 DB1917A860BB61D48AD3459DF441B34B 25600 ----a-w- C:\Windows\SysWOW64\lpk.dll
2018-07-24 06:29:25 D133305F1B700163CCF242FE9868B076 52224 ----a-w- C:\Windows\SysWOW64\wsnmp32.dll
2018-07-24 06:29:25 CAF62939BCD04EA799C53BBEC4486EFC 106496 ----a-w- C:\Windows\SysWOW64\cryptnet.dll
2018-07-24 06:29:25 C4FADD724DA8B6E958B92DE6692DFD3E 463360 ----a-w- C:\Windows\SysWOW64\FirewallAPI.dll
2018-07-24 06:29:25 C043A37A5E9DFFE7BA69A52A19D9A063 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll
2018-07-24 06:29:25 B505FA46BAB4FA1D6E4141FF1D8ED7C1 487936 ----a-w- C:\Windows\SysWOW64\catsrvut.dll
2018-07-24 06:29:25 AC157A35A63CBBC28A3729D5D3FBE66A 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2018-07-24 06:29:25 A036E55D6B443FF53E79AD82550D6993 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll
2018-07-24 06:29:25 9392CD363C6FE0CC6EFC927903F85845 216576 ----a-w- C:\Windows\SysWOW64\FWPUCLNT.DLL
2018-07-24 06:29:25 8E91E0F429D18017ED00F096EE8CE994 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll
2018-07-24 06:29:25 8C706932FCE03C8C5C79DE879037E4DD 1314072 ----a-w- C:\Windows\SysWOW64\ntdll.dll
2018-07-24 06:29:25 841D64BF6AE3EF0013EBCA020810BFE2 141312 ----a-w- C:\Windows\SysWOW64\rpchttp.dll
2018-07-24 06:29:25 8350EEB762B80BD9D80B650BA2609344 308224 ----a-w- C:\Windows\SysWOW64\scesrv.dll
2018-07-24 06:29:25 7D9EE3EA2210D64FBB5979C71F19736B 179200 ----a-w- C:\Windows\SysWOW64\wintrust.dll
2018-07-24 06:29:25 7B72D697D37D80D156C869A306AF4EA3 73216 ----a-w- C:\Windows\SysWOW64\tdc.ocx
2018-07-24 06:29:25 310D798E3DEAA0EB33E1F4F2B66749F4 261120 ----a-w- C:\Windows\SysWOW64\msv1_0.dll
2018-07-24 06:29:25 2F3887E33B087C86EE71C8D88B4C32D9 337408 ----a-w- C:\Windows\SysWOW64\msihnd.dll
2018-07-24 06:29:25 296E6705C2C898865F85A56F9B056A5D 309440 ----a-w- C:\Windows\SysWOW64\atmfd.dll
2018-07-24 06:29:25 27607C3219A98ADECDB355628D48E17B 145920 ----a-w- C:\Windows\SysWOW64\cryptsvc.dll
2018-07-24 06:29:25 1A196E43301519920A4C8A98DD73AB49 271360 ----a-w- C:\Windows\SysWOW64\iprtrmgr.dll
2018-07-24 06:29:25 0BBFF8141438C1AD9E8B8108E4828F50 666624 ----a-w- C:\Windows\SysWOW64\nshwfp.dll
2018-07-24 06:29:25 06983C58F6D1CAE00A72CE5091715C79 73216 ----a-w- C:\Windows\SysWOW64\msiexec.exe
2018-07-24 06:29:25 02814474C497130152E6C5D1F6F36D95 52224 ----a-w- C:\Windows\SysWOW64\nlaapi.dll
2018-07-24 06:29:24 EB9A60C605137C204C01116B9C26F693 13680128 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2018-07-24 06:29:24 5733F1CB6F4EDB64B10664EB5C0C9C47 416256 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2018-07-24 06:29:24 179882638338C54703CC695A63D6B3D3 476160 ----a-w- C:\Windows\SysWOW64\ieui.dll
2018-07-24 06:29:23 8594BD814DAFE7476C73FF20444C8A80 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll
2018-07-24 06:29:23 49EFFD4C26029ABC5744078AB5BB1FAE 4496384 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2018-07-24 06:29:23 1BD1A7ED0EAC57B4B2C02BD81E535A09 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll
2018-07-24 06:29:22 FBE7918B0CF71FCB71478971A1DD7134 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll
2018-07-24 06:29:22 E069A3B525828F055D9BF71A1B3DBC1E 312832 ----a-w- C:\Windows\SysWOW64\gdi32.dll
2018-07-24 06:29:22 C9D6D5A1C281BB93A3237F9059ECF2B2 2365952 ----a-w- C:\Windows\SysWOW64\msi.dll
2018-07-24 06:29:22 C1A06699B139B51804579ACD107C19A0 481792 ----a-w- C:\Windows\SysWOW64\mscms.dll
2018-07-24 06:29:22 9A302F3036CB2CE62837D035444FF1DD 741888 ----a-w- C:\Windows\SysWOW64\inetcomm.dll
2018-07-24 06:29:22 93DE30FA0FA2E0BD31D099CC7FDD2460 1241600 ----a-w- C:\Windows\SysWOW64\comsvcs.dll
2018-07-24 06:29:22 55B6D1A0293AC4CAB6FDC46887F869F8 341504 ----a-w- C:\Windows\SysWOW64\html.iec
2018-07-24 06:29:22 3D3C1F0BE3644B6C1D728D4970C07DD0 2767872 ----a-w- C:\Windows\SysWOW64\wininet.dll
2018-07-24 06:29:22 2F929C103155EE98EFB649FE9AF21740 271360 ----a-w- C:\Windows\SysWOW64\Wldap32.dll
2018-07-24 06:29:22 1E38AEB134500A43DB7D4E4EA6F49B85 351744 ----a-w- C:\Windows\SysWOW64\winhttp.dll
2018-07-24 06:29:21 ED03B8BFE1AF6039304814AED8A675B2 3962048 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
2018-07-24 06:29:20 E1D94AE90FEF0AAA0D2C0582651AF372 582144 ----a-w- C:\Windows\SysWOW64\oleaut32.dll
2018-07-24 06:29:20 D99D2588AB30658287818CF6778E5261 25088 ----a-w- C:\Windows\SysWOW64\msimsg.dll
2018-07-24 06:29:20 C8C5D6F1B47CB63DAC39FD3D35B888E1 237056 ----a-w- C:\Windows\SysWOW64\pdh.dll
2018-07-24 06:29:20 BE2F9603030393367735B0279A78E495 644096 ----a-w- C:\Windows\SysWOW64\advapi32.dll
2018-07-24 06:29:20 4EB42FA4DC131C86B3BF429CAE8D5E8F 554496 ----a-w- C:\Windows\SysWOW64\kerberos.dll
2018-07-24 06:29:20 3BE82330701A81F0F9857A1A9FC7AAC7 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll
2018-07-24 06:29:20 2F872A04443BD29C380DAE1A4693AFB2 1417728 ----a-w- C:\Windows\SysWOW64\ole32.dll
2018-07-24 06:29:20 2B7401DB11654B3C50D8E5C39C620606 666112 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll
2018-07-24 06:29:20 27D66C4E06281DA3B0644B1BAA9DDAC8 782848 ----a-w- C:\Windows\SysWOW64\webservices.dll
2018-07-24 06:29:20 0A56461A2E07C0E4CB80492B3795E7B0 1176576 ----a-w- C:\Windows\SysWOW64\crypt32.dll
2018-07-24 06:29:14 F8C7346CE9939F2E67887E2300F25694 629760 ----a-w- C:\Windows\SysWOW64\usp10.dll
2018-07-24 06:29:14 F31B13F9591F1350892BB4BFECFAA1C4 215040 ----a-w- C:\Windows\SysWOW64\icm32.dll
2018-07-24 06:29:14 ECE9B3300C87CA315D22D5132F2A64D7 50688 ----a-w- C:\Windows\SysWOW64\ndptsp.tsp
2018-07-24 06:29:14 EB3C5DF7C68432A78D01FEF449183DE4 84992 ----a-w- C:\Windows\SysWOW64\hlink.dll
2018-07-24 06:29:14 C2E787F8373A8287B06ECFA373B88CC2 1251328 ----a-w- C:\Windows\SysWOW64\DWrite.dll
2018-07-24 06:29:14 BA391DDC881CE3C30A42B1A7E7AE2908 111616 ----a-w- C:\Windows\SysWOW64\t2embed.dll
2018-07-24 06:29:14 A6949E802060E20D3B6BB0E39AD7378B 115200 ----a-w- C:\Windows\SysWOW64\rtm.dll
2018-07-24 06:29:14 A4CFBA9772F2D54F466771AFABCB7A22 34304 ----a-w- C:\Windows\SysWOW64\atmlib.dll
2018-07-24 06:29:14 9200B9BBA562D4969EC135A3B7F59EA9 38912 ----a-w- C:\Windows\SysWOW64\kmddsp.tsp
2018-07-24 06:29:14 45562FDC64E30695C97D0C98863A1FC8 71680 ----a-w- C:\Windows\SysWOW64\fontsub.dll
2018-07-24 06:29:14 0DF768001BB6B2191E475F5DC0EC6328 303616 ----a-w- C:\Windows\SysWOW64\msinfo32.exe
2018-07-24 06:29:13 DE4466627EEA8FB832015A12960D6FB1 40960 ----a-w- C:\Windows\SysWOW64\sdchange.exe
2018-07-24 06:29:13 C815C7A3371054ED45426FC7BF439701 108032 ----a-w- C:\Windows\SysWOW64\msra.exe
2018-07-24 06:29:13 802FCE56C31D9400F857D818746B70FE 26624 ----a-w- C:\Windows\SysWOW64\netbtugc.exe
2018-07-24 06:29:13 71C8F44D3323EF92EC39A4D6013C60E8 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll
2018-07-24 06:29:13 690094D4EA6E25405DC737B7BAAB382F 81408 ----a-w- C:\Windows\SysWOW64\rascfg.dll
2018-07-24 06:29:13 5A8D4FB46CD8CA305197B4B2B4E3118B 690688 ----a-w- C:\Windows\SysWOW64\adtschema.dll
2018-07-24 06:29:13 54E453BA0809EA822E703DDB8A799670 162304 ----a-w- C:\Windows\SysWOW64\ncsi.dll
2018-07-24 06:29:13 4A35D7B172AFF9C6B362D7297568836A 269824 ----a-w- C:\Windows\SysWOW64\dnsapi.dll
2018-07-24 06:29:13 2E89C71A89DBB79E7B2D4C8022CC870C 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll
2018-07-24 06:29:13 04A7545E4C8FE10918AE92DF92307CA1 61952 ----a-w- C:\Windows\SysWOW64\rasdiag.dll
2018-07-24 06:29:11 D9800BFB545D192CF19930014045CA70 30720 ----a-w- C:\Windows\SysWOW64\dnscacheugc.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2018-07-24 08:45:26 DFACE0E54E6F3FA1DC0092B6B16F390C 4296704 ----a-w- C:\Windows\Sysnative\D3DCompiler_47.dll
2018-07-24 06:29:44 F28BA5D926706E817FBBDE6A646BF184 140992 ----a-w- C:\Windows\Sysnative\CompatTelRunner.exe
2018-07-24 06:29:44 C6D099A97030F551D9339549CAC9E64F 246272 ----a-w- C:\Windows\Sysnative\aepic.dll
2018-07-24 06:29:44 A951597908E55D34E64BF0F801272C49 2860032 ----a-w- C:\Windows\Sysnative\aitstatic.exe
2018-07-24 06:29:44 6A8491A066FD55EC24DE34B23208DE2F 470016 ----a-w- C:\Windows\Sysnative\centel.dll
2018-07-24 06:29:44 5B0D66A15245E0F0394A3F0605BB2056 443392 ----a-w- C:\Windows\Sysnative\invagent.dll
2018-07-24 06:29:43 EBDB52C995E3915EA4159FDCD92F45B2 783872 ----a-w- C:\Windows\Sysnative\generaltel.dll
2018-07-24 06:29:43 E0E860556906246367CBF595DF5905A1 680960 ----a-w- C:\Windows\Sysnative\aeinv.dll
2018-07-24 06:29:43 B4F45446416C85DA7F099E42F9F9F907 612352 ----a-w- C:\Windows\Sysnative\devinv.dll
2018-07-24 06:29:43 8E5D58AA60B350C69BED3476937899CF 301056 ----a-w- C:\Windows\Sysnative\acmigration.dll
2018-07-24 06:29:43 17147053A522FA230B4744E15A465B1B 1602048 ----a-w- C:\Windows\Sysnative\appraiser.dll
2018-07-24 06:29:35 F5F31DC3B928073274BCDF7B4D4136F9 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-environment-l1-1-0.dll
2018-07-24 06:29:35 97741740B1831234D80ED912F8B9A964 91368 ----a-w- C:\Windows\Sysnative\MigAutoPlay.exe
2018-07-24 06:29:35 1BF2AF4DEB96801EDFDE04A763EA4028 14168 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-time-l1-1-0.dll
2018-07-24 06:29:35 1A3292019AF01D7A6ED8BC52686840E6 17752 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-string-l1-1-0.dll
2018-07-24 06:29:34 FF6E04A942AB95C3CAD6C111B730102E 2058240 ----a-w- C:\Windows\Sysnative\Query.dll
2018-07-24 06:29:34 FD374A7F3079A4F7D96B4C8A1E71B1A3 20824 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-math-l1-1-0.dll
2018-07-24 06:29:34 FCFB6405CF54D78C5BAA81A66802918C 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-utility-l1-1-0.dll
2018-07-24 06:29:34 F90898CEFAAF450857C3C6A7EB08DB42 103936 ----a-w- C:\Windows\Sysnative\resmon.exe
2018-07-24 06:29:34 F5D4EF8A0C33CBF321DD51ABAFD5FFB2 15704 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-convert-l1-1-0.dll
2018-07-24 06:29:34 E8E4E71C396E184A65E3E46112825985 288256 ----a-w- C:\Windows\Sysnative\mssphtb.dll
2018-07-24 06:29:34 DBB0E88A94589792069DB5DECC9D5D60 58880 ----a-w- C:\Windows\Sysnative\pdhui.dll
2018-07-24 06:29:34 D3252C57563DEEF1D9E257FB17577690 53248 ----a-w- C:\Windows\Sysnative\hhsetup.dll
2018-07-24 06:29:34 D263B7CE85EFDC007C40AABCA5ACB255 17752 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-24 06:29:34 B4B63F1D78B3DF2EFA57192F3329D202 9728 ----a-w- C:\Windows\Sysnative\iprtprio.dll
2018-07-24 06:29:34 9FFDF8425078B97D31DF095AE0BA2A43 48640 ----a-w- C:\Windows\Sysnative\wpnpinst.exe
2018-07-24 06:29:34 9A2F550B05720F69592A66EE9733E1E1 5120 ----a-w- C:\Windows\Sysnative\msdxm.ocx
2018-07-24 06:29:34 9A2F550B05720F69592A66EE9733E1E1 5120 ----a-w- C:\Windows\Sysnative\dxmasf.dll
2018-07-24 06:29:34 9600008630390E2209199E7791185075 12632 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-process-l1-1-0.dll
2018-07-24 06:29:34 934FEAED29730C6F894872EEA7577A80 128512 ----a-w- C:\Windows\Sysnative\IcCoinstall.dll
2018-07-24 06:29:34 861A2FD3AFB4557BA49A6D60A02C39BF 13656 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-24 06:29:34 842CA37133BE98BE81EE569F8BA6D2AD 9216 ----a-w- C:\Windows\Sysnative\plasrv.exe
2018-07-24 06:29:34 8003D39B386EDCCFB08DC21AACC0683A 559616 ----a-w- C:\Windows\Sysnative\spoolsv.exe
2018-07-24 06:29:34 7DF8B500AE98DE6CD677C15FC653F47D 9728 ----a-w- C:\Windows\Sysnative\spwmp.dll
2018-07-24 06:29:34 730153373C28F016B84D7F717775954D 25600 ----a-w- C:\Windows\Sysnative\winnsi.dll
2018-07-24 06:29:34 72EBE4E993A0EA5BEEB25A71F36A7E5F 131072 ----a-w- C:\Windows\Sysnative\mmcshext.dll
2018-07-24 06:29:34 71340AB9EA9678E8C095E8C6DA06563E 194048 ----a-w- C:\Windows\Sysnative\itircl.dll
2018-07-24 06:29:34 6A0A2D8C5C9CA9826930872602472195 11264 ----a-w- C:\Windows\Sysnative\msmmsp.dll
2018-07-24 06:29:34 64EECB4CE99C99B1136F88A17AD8EF58 22528 ----a-w- C:\Windows\Sysnative\inetppui.dll
2018-07-24 06:29:34 54F104E6825A8B82E3552BA060D2C0CF 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2018-07-24 06:29:34 54C942A045F24C63DB6C49DD9618984F 594432 ----a-w- C:\Windows\Sysnative\wvc.dll
2018-07-24 06:29:34 4BB23FCE63D49211BB520D368E1FDD3F 34304 ----a-w- C:\Windows\Sysnative\werdiagcontroller.dll
2018-07-24 06:29:34 471FA523AFE0C531052190789916AD91 1133568 ----a-w- C:\Windows\Sysnative\cdosys.dll
2018-07-24 06:29:34 34B55B7F3479B1C1AD4F109614F29D19 170496 ----a-w- C:\Windows\Sysnative\itss.dll
2018-07-24 06:29:34 34450D8B9F8638E486F92780D5728D07 473600 ----a-w- C:\Windows\Sysnative\taskcomp.dll
2018-07-24 06:29:34 2E33759FA0983CCEF45621AE716205B0 26112 ----a-w- C:\Windows\Sysnative\oleres.dll
2018-07-24 06:29:34 2C653B6993E3C9C6C7138802E6FAFAC4 12288 ----a-w- C:\Windows\Sysnative\wu.upgrade.ps.dll
2018-07-24 06:29:34 21F7875DF5DD6FB0C1B961B40336129D 113664 ----a-w- C:\Windows\Sysnative\SearchFilterHost.exe
2018-07-24 06:29:34 21AB8A6F559D1E49C8FFA3CDAF037839 12640 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-conio-l1-1-0.dll
2018-07-24 06:29:34 1B923D7B425EE35CC865715E8FF2B920 16216 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-24 06:29:34 17AA424DAD67E33C231241A7AB0EFF07 75264 ----a-w- C:\Windows\Sysnative\msscntrs.dll
2018-07-24 06:29:34 158E32C297632CA1733A31FC3917DD6C 14336 ----a-w- C:\Windows\Sysnative\msshooks.dll
2018-07-24 06:29:34 156DA44DE8586202CD7BADDA883B5994 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-heap-l1-1-0.dll
2018-07-24 06:29:34 13669EF8AE3C36E077BBCDA1EF6CE30C 19288 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-24 06:29:34 10C18EE8EB974E9F6382917AD3CD7D11 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-locale-l1-1-0.dll
2018-07-24 06:29:34 08A13AC17CBDC76276370DA5D5F20060 369664 ----a-w- C:\Windows\Sysnative\zipfldr.dll
2018-07-24 06:29:33 DC4EEBF548FDF3DDD6A3A7AD4293A61B 2851328 ----a-w- C:\Windows\Sysnative\themeui.dll
2018-07-24 06:29:33 C8584E8773E541BAC251CAA92DEBCE7D 491520 ----a-w- C:\Windows\Sysnative\mssph.dll
2018-07-24 06:29:33 C5AA76BE7645EECE0C34562FA96C7B38 13312 ----a-w- C:\Windows\Sysnative\nsi.dll
2018-07-24 06:29:33 C2D848F56293ED04C730D75AF0F64233 115200 ----a-w- C:\Windows\Sysnative\mssitlb.dll
2018-07-24 06:29:33 A42CC1EA7DE02E77B8F610C9DB4688EB 463872 ----a-w- C:\Windows\Sysnative\certcli.dll
2018-07-24 06:29:33 9A9174065781052CF8822E13FA105738 591872 ----a-w- C:\Windows\Sysnative\SearchIndexer.exe
2018-07-24 06:29:33 92CD3565621335BC1432850B0AE5C012 419840 ----a-w- C:\Windows\Sysnative\KernelBase.dll
2018-07-24 06:29:33 8EECC364ABE9ABA05AFB7B3E26C91F37 50176 ----a-w- C:\Windows\Sysnative\srclient.dll
2018-07-24 06:29:33 89B1F9A2A9A872906C113803CA3B0361 2319872 ----a-w- C:\Windows\Sysnative\tquery.dll
2018-07-24 06:29:33 7B828D19E030EB29232AB923DDCE9BBF 24576 ----a-w- C:\Windows\Sysnative\WcnEapPeerProxy.dll
2018-07-24 06:29:33 7A65B9A545133941EBF23A6E06A6CE1F 8704 ----a-w- C:\Windows\Sysnative\comcat.dll
2018-07-24 06:29:33 7770E03C9DC6FDA3549932D1BBB9C2FE 296960 ----a-w- C:\Windows\Sysnative\rstrui.exe
2018-07-24 06:29:33 61151E4E079FCA5601CCD05ADFE93064 13312 ----a-w- C:\Windows\Sysnative\wshnetbs.dll
2018-07-24 06:29:33 5CEFEDE17307B080125D16FBA2125602 37888 ----a-w- C:\Windows\Sysnative\wuapp.exe
2018-07-24 06:29:33 3A5A8A94B88C8FD0D8819F82136A5F8A 249856 ----a-w- C:\Windows\Sysnative\SearchProtocolHost.exe
2018-07-24 06:29:33 0BDEF8EAE185FFC435023217347C6E31 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll
2018-07-24 06:29:33 0B172766B1E78AEBCA583713A850FFF8 63488 ----a-w- C:\Windows\Sysnative\setbcdlocale.dll
2018-07-24 06:29:32 F9B0D652B2934AB8EC64DD26CB7601C6 211968 ----a-w- C:\Windows\Sysnative\cic.dll
2018-07-24 06:29:32 F99E94CEF9DB4A0D269870DBA1E0A0DC 101376 ----a-w- C:\Windows\Sysnative\fdWCN.dll
2018-07-24 06:29:32 F97C397CE4778CA49F105463FB6BD287 85504 ----a-w- C:\Windows\Sysnative\asycfilt.dll
2018-07-24 06:29:32 F88906103EE31C7B5FE0C489452F72FC 1163264 ----a-w- C:\Windows\Sysnative\kernel32.dll
2018-07-24 06:29:32 F625EA4C3102411C52F5D9AF4559174B 61952 ----a-w- C:\Windows\Sysnative\ntprint.exe
2018-07-24 06:29:32 E5A1E7B40B5086E643705B2D85A139C4 1110528 ----a-w- C:\Windows\Sysnative\schedsvc.dll
2018-07-24 06:29:32 E282BB751CD40C38FD8D3B93C6CEDAE3 22016 ----a-w- C:\Windows\Sysnative\credssp.dll
2018-07-24 06:29:32 D9800890FAF5723DCA476FA6A762DE4B 63832 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-private-l1-1-0.dll
2018-07-24 06:29:32 D682E67712CCF3E6D297D915A420AB1B 16896 ----a-w- C:\Windows\Sysnative\wshqos.dll
2018-07-24 06:29:32 D258DBCB124F0B06951A80C58276EF46 346112 ----a-w- C:\Windows\Sysnative\ntprint.dll
2018-07-24 06:29:32 BEEF124AE870E5DE7F0DDC7C68DF8F76 2048 ----a-w- C:\Windows\Sysnative\mferror.dll
2018-07-24 06:29:32 BBBFA70DDA53A309701E44B5948C8FDA 24064 ----a-w- C:\Windows\Sysnative\WcnEapAuthProxy.dll
2018-07-24 06:29:32 98C74D7C3D6FFA2851E485FE91C2C695 17920 ----a-w- C:\Windows\Sysnative\appidcertstorecheck.exe
2018-07-24 06:29:32 96AA4C72100C0C1731783A5BB5430713 51712 ----a-w- C:\Windows\Sysnative\vmictimeprovider.dll
2018-07-24 06:29:32 92A3CD6057E9F44AA645341E6D717BEF 172544 ----a-w- C:\Windows\Sysnative\perfmon.exe
2018-07-24 06:29:32 8E15963FF62A61EA58A7D5EB1845542B 701952 ----a-w- C:\Windows\Sysnative\hhctrl.ocx
2018-07-24 06:29:32 89765E5A616A11A0B78E015F88563D60 50688 ----a-w- C:\Windows\Sysnative\wermgr.exe
2018-07-24 06:29:32 814754FE14D1D97D5D565746E1AD458E 210432 ----a-w- C:\Windows\Sysnative\wdigest.dll
2018-07-24 06:29:32 80AD73B817FFDB549F3CDC2E6A160A2C 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll
2018-07-24 06:29:32 7FEBFC27067BE03D7CECDE09AFFAF2A8 93696 ----a-w- C:\Windows\Sysnative\mfmjpegdec.dll
2018-07-24 06:29:32 668B9EFF5CCA4542F435D2CD9CE3C778 26112 ----a-w- C:\Windows\Sysnative\nsisvc.dll
2018-07-24 06:29:32 5B12DFB01574840526AD244E24BCE692 170176 ----a-w- C:\Windows\Sysnative\basecsp.dll
2018-07-24 06:29:32 55733700CBB49AE48379A38FDFCAB8AD 215552 ----a-w- C:\Windows\Sysnative\winsrv.dll
2018-07-24 06:29:32 296D4475DF8458A8E4DDA8842D37DD2F 2048 ----a-w- C:\Windows\Sysnative\msxml6r.dll
2018-07-24 06:29:32 24F1EE7FBCA5999F164CDAF5034519EB 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe
2018-07-24 06:29:32 2067F48D026667923B7BC7184E0D234C 757248 ----a-w- C:\Windows\Sysnative\win32spl.dll
2018-07-24 06:29:32 1EC28916E6C098DEF52EE49D98E4D4CE 7168 ----a-w- C:\Windows\Sysnative\MsraLegacy.tlb
2018-07-24 06:29:32 1DD375A8607A64F53406607195A5BA32 166400 ----a-w- C:\Windows\Sysnative\inetpp.dll
2018-07-24 06:29:32 1BE23B677B6A2631557FB56EA72D0E74 475136 ----a-w- C:\Windows\Sysnative\sysmon.ocx
2018-07-24 06:29:32 19A5175A3D5E386FC3201C4F4B2F8EA1 264704 ----a-w- C:\Windows\Sysnative\P2P.dll
2018-07-24 06:29:32 15F5FC11B490D77AA6A389F7F48530AF 116224 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe
2018-07-24 06:29:32 0396C80CC7120379B2CF5A1A4CBF7CF8 37888 ----a-w- C:\Windows\Sysnative\wups2.dll
2018-07-24 06:29:32 0301EEE83B03229F555C6F8025FB5540 97792 ----a-w- C:\Windows\Sysnative\mprdim.dll
2018-07-24 06:29:32 007665F8DE4B18F82CEC63313F8ADCD2 2144256 ----a-w- C:\Windows\Sysnative\mmc.exe
2018-07-24 06:29:31 E79487826558CC5C43E3F1779CC9D87F 484864 ----a-w- C:\Windows\Sysnative\StructuredQuery.dll
2018-07-24 06:29:31 D11DB8D23EC381BC7B774B5EF7088FF6 140288 ----a-w- C:\Windows\Sysnative\wuauclt.exe
2018-07-24 06:29:31 C70ED53A31477F76600A6BC58753FBBE 709120 ----a-w- C:\Windows\Sysnative\wuapi.dll
2018-07-24 06:29:31 B59C2D5D0F8EE9B287EA31702D291281 778240 ----a-w- C:\Windows\Sysnative\mssvp.dll
2018-07-24 06:29:31 B37049F67D49A88EA7D74E74D00DF6C6 2222080 ----a-w- C:\Windows\Sysnative\mssrch.dll
2018-07-24 06:29:31 AA732CFC19AFC581020FB9FDBF1B8F93 1143296 ----a-w- C:\Windows\Sysnative\DXPTaskRingtone.dll
2018-07-24 06:29:31 9227B8390D601DE8F0423ECD0A60EA57 503808 ----a-w- C:\Windows\Sysnative\srcore.dll
2018-07-24 06:29:31 7085531CD4D020257CEC121317415433 728064 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2018-07-24 06:29:31 1E229A071AA54F1FF4C2FB9D44EEB2B8 107520 ----a-w- C:\Windows\Sysnative\inseng.dll
2018-07-24 06:29:30 FFE6670F3E359484E6B62841203571E0 1574912 ----a-w- C:\Windows\Sysnative\quartz.dll
2018-07-24 06:29:30 627D80A5F4604E5623BF647C27596B69 971776 ----a-w- C:\Windows\Sysnative\localspl.dll
2018-07-24 06:29:30 6129FB75F11062BA2A119E87621DEC14 2004480 ----a-w- C:\Windows\Sysnative\msxml6.dll
2018-07-24 06:29:29 E41DD12A023A54B071A55CEC3537904A 109568 ----a-w- C:\Windows\Sysnative\hlink.dll
2018-07-24 06:29:29 BE8C1B098C47FF68D9A590044389F9EF 345600 ----a-w- C:\Windows\Sysnative\schannel.dll
2018-07-24 06:29:29 BC5F8C5C7ACCD0B884FCB8B67616F537 1389056 ----a-w- C:\Windows\Sysnative\pla.dll
2018-07-24 06:29:29 B7B3C07D8EB33481BCFF3C075381A09B 338432 ----a-w- C:\Windows\Sysnative\conhost.exe
2018-07-24 06:29:29 72F42C96CE1982628CAA275F703C7FED 217600 ----a-w- C:\Windows\Sysnative\WinSCard.dll
2018-07-24 06:29:29 6F14CB391767A3BB45CE9AA5E36B8B15 486400 ----a-w- C:\Windows\Sysnative\wer.dll
2018-07-24 06:29:29 4190FD659E26999CE7E024475BFBBA41 3665920 ----a-w- C:\Windows\Sysnative\MSVidCtl.dll
2018-07-24 06:29:29 2B97029736390D5A34A90A0AD9AC8A62 404992 ----a-w- C:\Windows\Sysnative\wisptis.exe
2018-07-24 06:29:29 0D38C1ED3D068E8EBCBFFAED332F0032 1363456 ----a-w- C:\Windows\Sysnative\wdc.dll
2018-07-24 06:29:29 04476FEA865294E1B1CE9EC008F4D6DC 3203584 ----a-w- C:\Windows\Sysnative\mmcndmgr.dll
2018-07-24 06:29:28 F8DBB1C24F8FFBCA97E61ED06A8307F2 229376 ----a-w- C:\Windows\Sysnative\scksp.dll
2018-07-24 06:29:28 CB92C5DD2BF928BE2F7D893BAD9332D2 34816 ----a-w- C:\Windows\Sysnative\appidsvc.dll
2018-07-24 06:29:28 C3532E4A656E0B986E5674576031AFEF 504320 ----a-w- C:\Windows\Sysnative\msihnd.dll
2018-07-24 06:29:28 AAAC72FC092ED7245DABEAE48890EBC6 119296 ----a-w- C:\Windows\Sysnative\racpldlg.dll
2018-07-24 06:29:28 90FE38C6A8FE7EAA921DEBDEFBDDBAEF 98816 ----a-w- C:\Windows\Sysnative\wudriver.dll
2018-07-24 06:29:28 8886F053688EC10FE4858C3302266920 244224 ----a-w- C:\Windows\Sysnative\vmicsvc.exe
2018-07-24 06:29:28 79DB2B358BF0B152F15D1C5A525233BD 439296 ----a-w- C:\Windows\Sysnative\p2psvc.dll
2018-07-24 06:29:28 4CF5B8F1AF0A757B169795AA21070A6A 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2018-07-24 06:29:28 4377D5CD793F8F1DD698FF7A2639F5E8 148480 ----a-w- C:\Windows\Sysnative\appidpolicyconverter.exe
2018-07-24 06:29:28 414ED8500CAF9869BDD23296886878D7 120320 ----a-w- C:\Windows\Sysnative\WcnApi.dll
2018-07-24 06:29:28 396B9CC3BCC1BEADFAA6C1A6A5FA54D0 23744 ----a-w- C:\Windows\Sysnative\streamci.dll
2018-07-24 06:29:28 35050F01D00E7E72A2449EB6F9ABF8B4 40960 ----a-w- C:\Windows\Sysnative\WcsPlugInService.dll
2018-07-24 06:29:28 26E0462BFF018B9B2DC95B83B36A58F9 36864 ----a-w- C:\Windows\Sysnative\wups.dll
2018-07-24 06:29:28 21CA3FEC7A49BEE4CCC39BC59F5D2FA9 99840 ----a-w- C:\Windows\Sysnative\mssprxy.dll
2018-07-24 06:29:28 17AC9353D8BCDB0E4D978D0C0703B623 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll
2018-07-24 06:29:28 1197C7F741BF8AFC201D081C4FA59927 1032192 ----a-w- C:\Windows\Sysnative\rdpcore.dll
2018-07-24 06:29:28 0535EE6D57256EB96350E8C12B2887E9 2048 ----a-w- C:\Windows\Sysnative\tzres.dll
2018-07-24 06:29:27 F670C35EDE5F6B6E7624608C31710FA7 398376 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
2018-07-24 06:29:27 E30B11795F0E8600F6737D7DEB25D158 3165184 ----a-w- C:\Windows\Sysnative\wucltux.dll
2018-07-24 06:29:27 6AD64BB3B7183B64B73609CB093CDCB7 12574720 ----a-w- C:\Windows\Sysnative\wmploc.DLL
2018-07-24 06:29:27 691D953D90BB9552057CF82D86E8BF55 84480 ----a-w- C:\Windows\Sysnative\INETRES.dll
2018-07-24 06:29:27 28B0044D934B9D922B03C0330BC5C28C 1545216 ----a-w- C:\Windows\Sysnative\urlmon.dll
2018-07-24 06:29:27 1DD626FE4DE2D4B710DD1360F404A54F 71680 ----a-w- C:\Windows\Sysnative\PrintBrmUi.exe
2018-07-24 06:29:26 FFC84C824A0F2F36CEE385D64A4E0044 152064 ----a-w- C:\Windows\Sysnative\occache.dll
2018-07-24 06:29:26 EE896904F18B1DEA01A3762B2E662441 1867776 ----a-w- C:\Windows\Sysnative\ExplorerFrame.dll
2018-07-24 06:29:26 CF90304887A6D65641FA6AF70CD7D095 114368 ----a-w- C:\Windows\Sysnative\consent.exe
2018-07-24 06:29:26 8F8FE1115D56F601EBB707B353DA6030 961024 ----a-w- C:\Windows\Sysnative\actxprxy.dll
2018-07-24 06:29:26 734EBDB764E033B8E4E55898AED6CEB9 1942016 ----a-w- C:\Windows\Sysnative\authui.dll
2018-07-24 06:29:26 6ED680CF33CF6883F9F900D978A6E588 14635008 ----a-w- C:\Windows\Sysnative\wmp.dll
2018-07-24 06:29:26 0545A00F0E6E387A91BA59427AE1C6F7 1001984 ----a-w- C:\Windows\Sysnative\gpedit.dll
2018-07-24 06:29:25 E59C04C0681BB1EA90406254647DBA4D 44032 ----a-w- C:\Windows\Sysnative\csrsrv.dll
2018-07-24 06:29:25 DA4C42CE3913EC5B1471485CD232CC5A 28160 ----a-w- C:\Windows\Sysnative\secur32.dll
2018-07-24 06:29:25 D92C0D871FBA258CBF2126EABFE31447 70144 ----a-w- C:\Windows\Sysnative\appinfo.dll
2018-07-24 06:29:25 C36BB659F08F046B139C8D1B980BF1AC 46080 ----a-w- C:\Windows\Sysnative\rundll32.exe
2018-07-24 06:29:25 BF1BBA9F3C707FD6B2B07ADD6DB47E49 312320 ----a-w- C:\Windows\Sysnative\ncrypt.dll
2018-07-24 06:29:25 B7A23A91AD9CB04AF9E21CF775CCE775 30720 ----a-w- C:\Windows\Sysnative\lsass.exe
2018-07-24 06:29:25 B42CD13EEDF756570C490BC6B9CB44DD 14336 ----a-w- C:\Windows\Sysnative\dciman32.dll
2018-07-24 06:29:25 A64B7797CF2C49906B27376B64158871 13312 ----a-w- C:\Windows\Sysnative\sscore.dll
2018-07-24 06:29:25 A5979BDEE89F69E596437AA258BF9538 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll
2018-07-24 06:29:25 9D214A2727F3633C5EAF5E52658B0EBA 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll
2018-07-24 06:29:25 8F511C1E7347EF43FB5ECD7C748C4803 25088 ----a-w- C:\Windows\Sysnative\msimsg.dll
2018-07-24 06:29:25 7C7CB27E0025B9387C193DC10907F2D0 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll
2018-07-24 06:29:25 7715910112D44F7501F560995AB052F4 123904 ----a-w- C:\Windows\Sysnative\bcrypt.dll
2018-07-24 06:29:25 4CF347F478EE4CA538DE56B2772306A1 43520 ----a-w- C:\Windows\Sysnative\cryptbase.dll
2018-07-24 06:29:25 39599BF2945B67A36769DB69F3D63BCC 28672 ----a-w- C:\Windows\Sysnative\sspisrv.dll
2018-07-24 06:29:25 31C0F011CED277003021C12F31563996 113664 ----a-w- C:\Windows\Sysnative\wlanapi.dll
2018-07-24 06:29:25 1CD1341FCBEA8E5E057D555CA94C9B77 448512 ----a-w- C:\Windows\Sysnative\wlansec.dll
2018-07-24 06:29:25 15CF7B24AA64FE958CAEA00274838B1C 1741312 ----a-w- C:\Windows\Sysnative\sysmain.dll
2018-07-24 06:29:25 04841947C5F9A7E31EFB0914A056AD62 1068544 ----a-w- C:\Windows\Sysnative\msctf.dll
2018-07-24 06:29:25 042747AD32A51760D1C7F21A47BBF437 24576 ----a-w- C:\Windows\Sysnative\mfpmp.exe
2018-07-24 06:29:24 DC1BC5F2B1C54EA6725734BF4C0E5454 16384 ----a-w- C:\Windows\Sysnative\RdpGroupPolicyExtension.dll
2018-07-24 06:29:24 DB2EF7E6E4C76A32ACB777F71F10A79C 4834816 ----a-w- C:\Windows\Sysnative\xpsrchvw.exe
2018-07-24 06:29:24 CB2515803A8BBBDD7207A1F3CB554DC4 192512 ----a-w- C:\Windows\Sysnative\wuwebv.dll
2018-07-24 06:29:24 B8A2835643EB138B4081E50079353774 181760 ----a-w- C:\Windows\Sysnative\PeerDist.dll
2018-07-24 06:29:24 AD359C53941A6AC57FB935E7E9F1D16E 92160 ----a-w- C:\Windows\Sysnative\TabSvc.dll
2018-07-24 06:29:24 9B150E212F7905E08EC36977C38735B0 131584 ----a-w- C:\Windows\Sysnative\PeerDistWSDDiscoProv.dll
2018-07-24 06:29:24 99B4EC8C18D864213258FF96796A3F40 51200 ----a-w- C:\Windows\Sysnative\PeerDistHttpTrans.dll
2018-07-24 06:29:24 7F1A8D2D82F9B9AE61ADC986C5D4B457 91136 ----a-w- C:\Windows\Sysnative\WinSetupUI.dll
2018-07-24 06:29:24 7CFC917E6019DBABE474BC99E2BC3ADD 969216 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2018-07-24 06:29:24 79E3903FD75A22386326B542F17A2563 366592 ----a-w- C:\Windows\Sysnative\wcncsvc.dll
2018-07-24 06:29:24 64FB16C5849444F0CFD403C83D9579A1 327168 ----a-w- C:\Windows\Sysnative\pnrpsvc.dll
2018-07-24 06:29:24 634DCA9B1512DEDDADB4887116BFAECE 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll
2018-07-24 06:29:24 5BA6A8A4404B7B68999F6687404AB968 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
2018-07-24 06:29:24 42AEC5BC87A54240115A9230BF495F86 315392 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2018-07-24 06:29:24 369389F447AE7B741B06AAB66A10EED7 809472 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2018-07-24 06:29:24 307312447AD71ECC414B7B33E3006C57 95744 ----a-w- C:\Windows\Sysnative\rascfg.dll
2018-07-24 06:29:24 28BE388215DBA049A038F1E55FE92AF9 59904 ----a-w- C:\Windows\Sysnative\appidapi.dll
2018-07-24 06:29:23 E15CD986AEC0ABB5C6C03194F61C268B 2135552 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2018-07-24 06:29:23 C3C062499B700B9501E63D6D049CF982 2902016 ----a-w- C:\Windows\Sysnative\iertutil.dll
2018-07-24 06:29:23 9E42E092BC8336AF5F00CA9B56F45370 14185984 ----a-w- C:\Windows\Sysnative\shell32.dll
2018-07-24 06:29:23 7FA39F97E70048CF087AB8C5D201A680 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll
2018-07-24 06:29:23 468E317BD66B892DA9BF3097E5A3452F 355328 ----a-w- C:\Windows\Sysnative\mmcbase.dll
2018-07-24 06:29:23 4648043558C20D3D9E6CBE4B0A17EF4E 576512 ----a-w- C:\Windows\Sysnative\vbscript.dll
2018-07-24 06:29:23 0B739D33715DE42880F74EEEF9F26EFF 361984 ----a-w- C:\Windows\Sysnative\wow64win.dll
2018-07-24 06:29:22 E6499E0BFB97D128C0019F564AECA79B 749568 ----a-w- C:\Windows\Sysnative\FirewallAPI.dll
2018-07-24 06:29:22 BAD009A2A00ED9E793788EE3B8D29D13 70656 ----a-w- C:\Windows\Sysnative\nlaapi.dll
2018-07-24 06:29:22 B5D7A0638CA817BA7D8A4DFD3499BA2A 371392 ----a-w- C:\Windows\Sysnative\clfs.sys
2018-07-24 06:29:22 9984C87858BB977FD6DCD516BF8C5029 998912 ----a-w- C:\Windows\Sysnative\ucrtbase.dll
2018-07-24 06:29:22 85915F0BF5A7314A65B43602971ADFDC 525824 ----a-w- C:\Windows\Sysnative\catsrvut.dll
2018-07-24 06:29:22 7D789D1E8222877722A68B5EA0A8EB65 128512 ----a-w- C:\Windows\Sysnative\msiexec.exe
2018-07-24 06:29:22 77A0CB0FD36B1E3792504B437ED5AE82 87552 ----a-w- C:\Windows\Sysnative\tdc.ocx
2018-07-24 06:29:22 62379E30C5842B0751E84D99881A5C31 144384 ----a-w- C:\Windows\Sysnative\cdd.dll
2018-07-24 06:29:22 5AE580537C52D695EABE7612A670B07E 324096 ----a-w- C:\Windows\Sysnative\FWPUCLNT.DLL
2018-07-24 06:29:22 3A297EFFE6491B79525431B48DC24B3A 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2018-07-24 06:29:22 163184DBC77178B0A98D60F04EFE3518 842752 ----a-w- C:\Windows\Sysnative\nshwfp.dll
2018-07-24 06:29:21 D221688A4959B28955C23C840FD0BDB9 383680 ----a-w- C:\Windows\Sysnative\atmfd.dll
2018-07-24 06:29:21 C0EBC0C6894B8847C68D5719068E1A06 243712 ----a-w- C:\Windows\Sysnative\wow64.dll
2018-07-24 06:29:21 B7E822E262620F65B0D3DE97D0A0601C 112640 ----a-w- C:\Windows\Sysnative\smss.exe
2018-07-24 06:29:21 9BD47F0DFE540DDF3DE1DF1D9E06BD09 190464 ----a-w- C:\Windows\Sysnative\rpchttp.dll
2018-07-24 06:29:21 777D8C353728538DEF6AC017C6FF2778 281600 ----a-w- C:\Windows\Sysnative\iprtrmgr.dll
2018-07-24 06:29:21 42E2902255B1EC83E2481ACF542A8E69 1665344 ----a-w- C:\Windows\Sysnative\ntdll.dll
2018-07-24 06:29:21 0FC46C397FA85BE58BC1E1F46A2B026C 262336 ----a-w- C:\Windows\Sysnative\hal.dll
2018-07-24 06:29:20 F9B2FCFF14D866C9C6F27A041C364F9C 67072 ----a-w- C:\Windows\Sysnative\wsnmp32.dll
2018-07-24 06:29:20 EE5F8717CBCDB28A42A408D14B7ADB72 3181568 ----a-w- C:\Windows\Sysnative\rdpcorets.dll
2018-07-24 06:29:20 EC0550300E899BD69BDB5937E684D348 190976 ----a-w- C:\Windows\Sysnative\cryptsvc.dll
2018-07-24 06:29:20 E65118228501478C4630BC96F2E1C876 236032 ----a-w- C:\Windows\Sysnative\srvsvc.dll
2018-07-24 06:29:20 E3960944590EC8350C7049BC5ECC709D 414208 ----a-w- C:\Windows\Sysnative\wlanmsm.dll
2018-07-24 06:29:20 C59E17D5E30972ECA28A72004795AEA7 1361408 ----a-w- C:\Windows\Sysnative\PeerDistSvc.dll
2018-07-24 06:29:20 C45C167AEF19509C6C156C7D2CFE4AC0 118784 ----a-w- C:\Windows\Sysnative\wlanhlp.dll
2018-07-24 06:29:20 B1E26EFC437F19277403F8519946AFB6 41472 ----a-w- C:\Windows\Sysnative\lpk.dll
2018-07-24 06:29:20 AF043145FDA1CAB4362E49550237F498 206848 ----a-w- C:\Windows\Sysnative\mfps.dll
2018-07-24 06:29:20 AE3A1739F010CCE45B8B36B53EEFA7BF 243200 ----a-w- C:\Windows\Sysnative\rdpudd.dll
2018-07-24 06:29:20 AA81D975FEB65CD4D1817E3CD1AEE1A5 135680 ----a-w- C:\Windows\Sysnative\sspicli.dll
2018-07-24 06:29:20 A5599B0804E7FFC667259F4E31643C8C 141824 ----a-w- C:\Windows\Sysnative\cryptnet.dll
2018-07-24 06:29:20 9DFECE11850EF9679FE46017DF168CE2 55808 ----a-w- C:\Windows\Sysnative\rrinstaller.exe
2018-07-24 06:29:20 8AA244A59261BE7A3A3A4C4744A65F08 407040 ----a-w- C:\Windows\Sysnative\scesrv.dll
2018-07-24 06:29:20 8531E27ED3B7B89FBF2625CF25E6ACB0 229376 ----a-w- C:\Windows\Sysnative\wintrust.dll
2018-07-24 06:29:20 6A118B401CF3AB7F22B67029FC3A7F4F 22528 ----a-w- C:\Windows\Sysnative\icaapi.dll
2018-07-24 06:29:20 614E8B7CEE39C7AFC7695BB90B1EB1D8 316928 ----a-w- C:\Windows\Sysnative\msv1_0.dll
2018-07-24 06:29:20 43CCB07A71347064695B8852492DA126 512000 ----a-w- C:\Windows\Sysnative\rpcss.dll
2018-07-24 06:29:20 30646AB10A0981A1BBB1F95400E99C08 94208 ----a-w- C:\Windows\Sysnative\TSpkg.dll
2018-07-24 06:29:20 11D6A262B617130F7C16E308C12E0D41 455680 ----a-w- C:\Windows\Sysnative\winlogon.exe
2018-07-24 06:29:20 0A2E5059B5775E7DBBE05B8156ECE0C6 2651648 ----a-w- C:\Windows\Sysnative\wuaueng.dll
2018-07-24 06:29:19 E8A170DBAD23508376BE020934FF19D6 5779968 ----a-w- C:\Windows\Sysnative\jscript9.dll
2018-07-24 06:29:19 BA3688C4CBC20A3817DD118C768E2A79 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll
2018-07-24 06:29:19 9647B3BD734351FC209E416A621B1753 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll
2018-07-24 06:29:19 94F674F4D1AD1B41E97FA471FAF34FA3 794624 ----a-w- C:\Windows\Sysnative\jscript.dll
2018-07-24 06:29:19 8C1CB1F617A343D93AB3511366FFC3E3 489984 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2018-07-24 06:29:19 53A8232418A4728F2374E393767F539E 15283200 ----a-w- C:\Windows\Sysnative\ieframe.dll
2018-07-24 06:29:19 48E075759ECF6AB15CB224633A5CB1CB 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll
2018-07-24 06:29:19 43B8084AB3CC8A87D13E2B3E2BC58396 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2018-07-24 06:29:19 1CBBCAF325E2961724A2436A29824A9C 615936 ----a-w- C:\Windows\Sysnative\ieui.dll
2018-07-24 06:29:18 C66D2F929CDDB3DAEE59F9C6B86A2645 417280 ----a-w- C:\Windows\Sysnative\html.iec
2018-07-24 06:29:18 ACEEFC5988E5FBE0AE624F04CA62E75E 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll
2018-07-24 06:29:18 ACCE9A86D69F34E1EDDE7B53F2D64699 625664 ----a-w- C:\Windows\Sysnative\mscms.dll
2018-07-24 06:29:18 A11391166113D74AA4F34FA9373EE68D 3241472 ----a-w- C:\Windows\Sysnative\wininet.dll
2018-07-24 06:29:18 8FBB89B99E5A5259D0EC8FE688DB2740 199680 ----a-w- C:\Windows\Sysnative\msrating.dll
2018-07-24 06:29:18 0C15874715A6B2E3074B93ADE4443D33 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2018-07-24 06:29:17 E3ED6C06462FDDE33100F7E45E8F5213 705024 ----a-w- C:\Windows\Sysnative\BFE.DLL
2018-07-24 06:29:17 D7FC199EADC4438660A6338C2E6A9F90 444928 ----a-w- C:\Windows\Sysnative\winhttp.dll
2018-07-24 06:29:17 D6AC76621D74E415113D83F03E7AF8D4 405504 ----a-w- C:\Windows\Sysnative\gdi32.dll
2018-07-24 06:29:17 93DEDBE8E24F31962755E6AA4AC2D7B0 303104 ----a-w- C:\Windows\Sysnative\nlasvc.dll
2018-07-24 06:29:17 8C8D675AFB55BC15165F36D39FEE2403 3246080 ----a-w- C:\Windows\Sysnative\msi.dll
2018-07-24 06:29:17 3FA0F2D5BCF878BBBCBF1D80E698552B 828928 ----a-w- C:\Windows\Sysnative\MPSSVC.dll
2018-07-24 06:29:17 3B49EEE6F346CCB044C1EA2245855849 3226112 ----a-w- C:\Windows\Sysnative\win32k.sys
2018-07-24 06:29:17 25AF7D5C819F19D7C97F4A9607F2609A 863232 ----a-w- C:\Windows\Sysnative\IKEEXT.DLL
2018-07-24 06:29:17 0AE751DFA0C96532D283C87E0EAC21F0 1735168 ----a-w- C:\Windows\Sysnative\comsvcs.dll
2018-07-24 06:29:16 E6F5C9788BF800772914BEDC12FCC3F4 731648 ----a-w- C:\Windows\Sysnative\kerberos.dll
2018-07-24 06:29:16 D376A4B1765B8DF3E7E9CDE98DB3200E 2066432 ----a-w- C:\Windows\Sysnative\ole32.dll
2018-07-24 06:29:16 6C2E6C1AD1476BABC6F303678BB144FE 313856 ----a-w- C:\Windows\Sysnative\Wldap32.dll
2018-07-24 06:29:16 59960219F73C56B06271B75B5C41CA51 880640 ----a-w- C:\Windows\Sysnative\advapi32.dll
2018-07-24 06:29:16 48BF5FBF74532BCC1F720968FC02367A 300544 ----a-w- C:\Windows\Sysnative\pdh.dll
2018-07-24 06:29:16 448853F460D6627386D812CE948ADEFE 977408 ----a-w- C:\Windows\Sysnative\inetcomm.dll
2018-07-24 06:29:16 4085CEEA9EA0ECED65C8B306D49CF0C8 5577408 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe
2018-07-24 06:29:16 1BCF1641BF09C022E760F070A328F861 876032 ----a-w- C:\Windows\Sysnative\oleaut32.dll
2018-07-24 06:29:16 0FDF3E7637424DD987D1DFD2F6B85CAD 1461760 ----a-w- C:\Windows\Sysnative\lsasrv.dll
2018-07-24 06:29:16 08C8866D1538825E605D4D4B5E47F772 1211904 ----a-w- C:\Windows\Sysnative\rpcrt4.dll
2018-07-24 06:29:15 DC46807E86DD8EDDFD31FDE6127D4D43 4120576 ----a-w- C:\Windows\Sysnative\mf.dll
2018-07-24 06:29:15 71854E8E246FF283800D4AECE661D9C8 25743872 ----a-w- C:\Windows\Sysnative\mshtml.dll
2018-07-24 06:29:15 4BB2486807C1B0D29282E40568990334 1159680 ----a-w- C:\Windows\Sysnative\webservices.dll
2018-07-24 06:29:15 4B7912EB80820EAC543EE54806EFCAF0 886272 ----a-w- C:\Windows\Sysnative\wlansvc.dll
2018-07-24 06:29:15 0F76EB1552896B51F838B8CD674A9C46 1484288 ----a-w- C:\Windows\Sysnative\crypt32.dll
2018-07-24 06:29:14 FBDC49AB136FE84277E4239192E9502B 634272 ----a-w- C:\Windows\Sysnative\winload.exe
2018-07-24 06:29:14 E96131836A9B63153EB3FA63BFD9A9AB 76288 ----a-w- C:\Windows\Sysnative\rasdiag.dll
2018-07-24 06:29:14 E0B43EA51494F84930CABE418792BB8F 708288 ----a-w- C:\Windows\Sysnative\winload.efi
2018-07-24 06:29:14 D52EADF6043C0BA6E5CB20BBE91F516B 152064 ----a-w- C:\Windows\Sysnative\t2embed.dll
2018-07-24 06:29:14 D44CECD80278138D5D7B77F495DD34FF 138240 ----a-w- C:\Windows\Sysnative\rtm.dll
2018-07-24 06:29:14 D2A34BE3588B3A6FAE032B6B8037A8DF 41472 ----a-w- C:\Windows\Sysnative\rasmxs.dll
2018-07-24 06:29:14 BD69F99287CA0FA032882BAFE928A9FF 250880 ----a-w- C:\Windows\Sysnative\icm32.dll
2018-07-24 06:29:14 BCE48EAA229651AF8BA4D5D9D42547CD 379392 ----a-w- C:\Windows\Sysnative\msinfo32.exe
2018-07-24 06:29:14 BCC0DECE39579AE964C8FA81E3C9CF65 100864 ----a-w- C:\Windows\Sysnative\fontsub.dll
2018-07-24 06:29:14 BC11B2BF35D85EAD537306D82ABC1AA1 459632 ----a-w- C:\Windows\Sysnative\ci.dll
2018-07-24 06:29:14 B15EE6C1BF8F1B60C893900671E6906F 46080 ----a-w- C:\Windows\Sysnative\atmlib.dll
2018-07-24 06:29:14 98CBA639FF0D76AFC9078686ECC50062 1648128 ----a-w- C:\Windows\Sysnative\DWrite.dll
2018-07-24 06:29:14 8EB418BE78839A3509B3DBA889F842B1 60928 ----a-w- C:\Windows\Sysnative\ndptsp.tsp
2018-07-24 06:29:14 8378755374D418E0F912880FA3D4A5D8 653312 ----a-w- C:\Windows\Sysnative\msra.exe
2018-07-24 06:29:14 7C510B22EEF336697780B33B74802BFD 806912 ----a-w- C:\Windows\Sysnative\usp10.dll
2018-07-24 06:29:14 785F474FB5E67E448E1931C98E8D0ABC 1180160 ----a-w- C:\Windows\Sysnative\FntCache.dll
2018-07-24 06:29:14 608E43CDDF8284116F05DEEC7C206434 47104 ----a-w- C:\Windows\Sysnative\kmddsp.tsp
2018-07-24 06:29:14 53657AA4B72E47FC25EE657FF3A629C1 39424 ----a-w- C:\Windows\Sysnative\traffic.dll
2018-07-24 06:29:14 394BE905D8D6550438048E77FB04B775 631640 ----a-w- C:\Windows\Sysnative\winresume.efi
2018-07-24 06:29:14 35FB72FF3454FB9619AE68AE2A18BC9F 51712 ----a-w- C:\Windows\Sysnative\sdchange.exe
2018-07-24 06:29:14 27CA1884251ABFEBEC9266B668E383C6 133120 ----a-w- C:\Windows\Sysnative\msrahc.dll
2018-07-24 06:29:14 0EA0557A4347F0606FE93957C6BC4ABD 29696 ----a-w- C:\Windows\Sysnative\rasser.dll
2018-07-24 06:29:13 FAD7F5BB92A7DF63942AB9999BFA84A1 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll
2018-07-24 06:29:13 F934E20D19193BA7B0BA77532B155A88 22528 ----a-w- C:\Windows\Sysnative\wfapigp.dll
2018-07-24 06:29:13 EEEFC204476D5C44E4F6802F55697179 182272 ----a-w- C:\Windows\Sysnative\dnsrslvr.dll
2018-07-24 06:29:13 BDB3B4DE7BC4A01BB7785A64AB8590E1 108544 ----a-w- C:\Windows\Sysnative\icfupgd.dll
2018-07-24 06:29:13 ACD5C99440D65A1AEE1DBA73CA35B9A2 223232 ----a-w- C:\Windows\Sysnative\ncsi.dll
2018-07-24 06:29:13 A142ED2B42A82F10CA32B58CA336BA55 53760 ----a-w- C:\Windows\Sysnative\vmicres.dll
2018-07-24 06:29:13 9B86DF86D1EFF32893BC3FB49BFAA993 357888 ----a-w- C:\Windows\Sysnative\dnsapi.dll
2018-07-24 06:29:13 4C3C4395BBD7417647AB9C96DB4F99AB 25088 ----a-w- C:\Windows\Sysnative\netbtugc.exe
2018-07-24 06:29:13 46C9ED5E5DCA790BCAB1664894CF7D5C 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll
2018-07-24 06:29:13 12F14818522DD268514F08E7C15A2F28 690688 ----a-w- C:\Windows\Sysnative\adtschema.dll
2018-07-24 06:29:13 01C95A8CAE16CCF1EA1181395C872B9F 124416 ----a-w- C:\Windows\Sysnative\wkssvc.dll
2018-07-24 06:29:11 836B8AC6AC18AA6A34DE84F414981FED 30208 ----a-w- C:\Windows\Sysnative\dnscacheugc.exe
====== C:\Windows\Sysnative\drivers =====
2018-08-07 03:31:57 A5E456CD5A30B41D6B628BDB80F4FA7E 72816 ----a-w- C:\Windows\Sysnative\drivers\ykgrjsmb.sys
2018-08-04 11:19:19 99E885018EE51F1BDDDC5228AADD873B 114920 ----a-w- C:\Windows\Sysnative\drivers\farflt.sys
2018-08-04 11:19:05 8D93347D0E6A5EAB47F0423D6B9960D7 92792 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2018-08-04 11:11:30 E8F4540E13A62E1649824D4C5576EE29 48360 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2018-08-04 11:11:27 F6A196A0A107406D6BA54A1A7293C67A 191208 ----a-w- C:\Windows\Sysnative\drivers\MbamChameleon.sys
2018-08-04 11:11:18 351BF8F77B0A15A7B5A2AE098C52A387 253664 ----a-w- C:\Windows\Sysnative\drivers\mbamswissarmy.sys
2018-08-04 11:11:09 082F9D1ADB6DF9E5DB30EB52A34FCF0A 152688 ----a-w- C:\Windows\Sysnative\drivers\mbae64.sys
2018-07-24 06:29:34 1FC0BF25FFCB9F751BCBC6C6AC577078 31936 ----a-w- C:\Windows\Sysnative\drivers\mssmbios.sys
2018-07-24 06:29:34 10DCD3BDFA785E1482EC02304A7E9B96 12096 ----a-w- C:\Windows\Sysnative\drivers\swenum.sys
2018-07-24 06:29:32 466BF4170DC41BB939F1F9AB8F97F8F5 60608 ----a-w- C:\Windows\Sysnative\drivers\AGP440.sys
2018-07-24 06:29:28 B70E26A57F35ECA5199E6D6B9592A67C 64192 ----a-w- C:\Windows\Sysnative\drivers\ULIAGPKX.SYS
2018-07-24 06:29:28 905E9D664F38B93B53FA05422165F5B5 20160 ----a-w- C:\Windows\Sysnative\drivers\isapnp.sys
2018-07-24 06:29:28 9002EED07FD7FCFF6B8C5C06B454AC19 9728 ----a-w- C:\Windows\Sysnative\drivers\errdev.sys
2018-07-24 06:29:28 626BD5A1A3205255E57FF116A431DC5F 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys
2018-07-24 06:29:28 4B1C343E11065819F687EAC68A5E13F3 169984 ----a-w- C:\Windows\Sysnative\drivers\srvnet.sys
2018-07-24 06:29:28 3F217F77899654833B650ED6A1372BE4 24064 ----a-w- C:\Windows\Sysnative\drivers\ndistapi.sys
2018-07-24 06:29:28 2CF58216424757ED29605B4F18EC443C 40448 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys
2018-07-24 06:29:28 28879F924D021D56431DD142155A9644 62464 ----a-w- C:\Windows\Sysnative\drivers\appid.sys
2018-07-24 06:29:25 E6DFE1F33B1250A6E26EA6F6CE10B09C 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys
2018-07-24 06:29:25 E46AF308E96F7730F59B0F250A884CD6 58368 ----a-w- C:\Windows\Sysnative\drivers\ndproxy.sys
2018-07-24 06:29:25 9C456BFD0FF50CB5B7ECDA7B7529F63B 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys
2018-07-24 06:29:25 90D91013D16A15B22A4B4EB6D4140A5B 30208 ----a-w- C:\Windows\Sysnative\drivers\hidusb.sys
2018-07-24 06:29:25 7E45F8B117419ABA3BB26579F6E70324 195584 ----a-w- C:\Windows\Sysnative\drivers\exfat.sys
2018-07-24 06:29:25 7BDCE021786C3DCCFD2C22EBF643EE36 36032 ----a-w- C:\Windows\Sysnative\drivers\vdrvroot.sys
2018-07-24 06:29:25 7425A6B64F5D37D0565F2581B886E5E3 122560 ----a-w- C:\Windows\Sysnative\drivers\NV_AGP.SYS
2018-07-24 06:29:25 6FE3DBEEA730A857CA3DF603B7DEADA2 15040 ----a-w- C:\Windows\Sysnative\drivers\msisadrv.sys
2018-07-24 06:29:25 640456A9D6EBCD3BC25C64CA8D38B5F5 129536 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys
2018-07-24 06:29:25 481DADB90C1D4E9F19328079C7A9E63D 185024 ----a-w- C:\Windows\Sysnative\drivers\pci.sys
2018-07-24 06:29:25 43471A750D4F3918AC92F5131AE252D3 14336 ----a-w- C:\Windows\Sysnative\drivers\wmiacpi.sys
2018-07-24 06:29:25 421F2BB55F7B686DF490171E5642C3F2 325632 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys
2018-07-24 06:29:25 2D8FFA3B636368130F909E0CD935B555 406016 ----a-w- C:\Windows\Sysnative\drivers\srv2.sys
2018-07-24 06:29:25 1BEF8EC7C33657F18F5ED492B3683470 287936 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2018-07-24 06:29:25 0A33C9EC6822B24E26687F1EC6346922 344064 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys
2018-07-24 06:29:22 DC591A7A196E99EFB5A48D708CB989FD 288488 ----a-w- C:\Windows\Sysnative\drivers\fltMgr.sys
2018-07-24 06:29:22 DC4CB3626E7423B9D83CF1B4857FDF15 88576 ----a-w- C:\Windows\Sysnative\drivers\wanarp.sys
2018-07-24 06:29:22 B16D8FEC7EE13C8575B4B8BD8F4F6405 95424 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
2018-07-24 06:29:22 A21C2034FC556EBCA6478E434B5AF693 159744 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys
2018-07-24 06:29:22 9FB2A095B1166CB3C9A06651863B3452 324608 ----a-w- C:\Windows\Sysnative\drivers\nwifi.sys
2018-07-24 06:29:22 93C367EA831FB39DEE3BA96539A187FB 754176 ----a-w- C:\Windows\Sysnative\drivers\http.sys
2018-07-24 06:29:22 8EDE91FBAC7BF7605323C517C717A253 68288 ----a-w- C:\Windows\Sysnative\drivers\volmgr.sys
2018-07-24 06:29:22 734837208CAFD6E0959A7A0333C95C9D 262656 ----a-w- C:\Windows\Sysnative\drivers\netbt.sys
2018-07-24 06:29:22 63705A08981F7EDD376241D6E0A9C2AC 115200 ----a-w- C:\Windows\Sysnative\drivers\dfsc.sys
2018-07-24 06:29:22 5CEF80AE869336376F550ECAE91E424A 986856 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys
2018-07-24 06:29:22 5416CEB2916BBE635288C4D1075B045E 113152 ----a-w- C:\Windows\Sysnative\drivers\luafv.sys
2018-07-24 06:29:22 4DD986720F7CB7A8A5D1226793097B9A 117248 ----a-w- C:\Windows\Sysnative\drivers\tdx.sys
2018-07-24 06:29:22 4CE827A5433451551E99C2C1D20E4A43 131584 ----a-w- C:\Windows\Sysnative\drivers\pacer.sys
2018-07-24 06:29:22 2509EA6C74884402F37FB8E84C5F714B 377024 ----a-w- C:\Windows\Sysnative\drivers\netio.sys
2018-07-24 06:29:22 1792FCF97D2420514F9102C18B015B29 265448 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys
2018-07-24 06:29:22 1145EC013B72D4E6C60497707BB1A4B6 464384 ----a-w- C:\Windows\Sysnative\drivers\srv.sys
2018-07-24 06:29:22 0DC2A9882540DEA4A55B08785E09D8FC 496128 ----a-w- C:\Windows\Sysnative\drivers\afd.sys
2018-07-24 06:29:22 072D8646E23ECF8A3F5F0157017B4DB6 94440 ----a-w- C:\Windows\Sysnative\drivers\mountmgr.sys
2018-07-24 06:29:21 F4287A980C0AA41DE3073F053E5EA73C 213736 ----a-w- C:\Windows\Sysnative\drivers\rdyboost.sys
2018-07-24 06:29:21 DCA5495CA17AEB2F4FD8AC60812C3999 334528 ----a-w- C:\Windows\Sysnative\drivers\acpi.sys
2018-07-24 06:29:21 BE313E566EEA2A4B7F9AAC9782A567D4 26112 ----a-w- C:\Windows\Sysnative\drivers\nsiproxy.sys
2018-07-24 06:29:21 AC24D7A7D9EEDE11E2926F9001BEAFB5 63168 ----a-w- C:\Windows\Sysnative\drivers\termdd.sys
2018-07-24 06:29:21 94FE5C648F51D093630AE1CD33284C23 77312 ----a-w- C:\Windows\Sysnative\drivers\mpsdrv.sys
2018-07-24 06:29:21 3C1D50EBDC6F531C0AA905D71956E106 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys
2018-07-24 06:29:21 2E19EB10185992AB08BC3688AACA4CE2 45056 ----a-w- C:\Windows\Sysnative\drivers\netbios.sys
2018-07-24 06:29:21 2DAA11557AD647010C2CC09202DD6C0B 291328 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys
2018-07-24 06:29:21 24512A8F8CA9BE62AAB8561484B1CF7F 33152 ----a-w- C:\Windows\Sysnative\drivers\hidparse.sys
2018-07-24 06:29:21 234F9E56606CE5D1549DE7D4CCA4DE0C 56320 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys
2018-07-24 06:29:21 1EA66940941514A151804663BB475CA7 129024 ----a-w- C:\Windows\Sysnative\drivers\videoprt.sys
2018-07-24 06:29:21 1E7D9762BBB89D879065F5EE7E0EC45C 76800 ----a-w- C:\Windows\Sysnative\drivers\hidclass.sys
2018-07-24 06:29:20 9DE8D00626F01DBD1879A6655D7A752D 467856 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
2018-07-24 06:29:20 94275393BB85D1E2B74BFEFEC386B4A0 367296 ----a-w- C:\Windows\Sysnative\drivers\msrpc.sys
2018-07-24 06:29:20 6EDFA237D25433C03F42FBFDB16BDD24 205312 ----a-w- C:\Windows\Sysnative\drivers\fastfat.sys
2018-07-24 06:29:18 85C5468BC395819AE2A0C747334BA14C 363752 ----a-w- C:\Windows\Sysnative\drivers\volmgrx.sys
2018-07-24 06:29:17 FB45727105E27756B3252572A138FA19 317440 ----a-w- C:\Windows\Sysnative\drivers\rdbss.sys
2018-07-24 06:29:17 C2B2F27629913C7DC1239E90F9A3D107 1893568 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2018-07-24 06:29:17 261F27367EB6EA6478B940811F0A6F03 948968 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys
2018-07-24 06:29:16 8422AFBD1C2D30FFC913309D7F1A366D 1681088 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys
2018-07-24 06:29:14 968F43D731E8FBC2E75BBA07EE0FC086 154816 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2018-07-11 10:58:58 E880D79F0EF4C349D734274AD8A7DFC0 68112 ----a-w- C:\Windows\Sysnative\drivers\nvvhci.sys
2018-07-11 10:58:57 DE3B81FBC9B8EBA4C22B13E530DBD8B9 17000808 ----a-w- C:\Windows\Sysnative\drivers\nvlddmkm.sys
2018-07-11 10:58:57 4FD4739B359C2923965FE99B03AFD090 227928 ----a-w- C:\Windows\Sysnative\drivers\nvhda64v.sys
2018-07-11 10:58:57 1DD1FEA987D9881C07581C10666B1240 67432 ----a-w- C:\Windows\Sysnative\drivers\nvvad64v.sys
====== C:\Windows\Tasks ======
2018-08-03 22:14:26 38E5906DDB4080D05DC282C99051695E 3650 ----a-w- C:\Windows\Sysnative\Tasks\{F173B0E5-C95D-4EE7-B6F1-5C759080AE8D}
2018-08-03 22:14:26 0C275428E6F8E51562538CB71A8821C4 3446 ----a-w- C:\Windows\Sysnative\Tasks\{D7713373-E515-8195-5CB1-9CFB584077E3}
2018-08-03 22:14:24 49B4DEDFEFE650F1E9BCD8807A7621DC 3754 ----a-w- C:\Windows\Sysnative\Tasks\{5BB89D1A-AF5F-C2B9-357F-2D3F6FC9184B}
2018-08-03 22:05:09 CD6A27417CB0EC06E7207C9648E12620 2872 ----a-w- C:\Windows\Sysnative\Tasks\vnKUActWDSalGNfrR2
2018-08-03 22:05:09 54565A070C19733FA85AF6C1795D60DF 2860 ----a-w- C:\Windows\Sysnative\Tasks\WAOtgPBGflHZLCaeTGs2
2018-08-03 22:05:08 12DA38377D8FE3C26C3214936368BBD1 2890 ----a-w- C:\Windows\Sysnative\Tasks\reQGtPgibmNDB2
2018-08-03 22:05:07 C7CA432159F08A06B0982B06C1CA188A 3058 ----a-w- C:\Windows\Sysnative\Tasks\zleDohIUJuBRcb
2018-07-23 10:36:02 FFDD51BB585CFCC49D77D181693652A6 3386 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2018-07-23 10:36:01 85463238B414876E1C088CC67B14F290 3258 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2018-07-11 11:00:44 6D942C9E07C810B68033EA5BFEF10C35 3798 ----a-w- C:\Windows\Sysnative\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:43 3C3D883E7E2DE4DC6D9767FE67509927 3790 ----a-w- C:\Windows\Sysnative\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:39 A43B2DA4F256429E764C57BB1335FB71 3940 ----a-w- C:\Windows\Sysnative\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:38 A26F0A46F668F5A333909A6CA9DD95E8 4146 ----a-w- C:\Windows\Sysnative\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:37 B4B387085707927B155D538CA6A4C6ED 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 FB2CFC9ABF487D16B8BC3AC399D76779 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 B72CB496BA791231D814C508E5DB2963 3738 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 8C70F48179F211F0163FB1D1491FD41B 3494 ----a-w- C:\Windows\Sysnative\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 4D656907EC768BDF92B5706DEE3CB6C4 3730 ----a-w- C:\Windows\Sysnative\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 151C5ABC1A1B569FD87DF8564C99E529 3738 ----a-w- C:\Windows\Sysnative\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 038BD22F4F4105D2078F07D38BBD95D4 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2018-08-04 12:52:29 -------- d-----w- C:\Program Files\Microsoft Silverlight
2018-08-04 09:59:11 -------- d-----w- C:\Program Files\trend micro
2018-07-30 23:08:02 -------- d-----w- C:\Program Files\Epic Games
2018-07-24 22:20:52 -------- d-----w- C:\Program Files\qBittorrent
2018-07-24 22:20:40 -------- d-----w- C:\Program Files\WinRAR
2018-07-11 10:57:42 -------- d-----w- C:\Program Files\NVIDIA Corporation
======= C:\Program Files (x86) =====
2018-08-04 12:52:29 -------- d-----w- C:\Program Files (x86)\Microsoft Silverlight
2018-07-31 10:12:36 -------- d-----w- C:\Program Files (x86)\Bunny-Wabbit
2018-07-30 23:03:41 -------- d-----w- C:\Program Files (x86)\Epic Games
2018-07-27 21:41:08 -------- d-----w- C:\Program Files (x86)\Grinding Gear Games
2018-07-23 12:02:18 -------- d-----w- C:\Program Files (x86)\EasyAntiCheat
2018-07-23 10:52:57 -------- d-----w- C:\Program Files (x86)\Steam
2018-07-23 10:42:52 -------- d-----w- C:\Program Files (x86)\Microsoft
2018-07-23 10:36:01 -------- d-----w- C:\Program Files (x86)\Google
2018-07-11 12:05:19 -------- d-----w- C:\Program Files (x86)\Common Files\BattlEye
2018-07-11 11:14:51 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2018-07-11 11:00:09 -------- d-----w- C:\Program Files (x86)\VulkanRT
2018-07-11 10:59:51 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
======= C: =====
====== C:\Users\Rybiz80\AppData\Roaming ======
2018-08-06 08:59:42 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\fltk.org
2018-08-04 11:00:59 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Diagnostics
2018-08-04 08:28:50 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs
2018-08-03 22:14:31 23B58DEF11B45727D3351702515F86AF 2 ----a-w- C:\Users\Rybiz80\AppData\Local\imw.ini
2018-08-01 20:30:31 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Sports Interactive
2018-08-01 20:30:26 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\REVOLT
2018-08-01 20:26:38 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\WinRAR
2018-07-30 23:16:54 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\qBittorrent
2018-07-30 23:16:53 -------- d-----w- C:\Users\Rybiz80\AppData\Local\qBittorrent
2018-07-30 23:04:28 -------- d-----w- C:\Users\Rybiz80\AppData\Local\UnrealEngineLauncher
2018-07-30 23:04:26 -------- d-----w- C:\Users\Rybiz80\AppData\Local\UnrealEngine
2018-07-30 23:04:26 -------- d-----w- C:\Users\Rybiz80\AppData\Local\EpicGamesLauncher
2018-07-25 07:02:02 -------- d-----w- C:\Users\Rybiz80\AppData\Local\NVIDIA
2018-07-24 22:20:41 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-07-23 12:21:35 -------- d-----w- C:\Users\Rybiz80\AppData\Locallow\Heroes and Generals
2018-07-23 12:21:32 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\HeroesAndGeneralsDesktop
2018-07-23 12:04:53 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\EasyAntiCheat
2018-07-23 12:03:40 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Enlisted
2018-07-23 12:02:20 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cuisine Royale
2018-07-23 11:10:56 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Gaijin
2018-07-23 11:10:40 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2018-07-23 11:04:38 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-07-23 10:53:33 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Steam
2018-07-23 10:53:33 -------- d-----w- C:\Users\Rybiz80\AppData\Local\CEF
2018-07-23 10:51:11 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-07-23 10:51:09 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\discord
2018-07-23 10:51:05 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Discord
2018-07-23 10:51:02 -------- d-----w- C:\Users\Rybiz80\AppData\Local\SquirrelTemp
2018-07-23 10:42:58 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Skype
2018-07-23 10:42:49 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Programs
2018-07-23 10:36:40 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Google
2018-07-23 10:35:57 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Google
2018-07-23 10:35:47 309C0BA4DFD8796EA4EB1EE82EBA4C9A 58128 ----a-w- C:\Users\Rybiz80\AppData\Local\GDIPFONTCACHEV1.DAT
2018-07-23 10:35:45 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Deployment
2018-07-23 10:35:45 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Apps
2018-07-23 10:24:15 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Conexant
2018-07-23 10:24:14 -------- d-s---w- C:\Users\Rybiz80\AppData\Locallow\Microsoft
2018-07-23 10:23:29 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Adobe
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2018-07-23 10:23:21 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Identities
2018-07-23 10:21:19 -------- d-----w- C:\Users\Rybiz80\AppData\Local\NVIDIA Corporation
2018-07-23 10:21:16 -------- d-----w- C:\Users\Rybiz80\AppData\Local\VirtualStore
2018-07-23 10:21:12 -------- d-s---w- C:\Users\Rybiz80\AppData\Roaming\Microsoft
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Media Center Programs
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Temp
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Microsoft
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2018-07-23 10:19:52 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2018-07-23 10:19:45 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2018-07-12 09:03:51 -------- d-s---w- C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft
====== C:\Users\Rybiz80 ======
2018-08-06 17:02:46 9DF1469E76C21CFB43017D04847F6782 1663040 ----a-w- C:\Users\Rybiz80\Downloads\JRT.exe
2018-08-06 15:34:44 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2 (1).exe
2018-08-06 08:59:42 -------- d-----w- C:\ProgramData\fltk.org
2018-08-04 20:53:11 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2.exe
2018-08-04 12:53:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-08-04 11:01:10 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Desktop\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 10:50:19 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 09:58:52 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Rybiz80\Downloads\RSITx64.exe
2018-08-03 22:20:26 C4CF62EB084B27D2C4F5F054FA3A3AC1 270 --sha-r- C:\Users\Rybiz80\ntuser.pol
2018-08-03 22:05:08 -------- d-----w- C:\ProgramData\bzLvYYFFZmFknGVB
2018-08-03 22:04:42 962FAAAA70CB48E7F4FEF7E44BEAD98A 3552 --sha-r- C:\ProgramData\ntuser.pol
2018-08-01 20:45:44 -------- d-----w- C:\Users\Public\Documents\Steam
2018-08-01 20:30:31 -------- d-----w- C:\Users\Public\Documents\Sports Interactive
2018-07-31 10:12:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO Creator 1.0
2018-07-30 23:03:41 -------- d-----w- C:\ProgramData\Epic
2018-07-27 21:41:08 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2018-07-24 22:20:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2018-07-24 22:20:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-07-23 12:31:51 -------- d-----w- C:\Users\Rybiz80\ansel
2018-07-23 11:10:55 -------- d-----w- C:\ProgramData\Gaijin
2018-07-23 10:52:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-07-23 10:42:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\Searches
2018-07-23 10:23:19 -------- d-----r- C:\Users\Rybiz80\Contacts
2018-07-23 10:21:12 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Rybiz80\ntuser.ini
2018-07-23 10:21:12 -------- d--h--w- C:\Users\Rybiz80\AppData
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Videos
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Saved Games
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Pictures
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Music
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Links
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Favorites
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Downloads
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Documents
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Desktop
2018-07-11 11:00:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-07-11 10:59:58 -------- d-----w- C:\ProgramData\NVIDIA
2018-07-11 10:59:07 -------- d-----w- C:\ProgramData\Package Cache
2018-07-11 10:58:45 -------- d-----w- C:\ProgramData\NVIDIA Corporation

====== C: exe-files ==
2018-08-06 17:29:12 8377C99BF813BE986D07730F5C433382 68096 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\ZAScan.exe
2018-08-06 17:29:12 75375C22C72F1BEB76BEA39C22A1ED68 167936 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\unzip.exe
2018-08-06 17:29:12 1A3F82F420340222F13C5633AEB716D6 533851 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\sr.exe
2018-08-06 17:02:55 E40542C4CC75E658A4615BFEFB308570 1790024 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\JRT_NewerVersion\JRT.exe
2018-08-06 17:02:51 2F9C7FDA92C346CB5AA32091536AE0CB 43520 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\nfo\nircmdc.exe
2018-08-06 17:02:46 9DF1469E76C21CFB43017D04847F6782 1663040 ----a-w- C:\Users\Rybiz80\Downloads\JRT.exe
2018-08-06 15:34:44 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2 (1).exe
2018-08-06 15:25:37 E8CDD33860A7F4433B0077AC7D8DE402 1479632 ----a-w- C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe
2018-08-04 20:53:11 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2.exe
2018-08-04 11:29:19 3E20B169C4CD6855965BB39D4D125814 61700616 ----a-w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Skype for Desktop\Skype-Setup.exe
2018-08-04 11:01:10 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Desktop\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 10:50:19 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 09:59:12 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Rybiz80.exe
2018-08-04 09:58:52 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Rybiz80\Downloads\RSITx64.exe
2018-08-03 10:53:32 EA5A02E5C0894DAAFC82514D22352234 479728 ----a-w- C:\Users\Rybiz80\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
2018-08-03 10:53:32 62E83FCAD4B85A41B94D3885C774AD44 445424 ----a-w- C:\Users\Rybiz80\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2018-08-03 07:01:02 730F03EB048405A3027CFFD427F1B834 20091496 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\68.0.3440.84\68.0.3440.84_67.0.3396.99_chrome_updater.exe
2018-08-02 00:05:54 2E1960B3CD0A2E266C4FAB95BC6DF448 17467960 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\win64\enlisted.exe
2018-08-01 23:53:52 DEE05780A497F44458B88B3303E81333 7261240 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\win64\enlist.exe
2018-08-01 14:49:02 C79DED78B960F3AF11E464A503BE3691 489016 ----a-w- C:\Hry\WarThunder\win64\cefprocess.exe
2018-08-01 14:49:02 6F422380DCE9A3D4EF6E44C12C2C1107 35001400 ----a-w- C:\Hry\WarThunder\win64\aces.exe
2018-08-01 14:47:52 C839AE829D203ADE0E7072095FA893C5 27491896 ----a-w- C:\Hry\WarThunder\win32\aces.exe
2018-08-01 14:47:52 68F2160C821B158957B6D50707FAE590 357944 ----a-w- C:\Hry\WarThunder\win32\cefprocess.exe
2018-08-01 14:47:52 4B80143C592FBC91FAB3ECD19C1F571D 1888312 ----a-w- C:\Hry\WarThunder\win32\bpreport.exe
2018-07-31 12:39:57 2B48F69517044D82E1EE675B1690C08B 455576 ------w- C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
2018-07-31 12:39:10 1191BA2A9908EE79C0220221233E850A 455720 ----a-w- C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
2018-07-31 12:25:11 E40383A864B0D9B344A3A5ACEC6B885C 382504 ----a-w- C:\Hry\Watch Dogs 2\EasyAntiCheat\EasyAntiCheat_Setup.exe
2018-07-31 12:25:11 6C2F8C8187023E7226AE076548582DF4 516016 ----a-w- C:\Hry\Watch Dogs 2\bin\SplashScreen.exe
2018-07-31 12:25:11 5F6C9078D1D32CB5B20882F99A810547 537008 ----a-w- C:\Hry\Watch Dogs 2\bin\WatchDogs2.exe
2018-07-31 12:25:11 23CE2A387560F42350255BE4E741AE65 131112 ----a-w- C:\Hry\Watch Dogs 2\EAC.exe
2018-07-31 10:14:23 56D52C503ADF02184F19EEE4767EF60A 299864 ----a-w- C:\Hry\Watch Dogs 2\_Redist\dxwebsetup.exe
2018-07-31 10:14:23 4B1D5EC11B2B5DB046233A28DBA73B83 103424 ----a-w- C:\Hry\Watch Dogs 2\_Redist\QuickSFV.EXE
2018-07-31 10:14:22 7F52A19ECAF7DB3C163DD164BE3E592E 6554576 ----a-w- C:\Hry\Watch Dogs 2\_Redist\vcredist_x86_2012_x86.exe
2018-07-31 10:14:22 3C03562B5AF9ED347614053D459D7778 7186992 ----a-w- C:\Hry\Watch Dogs 2\_Redist\vcredist_x64_2012_x64.exe
2018-07-31 10:14:22 3249D8B9914125878C099F6B3608EC71 1515889 ----a-w- C:\Hry\Watch Dogs 2\unins000.exe
2018-07-31 08:56:45 ACD98BAAE65A7D42B3B6B607BC7B35DB 145808 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteLauncher.exe
2018-07-31 08:56:45 9DFDC503E332C886A64E828A8790D48A 753552 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping_BE.exe
2018-07-31 08:56:45 0122E828AE9E7F035FF92C2A4F4177D4 1158544 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping_EAC.exe
2018-07-31 08:56:44 B0BC2103B6F7E492B8368D32ACB3A0E5 94312336 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping.exe
2018-07-31 08:56:43 4A0C61901CC0627ED97EC9597B981E18 18458000 ----a-w- C:\Program Files\Epic Games\Fortnite\Engine\Binaries\Win64\CrashReportClient.exe
2018-07-31 08:56:43 47BDE3A4730DFF012301586CEA47B650 3699600 ----a-w- C:\Program Files\Epic Games\Fortnite\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
=== C: other files ==
2018-08-07 03:52:02 978E340A8347DDA27477C55E00601B62 2630203 ----a-w- C:\Windows\{7CB0BBD3D374-4DEA-9751-2D08BC721AA7}\PkgMgr.iso.zip
2018-08-07 03:31:57 A5E456CD5A30B41D6B628BDB80F4FA7E 72816 ----a-w- C:\Windows\System32\drivers\ykgrjsmb.sys
2018-08-06 18:08:08 A2F7919FC6762EB8815E704C00A9AA11 2630211 ----a-w- C:\Windows\{7CB0BBD3D374-4DEA-9751-2D08BC721AA7}\_wow64.ocx.zip
2018-08-06 09:02:23 3EBB315F2B61CC212CBDC838A2E65830 2123 ----atw- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\.launcher_log\f46820ef-d6fb-4e21-a3c6-ae5712180806.zip
2018-08-04 13:28:10 4EB6B0ADD718268BF65A92A8C0919D92 2592066 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\{F4B8536D-9284-42DB-BDA2-FA6DA4E6B2A1}\_wow64.ocx.zip
2018-08-04 11:19:19 99E885018EE51F1BDDDC5228AADD873B 114920 ----a-w- C:\Windows\System32\drivers\farflt.sys
2018-08-04 11:19:05 8D93347D0E6A5EAB47F0423D6B9960D7 92792 ----a-w- C:\Windows\System32\drivers\mwac.sys
2018-08-04 11:11:30 E8F4540E13A62E1649824D4C5576EE29 48360 ----a-w- C:\Windows\System32\drivers\mbam.sys
2018-08-04 11:11:27 F6A196A0A107406D6BA54A1A7293C67A 191208 ----a-w- C:\Windows\System32\drivers\MbamChameleon.sys
2018-08-04 11:11:18 351BF8F77B0A15A7B5A2AE098C52A387 253664 ----a-w- C:\Windows\System32\drivers\mbamswissarmy.sys
2018-08-04 11:11:09 082F9D1ADB6DF9E5DB30EB52A34FCF0A 152688 ----a-w- C:\Windows\System32\drivers\mbae64.sys
2018-08-01 13:57:07 C40A5DF7FEC2B93A256C214AAAA10AE0 8533366 ----a-w- C:\Hry\WarThunder\win64\twitch64.zip
2018-08-01 13:57:05 5EE81215976D2C821B6E236DB4E576AD 6518100 ----a-w- C:\Hry\WarThunder\win32\twitch.zip
2018-08-01 13:56:35 0F7C46E25A58897A1350DD8C36FBC710 2535923 ----a-w- C:\Hry\WarThunder\cef_paks.zip
2018-08-01 13:50:28 831DCEC3C35D921DFDC74A305150A09F 47469571 ----a-w- C:\Hry\WarThunder\win64\cef64.zip
2018-08-01 13:50:21 849BE646199B67047ED9B628A81A7E6B 3402189 ----a-w- C:\Hry\WarThunder\win64\tools64.zip
2018-08-01 13:50:20 121609F35C3006712FB48315D6136302 18168418 ----a-w- C:\Hry\WarThunder\win64\pc64.zip
2018-08-01 13:50:17 D954409E2020CEEC3B62EA7AC018647F 13920138 ----a-w- C:\Hry\WarThunder\win32\pc.zip
2018-08-01 13:50:14 4C909D2578C5DF8294B909146493163D 3398214 ----a-w- C:\Hry\WarThunder\win32\tools.zip
2018-08-01 13:50:02 E417D063D1CB2D63D33CE025B9C95742 41363459 ----a-w- C:\Hry\WarThunder\win32\cef.zip
2018-07-31 12:24:59 9F12282FE80E889829BEA505262B4364 204 ----a-w- C:\Hry\Watch Dogs 2\Support\wd2disabledwmwin7.bat

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3959809308-3982947574-166100824-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

[HKEY_USERS\S-1-5-21-3959809308-3982947574-166100824-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201357\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cAudioFilterAgent"="C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe"
"SmartAudio"="C:\Program Files\CONEXANT\SAII\SACpl.exe /t"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe]
"C:\Windows\SysNative\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe]
"C:\Windows\SysNative\tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" ["C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"]
"C:\Windows\SysNative\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe]
"C:\Windows\SysNative\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe]
"C:\Windows\SysNative\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe]
"C:\Windows\SysNative\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\reQGtPgibmNDB2" [C:\Windows\system32\wscript.exe "C:\ProgramData\bzLvYYFFZmFknGVB\WwPsQUz.wsf"]
"C:\Windows\SysNative\tasks\vnKUActWDSalGNfrR2" [rundll32 "C:\Program Files (x86)\ELCdlNcAzQmJaXxTcwR\pmnDmUr.dll",#1]
"C:\Windows\SysNative\tasks\WAOtgPBGflHZLCaeTGs2" [rundll32 "C:\Program Files (x86)\LDRIRJvSptwQC\vcmkrFR.dll",#1]
"C:\Windows\SysNative\tasks\zleDohIUJuBRcb" [rundll32 "C:\Program Files (x86)\xpZXRwYFlIWU2\SXvgwIdYNQqtm.dll",#1]
"C:\Windows\SysNative\tasks\{5BB89D1A-AF5F-C2B9-357F-2D3F6FC9184B}" ["C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"]
"C:\Windows\SysNative\tasks\{D7713373-E515-8195-5CB1-9CFB584077E3}" ["C:\Program Files (x86)\Common Files\YpyUeU.exe"]
"C:\Windows\SysNative\tasks\{F173B0E5-C95D-4EE7-B6F1-5C759080AE8D}" ["C:\Program Files (x86)\Common Files\YInoUyyO.exe"]

==== Chromium Look ======================

Google Chrome Version: 68.0.3440.84


Slides - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Docs - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Sheets - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Docs Offline - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Video DownloadHelper - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk
Chrome Web Store Payments - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Chrome Media Router - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKCU\..\Run: [Gaijin.Net Agent] "C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
O4 - HKCU\..\Run: [EpicGamesLauncher] "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-21-3959809308-3982947574-166100824-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201357\..\Run: [Gaijin.Net Agent] "C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe" (User '?')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Heroes & Generals Steam Service (HnGSteamService) - Reto-Moto ApS - C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngservice.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on Łt 07.08.2018 at 5:36:28,59 ======================

[Rybiz]

Zoek.exe Version 5.0.0.2 Updated 03-May-2018
Tool run by Rybiz80 on Łt 07.08.2018 at 5:31:51,18.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Safe Mode MINIMAL No Internet Access Detected
Launched: C:\Users\Rybiz80\Desktop\zoek.exe [Scan all users] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2018-08-06-173104.log 368 bytes

==== Running Processes ======================

C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== System Specs ======================

Operating System: Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 64-bit
Manufacturer: extracomputer - Model: D3161-B1
Install Date: 23.7.2018 12:21:07
Last Boot: 7.8.2018 5:30:31
Processor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Number of Processors: 8
Work Station
Bootmode: Fail-safe boot
Total RAM: 16297 MB (free 14307 MB - 87)
Computername: Rybiz80-PC
Domain: WORKGROUP
User: Rybiz80 (Administrator account)
Local Disk: C:\ - NTFS - 465 GB (free 313 GB)
CD \ DVD Drive: D:\
Local Disk: E:\ - NTFS - 111 GB (free 111 GB)
Bootdevice: \Device\HarddiskVolume1
Windows update:
Country: ¬esk ˙republika
Language: CSY

==== System Specs (Software) ======================

Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated)
Anti-Spyware: Microsoft Security Essentials disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Google Chrome 68.0.3440.84
Internet Explorer Version: 11.0.9600.19080
Google Chrome version: 68.0.3440.84

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2018-07-24 06:29:34 12589371C087A76B6E8E152939E59E98 16896 ----a-w- C:\Windows\hh.exe
2018-07-24 06:29:30 A66E522F3CBFB8709EA37844922A002E 733696 ----a-w- C:\Windows\HelpPane.exe
2018-07-23 11:15:04 E185BDA84E5F03F4E1D8DCA30E209277 1912 ----a-w- C:\Windows\epplauncher.mif
2018-07-11 11:00:33 74F28574BB8F61FFC7DD419FE6B6E0D5 1951 ----a-w- C:\Windows\NvTelemetryContainerRecovery.bat
2018-07-11 10:59:58 74F28574BB8F61FFC7DD419FE6B6E0D5 1951 ----a-w- C:\Windows\NvContainerRecovery.bat
====== C:\Users\Rybiz80\AppData\Local\Temp ====
2018-08-06 17:29:12 8377C99BF813BE986D07730F5C433382 68096 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\ZAScan.exe
2018-08-06 17:29:12 75375C22C72F1BEB76BEA39C22A1ED68 167936 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\unzip.exe
2018-08-06 17:29:12 1A3F82F420340222F13C5633AEB716D6 533851 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\sr.exe
2018-08-06 17:02:55 E40542C4CC75E658A4615BFEFB308570 1790024 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\JRT_NewerVersion\JRT.exe
2018-08-06 17:02:51 2F9C7FDA92C346CB5AA32091536AE0CB 43520 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\nfo\nircmdc.exe
2018-08-03 15:13:24 8D49B6321F1C1AA6C0D49BA3B022E1A8 25775920 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\setup.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2018-07-24 08:45:26 960AE99A15B1C8C9FBDDDE97606478F9 3550208 ----a-w- C:\Windows\SysWOW64\D3DCompiler_47.dll
2018-07-24 06:29:35 F14C2821DDB2D09A527FF258EC434B52 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-07-24 06:29:35 81CB1981A9CC574008E9839AB137FB2F 17240 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-07-24 06:29:35 2838609DD1AFA03D4A68228F2C818CEA 2048 ----a-w- C:\Windows\SysWOW64\user.exe
2018-07-24 06:29:34 FF8B6558BB9CD8890253FFC01E57E3EC 282624 ----a-w- C:\Windows\SysWOW64\mstext40.dll
2018-07-24 06:29:34 FCEE7E4A37BB971ED4A11E9D496C7274 299008 ----a-w- C:\Windows\SysWOW64\ntprint.dll
2018-07-24 06:29:34 FB8B6E9543FEFF706967BC9437197CC5 12120 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-07-24 06:29:34 F6E1AE3EF2BED36CB739BB90478B6493 17240 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-24 06:29:34 F5357CAC91CAA28CC97BFAADF95C1C20 82944 ----a-w- C:\Windows\SysWOW64\bcrypt.dll
2018-07-24 06:29:34 F05F26DD4B8640CB71F8C40BD6530FD1 16384 ----a-w- C:\Windows\SysWOW64\winnsi.dll
2018-07-24 06:29:34 EC5A71B7AB0902B82177FCE9769F6C36 12120 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-07-24 06:29:34 E53488EA2F13C3E93FABABDAE10C36C1 184320 ----a-w- C:\Windows\SysWOW64\scksp.dll
2018-07-24 06:29:34 E44701B42419962136EF5CAC198F8D1C 77312 ----a-w- C:\Windows\SysWOW64\mfmjpegdec.dll
2018-07-24 06:29:34 E1A2A1C53E354D9016E68B16B86AE570 343552 ----a-w- C:\Windows\SysWOW64\msrd3x40.dll
2018-07-24 06:29:34 DE7337C3EDD617029AE585724DA0DC7A 26112 ----a-w- C:\Windows\SysWOW64\oleres.dll
2018-07-24 06:29:34 D9A9C40BE182CB3E4644971D8E6D59BC 13152 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-24 06:29:34 D5FDF7E990A1AE2E19C64E1FF267580A 444928 ----a-w- C:\Windows\SysWOW64\wvc.dll
2018-07-24 06:29:34 D1DE6861C97B6184A81C010E78CBF272 59392 ----a-w- C:\Windows\SysWOW64\msscntrs.dll
2018-07-24 06:29:34 C508CD60FB68D39482966EDEFBD7CB43 290816 ----a-w- C:\Windows\SysWOW64\msjtes40.dll
2018-07-24 06:29:34 C08A83FD5F3D495F1267CC98727B70BD 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll
2018-07-24 06:29:34 BDCBA6F7B8C538305FE8C0A7D78D2683 15192 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-07-24 06:29:34 BB1D7E779FFC9D4D58DE6D6C39429FF1 103424 ----a-w- C:\Windows\SysWOW64\resmon.exe
2018-07-24 06:29:34 B8AF75A6FB1BEA49A38C00B3EEDBEFCE 22528 ----a-w- C:\Windows\SysWOW64\rasser.dll
2018-07-24 06:29:34 B2EF83F99837C68E646BA5E419F8D16A 172544 ----a-w- C:\Windows\SysWOW64\cic.dll
2018-07-24 06:29:34 AE033EA471A27FE2138FF4C83E95E51F 164352 ----a-w- C:\Windows\SysWOW64\SearchProtocolHost.exe
2018-07-24 06:29:34 A554AE8240E2C8EE389E6BCD76E05198 337408 ----a-w- C:\Windows\SysWOW64\mssph.dll
2018-07-24 06:29:34 A2A5D487D0C3D55739A0491B6872480D 1401344 ----a-w- C:\Windows\SysWOW64\mmc.exe
2018-07-24 06:29:34 9E4BC729899C1E1C5FA6DE50FFAFDBB7 1549824 ----a-w- C:\Windows\SysWOW64\tquery.dll
2018-07-24 06:29:34 9B2BA304828D5FABF87348D59D635AC7 91368 ----a-w- C:\Windows\SysWOW64\MigAutoPlay.exe
2018-07-24 06:29:34 9A8DA9190702FAA9944AE3099BD3EF1C 104448 ----a-w- C:\Windows\SysWOW64\mssitlb.dll
2018-07-24 06:29:34 970CD7D328C23D9865FF54B7B10E33A3 197120 ----a-w- C:\Windows\SysWOW64\mssphtb.dll
2018-07-24 06:29:34 970B24D86AA519A66CA2A03E18D5B68B 54272 ----a-w- C:\Windows\SysWOW64\wermgr.exe
2018-07-24 06:29:34 94D10B11B61DB26940B4FB1B3ECFCE84 310272 ----a-w- C:\Windows\SysWOW64\msrd2x40.dll
2018-07-24 06:29:34 94A4BD919D8D6FEAE8DAC69A1FBE7094 518144 ----a-w- C:\Windows\SysWOW64\msjetoledb40.dll
2018-07-24 06:29:34 857999CECCB0C9D255D5F7FCF3BA0C2C 427520 ----a-w- C:\Windows\SysWOW64\SearchIndexer.exe
2018-07-24 06:29:34 8066F32DBF9E7BAF35758849F90776B1 342528 ----a-w- C:\Windows\SysWOW64\certcli.dll
2018-07-24 06:29:34 741E8E1DD841506A58F9A28895D7FE2E 1363968 ----a-w- C:\Windows\SysWOW64\Query.dll
2018-07-24 06:29:34 6F3E6F978E6DF7D751C2EA62F60EF788 7168 ----a-w- C:\Windows\SysWOW64\MsraLegacy.tlb
2018-07-24 06:29:34 66CFEF9459FE5771D640BDADE2840192 83968 ----a-w- C:\Windows\SysWOW64\msjter40.dll
2018-07-24 06:29:34 6691B0F9B2F8CF2146A46C4F33779D6B 128512 ----a-w- C:\Windows\SysWOW64\mmcshext.dll
2018-07-24 06:29:34 633CD8A938AB8C6B2D0166A4A55A225F 409600 ----a-w- C:\Windows\SysWOW64\msexch40.dll
2018-07-24 06:29:34 568B65A1B16264570F1B4E3565F49519 47104 ----a-w- C:\Windows\SysWOW64\pdhui.dll
2018-07-24 06:29:34 53FF7C0EF6A7E6DAFAEE2FE1B526A01A 157184 ----a-w- C:\Windows\SysWOW64\perfmon.exe
2018-07-24 06:29:34 527BB14847DB8264C31380C40CBC1CD7 8192 ----a-w- C:\Windows\SysWOW64\spwmp.dll
2018-07-24 06:29:34 51EA6BD2E56AEF9691A82C05D60D07A7 28672 ----a-w- C:\Windows\SysWOW64\werdiagcontroller.dll
2018-07-24 06:29:34 4FDF9502D0B57D3EDB185DA4B6848BFE 1400320 ----a-w- C:\Windows\SysWOW64\mssrch.dll
2018-07-24 06:29:34 4BF00F7ACDC0B9F81EC6BBFF3648BC44 4096 ----a-w- C:\Windows\SysWOW64\msdxm.ocx
2018-07-24 06:29:34 4BF00F7ACDC0B9F81EC6BBFF3648BC44 4096 ----a-w- C:\Windows\SysWOW64\dxmasf.dll
2018-07-24 06:29:34 4A61E18E7EBCC2886653E771D785D9EA 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2018-07-24 06:29:34 44227E048D0A7BB5A7AEB839936BF9DE 7168 ----a-w- C:\Windows\SysWOW64\comcat.dll
2018-07-24 06:29:34 3635DED9860DC2570D47462752090C36 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-07-24 06:29:34 2DC31C166BF979BC5488932C84810D80 86528 ----a-w- C:\Windows\SysWOW64\SearchFilterHost.exe
2018-07-24 06:29:34 2B7A702E23751739AF46760436873929 390144 ----a-w- C:\Windows\SysWOW64\sysmon.ocx
2018-07-24 06:29:34 290142B625251D993BEAE6521619D5C6 330240 ----a-w- C:\Windows\SysWOW64\zipfldr.dll
2018-07-24 06:29:34 1AB31F3FD29D74074BCC64DE8FEE5540 103424 ----a-w- C:\Windows\SysWOW64\mfps.dll
2018-07-24 06:29:34 1AA810BFEEE8695BF4CB49C7786B7827 18776 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-24 06:29:34 1A49393991C4BF4A56EE64B686C584E8 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-07-24 06:29:34 17A4059BB257051EF3A6480815DCA419 9728 ----a-w- C:\Windows\SysWOW64\msshooks.dll
2018-07-24 06:29:34 0723A00C740A0D1B5460FBFE048C3E68 8704 ----a-w- C:\Windows\SysWOW64\nsi.dll
2018-07-24 06:29:34 0436312135E0A5B8DDDAFAF976821D51 23040 ----a-w- C:\Windows\SysWOW64\mfpmp.exe
2018-07-24 06:29:34 02D425A51431FC87E3274D90B2B6A062 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-07-24 06:29:33 FFEAED0E3BD67DA3559231F762B6E201 866816 ----a-w- C:\Windows\SysWOW64\mswdat10.dll
2018-07-24 06:29:33 FC8A22A65745A620DDEE41669765BB56 1329664 ----a-w- C:\Windows\SysWOW64\quartz.dll
2018-07-24 06:29:33 F0A6576528FD5AF099821D5360770CC8 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll
2018-07-24 06:29:33 F02EB1D48A1A0CD59C81462055A69AD1 142848 ----a-w- C:\Windows\SysWOW64\itss.dll
2018-07-24 06:29:33 E0FC6700E341A2026C08DF29A9B4FEAD 20480 ----a-w- C:\Windows\SysWOW64\WcnEapPeerProxy.dll
2018-07-24 06:29:33 D03CBC7A13DB67F83EAD4BB2B1B2C9D2 616448 ----a-w- C:\Windows\SysWOW64\msrepl40.dll
2018-07-24 06:29:33 C67881BF26EEDCBE0E97875AC7AECCD8 2048 ----a-w- C:\Windows\SysWOW64\mferror.dll
2018-07-24 06:29:33 C614AA3804DF9FCAA829B57E98945DC1 363520 ----a-w- C:\Windows\SysWOW64\StructuredQuery.dll
2018-07-24 06:29:33 AF0002DF9D2AC73587596C29886D505C 91136 ----a-w- C:\Windows\SysWOW64\inseng.dll
2018-07-24 06:29:33 A7999BEEE52B87FDBF15E60F207B51C8 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2018-07-24 06:29:33 A03B2893AB4DC114870F425809C030B2 148160 ----a-w- C:\Windows\SysWOW64\basecsp.dll
2018-07-24 06:29:33 9F49B8E154DBAC9D60125CBBE3609C70 217600 ----a-w- C:\Windows\SysWOW64\P2P.dll
2018-07-24 06:29:33 87745417DFFEE0F341144063F11FFAFA 83968 ----a-w- C:\Windows\SysWOW64\wlanhlp.dll
2018-07-24 06:29:33 75326D9940A86E23AB8283D6E31B70DE 497664 ----a-w- C:\Windows\SysWOW64\win32spl.dll
2018-07-24 06:29:33 71BA6F21132623EEC68E25779843FD0A 9728 ----a-w- C:\Windows\SysWOW64\sscore.dll
2018-07-24 06:29:33 6EBE64B2FA84F9A3A3070C79CDCF19E0 382976 ----a-w- C:\Windows\SysWOW64\wer.dll
2018-07-24 06:29:33 6CBFBC933B6D98C2E349B02D2B07813B 81920 ----a-w- C:\Windows\SysWOW64\fdWCN.dll
2018-07-24 06:29:33 57C122CBD283A1E6FE5A5509AFA35CB2 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe
2018-07-24 06:29:33 5483D87CA77CE60B29D46BCB4C4C21FB 973312 ----a-w- C:\Windows\SysWOW64\DXPTaskRingtone.dll
2018-07-24 06:29:33 5119041A556E15DB1B62E5D5246E5105 573440 ----a-w- C:\Windows\SysWOW64\wuapi.dll
2018-07-24 06:29:33 417BB0E54DB7B7208520A8E71255CECC 8704 ----a-w- C:\Windows\SysWOW64\msjint40.dll
2018-07-24 06:29:33 3273C18621DE987823E5433BD7F658DE 33280 ----a-w- C:\Windows\SysWOW64\traffic.dll
2018-07-24 06:29:33 28BE06FF78CC94F13276583170540E50 805376 ----a-w- C:\Windows\SysWOW64\cdosys.dll
2018-07-24 06:29:33 20CF6E763CCCCA5E09A7512604CAA529 2048 ----a-w- C:\Windows\SysWOW64\msxml6r.dll
2018-07-24 06:29:33 1E614D1B8C522ED15E9151409F6E9A4D 223232 ----a-w- C:\Windows\SysWOW64\ncrypt.dll
2018-07-24 06:29:33 1D7EFFA5EDE72D3FC1CF20DE998259C6 340480 ----a-w- C:\Windows\SysWOW64\msexcl40.dll
2018-07-24 06:29:33 149FE64A2BD27129CB731D09AF4ACDDE 75264 ----a-w- C:\Windows\SysWOW64\mprdim.dll
2018-07-24 06:29:33 12CDAF1592A33096CD90FDB411EA6337 666624 ----a-w- C:\Windows\SysWOW64\mssvp.dll
2018-07-24 06:29:33 09B61B4894B05723BACE59F46EF892D4 1508352 ----a-w- C:\Windows\SysWOW64\pla.dll
2018-07-24 06:29:32 F14AB91AA612D0AD5839C5D13B218360 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2018-07-24 06:29:32 EBA82F1B920E64DDFCD1E0BF9706B8F3 15704 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-24 06:29:32 E859E76A8766B7F1925EB7D0792CC3C1 33280 ----a-w- C:\Windows\SysWOW64\rasmxs.dll
2018-07-24 06:29:32 E5A2788702F4603CBBEEA230ACFAADB1 86528 ----a-w- C:\Windows\SysWOW64\WcnApi.dll
2018-07-24 06:29:32 DE8A6902C401DDD252954C7894C895A2 827904 ----a-w- C:\Windows\SysWOW64\rdpcore.dll
2018-07-24 06:29:32 C7C2A39C4B3F1B37F3C816A282D3E332 35328 ----a-w- C:\Windows\SysWOW64\wuapp.exe
2018-07-24 06:29:32 C27751B11ACCAB98BA087A38C469B907 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll
2018-07-24 06:29:32 ABAD533F465380421B66687D4FBA807E 34816 ----a-w- C:\Windows\SysWOW64\mssprxy.dll
2018-07-24 06:29:32 A8D212AF14E65905B5631742656A3C43 43008 ----a-w- C:\Windows\SysWOW64\hhsetup.dll
2018-07-24 06:29:32 9AD4807BFD28CD14362FAE2DE0AA7890 1227264 ----a-w- C:\Windows\SysWOW64\wdc.dll
2018-07-24 06:29:32 94052D294092794E1D1C0D7417161381 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe
2018-07-24 06:29:32 93DD6BEE13FF4CB917F8E1234F2A464F 21848 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-07-24 06:29:32 837E870DBDEE3D19122C833389D81CC9 80896 ----a-w- C:\Windows\SysWOW64\wlanapi.dll
2018-07-24 06:29:32 6CB8D5AF44F0F07565DE45F86528B073 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe
2018-07-24 06:29:32 6673E73084216129F3E64FDD819368EC 2150912 ----a-w- C:\Windows\SysWOW64\mmcndmgr.dll
2018-07-24 06:29:32 61259DE5266CC28045856882B144F804 30208 ----a-w- C:\Windows\SysWOW64\wups.dll
2018-07-24 06:29:32 5ADEF0B67913448A7850836010F48ED9 1311744 ----a-w- C:\Windows\SysWOW64\msjet40.dll
2018-07-24 06:29:32 56E994E79DB22F583683C8EB7493C45E 111616 ----a-w- C:\Windows\SysWOW64\racpldlg.dll
2018-07-24 06:29:32 516BA2B650C242C17AAE680BFD08814E 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll
2018-07-24 06:29:32 4BDF9C2B4B517B55BFCC49B8E44B40C7 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll
2018-07-24 06:29:32 49A1DFA86B6733E5D98CB0EA81B13AF3 3207168 ----a-w- C:\Windows\SysWOW64\mf.dll
2018-07-24 06:29:32 47D0B25AEAFEFC8937D86F22C7C5278F 13656 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-07-24 06:29:32 42B2F788D85DEBF29F6E4A6ED5004C2D 2292224 ----a-w- C:\Windows\SysWOW64\MSVidCtl.dll
2018-07-24 06:29:32 3650AD6EA1A9CD1CD1BBF4EB93E7604D 93696 ----a-w- C:\Windows\SysWOW64\wudriver.dll
2018-07-24 06:29:32 361BBC8BE82ECF8A27F57BD4631B9164 158720 ----a-w- C:\Windows\SysWOW64\itircl.dll
2018-07-24 06:29:32 2F58C0DD4BCFE7CD9752EEDE8B08C261 240640 ----a-w- C:\Windows\SysWOW64\msltus40.dll
2018-07-24 06:29:32 2DBA413FACC332703C12EFD3B997938B 275456 ----a-w- C:\Windows\SysWOW64\KernelBase.dll
2018-07-24 06:29:32 2AF284D0737FE5BCB3581DA8C536CDF7 32768 ----a-w- C:\Windows\SysWOW64\WcsPlugInService.dll
2018-07-24 06:29:32 249C741009425ED4DA99080333691016 50176 ----a-w- C:\Windows\SysWOW64\rrinstaller.exe
2018-07-24 06:29:32 1C92F07DB3B860294251C31C4DD97D4B 1390080 ----a-w- C:\Windows\SysWOW64\msxml6.dll
2018-07-24 06:29:32 11D1846FCA7D8A5EB825CD731A0F6304 19968 ----a-w- C:\Windows\SysWOW64\WcnEapAuthProxy.dll
2018-07-24 06:29:32 0A613D0301B0EACE35508D11B4D0423A 392704 ----a-w- C:\Windows\SysWOW64\wlansec.dll
2018-07-24 06:29:32 050AB578E032A7C9CA722F632A4018AC 15360 ----a-w- C:\Windows\SysWOW64\hh.exe
2018-07-24 06:29:32 01AEB7B9C67E38E14088D108F024631C 375808 ----a-w- C:\Windows\SysWOW64\mspbde40.dll
2018-07-24 06:29:31 CF679F83D98C4873EDA7E4F96F7E6FD9 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll
2018-07-24 06:29:31 AC81B22606B50A61B02F2082EA2CE187 640512 ----a-w- C:\Windows\SysWOW64\mswstr10.dll
2018-07-24 06:29:31 81063E39D04B73670ACAD9E9AD45A53C 12574208 ----a-w- C:\Windows\SysWOW64\wmploc.DLL
2018-07-24 06:29:31 75B35268C9B882825672FBFB94953222 84480 ----a-w- C:\Windows\SysWOW64\INETRES.dll
2018-07-24 06:29:31 2D8302C12657BC51C3382553D3329011 2755072 ----a-w- C:\Windows\SysWOW64\themeui.dll
2018-07-24 06:29:31 258D04C8877C8645FEC99853E6A334BA 348824 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
2018-07-24 06:29:31 1AC3F87F3141181653E7D222E27151A2 11410944 ----a-w- C:\Windows\SysWOW64\wmp.dll
2018-07-24 06:29:31 01EA2D445830658A62D45ED228AC7D58 1313792 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2018-07-24 06:29:28 F9F3C19B1029BB7C63EF478D4A237941 953344 ----a-w- C:\Windows\SysWOW64\gpedit.dll
2018-07-24 06:29:28 F58B62BFD8C64F860FB2365FCF5CA375 3405824 ----a-w- C:\Windows\SysWOW64\xpsrchvw.exe
2018-07-24 06:29:28 F4B6F8839170EDF9FD65B0745E3638B5 36352 ----a-w- C:\Windows\SysWOW64\cryptbase.dll
2018-07-24 06:29:28 F112E8D8B5EF4F6AE02DCE3E062C0CBD 696320 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2018-07-24 06:29:28 E419FE2098168F7CEA2A233EA81674F3 428032 ----a-w- C:\Windows\SysWOW64\wlanmsm.dll
2018-07-24 06:29:28 E14FC4B37C6DFDCAFB4EA349D9D66EAB 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll
2018-07-24 06:29:28 CFD3330A45D8C292C4C6DE89325A57F1 18944 ----a-w- C:\Windows\SysWOW64\wfapigp.dll
2018-07-24 06:29:28 CB10DC5D6E2D8FFB6290303DF3BC9875 65880 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-07-24 06:29:28 C648901695E275C8F2AD04B687A68CE2 45056 ----a-w- C:\Windows\SysWOW64\rundll32.exe
2018-07-24 06:29:28 C0ADC3DABA23072F8A7AA64ABE8AA9A6 61952 ----a-w- C:\Windows\SysWOW64\ntprint.exe
2018-07-24 06:29:28 B0B6C6F78E5FC9F90D7C7345E214A4C7 276992 ----a-w- C:\Windows\SysWOW64\wcncsvc.dll
2018-07-24 06:29:28 AF40FDAB98B0FF209632C3403DB6C39F 830464 ----a-w- C:\Windows\SysWOW64\msctf.dll
2018-07-24 06:29:28 8F16118E9C9EAB9237FC8FC57BA9165F 10240 ----a-w- C:\Windows\SysWOW64\dciman32.dll
2018-07-24 06:29:28 6B47A9ECFBA6A3775B36780FAF5D533E 50688 ----a-w- C:\Windows\SysWOW64\appidapi.dll
2018-07-24 06:29:28 585987A92FDD082A032CCE1FBF654D22 309760 ----a-w- C:\Windows\SysWOW64\actxprxy.dll
2018-07-24 06:29:28 48B8FD7C090A8B8EC47BF7A9AF8B954B 475648 ----a-w- C:\Windows\SysWOW64\msxbde40.dll
2018-07-24 06:29:28 47E0F093BA5B11C13362740F30D2D9EE 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-07-24 06:29:28 47B6897054A76E8F56718DEEFB2B2737 67584 ----a-w- C:\Windows\SysWOW64\asycfilt.dll
2018-07-24 06:29:28 4481672EB5DECBC35D6BC77410277897 254464 ----a-w- C:\Windows\SysWOW64\schannel.dll
2018-07-24 06:29:28 414E182C926F903360B6726EC160C0A6 498176 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2018-07-24 06:29:28 411D8E3A2B55B9A2873C884A5743F88F 304640 ----a-w- C:\Windows\SysWOW64\taskcomp.dll
2018-07-24 06:29:28 3BD3BEFFA4348B8B5F8320EDABD6B3C8 523776 ----a-w- C:\Windows\SysWOW64\hhctrl.ocx
2018-07-24 06:29:28 3B58E0C9ABC280044ADB770F52C4622D 130048 ----a-w- C:\Windows\SysWOW64\occache.dll
2018-07-24 06:29:28 3964B9FF1C2AFDB5E61B17E66CF8BAF9 8192 ----a-w- C:\Windows\SysWOW64\iprtprio.dll
2018-07-24 06:29:28 38A6B70D44AF764307F7B8964DE205A2 174080 ----a-w- C:\Windows\SysWOW64\wuwebv.dll
2018-07-24 06:29:28 351F369731B85DFF224115B3A751F852 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll
2018-07-24 06:29:28 3433D2B85A2A325509BF85707D2611EA 13824 ----a-w- C:\Windows\SysWOW64\wshqos.dll
2018-07-24 06:29:28 2C7FC26E90C858C793226A6D18F1D68A 139776 ----a-w- C:\Windows\SysWOW64\PeerDist.dll
2018-07-24 06:29:28 29F8B58C22BD2F97EC2E8F0B87CF631C 1499648 ----a-w- C:\Windows\SysWOW64\ExplorerFrame.dll
2018-07-24 06:29:28 13FDF0CBACAF55BEAFF80F943EE3AAC8 1806848 ----a-w- C:\Windows\SysWOW64\authui.dll
2018-07-24 06:29:28 1107555801A14488CAFA1831D54CC821 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll
2018-07-24 06:29:28 0BDA99A6A2FB8AF0C4BD40541F659A7F 279040 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2018-07-24 06:29:27 B73966CFD747762F93CC27DF6544BC50 2060288 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2018-07-24 06:29:27 6A25198AA332CA656BD76B03D7B29F03 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
2018-07-24 06:29:27 638DEF534C723534A0048AD1AA4F7C2D 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2018-07-24 06:29:27 24FF25A3D32E8B0C1D640DADBA81DC66 20286464 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2018-07-24 06:29:27 071F0D72D938DE283AEBBB0CD0E95200 2295296 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2018-07-24 06:29:26 25AA0C561E288AE52D3E97E3997A506A 12880384 ----a-w- C:\Windows\SysWOW64\shell32.dll
2018-07-24 06:29:25 FB8032DFBE22B7C48AC9A4EC2FEAE3F1 134656 ----a-w- C:\Windows\SysWOW64\WinSCard.dll
2018-07-24 06:29:25 F9CAB9D2E5BF1D9C8B01CC59C9F4F51C 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2018-07-24 06:29:25 F92D1A5B21D241D789E2541208621EBA 4050624 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
2018-07-24 06:29:25 EAD9FBA82C6A66FBD088E9CCB8480C57 303104 ----a-w- C:\Windows\SysWOW64\mmcbase.dll
2018-07-24 06:29:25 E597131CF7FCF899C77947641296AD7E 662016 ----a-w- C:\Windows\SysWOW64\jscript.dll
2018-07-24 06:29:25 E53022747443FC3E8A69C7858E7248A0 918296 ----a-w- C:\Windows\SysWOW64\ucrtbase.dll
2018-07-24 06:29:25 E174722F442E9FA3EAB830357A10A913 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll
2018-07-24 06:29:25 E097B097231DF2C03F6B5083092A6F95 70144 ----a-w- C:\Windows\SysWOW64\TSpkg.dll
2018-07-24 06:29:25 DB1917A860BB61D48AD3459DF441B34B 25600 ----a-w- C:\Windows\SysWOW64\lpk.dll
2018-07-24 06:29:25 D133305F1B700163CCF242FE9868B076 52224 ----a-w- C:\Windows\SysWOW64\wsnmp32.dll
2018-07-24 06:29:25 CAF62939BCD04EA799C53BBEC4486EFC 106496 ----a-w- C:\Windows\SysWOW64\cryptnet.dll
2018-07-24 06:29:25 C4FADD724DA8B6E958B92DE6692DFD3E 463360 ----a-w- C:\Windows\SysWOW64\FirewallAPI.dll
2018-07-24 06:29:25 C043A37A5E9DFFE7BA69A52A19D9A063 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll
2018-07-24 06:29:25 B505FA46BAB4FA1D6E4141FF1D8ED7C1 487936 ----a-w- C:\Windows\SysWOW64\catsrvut.dll
2018-07-24 06:29:25 AC157A35A63CBBC28A3729D5D3FBE66A 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2018-07-24 06:29:25 A036E55D6B443FF53E79AD82550D6993 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll
2018-07-24 06:29:25 9392CD363C6FE0CC6EFC927903F85845 216576 ----a-w- C:\Windows\SysWOW64\FWPUCLNT.DLL
2018-07-24 06:29:25 8E91E0F429D18017ED00F096EE8CE994 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll
2018-07-24 06:29:25 8C706932FCE03C8C5C79DE879037E4DD 1314072 ----a-w- C:\Windows\SysWOW64\ntdll.dll
2018-07-24 06:29:25 841D64BF6AE3EF0013EBCA020810BFE2 141312 ----a-w- C:\Windows\SysWOW64\rpchttp.dll
2018-07-24 06:29:25 8350EEB762B80BD9D80B650BA2609344 308224 ----a-w- C:\Windows\SysWOW64\scesrv.dll
2018-07-24 06:29:25 7D9EE3EA2210D64FBB5979C71F19736B 179200 ----a-w- C:\Windows\SysWOW64\wintrust.dll
2018-07-24 06:29:25 7B72D697D37D80D156C869A306AF4EA3 73216 ----a-w- C:\Windows\SysWOW64\tdc.ocx
2018-07-24 06:29:25 310D798E3DEAA0EB33E1F4F2B66749F4 261120 ----a-w- C:\Windows\SysWOW64\msv1_0.dll
2018-07-24 06:29:25 2F3887E33B087C86EE71C8D88B4C32D9 337408 ----a-w- C:\Windows\SysWOW64\msihnd.dll
2018-07-24 06:29:25 296E6705C2C898865F85A56F9B056A5D 309440 ----a-w- C:\Windows\SysWOW64\atmfd.dll
2018-07-24 06:29:25 27607C3219A98ADECDB355628D48E17B 145920 ----a-w- C:\Windows\SysWOW64\cryptsvc.dll
2018-07-24 06:29:25 1A196E43301519920A4C8A98DD73AB49 271360 ----a-w- C:\Windows\SysWOW64\iprtrmgr.dll
2018-07-24 06:29:25 0BBFF8141438C1AD9E8B8108E4828F50 666624 ----a-w- C:\Windows\SysWOW64\nshwfp.dll
2018-07-24 06:29:25 06983C58F6D1CAE00A72CE5091715C79 73216 ----a-w- C:\Windows\SysWOW64\msiexec.exe
2018-07-24 06:29:25 02814474C497130152E6C5D1F6F36D95 52224 ----a-w- C:\Windows\SysWOW64\nlaapi.dll
2018-07-24 06:29:24 EB9A60C605137C204C01116B9C26F693 13680128 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2018-07-24 06:29:24 5733F1CB6F4EDB64B10664EB5C0C9C47 416256 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2018-07-24 06:29:24 179882638338C54703CC695A63D6B3D3 476160 ----a-w- C:\Windows\SysWOW64\ieui.dll
2018-07-24 06:29:23 8594BD814DAFE7476C73FF20444C8A80 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll
2018-07-24 06:29:23 49EFFD4C26029ABC5744078AB5BB1FAE 4496384 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2018-07-24 06:29:23 1BD1A7ED0EAC57B4B2C02BD81E535A09 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll
2018-07-24 06:29:22 FBE7918B0CF71FCB71478971A1DD7134 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll
2018-07-24 06:29:22 E069A3B525828F055D9BF71A1B3DBC1E 312832 ----a-w- C:\Windows\SysWOW64\gdi32.dll
2018-07-24 06:29:22 C9D6D5A1C281BB93A3237F9059ECF2B2 2365952 ----a-w- C:\Windows\SysWOW64\msi.dll
2018-07-24 06:29:22 C1A06699B139B51804579ACD107C19A0 481792 ----a-w- C:\Windows\SysWOW64\mscms.dll
2018-07-24 06:29:22 9A302F3036CB2CE62837D035444FF1DD 741888 ----a-w- C:\Windows\SysWOW64\inetcomm.dll
2018-07-24 06:29:22 93DE30FA0FA2E0BD31D099CC7FDD2460 1241600 ----a-w- C:\Windows\SysWOW64\comsvcs.dll
2018-07-24 06:29:22 55B6D1A0293AC4CAB6FDC46887F869F8 341504 ----a-w- C:\Windows\SysWOW64\html.iec
2018-07-24 06:29:22 3D3C1F0BE3644B6C1D728D4970C07DD0 2767872 ----a-w- C:\Windows\SysWOW64\wininet.dll
2018-07-24 06:29:22 2F929C103155EE98EFB649FE9AF21740 271360 ----a-w- C:\Windows\SysWOW64\Wldap32.dll
2018-07-24 06:29:22 1E38AEB134500A43DB7D4E4EA6F49B85 351744 ----a-w- C:\Windows\SysWOW64\winhttp.dll
2018-07-24 06:29:21 ED03B8BFE1AF6039304814AED8A675B2 3962048 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
2018-07-24 06:29:20 E1D94AE90FEF0AAA0D2C0582651AF372 582144 ----a-w- C:\Windows\SysWOW64\oleaut32.dll
2018-07-24 06:29:20 D99D2588AB30658287818CF6778E5261 25088 ----a-w- C:\Windows\SysWOW64\msimsg.dll
2018-07-24 06:29:20 C8C5D6F1B47CB63DAC39FD3D35B888E1 237056 ----a-w- C:\Windows\SysWOW64\pdh.dll
2018-07-24 06:29:20 BE2F9603030393367735B0279A78E495 644096 ----a-w- C:\Windows\SysWOW64\advapi32.dll
2018-07-24 06:29:20 4EB42FA4DC131C86B3BF429CAE8D5E8F 554496 ----a-w- C:\Windows\SysWOW64\kerberos.dll
2018-07-24 06:29:20 3BE82330701A81F0F9857A1A9FC7AAC7 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll
2018-07-24 06:29:20 2F872A04443BD29C380DAE1A4693AFB2 1417728 ----a-w- C:\Windows\SysWOW64\ole32.dll
2018-07-24 06:29:20 2B7401DB11654B3C50D8E5C39C620606 666112 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll
2018-07-24 06:29:20 27D66C4E06281DA3B0644B1BAA9DDAC8 782848 ----a-w- C:\Windows\SysWOW64\webservices.dll
2018-07-24 06:29:20 0A56461A2E07C0E4CB80492B3795E7B0 1176576 ----a-w- C:\Windows\SysWOW64\crypt32.dll
2018-07-24 06:29:14 F8C7346CE9939F2E67887E2300F25694 629760 ----a-w- C:\Windows\SysWOW64\usp10.dll
2018-07-24 06:29:14 F31B13F9591F1350892BB4BFECFAA1C4 215040 ----a-w- C:\Windows\SysWOW64\icm32.dll
2018-07-24 06:29:14 ECE9B3300C87CA315D22D5132F2A64D7 50688 ----a-w- C:\Windows\SysWOW64\ndptsp.tsp
2018-07-24 06:29:14 EB3C5DF7C68432A78D01FEF449183DE4 84992 ----a-w- C:\Windows\SysWOW64\hlink.dll
2018-07-24 06:29:14 C2E787F8373A8287B06ECFA373B88CC2 1251328 ----a-w- C:\Windows\SysWOW64\DWrite.dll
2018-07-24 06:29:14 BA391DDC881CE3C30A42B1A7E7AE2908 111616 ----a-w- C:\Windows\SysWOW64\t2embed.dll
2018-07-24 06:29:14 A6949E802060E20D3B6BB0E39AD7378B 115200 ----a-w- C:\Windows\SysWOW64\rtm.dll
2018-07-24 06:29:14 A4CFBA9772F2D54F466771AFABCB7A22 34304 ----a-w- C:\Windows\SysWOW64\atmlib.dll
2018-07-24 06:29:14 9200B9BBA562D4969EC135A3B7F59EA9 38912 ----a-w- C:\Windows\SysWOW64\kmddsp.tsp
2018-07-24 06:29:14 45562FDC64E30695C97D0C98863A1FC8 71680 ----a-w- C:\Windows\SysWOW64\fontsub.dll
2018-07-24 06:29:14 0DF768001BB6B2191E475F5DC0EC6328 303616 ----a-w- C:\Windows\SysWOW64\msinfo32.exe
2018-07-24 06:29:13 DE4466627EEA8FB832015A12960D6FB1 40960 ----a-w- C:\Windows\SysWOW64\sdchange.exe
2018-07-24 06:29:13 C815C7A3371054ED45426FC7BF439701 108032 ----a-w- C:\Windows\SysWOW64\msra.exe
2018-07-24 06:29:13 802FCE56C31D9400F857D818746B70FE 26624 ----a-w- C:\Windows\SysWOW64\netbtugc.exe
2018-07-24 06:29:13 71C8F44D3323EF92EC39A4D6013C60E8 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll
2018-07-24 06:29:13 690094D4EA6E25405DC737B7BAAB382F 81408 ----a-w- C:\Windows\SysWOW64\rascfg.dll
2018-07-24 06:29:13 5A8D4FB46CD8CA305197B4B2B4E3118B 690688 ----a-w- C:\Windows\SysWOW64\adtschema.dll
2018-07-24 06:29:13 54E453BA0809EA822E703DDB8A799670 162304 ----a-w- C:\Windows\SysWOW64\ncsi.dll
2018-07-24 06:29:13 4A35D7B172AFF9C6B362D7297568836A 269824 ----a-w- C:\Windows\SysWOW64\dnsapi.dll
2018-07-24 06:29:13 2E89C71A89DBB79E7B2D4C8022CC870C 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll
2018-07-24 06:29:13 04A7545E4C8FE10918AE92DF92307CA1 61952 ----a-w- C:\Windows\SysWOW64\rasdiag.dll
2018-07-24 06:29:11 D9800BFB545D192CF19930014045CA70 30720 ----a-w- C:\Windows\SysWOW64\dnscacheugc.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2018-07-24 08:45:26 DFACE0E54E6F3FA1DC0092B6B16F390C 4296704 ----a-w- C:\Windows\Sysnative\D3DCompiler_47.dll
2018-07-24 06:29:44 F28BA5D926706E817FBBDE6A646BF184 140992 ----a-w- C:\Windows\Sysnative\CompatTelRunner.exe
2018-07-24 06:29:44 C6D099A97030F551D9339549CAC9E64F 246272 ----a-w- C:\Windows\Sysnative\aepic.dll
2018-07-24 06:29:44 A951597908E55D34E64BF0F801272C49 2860032 ----a-w- C:\Windows\Sysnative\aitstatic.exe
2018-07-24 06:29:44 6A8491A066FD55EC24DE34B23208DE2F 470016 ----a-w- C:\Windows\Sysnative\centel.dll
2018-07-24 06:29:44 5B0D66A15245E0F0394A3F0605BB2056 443392 ----a-w- C:\Windows\Sysnative\invagent.dll
2018-07-24 06:29:43 EBDB52C995E3915EA4159FDCD92F45B2 783872 ----a-w- C:\Windows\Sysnative\generaltel.dll
2018-07-24 06:29:43 E0E860556906246367CBF595DF5905A1 680960 ----a-w- C:\Windows\Sysnative\aeinv.dll
2018-07-24 06:29:43 B4F45446416C85DA7F099E42F9F9F907 612352 ----a-w- C:\Windows\Sysnative\devinv.dll
2018-07-24 06:29:43 8E5D58AA60B350C69BED3476937899CF 301056 ----a-w- C:\Windows\Sysnative\acmigration.dll
2018-07-24 06:29:43 17147053A522FA230B4744E15A465B1B 1602048 ----a-w- C:\Windows\Sysnative\appraiser.dll
2018-07-24 06:29:35 F5F31DC3B928073274BCDF7B4D4136F9 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-environment-l1-1-0.dll
2018-07-24 06:29:35 97741740B1831234D80ED912F8B9A964 91368 ----a-w- C:\Windows\Sysnative\MigAutoPlay.exe
2018-07-24 06:29:35 1BF2AF4DEB96801EDFDE04A763EA4028 14168 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-time-l1-1-0.dll
2018-07-24 06:29:35 1A3292019AF01D7A6ED8BC52686840E6 17752 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-string-l1-1-0.dll
2018-07-24 06:29:34 FF6E04A942AB95C3CAD6C111B730102E 2058240 ----a-w- C:\Windows\Sysnative\Query.dll
2018-07-24 06:29:34 FD374A7F3079A4F7D96B4C8A1E71B1A3 20824 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-math-l1-1-0.dll
2018-07-24 06:29:34 FCFB6405CF54D78C5BAA81A66802918C 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-utility-l1-1-0.dll
2018-07-24 06:29:34 F90898CEFAAF450857C3C6A7EB08DB42 103936 ----a-w- C:\Windows\Sysnative\resmon.exe
2018-07-24 06:29:34 F5D4EF8A0C33CBF321DD51ABAFD5FFB2 15704 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-convert-l1-1-0.dll
2018-07-24 06:29:34 E8E4E71C396E184A65E3E46112825985 288256 ----a-w- C:\Windows\Sysnative\mssphtb.dll
2018-07-24 06:29:34 DBB0E88A94589792069DB5DECC9D5D60 58880 ----a-w- C:\Windows\Sysnative\pdhui.dll
2018-07-24 06:29:34 D3252C57563DEEF1D9E257FB17577690 53248 ----a-w- C:\Windows\Sysnative\hhsetup.dll
2018-07-24 06:29:34 D263B7CE85EFDC007C40AABCA5ACB255 17752 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-24 06:29:34 B4B63F1D78B3DF2EFA57192F3329D202 9728 ----a-w- C:\Windows\Sysnative\iprtprio.dll
2018-07-24 06:29:34 9FFDF8425078B97D31DF095AE0BA2A43 48640 ----a-w- C:\Windows\Sysnative\wpnpinst.exe
2018-07-24 06:29:34 9A2F550B05720F69592A66EE9733E1E1 5120 ----a-w- C:\Windows\Sysnative\msdxm.ocx
2018-07-24 06:29:34 9A2F550B05720F69592A66EE9733E1E1 5120 ----a-w- C:\Windows\Sysnative\dxmasf.dll
2018-07-24 06:29:34 9600008630390E2209199E7791185075 12632 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-process-l1-1-0.dll
2018-07-24 06:29:34 934FEAED29730C6F894872EEA7577A80 128512 ----a-w- C:\Windows\Sysnative\IcCoinstall.dll
2018-07-24 06:29:34 861A2FD3AFB4557BA49A6D60A02C39BF 13656 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-24 06:29:34 842CA37133BE98BE81EE569F8BA6D2AD 9216 ----a-w- C:\Windows\Sysnative\plasrv.exe
2018-07-24 06:29:34 8003D39B386EDCCFB08DC21AACC0683A 559616 ----a-w- C:\Windows\Sysnative\spoolsv.exe
2018-07-24 06:29:34 7DF8B500AE98DE6CD677C15FC653F47D 9728 ----a-w- C:\Windows\Sysnative\spwmp.dll
2018-07-24 06:29:34 730153373C28F016B84D7F717775954D 25600 ----a-w- C:\Windows\Sysnative\winnsi.dll
2018-07-24 06:29:34 72EBE4E993A0EA5BEEB25A71F36A7E5F 131072 ----a-w- C:\Windows\Sysnative\mmcshext.dll
2018-07-24 06:29:34 71340AB9EA9678E8C095E8C6DA06563E 194048 ----a-w- C:\Windows\Sysnative\itircl.dll
2018-07-24 06:29:34 6A0A2D8C5C9CA9826930872602472195 11264 ----a-w- C:\Windows\Sysnative\msmmsp.dll
2018-07-24 06:29:34 64EECB4CE99C99B1136F88A17AD8EF58 22528 ----a-w- C:\Windows\Sysnative\inetppui.dll
2018-07-24 06:29:34 54F104E6825A8B82E3552BA060D2C0CF 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2018-07-24 06:29:34 54C942A045F24C63DB6C49DD9618984F 594432 ----a-w- C:\Windows\Sysnative\wvc.dll
2018-07-24 06:29:34 4BB23FCE63D49211BB520D368E1FDD3F 34304 ----a-w- C:\Windows\Sysnative\werdiagcontroller.dll
2018-07-24 06:29:34 471FA523AFE0C531052190789916AD91 1133568 ----a-w- C:\Windows\Sysnative\cdosys.dll
2018-07-24 06:29:34 34B55B7F3479B1C1AD4F109614F29D19 170496 ----a-w- C:\Windows\Sysnative\itss.dll
2018-07-24 06:29:34 34450D8B9F8638E486F92780D5728D07 473600 ----a-w- C:\Windows\Sysnative\taskcomp.dll
2018-07-24 06:29:34 2E33759FA0983CCEF45621AE716205B0 26112 ----a-w- C:\Windows\Sysnative\oleres.dll
2018-07-24 06:29:34 2C653B6993E3C9C6C7138802E6FAFAC4 12288 ----a-w- C:\Windows\Sysnative\wu.upgrade.ps.dll
2018-07-24 06:29:34 21F7875DF5DD6FB0C1B961B40336129D 113664 ----a-w- C:\Windows\Sysnative\SearchFilterHost.exe
2018-07-24 06:29:34 21AB8A6F559D1E49C8FFA3CDAF037839 12640 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-conio-l1-1-0.dll
2018-07-24 06:29:34 1B923D7B425EE35CC865715E8FF2B920 16216 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-24 06:29:34 17AA424DAD67E33C231241A7AB0EFF07 75264 ----a-w- C:\Windows\Sysnative\msscntrs.dll
2018-07-24 06:29:34 158E32C297632CA1733A31FC3917DD6C 14336 ----a-w- C:\Windows\Sysnative\msshooks.dll
2018-07-24 06:29:34 156DA44DE8586202CD7BADDA883B5994 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-heap-l1-1-0.dll
2018-07-24 06:29:34 13669EF8AE3C36E077BBCDA1EF6CE30C 19288 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-24 06:29:34 10C18EE8EB974E9F6382917AD3CD7D11 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-locale-l1-1-0.dll
2018-07-24 06:29:34 08A13AC17CBDC76276370DA5D5F20060 369664 ----a-w- C:\Windows\Sysnative\zipfldr.dll
2018-07-24 06:29:33 DC4EEBF548FDF3DDD6A3A7AD4293A61B 2851328 ----a-w- C:\Windows\Sysnative\themeui.dll
2018-07-24 06:29:33 C8584E8773E541BAC251CAA92DEBCE7D 491520 ----a-w- C:\Windows\Sysnative\mssph.dll
2018-07-24 06:29:33 C5AA76BE7645EECE0C34562FA96C7B38 13312 ----a-w- C:\Windows\Sysnative\nsi.dll
2018-07-24 06:29:33 C2D848F56293ED04C730D75AF0F64233 115200 ----a-w- C:\Windows\Sysnative\mssitlb.dll
2018-07-24 06:29:33 A42CC1EA7DE02E77B8F610C9DB4688EB 463872 ----a-w- C:\Windows\Sysnative\certcli.dll
2018-07-24 06:29:33 9A9174065781052CF8822E13FA105738 591872 ----a-w- C:\Windows\Sysnative\SearchIndexer.exe
2018-07-24 06:29:33 92CD3565621335BC1432850B0AE5C012 419840 ----a-w- C:\Windows\Sysnative\KernelBase.dll
2018-07-24 06:29:33 8EECC364ABE9ABA05AFB7B3E26C91F37 50176 ----a-w- C:\Windows\Sysnative\srclient.dll
2018-07-24 06:29:33 89B1F9A2A9A872906C113803CA3B0361 2319872 ----a-w- C:\Windows\Sysnative\tquery.dll
2018-07-24 06:29:33 7B828D19E030EB29232AB923DDCE9BBF 24576 ----a-w- C:\Windows\Sysnative\WcnEapPeerProxy.dll
2018-07-24 06:29:33 7A65B9A545133941EBF23A6E06A6CE1F 8704 ----a-w- C:\Windows\Sysnative\comcat.dll
2018-07-24 06:29:33 7770E03C9DC6FDA3549932D1BBB9C2FE 296960 ----a-w- C:\Windows\Sysnative\rstrui.exe
2018-07-24 06:29:33 61151E4E079FCA5601CCD05ADFE93064 13312 ----a-w- C:\Windows\Sysnative\wshnetbs.dll
2018-07-24 06:29:33 5CEFEDE17307B080125D16FBA2125602 37888 ----a-w- C:\Windows\Sysnative\wuapp.exe
2018-07-24 06:29:33 3A5A8A94B88C8FD0D8819F82136A5F8A 249856 ----a-w- C:\Windows\Sysnative\SearchProtocolHost.exe
2018-07-24 06:29:33 0BDEF8EAE185FFC435023217347C6E31 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll
2018-07-24 06:29:33 0B172766B1E78AEBCA583713A850FFF8 63488 ----a-w- C:\Windows\Sysnative\setbcdlocale.dll
2018-07-24 06:29:32 F9B0D652B2934AB8EC64DD26CB7601C6 211968 ----a-w- C:\Windows\Sysnative\cic.dll
2018-07-24 06:29:32 F99E94CEF9DB4A0D269870DBA1E0A0DC 101376 ----a-w- C:\Windows\Sysnative\fdWCN.dll
2018-07-24 06:29:32 F97C397CE4778CA49F105463FB6BD287 85504 ----a-w- C:\Windows\Sysnative\asycfilt.dll
2018-07-24 06:29:32 F88906103EE31C7B5FE0C489452F72FC 1163264 ----a-w- C:\Windows\Sysnative\kernel32.dll
2018-07-24 06:29:32 F625EA4C3102411C52F5D9AF4559174B 61952 ----a-w- C:\Windows\Sysnative\ntprint.exe
2018-07-24 06:29:32 E5A1E7B40B5086E643705B2D85A139C4 1110528 ----a-w- C:\Windows\Sysnative\schedsvc.dll
2018-07-24 06:29:32 E282BB751CD40C38FD8D3B93C6CEDAE3 22016 ----a-w- C:\Windows\Sysnative\credssp.dll
2018-07-24 06:29:32 D9800890FAF5723DCA476FA6A762DE4B 63832 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-private-l1-1-0.dll
2018-07-24 06:29:32 D682E67712CCF3E6D297D915A420AB1B 16896 ----a-w- C:\Windows\Sysnative\wshqos.dll
2018-07-24 06:29:32 D258DBCB124F0B06951A80C58276EF46 346112 ----a-w- C:\Windows\Sysnative\ntprint.dll
2018-07-24 06:29:32 BEEF124AE870E5DE7F0DDC7C68DF8F76 2048 ----a-w- C:\Windows\Sysnative\mferror.dll
2018-07-24 06:29:32 BBBFA70DDA53A309701E44B5948C8FDA 24064 ----a-w- C:\Windows\Sysnative\WcnEapAuthProxy.dll
2018-07-24 06:29:32 98C74D7C3D6FFA2851E485FE91C2C695 17920 ----a-w- C:\Windows\Sysnative\appidcertstorecheck.exe
2018-07-24 06:29:32 96AA4C72100C0C1731783A5BB5430713 51712 ----a-w- C:\Windows\Sysnative\vmictimeprovider.dll
2018-07-24 06:29:32 92A3CD6057E9F44AA645341E6D717BEF 172544 ----a-w- C:\Windows\Sysnative\perfmon.exe
2018-07-24 06:29:32 8E15963FF62A61EA58A7D5EB1845542B 701952 ----a-w- C:\Windows\Sysnative\hhctrl.ocx
2018-07-24 06:29:32 89765E5A616A11A0B78E015F88563D60 50688 ----a-w- C:\Windows\Sysnative\wermgr.exe
2018-07-24 06:29:32 814754FE14D1D97D5D565746E1AD458E 210432 ----a-w- C:\Windows\Sysnative\wdigest.dll
2018-07-24 06:29:32 80AD73B817FFDB549F3CDC2E6A160A2C 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll
2018-07-24 06:29:32 7FEBFC27067BE03D7CECDE09AFFAF2A8 93696 ----a-w- C:\Windows\Sysnative\mfmjpegdec.dll
2018-07-24 06:29:32 668B9EFF5CCA4542F435D2CD9CE3C778 26112 ----a-w- C:\Windows\Sysnative\nsisvc.dll
2018-07-24 06:29:32 5B12DFB01574840526AD244E24BCE692 170176 ----a-w- C:\Windows\Sysnative\basecsp.dll
2018-07-24 06:29:32 55733700CBB49AE48379A38FDFCAB8AD 215552 ----a-w- C:\Windows\Sysnative\winsrv.dll
2018-07-24 06:29:32 296D4475DF8458A8E4DDA8842D37DD2F 2048 ----a-w- C:\Windows\Sysnative\msxml6r.dll
2018-07-24 06:29:32 24F1EE7FBCA5999F164CDAF5034519EB 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe
2018-07-24 06:29:32 2067F48D026667923B7BC7184E0D234C 757248 ----a-w- C:\Windows\Sysnative\win32spl.dll
2018-07-24 06:29:32 1EC28916E6C098DEF52EE49D98E4D4CE 7168 ----a-w- C:\Windows\Sysnative\MsraLegacy.tlb
2018-07-24 06:29:32 1DD375A8607A64F53406607195A5BA32 166400 ----a-w- C:\Windows\Sysnative\inetpp.dll
2018-07-24 06:29:32 1BE23B677B6A2631557FB56EA72D0E74 475136 ----a-w- C:\Windows\Sysnative\sysmon.ocx
2018-07-24 06:29:32 19A5175A3D5E386FC3201C4F4B2F8EA1 264704 ----a-w- C:\Windows\Sysnative\P2P.dll
2018-07-24 06:29:32 15F5FC11B490D77AA6A389F7F48530AF 116224 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe
2018-07-24 06:29:32 0396C80CC7120379B2CF5A1A4CBF7CF8 37888 ----a-w- C:\Windows\Sysnative\wups2.dll
2018-07-24 06:29:32 0301EEE83B03229F555C6F8025FB5540 97792 ----a-w- C:\Windows\Sysnative\mprdim.dll
2018-07-24 06:29:32 007665F8DE4B18F82CEC63313F8ADCD2 2144256 ----a-w- C:\Windows\Sysnative\mmc.exe
2018-07-24 06:29:31 E79487826558CC5C43E3F1779CC9D87F 484864 ----a-w- C:\Windows\Sysnative\StructuredQuery.dll
2018-07-24 06:29:31 D11DB8D23EC381BC7B774B5EF7088FF6 140288 ----a-w- C:\Windows\Sysnative\wuauclt.exe
2018-07-24 06:29:31 C70ED53A31477F76600A6BC58753FBBE 709120 ----a-w- C:\Windows\Sysnative\wuapi.dll
2018-07-24 06:29:31 B59C2D5D0F8EE9B287EA31702D291281 778240 ----a-w- C:\Windows\Sysnative\mssvp.dll
2018-07-24 06:29:31 B37049F67D49A88EA7D74E74D00DF6C6 2222080 ----a-w- C:\Windows\Sysnative\mssrch.dll
2018-07-24 06:29:31 AA732CFC19AFC581020FB9FDBF1B8F93 1143296 ----a-w- C:\Windows\Sysnative\DXPTaskRingtone.dll
2018-07-24 06:29:31 9227B8390D601DE8F0423ECD0A60EA57 503808 ----a-w- C:\Windows\Sysnative\srcore.dll
2018-07-24 06:29:31 7085531CD4D020257CEC121317415433 728064 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2018-07-24 06:29:31 1E229A071AA54F1FF4C2FB9D44EEB2B8 107520 ----a-w- C:\Windows\Sysnative\inseng.dll
2018-07-24 06:29:30 FFE6670F3E359484E6B62841203571E0 1574912 ----a-w- C:\Windows\Sysnative\quartz.dll
2018-07-24 06:29:30 627D80A5F4604E5623BF647C27596B69 971776 ----a-w- C:\Windows\Sysnative\localspl.dll
2018-07-24 06:29:30 6129FB75F11062BA2A119E87621DEC14 2004480 ----a-w- C:\Windows\Sysnative\msxml6.dll
2018-07-24 06:29:29 E41DD12A023A54B071A55CEC3537904A 109568 ----a-w- C:\Windows\Sysnative\hlink.dll
2018-07-24 06:29:29 BE8C1B098C47FF68D9A590044389F9EF 345600 ----a-w- C:\Windows\Sysnative\schannel.dll
2018-07-24 06:29:29 BC5F8C5C7ACCD0B884FCB8B67616F537 1389056 ----a-w- C:\Windows\Sysnative\pla.dll
2018-07-24 06:29:29 B7B3C07D8EB33481BCFF3C075381A09B 338432 ----a-w- C:\Windows\Sysnative\conhost.exe
2018-07-24 06:29:29 72F42C96CE1982628CAA275F703C7FED 217600 ----a-w- C:\Windows\Sysnative\WinSCard.dll
2018-07-24 06:29:29 6F14CB391767A3BB45CE9AA5E36B8B15 486400 ----a-w- C:\Windows\Sysnative\wer.dll
2018-07-24 06:29:29 4190FD659E26999CE7E024475BFBBA41 3665920 ----a-w- C:\Windows\Sysnative\MSVidCtl.dll
2018-07-24 06:29:29 2B97029736390D5A34A90A0AD9AC8A62 404992 ----a-w- C:\Windows\Sysnative\wisptis.exe
2018-07-24 06:29:29 0D38C1ED3D068E8EBCBFFAED332F0032 1363456 ----a-w- C:\Windows\Sysnative\wdc.dll
2018-07-24 06:29:29 04476FEA865294E1B1CE9EC008F4D6DC 3203584 ----a-w- C:\Windows\Sysnative\mmcndmgr.dll
2018-07-24 06:29:28 F8DBB1C24F8FFBCA97E61ED06A8307F2 229376 ----a-w- C:\Windows\Sysnative\scksp.dll
2018-07-24 06:29:28 CB92C5DD2BF928BE2F7D893BAD9332D2 34816 ----a-w- C:\Windows\Sysnative\appidsvc.dll
2018-07-24 06:29:28 C3532E4A656E0B986E5674576031AFEF 504320 ----a-w- C:\Windows\Sysnative\msihnd.dll
2018-07-24 06:29:28 AAAC72FC092ED7245DABEAE48890EBC6 119296 ----a-w- C:\Windows\Sysnative\racpldlg.dll
2018-07-24 06:29:28 90FE38C6A8FE7EAA921DEBDEFBDDBAEF 98816 ----a-w- C:\Windows\Sysnative\wudriver.dll
2018-07-24 06:29:28 8886F053688EC10FE4858C3302266920 244224 ----a-w- C:\Windows\Sysnative\vmicsvc.exe
2018-07-24 06:29:28 79DB2B358BF0B152F15D1C5A525233BD 439296 ----a-w- C:\Windows\Sysnative\p2psvc.dll
2018-07-24 06:29:28 4CF5B8F1AF0A757B169795AA21070A6A 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2018-07-24 06:29:28 4377D5CD793F8F1DD698FF7A2639F5E8 148480 ----a-w- C:\Windows\Sysnative\appidpolicyconverter.exe
2018-07-24 06:29:28 414ED8500CAF9869BDD23296886878D7 120320 ----a-w- C:\Windows\Sysnative\WcnApi.dll
2018-07-24 06:29:28 396B9CC3BCC1BEADFAA6C1A6A5FA54D0 23744 ----a-w- C:\Windows\Sysnative\streamci.dll
2018-07-24 06:29:28 35050F01D00E7E72A2449EB6F9ABF8B4 40960 ----a-w- C:\Windows\Sysnative\WcsPlugInService.dll
2018-07-24 06:29:28 26E0462BFF018B9B2DC95B83B36A58F9 36864 ----a-w- C:\Windows\Sysnative\wups.dll
2018-07-24 06:29:28 21CA3FEC7A49BEE4CCC39BC59F5D2FA9 99840 ----a-w- C:\Windows\Sysnative\mssprxy.dll
2018-07-24 06:29:28 17AC9353D8BCDB0E4D978D0C0703B623 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll
2018-07-24 06:29:28 1197C7F741BF8AFC201D081C4FA59927 1032192 ----a-w- C:\Windows\Sysnative\rdpcore.dll
2018-07-24 06:29:28 0535EE6D57256EB96350E8C12B2887E9 2048 ----a-w- C:\Windows\Sysnative\tzres.dll
2018-07-24 06:29:27 F670C35EDE5F6B6E7624608C31710FA7 398376 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
2018-07-24 06:29:27 E30B11795F0E8600F6737D7DEB25D158 3165184 ----a-w- C:\Windows\Sysnative\wucltux.dll
2018-07-24 06:29:27 6AD64BB3B7183B64B73609CB093CDCB7 12574720 ----a-w- C:\Windows\Sysnative\wmploc.DLL
2018-07-24 06:29:27 691D953D90BB9552057CF82D86E8BF55 84480 ----a-w- C:\Windows\Sysnative\INETRES.dll
2018-07-24 06:29:27 28B0044D934B9D922B03C0330BC5C28C 1545216 ----a-w- C:\Windows\Sysnative\urlmon.dll
2018-07-24 06:29:27 1DD626FE4DE2D4B710DD1360F404A54F 71680 ----a-w- C:\Windows\Sysnative\PrintBrmUi.exe
2018-07-24 06:29:26 FFC84C824A0F2F36CEE385D64A4E0044 152064 ----a-w- C:\Windows\Sysnative\occache.dll
2018-07-24 06:29:26 EE896904F18B1DEA01A3762B2E662441 1867776 ----a-w- C:\Windows\Sysnative\ExplorerFrame.dll
2018-07-24 06:29:26 CF90304887A6D65641FA6AF70CD7D095 114368 ----a-w- C:\Windows\Sysnative\consent.exe
2018-07-24 06:29:26 8F8FE1115D56F601EBB707B353DA6030 961024 ----a-w- C:\Windows\Sysnative\actxprxy.dll
2018-07-24 06:29:26 734EBDB764E033B8E4E55898AED6CEB9 1942016 ----a-w- C:\Windows\Sysnative\authui.dll
2018-07-24 06:29:26 6ED680CF33CF6883F9F900D978A6E588 14635008 ----a-w- C:\Windows\Sysnative\wmp.dll
2018-07-24 06:29:26 0545A00F0E6E387A91BA59427AE1C6F7 1001984 ----a-w- C:\Windows\Sysnative\gpedit.dll
2018-07-24 06:29:25 E59C04C0681BB1EA90406254647DBA4D 44032 ----a-w- C:\Windows\Sysnative\csrsrv.dll
2018-07-24 06:29:25 DA4C42CE3913EC5B1471485CD232CC5A 28160 ----a-w- C:\Windows\Sysnative\secur32.dll
2018-07-24 06:29:25 D92C0D871FBA258CBF2126EABFE31447 70144 ----a-w- C:\Windows\Sysnative\appinfo.dll
2018-07-24 06:29:25 C36BB659F08F046B139C8D1B980BF1AC 46080 ----a-w- C:\Windows\Sysnative\rundll32.exe
2018-07-24 06:29:25 BF1BBA9F3C707FD6B2B07ADD6DB47E49 312320 ----a-w- C:\Windows\Sysnative\ncrypt.dll
2018-07-24 06:29:25 B7A23A91AD9CB04AF9E21CF775CCE775 30720 ----a-w- C:\Windows\Sysnative\lsass.exe
2018-07-24 06:29:25 B42CD13EEDF756570C490BC6B9CB44DD 14336 ----a-w- C:\Windows\Sysnative\dciman32.dll
2018-07-24 06:29:25 A64B7797CF2C49906B27376B64158871 13312 ----a-w- C:\Windows\Sysnative\sscore.dll
2018-07-24 06:29:25 A5979BDEE89F69E596437AA258BF9538 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll
2018-07-24 06:29:25 9D214A2727F3633C5EAF5E52658B0EBA 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll
2018-07-24 06:29:25 8F511C1E7347EF43FB5ECD7C748C4803 25088 ----a-w- C:\Windows\Sysnative\msimsg.dll
2018-07-24 06:29:25 7C7CB27E0025B9387C193DC10907F2D0 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll
2018-07-24 06:29:25 7715910112D44F7501F560995AB052F4 123904 ----a-w- C:\Windows\Sysnative\bcrypt.dll
2018-07-24 06:29:25 4CF347F478EE4CA538DE56B2772306A1 43520 ----a-w- C:\Windows\Sysnative\cryptbase.dll
2018-07-24 06:29:25 39599BF2945B67A36769DB69F3D63BCC 28672 ----a-w- C:\Windows\Sysnative\sspisrv.dll
2018-07-24 06:29:25 31C0F011CED277003021C12F31563996 113664 ----a-w- C:\Windows\Sysnative\wlanapi.dll
2018-07-24 06:29:25 1CD1341FCBEA8E5E057D555CA94C9B77 448512 ----a-w- C:\Windows\Sysnative\wlansec.dll
2018-07-24 06:29:25 15CF7B24AA64FE958CAEA00274838B1C 1741312 ----a-w- C:\Windows\Sysnative\sysmain.dll
2018-07-24 06:29:25 04841947C5F9A7E31EFB0914A056AD62 1068544 ----a-w- C:\Windows\Sysnative\msctf.dll
2018-07-24 06:29:25 042747AD32A51760D1C7F21A47BBF437 24576 ----a-w- C:\Windows\Sysnative\mfpmp.exe
2018-07-24 06:29:24 DC1BC5F2B1C54EA6725734BF4C0E5454 16384 ----a-w- C:\Windows\Sysnative\RdpGroupPolicyExtension.dll
2018-07-24 06:29:24 DB2EF7E6E4C76A32ACB777F71F10A79C 4834816 ----a-w- C:\Windows\Sysnative\xpsrchvw.exe
2018-07-24 06:29:24 CB2515803A8BBBDD7207A1F3CB554DC4 192512 ----a-w- C:\Windows\Sysnative\wuwebv.dll
2018-07-24 06:29:24 B8A2835643EB138B4081E50079353774 181760 ----a-w- C:\Windows\Sysnative\PeerDist.dll
2018-07-24 06:29:24 AD359C53941A6AC57FB935E7E9F1D16E 92160 ----a-w- C:\Windows\Sysnative\TabSvc.dll
2018-07-24 06:29:24 9B150E212F7905E08EC36977C38735B0 131584 ----a-w- C:\Windows\Sysnative\PeerDistWSDDiscoProv.dll
2018-07-24 06:29:24 99B4EC8C18D864213258FF96796A3F40 51200 ----a-w- C:\Windows\Sysnative\PeerDistHttpTrans.dll
2018-07-24 06:29:24 7F1A8D2D82F9B9AE61ADC986C5D4B457 91136 ----a-w- C:\Windows\Sysnative\WinSetupUI.dll
2018-07-24 06:29:24 7CFC917E6019DBABE474BC99E2BC3ADD 969216 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2018-07-24 06:29:24 79E3903FD75A22386326B542F17A2563 366592 ----a-w- C:\Windows\Sysnative\wcncsvc.dll
2018-07-24 06:29:24 64FB16C5849444F0CFD403C83D9579A1 327168 ----a-w- C:\Windows\Sysnative\pnrpsvc.dll
2018-07-24 06:29:24 634DCA9B1512DEDDADB4887116BFAECE 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll
2018-07-24 06:29:24 5BA6A8A4404B7B68999F6687404AB968 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
2018-07-24 06:29:24 42AEC5BC87A54240115A9230BF495F86 315392 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2018-07-24 06:29:24 369389F447AE7B741B06AAB66A10EED7 809472 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2018-07-24 06:29:24 307312447AD71ECC414B7B33E3006C57 95744 ----a-w- C:\Windows\Sysnative\rascfg.dll
2018-07-24 06:29:24 28BE388215DBA049A038F1E55FE92AF9 59904 ----a-w- C:\Windows\Sysnative\appidapi.dll
2018-07-24 06:29:23 E15CD986AEC0ABB5C6C03194F61C268B 2135552 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2018-07-24 06:29:23 C3C062499B700B9501E63D6D049CF982 2902016 ----a-w- C:\Windows\Sysnative\iertutil.dll
2018-07-24 06:29:23 9E42E092BC8336AF5F00CA9B56F45370 14185984 ----a-w- C:\Windows\Sysnative\shell32.dll
2018-07-24 06:29:23 7FA39F97E70048CF087AB8C5D201A680 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll
2018-07-24 06:29:23 468E317BD66B892DA9BF3097E5A3452F 355328 ----a-w- C:\Windows\Sysnative\mmcbase.dll
2018-07-24 06:29:23 4648043558C20D3D9E6CBE4B0A17EF4E 576512 ----a-w- C:\Windows\Sysnative\vbscript.dll
2018-07-24 06:29:23 0B739D33715DE42880F74EEEF9F26EFF 361984 ----a-w- C:\Windows\Sysnative\wow64win.dll
2018-07-24 06:29:22 E6499E0BFB97D128C0019F564AECA79B 749568 ----a-w- C:\Windows\Sysnative\FirewallAPI.dll
2018-07-24 06:29:22 BAD009A2A00ED9E793788EE3B8D29D13 70656 ----a-w- C:\Windows\Sysnative\nlaapi.dll
2018-07-24 06:29:22 B5D7A0638CA817BA7D8A4DFD3499BA2A 371392 ----a-w- C:\Windows\Sysnative\clfs.sys
2018-07-24 06:29:22 9984C87858BB977FD6DCD516BF8C5029 998912 ----a-w- C:\Windows\Sysnative\ucrtbase.dll
2018-07-24 06:29:22 85915F0BF5A7314A65B43602971ADFDC 525824 ----a-w- C:\Windows\Sysnative\catsrvut.dll
2018-07-24 06:29:22 7D789D1E8222877722A68B5EA0A8EB65 128512 ----a-w- C:\Windows\Sysnative\msiexec.exe
2018-07-24 06:29:22 77A0CB0FD36B1E3792504B437ED5AE82 87552 ----a-w- C:\Windows\Sysnative\tdc.ocx
2018-07-24 06:29:22 62379E30C5842B0751E84D99881A5C31 144384 ----a-w- C:\Windows\Sysnative\cdd.dll
2018-07-24 06:29:22 5AE580537C52D695EABE7612A670B07E 324096 ----a-w- C:\Windows\Sysnative\FWPUCLNT.DLL
2018-07-24 06:29:22 3A297EFFE6491B79525431B48DC24B3A 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2018-07-24 06:29:22 163184DBC77178B0A98D60F04EFE3518 842752 ----a-w- C:\Windows\Sysnative\nshwfp.dll
2018-07-24 06:29:21 D221688A4959B28955C23C840FD0BDB9 383680 ----a-w- C:\Windows\Sysnative\atmfd.dll
2018-07-24 06:29:21 C0EBC0C6894B8847C68D5719068E1A06 243712 ----a-w- C:\Windows\Sysnative\wow64.dll
2018-07-24 06:29:21 B7E822E262620F65B0D3DE97D0A0601C 112640 ----a-w- C:\Windows\Sysnative\smss.exe
2018-07-24 06:29:21 9BD47F0DFE540DDF3DE1DF1D9E06BD09 190464 ----a-w- C:\Windows\Sysnative\rpchttp.dll
2018-07-24 06:29:21 777D8C353728538DEF6AC017C6FF2778 281600 ----a-w- C:\Windows\Sysnative\iprtrmgr.dll
2018-07-24 06:29:21 42E2902255B1EC83E2481ACF542A8E69 1665344 ----a-w- C:\Windows\Sysnative\ntdll.dll
2018-07-24 06:29:21 0FC46C397FA85BE58BC1E1F46A2B026C 262336 ----a-w- C:\Windows\Sysnative\hal.dll
2018-07-24 06:29:20 F9B2FCFF14D866C9C6F27A041C364F9C 67072 ----a-w- C:\Windows\Sysnative\wsnmp32.dll
2018-07-24 06:29:20 EE5F8717CBCDB28A42A408D14B7ADB72 3181568 ----a-w- C:\Windows\Sysnative\rdpcorets.dll
2018-07-24 06:29:20 EC0550300E899BD69BDB5937E684D348 190976 ----a-w- C:\Windows\Sysnative\cryptsvc.dll
2018-07-24 06:29:20 E65118228501478C4630BC96F2E1C876 236032 ----a-w- C:\Windows\Sysnative\srvsvc.dll
2018-07-24 06:29:20 E3960944590EC8350C7049BC5ECC709D 414208 ----a-w- C:\Windows\Sysnative\wlanmsm.dll
2018-07-24 06:29:20 C59E17D5E30972ECA28A72004795AEA7 1361408 ----a-w- C:\Windows\Sysnative\PeerDistSvc.dll
2018-07-24 06:29:20 C45C167AEF19509C6C156C7D2CFE4AC0 118784 ----a-w- C:\Windows\Sysnative\wlanhlp.dll
2018-07-24 06:29:20 B1E26EFC437F19277403F8519946AFB6 41472 ----a-w- C:\Windows\Sysnative\lpk.dll
2018-07-24 06:29:20 AF043145FDA1CAB4362E49550237F498 206848 ----a-w- C:\Windows\Sysnative\mfps.dll
2018-07-24 06:29:20 AE3A1739F010CCE45B8B36B53EEFA7BF 243200 ----a-w- C:\Windows\Sysnative\rdpudd.dll
2018-07-24 06:29:20 AA81D975FEB65CD4D1817E3CD1AEE1A5 135680 ----a-w- C:\Windows\Sysnative\sspicli.dll
2018-07-24 06:29:20 A5599B0804E7FFC667259F4E31643C8C 141824 ----a-w- C:\Windows\Sysnative\cryptnet.dll
2018-07-24 06:29:20 9DFECE11850EF9679FE46017DF168CE2 55808 ----a-w- C:\Windows\Sysnative\rrinstaller.exe
2018-07-24 06:29:20 8AA244A59261BE7A3A3A4C4744A65F08 407040 ----a-w- C:\Windows\Sysnative\scesrv.dll
2018-07-24 06:29:20 8531E27ED3B7B89FBF2625CF25E6ACB0 229376 ----a-w- C:\Windows\Sysnative\wintrust.dll
2018-07-24 06:29:20 6A118B401CF3AB7F22B67029FC3A7F4F 22528 ----a-w- C:\Windows\Sysnative\icaapi.dll
2018-07-24 06:29:20 614E8B7CEE39C7AFC7695BB90B1EB1D8 316928 ----a-w- C:\Windows\Sysnative\msv1_0.dll
2018-07-24 06:29:20 43CCB07A71347064695B8852492DA126 512000 ----a-w- C:\Windows\Sysnative\rpcss.dll
2018-07-24 06:29:20 30646AB10A0981A1BBB1F95400E99C08 94208 ----a-w- C:\Windows\Sysnative\TSpkg.dll
2018-07-24 06:29:20 11D6A262B617130F7C16E308C12E0D41 455680 ----a-w- C:\Windows\Sysnative\winlogon.exe
2018-07-24 06:29:20 0A2E5059B5775E7DBBE05B8156ECE0C6 2651648 ----a-w- C:\Windows\Sysnative\wuaueng.dll
2018-07-24 06:29:19 E8A170DBAD23508376BE020934FF19D6 5779968 ----a-w- C:\Windows\Sysnative\jscript9.dll
2018-07-24 06:29:19 BA3688C4CBC20A3817DD118C768E2A79 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll
2018-07-24 06:29:19 9647B3BD734351FC209E416A621B1753 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll
2018-07-24 06:29:19 94F674F4D1AD1B41E97FA471FAF34FA3 794624 ----a-w- C:\Windows\Sysnative\jscript.dll
2018-07-24 06:29:19 8C1CB1F617A343D93AB3511366FFC3E3 489984 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2018-07-24 06:29:19 53A8232418A4728F2374E393767F539E 15283200 ----a-w- C:\Windows\Sysnative\ieframe.dll
2018-07-24 06:29:19 48E075759ECF6AB15CB224633A5CB1CB 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll
2018-07-24 06:29:19 43B8084AB3CC8A87D13E2B3E2BC58396 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2018-07-24 06:29:19 1CBBCAF325E2961724A2436A29824A9C 615936 ----a-w- C:\Windows\Sysnative\ieui.dll
2018-07-24 06:29:18 C66D2F929CDDB3DAEE59F9C6B86A2645 417280 ----a-w- C:\Windows\Sysnative\html.iec
2018-07-24 06:29:18 ACEEFC5988E5FBE0AE624F04CA62E75E 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll
2018-07-24 06:29:18 ACCE9A86D69F34E1EDDE7B53F2D64699 625664 ----a-w- C:\Windows\Sysnative\mscms.dll
2018-07-24 06:29:18 A11391166113D74AA4F34FA9373EE68D 3241472 ----a-w- C:\Windows\Sysnative\wininet.dll
2018-07-24 06:29:18 8FBB89B99E5A5259D0EC8FE688DB2740 199680 ----a-w- C:\Windows\Sysnative\msrating.dll
2018-07-24 06:29:18 0C15874715A6B2E3074B93ADE4443D33 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2018-07-24 06:29:17 E3ED6C06462FDDE33100F7E45E8F5213 705024 ----a-w- C:\Windows\Sysnative\BFE.DLL
2018-07-24 06:29:17 D7FC199EADC4438660A6338C2E6A9F90 444928 ----a-w- C:\Windows\Sysnative\winhttp.dll
2018-07-24 06:29:17 D6AC76621D74E415113D83F03E7AF8D4 405504 ----a-w- C:\Windows\Sysnative\gdi32.dll
2018-07-24 06:29:17 93DEDBE8E24F31962755E6AA4AC2D7B0 303104 ----a-w- C:\Windows\Sysnative\nlasvc.dll
2018-07-24 06:29:17 8C8D675AFB55BC15165F36D39FEE2403 3246080 ----a-w- C:\Windows\Sysnative\msi.dll
2018-07-24 06:29:17 3FA0F2D5BCF878BBBCBF1D80E698552B 828928 ----a-w- C:\Windows\Sysnative\MPSSVC.dll
2018-07-24 06:29:17 3B49EEE6F346CCB044C1EA2245855849 3226112 ----a-w- C:\Windows\Sysnative\win32k.sys
2018-07-24 06:29:17 25AF7D5C819F19D7C97F4A9607F2609A 863232 ----a-w- C:\Windows\Sysnative\IKEEXT.DLL
2018-07-24 06:29:17 0AE751DFA0C96532D283C87E0EAC21F0 1735168 ----a-w- C:\Windows\Sysnative\comsvcs.dll
2018-07-24 06:29:16 E6F5C9788BF800772914BEDC12FCC3F4 731648 ----a-w- C:\Windows\Sysnative\kerberos.dll
2018-07-24 06:29:16 D376A4B1765B8DF3E7E9CDE98DB3200E 2066432 ----a-w- C:\Windows\Sysnative\ole32.dll
2018-07-24 06:29:16 6C2E6C1AD1476BABC6F303678BB144FE 313856 ----a-w- C:\Windows\Sysnative\Wldap32.dll
2018-07-24 06:29:16 59960219F73C56B06271B75B5C41CA51 880640 ----a-w- C:\Windows\Sysnative\advapi32.dll
2018-07-24 06:29:16 48BF5FBF74532BCC1F720968FC02367A 300544 ----a-w- C:\Windows\Sysnative\pdh.dll
2018-07-24 06:29:16 448853F460D6627386D812CE948ADEFE 977408 ----a-w- C:\Windows\Sysnative\inetcomm.dll
2018-07-24 06:29:16 4085CEEA9EA0ECED65C8B306D49CF0C8 5577408 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe
2018-07-24 06:29:16 1BCF1641BF09C022E760F070A328F861 876032 ----a-w- C:\Windows\Sysnative\oleaut32.dll
2018-07-24 06:29:16 0FDF3E7637424DD987D1DFD2F6B85CAD 1461760 ----a-w- C:\Windows\Sysnative\lsasrv.dll
2018-07-24 06:29:16 08C8866D1538825E605D4D4B5E47F772 1211904 ----a-w- C:\Windows\Sysnative\rpcrt4.dll
2018-07-24 06:29:15 DC46807E86DD8EDDFD31FDE6127D4D43 4120576 ----a-w- C:\Windows\Sysnative\mf.dll
2018-07-24 06:29:15 71854E8E246FF283800D4AECE661D9C8 25743872 ----a-w- C:\Windows\Sysnative\mshtml.dll
2018-07-24 06:29:15 4BB2486807C1B0D29282E40568990334 1159680 ----a-w- C:\Windows\Sysnative\webservices.dll
2018-07-24 06:29:15 4B7912EB80820EAC543EE54806EFCAF0 886272 ----a-w- C:\Windows\Sysnative\wlansvc.dll
2018-07-24 06:29:15 0F76EB1552896B51F838B8CD674A9C46 1484288 ----a-w- C:\Windows\Sysnative\crypt32.dll
2018-07-24 06:29:14 FBDC49AB136FE84277E4239192E9502B 634272 ----a-w- C:\Windows\Sysnative\winload.exe
2018-07-24 06:29:14 E96131836A9B63153EB3FA63BFD9A9AB 76288 ----a-w- C:\Windows\Sysnative\rasdiag.dll
2018-07-24 06:29:14 E0B43EA51494F84930CABE418792BB8F 708288 ----a-w- C:\Windows\Sysnative\winload.efi
2018-07-24 06:29:14 D52EADF6043C0BA6E5CB20BBE91F516B 152064 ----a-w- C:\Windows\Sysnative\t2embed.dll
2018-07-24 06:29:14 D44CECD80278138D5D7B77F495DD34FF 138240 ----a-w- C:\Windows\Sysnative\rtm.dll
2018-07-24 06:29:14 D2A34BE3588B3A6FAE032B6B8037A8DF 41472 ----a-w- C:\Windows\Sysnative\rasmxs.dll
2018-07-24 06:29:14 BD69F99287CA0FA032882BAFE928A9FF 250880 ----a-w- C:\Windows\Sysnative\icm32.dll
2018-07-24 06:29:14 BCE48EAA229651AF8BA4D5D9D42547CD 379392 ----a-w- C:\Windows\Sysnative\msinfo32.exe
2018-07-24 06:29:14 BCC0DECE39579AE964C8FA81E3C9CF65 100864 ----a-w- C:\Windows\Sysnative\fontsub.dll
2018-07-24 06:29:14 BC11B2BF35D85EAD537306D82ABC1AA1 459632 ----a-w- C:\Windows\Sysnative\ci.dll
2018-07-24 06:29:14 B15EE6C1BF8F1B60C893900671E6906F 46080 ----a-w- C:\Windows\Sysnative\atmlib.dll
2018-07-24 06:29:14 98CBA639FF0D76AFC9078686ECC50062 1648128 ----a-w- C:\Windows\Sysnative\DWrite.dll
2018-07-24 06:29:14 8EB418BE78839A3509B3DBA889F842B1 60928 ----a-w- C:\Windows\Sysnative\ndptsp.tsp
2018-07-24 06:29:14 8378755374D418E0F912880FA3D4A5D8 653312 ----a-w- C:\Windows\Sysnative\msra.exe
2018-07-24 06:29:14 7C510B22EEF336697780B33B74802BFD 806912 ----a-w- C:\Windows\Sysnative\usp10.dll
2018-07-24 06:29:14 785F474FB5E67E448E1931C98E8D0ABC 1180160 ----a-w- C:\Windows\Sysnative\FntCache.dll
2018-07-24 06:29:14 608E43CDDF8284116F05DEEC7C206434 47104 ----a-w- C:\Windows\Sysnative\kmddsp.tsp
2018-07-24 06:29:14 53657AA4B72E47FC25EE657FF3A629C1 39424 ----a-w- C:\Windows\Sysnative\traffic.dll
2018-07-24 06:29:14 394BE905D8D6550438048E77FB04B775 631640 ----a-w- C:\Windows\Sysnative\winresume.efi
2018-07-24 06:29:14 35FB72FF3454FB9619AE68AE2A18BC9F 51712 ----a-w- C:\Windows\Sysnative\sdchange.exe
2018-07-24 06:29:14 27CA1884251ABFEBEC9266B668E383C6 133120 ----a-w- C:\Windows\Sysnative\msrahc.dll
2018-07-24 06:29:14 0EA0557A4347F0606FE93957C6BC4ABD 29696 ----a-w- C:\Windows\Sysnative\rasser.dll
2018-07-24 06:29:13 FAD7F5BB92A7DF63942AB9999BFA84A1 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll
2018-07-24 06:29:13 F934E20D19193BA7B0BA77532B155A88 22528 ----a-w- C:\Windows\Sysnative\wfapigp.dll
2018-07-24 06:29:13 EEEFC204476D5C44E4F6802F55697179 182272 ----a-w- C:\Windows\Sysnative\dnsrslvr.dll
2018-07-24 06:29:13 BDB3B4DE7BC4A01BB7785A64AB8590E1 108544 ----a-w- C:\Windows\Sysnative\icfupgd.dll
2018-07-24 06:29:13 ACD5C99440D65A1AEE1DBA73CA35B9A2 223232 ----a-w- C:\Windows\Sysnative\ncsi.dll
2018-07-24 06:29:13 A142ED2B42A82F10CA32B58CA336BA55 53760 ----a-w- C:\Windows\Sysnative\vmicres.dll
2018-07-24 06:29:13 9B86DF86D1EFF32893BC3FB49BFAA993 357888 ----a-w- C:\Windows\Sysnative\dnsapi.dll
2018-07-24 06:29:13 4C3C4395BBD7417647AB9C96DB4F99AB 25088 ----a-w- C:\Windows\Sysnative\netbtugc.exe
2018-07-24 06:29:13 46C9ED5E5DCA790BCAB1664894CF7D5C 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll
2018-07-24 06:29:13 12F14818522DD268514F08E7C15A2F28 690688 ----a-w- C:\Windows\Sysnative\adtschema.dll
2018-07-24 06:29:13 01C95A8CAE16CCF1EA1181395C872B9F 124416 ----a-w- C:\Windows\Sysnative\wkssvc.dll
2018-07-24 06:29:11 836B8AC6AC18AA6A34DE84F414981FED 30208 ----a-w- C:\Windows\Sysnative\dnscacheugc.exe
====== C:\Windows\Sysnative\drivers =====
2018-08-07 03:31:57 A5E456CD5A30B41D6B628BDB80F4FA7E 72816 ----a-w- C:\Windows\Sysnative\drivers\ykgrjsmb.sys
2018-08-04 11:19:19 99E885018EE51F1BDDDC5228AADD873B 114920 ----a-w- C:\Windows\Sysnative\drivers\farflt.sys
2018-08-04 11:19:05 8D93347D0E6A5EAB47F0423D6B9960D7 92792 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2018-08-04 11:11:30 E8F4540E13A62E1649824D4C5576EE29 48360 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2018-08-04 11:11:27 F6A196A0A107406D6BA54A1A7293C67A 191208 ----a-w- C:\Windows\Sysnative\drivers\MbamChameleon.sys
2018-08-04 11:11:18 351BF8F77B0A15A7B5A2AE098C52A387 253664 ----a-w- C:\Windows\Sysnative\drivers\mbamswissarmy.sys
2018-08-04 11:11:09 082F9D1ADB6DF9E5DB30EB52A34FCF0A 152688 ----a-w- C:\Windows\Sysnative\drivers\mbae64.sys
2018-07-24 06:29:34 1FC0BF25FFCB9F751BCBC6C6AC577078 31936 ----a-w- C:\Windows\Sysnative\drivers\mssmbios.sys
2018-07-24 06:29:34 10DCD3BDFA785E1482EC02304A7E9B96 12096 ----a-w- C:\Windows\Sysnative\drivers\swenum.sys
2018-07-24 06:29:32 466BF4170DC41BB939F1F9AB8F97F8F5 60608 ----a-w- C:\Windows\Sysnative\drivers\AGP440.sys
2018-07-24 06:29:28 B70E26A57F35ECA5199E6D6B9592A67C 64192 ----a-w- C:\Windows\Sysnative\drivers\ULIAGPKX.SYS
2018-07-24 06:29:28 905E9D664F38B93B53FA05422165F5B5 20160 ----a-w- C:\Windows\Sysnative\drivers\isapnp.sys
2018-07-24 06:29:28 9002EED07FD7FCFF6B8C5C06B454AC19 9728 ----a-w- C:\Windows\Sysnative\drivers\errdev.sys
2018-07-24 06:29:28 626BD5A1A3205255E57FF116A431DC5F 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys
2018-07-24 06:29:28 4B1C343E11065819F687EAC68A5E13F3 169984 ----a-w- C:\Windows\Sysnative\drivers\srvnet.sys
2018-07-24 06:29:28 3F217F77899654833B650ED6A1372BE4 24064 ----a-w- C:\Windows\Sysnative\drivers\ndistapi.sys
2018-07-24 06:29:28 2CF58216424757ED29605B4F18EC443C 40448 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys
2018-07-24 06:29:28 28879F924D021D56431DD142155A9644 62464 ----a-w- C:\Windows\Sysnative\drivers\appid.sys
2018-07-24 06:29:25 E6DFE1F33B1250A6E26EA6F6CE10B09C 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys
2018-07-24 06:29:25 E46AF308E96F7730F59B0F250A884CD6 58368 ----a-w- C:\Windows\Sysnative\drivers\ndproxy.sys
2018-07-24 06:29:25 9C456BFD0FF50CB5B7ECDA7B7529F63B 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys
2018-07-24 06:29:25 90D91013D16A15B22A4B4EB6D4140A5B 30208 ----a-w- C:\Windows\Sysnative\drivers\hidusb.sys
2018-07-24 06:29:25 7E45F8B117419ABA3BB26579F6E70324 195584 ----a-w- C:\Windows\Sysnative\drivers\exfat.sys
2018-07-24 06:29:25 7BDCE021786C3DCCFD2C22EBF643EE36 36032 ----a-w- C:\Windows\Sysnative\drivers\vdrvroot.sys
2018-07-24 06:29:25 7425A6B64F5D37D0565F2581B886E5E3 122560 ----a-w- C:\Windows\Sysnative\drivers\NV_AGP.SYS
2018-07-24 06:29:25 6FE3DBEEA730A857CA3DF603B7DEADA2 15040 ----a-w- C:\Windows\Sysnative\drivers\msisadrv.sys
2018-07-24 06:29:25 640456A9D6EBCD3BC25C64CA8D38B5F5 129536 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys
2018-07-24 06:29:25 481DADB90C1D4E9F19328079C7A9E63D 185024 ----a-w- C:\Windows\Sysnative\drivers\pci.sys
2018-07-24 06:29:25 43471A750D4F3918AC92F5131AE252D3 14336 ----a-w- C:\Windows\Sysnative\drivers\wmiacpi.sys
2018-07-24 06:29:25 421F2BB55F7B686DF490171E5642C3F2 325632 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys
2018-07-24 06:29:25 2D8FFA3B636368130F909E0CD935B555 406016 ----a-w- C:\Windows\Sysnative\drivers\srv2.sys
2018-07-24 06:29:25 1BEF8EC7C33657F18F5ED492B3683470 287936 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2018-07-24 06:29:25 0A33C9EC6822B24E26687F1EC6346922 344064 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys
2018-07-24 06:29:22 DC591A7A196E99EFB5A48D708CB989FD 288488 ----a-w- C:\Windows\Sysnative\drivers\fltMgr.sys
2018-07-24 06:29:22 DC4CB3626E7423B9D83CF1B4857FDF15 88576 ----a-w- C:\Windows\Sysnative\drivers\wanarp.sys
2018-07-24 06:29:22 B16D8FEC7EE13C8575B4B8BD8F4F6405 95424 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
2018-07-24 06:29:22 A21C2034FC556EBCA6478E434B5AF693 159744 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys
2018-07-24 06:29:22 9FB2A095B1166CB3C9A06651863B3452 324608 ----a-w- C:\Windows\Sysnative\drivers\nwifi.sys
2018-07-24 06:29:22 93C367EA831FB39DEE3BA96539A187FB 754176 ----a-w- C:\Windows\Sysnative\drivers\http.sys
2018-07-24 06:29:22 8EDE91FBAC7BF7605323C517C717A253 68288 ----a-w- C:\Windows\Sysnative\drivers\volmgr.sys
2018-07-24 06:29:22 734837208CAFD6E0959A7A0333C95C9D 262656 ----a-w- C:\Windows\Sysnative\drivers\netbt.sys
2018-07-24 06:29:22 63705A08981F7EDD376241D6E0A9C2AC 115200 ----a-w- C:\Windows\Sysnative\drivers\dfsc.sys
2018-07-24 06:29:22 5CEF80AE869336376F550ECAE91E424A 986856 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys
2018-07-24 06:29:22 5416CEB2916BBE635288C4D1075B045E 113152 ----a-w- C:\Windows\Sysnative\drivers\luafv.sys
2018-07-24 06:29:22 4DD986720F7CB7A8A5D1226793097B9A 117248 ----a-w- C:\Windows\Sysnative\drivers\tdx.sys
2018-07-24 06:29:22 4CE827A5433451551E99C2C1D20E4A43 131584 ----a-w- C:\Windows\Sysnative\drivers\pacer.sys
2018-07-24 06:29:22 2509EA6C74884402F37FB8E84C5F714B 377024 ----a-w- C:\Windows\Sysnative\drivers\netio.sys
2018-07-24 06:29:22 1792FCF97D2420514F9102C18B015B29 265448 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys
2018-07-24 06:29:22 1145EC013B72D4E6C60497707BB1A4B6 464384 ----a-w- C:\Windows\Sysnative\drivers\srv.sys
2018-07-24 06:29:22 0DC2A9882540DEA4A55B08785E09D8FC 496128 ----a-w- C:\Windows\Sysnative\drivers\afd.sys
2018-07-24 06:29:22 072D8646E23ECF8A3F5F0157017B4DB6 94440 ----a-w- C:\Windows\Sysnative\drivers\mountmgr.sys
2018-07-24 06:29:21 F4287A980C0AA41DE3073F053E5EA73C 213736 ----a-w- C:\Windows\Sysnative\drivers\rdyboost.sys
2018-07-24 06:29:21 DCA5495CA17AEB2F4FD8AC60812C3999 334528 ----a-w- C:\Windows\Sysnative\drivers\acpi.sys
2018-07-24 06:29:21 BE313E566EEA2A4B7F9AAC9782A567D4 26112 ----a-w- C:\Windows\Sysnative\drivers\nsiproxy.sys
2018-07-24 06:29:21 AC24D7A7D9EEDE11E2926F9001BEAFB5 63168 ----a-w- C:\Windows\Sysnative\drivers\termdd.sys
2018-07-24 06:29:21 94FE5C648F51D093630AE1CD33284C23 77312 ----a-w- C:\Windows\Sysnative\drivers\mpsdrv.sys
2018-07-24 06:29:21 3C1D50EBDC6F531C0AA905D71956E106 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys
2018-07-24 06:29:21 2E19EB10185992AB08BC3688AACA4CE2 45056 ----a-w- C:\Windows\Sysnative\drivers\netbios.sys
2018-07-24 06:29:21 2DAA11557AD647010C2CC09202DD6C0B 291328 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys
2018-07-24 06:29:21 24512A8F8CA9BE62AAB8561484B1CF7F 33152 ----a-w- C:\Windows\Sysnative\drivers\hidparse.sys
2018-07-24 06:29:21 234F9E56606CE5D1549DE7D4CCA4DE0C 56320 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys
2018-07-24 06:29:21 1EA66940941514A151804663BB475CA7 129024 ----a-w- C:\Windows\Sysnative\drivers\videoprt.sys
2018-07-24 06:29:21 1E7D9762BBB89D879065F5EE7E0EC45C 76800 ----a-w- C:\Windows\Sysnative\drivers\hidclass.sys
2018-07-24 06:29:20 9DE8D00626F01DBD1879A6655D7A752D 467856 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
2018-07-24 06:29:20 94275393BB85D1E2B74BFEFEC386B4A0 367296 ----a-w- C:\Windows\Sysnative\drivers\msrpc.sys
2018-07-24 06:29:20 6EDFA237D25433C03F42FBFDB16BDD24 205312 ----a-w- C:\Windows\Sysnative\drivers\fastfat.sys
2018-07-24 06:29:18 85C5468BC395819AE2A0C747334BA14C 363752 ----a-w- C:\Windows\Sysnative\drivers\volmgrx.sys
2018-07-24 06:29:17 FB45727105E27756B3252572A138FA19 317440 ----a-w- C:\Windows\Sysnative\drivers\rdbss.sys
2018-07-24 06:29:17 C2B2F27629913C7DC1239E90F9A3D107 1893568 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2018-07-24 06:29:17 261F27367EB6EA6478B940811F0A6F03 948968 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys
2018-07-24 06:29:16 8422AFBD1C2D30FFC913309D7F1A366D 1681088 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys
2018-07-24 06:29:14 968F43D731E8FBC2E75BBA07EE0FC086 154816 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2018-07-11 10:58:58 E880D79F0EF4C349D734274AD8A7DFC0 68112 ----a-w- C:\Windows\Sysnative\drivers\nvvhci.sys
2018-07-11 10:58:57 DE3B81FBC9B8EBA4C22B13E530DBD8B9 17000808 ----a-w- C:\Windows\Sysnative\drivers\nvlddmkm.sys
2018-07-11 10:58:57 4FD4739B359C2923965FE99B03AFD090 227928 ----a-w- C:\Windows\Sysnative\drivers\nvhda64v.sys
2018-07-11 10:58:57 1DD1FEA987D9881C07581C10666B1240 67432 ----a-w- C:\Windows\Sysnative\drivers\nvvad64v.sys
====== C:\Windows\Tasks ======
2018-08-03 22:14:26 38E5906DDB4080D05DC282C99051695E 3650 ----a-w- C:\Windows\Sysnative\Tasks\{F173B0E5-C95D-4EE7-B6F1-5C759080AE8D}
2018-08-03 22:14:26 0C275428E6F8E51562538CB71A8821C4 3446 ----a-w- C:\Windows\Sysnative\Tasks\{D7713373-E515-8195-5CB1-9CFB584077E3}
2018-08-03 22:14:24 49B4DEDFEFE650F1E9BCD8807A7621DC 3754 ----a-w- C:\Windows\Sysnative\Tasks\{5BB89D1A-AF5F-C2B9-357F-2D3F6FC9184B}
2018-08-03 22:05:09 CD6A27417CB0EC06E7207C9648E12620 2872 ----a-w- C:\Windows\Sysnative\Tasks\vnKUActWDSalGNfrR2
2018-08-03 22:05:09 54565A070C19733FA85AF6C1795D60DF 2860 ----a-w- C:\Windows\Sysnative\Tasks\WAOtgPBGflHZLCaeTGs2
2018-08-03 22:05:08 12DA38377D8FE3C26C3214936368BBD1 2890 ----a-w- C:\Windows\Sysnative\Tasks\reQGtPgibmNDB2
2018-08-03 22:05:07 C7CA432159F08A06B0982B06C1CA188A 3058 ----a-w- C:\Windows\Sysnative\Tasks\zleDohIUJuBRcb
2018-07-23 10:36:02 FFDD51BB585CFCC49D77D181693652A6 3386 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2018-07-23 10:36:01 85463238B414876E1C088CC67B14F290 3258 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2018-07-11 11:00:44 6D942C9E07C810B68033EA5BFEF10C35 3798 ----a-w- C:\Windows\Sysnative\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:43 3C3D883E7E2DE4DC6D9767FE67509927 3790 ----a-w- C:\Windows\Sysnative\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:39 A43B2DA4F256429E764C57BB1335FB71 3940 ----a-w- C:\Windows\Sysnative\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:38 A26F0A46F668F5A333909A6CA9DD95E8 4146 ----a-w- C:\Windows\Sysnative\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:37 B4B387085707927B155D538CA6A4C6ED 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 FB2CFC9ABF487D16B8BC3AC399D76779 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 B72CB496BA791231D814C508E5DB2963 3738 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 8C70F48179F211F0163FB1D1491FD41B 3494 ----a-w- C:\Windows\Sysnative\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 4D656907EC768BDF92B5706DEE3CB6C4 3730 ----a-w- C:\Windows\Sysnative\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 151C5ABC1A1B569FD87DF8564C99E529 3738 ----a-w- C:\Windows\Sysnative\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 038BD22F4F4105D2078F07D38BBD95D4 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2018-08-04 12:52:29 -------- d-----w- C:\Program Files\Microsoft Silverlight
2018-08-04 09:59:11 -------- d-----w- C:\Program Files\trend micro
2018-07-30 23:08:02 -------- d-----w- C:\Program Files\Epic Games
2018-07-24 22:20:52 -------- d-----w- C:\Program Files\qBittorrent
2018-07-24 22:20:40 -------- d-----w- C:\Program Files\WinRAR
2018-07-11 10:57:42 -------- d-----w- C:\Program Files\NVIDIA Corporation
======= C:\Program Files (x86) =====
2018-08-04 12:52:29 -------- d-----w- C:\Program Files (x86)\Microsoft Silverlight
2018-07-31 10:12:36 -------- d-----w- C:\Program Files (x86)\Bunny-Wabbit
2018-07-30 23:03:41 -------- d-----w- C:\Program Files (x86)\Epic Games
2018-07-27 21:41:08 -------- d-----w- C:\Program Files (x86)\Grinding Gear Games
2018-07-23 12:02:18 -------- d-----w- C:\Program Files (x86)\EasyAntiCheat
2018-07-23 10:52:57 -------- d-----w- C:\Program Files (x86)\Steam
2018-07-23 10:42:52 -------- d-----w- C:\Program Files (x86)\Microsoft
2018-07-23 10:36:01 -------- d-----w- C:\Program Files (x86)\Google
2018-07-11 12:05:19 -------- d-----w- C:\Program Files (x86)\Common Files\BattlEye
2018-07-11 11:14:51 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2018-07-11 11:00:09 -------- d-----w- C:\Program Files (x86)\VulkanRT
2018-07-11 10:59:51 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
======= C: =====
====== C:\Users\Rybiz80\AppData\Roaming ======
2018-08-06 08:59:42 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\fltk.org
2018-08-04 11:00:59 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Diagnostics
2018-08-04 08:28:50 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs
2018-08-03 22:14:31 23B58DEF11B45727D3351702515F86AF 2 ----a-w- C:\Users\Rybiz80\AppData\Local\imw.ini
2018-08-01 20:30:31 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Sports Interactive
2018-08-01 20:30:26 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\REVOLT
2018-08-01 20:26:38 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\WinRAR
2018-07-30 23:16:54 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\qBittorrent
2018-07-30 23:16:53 -------- d-----w- C:\Users\Rybiz80\AppData\Local\qBittorrent
2018-07-30 23:04:28 -------- d-----w- C:\Users\Rybiz80\AppData\Local\UnrealEngineLauncher
2018-07-30 23:04:26 -------- d-----w- C:\Users\Rybiz80\AppData\Local\UnrealEngine
2018-07-30 23:04:26 -------- d-----w- C:\Users\Rybiz80\AppData\Local\EpicGamesLauncher
2018-07-25 07:02:02 -------- d-----w- C:\Users\Rybiz80\AppData\Local\NVIDIA
2018-07-24 22:20:41 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-07-23 12:21:35 -------- d-----w- C:\Users\Rybiz80\AppData\Locallow\Heroes and Generals
2018-07-23 12:21:32 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\HeroesAndGeneralsDesktop
2018-07-23 12:04:53 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\EasyAntiCheat
2018-07-23 12:03:40 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Enlisted
2018-07-23 12:02:20 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cuisine Royale
2018-07-23 11:10:56 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Gaijin
2018-07-23 11:10:40 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2018-07-23 11:04:38 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-07-23 10:53:33 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Steam
2018-07-23 10:53:33 -------- d-----w- C:\Users\Rybiz80\AppData\Local\CEF
2018-07-23 10:51:11 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-07-23 10:51:09 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\discord
2018-07-23 10:51:05 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Discord
2018-07-23 10:51:02 -------- d-----w- C:\Users\Rybiz80\AppData\Local\SquirrelTemp
2018-07-23 10:42:58 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Skype
2018-07-23 10:42:49 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Programs
2018-07-23 10:36:40 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Google
2018-07-23 10:35:57 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Google
2018-07-23 10:35:47 309C0BA4DFD8796EA4EB1EE82EBA4C9A 58128 ----a-w- C:\Users\Rybiz80\AppData\Local\GDIPFONTCACHEV1.DAT
2018-07-23 10:35:45 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Deployment
2018-07-23 10:35:45 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Apps
2018-07-23 10:24:15 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Conexant
2018-07-23 10:24:14 -------- d-s---w- C:\Users\Rybiz80\AppData\Locallow\Microsoft
2018-07-23 10:23:29 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Adobe
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2018-07-23 10:23:21 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Identities
2018-07-23 10:21:19 -------- d-----w- C:\Users\Rybiz80\AppData\Local\NVIDIA Corporation
2018-07-23 10:21:16 -------- d-----w- C:\Users\Rybiz80\AppData\Local\VirtualStore
2018-07-23 10:21:12 -------- d-s---w- C:\Users\Rybiz80\AppData\Roaming\Microsoft
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Media Center Programs
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Temp
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Microsoft
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2018-07-23 10:19:52 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2018-07-23 10:19:45 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2018-07-12 09:03:51 -------- d-s---w- C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft
====== C:\Users\Rybiz80 ======
2018-08-06 17:02:46 9DF1469E76C21CFB43017D04847F6782 1663040 ----a-w- C:\Users\Rybiz80\Downloads\JRT.exe
2018-08-06 15:34:44 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2 (1).exe
2018-08-06 08:59:42 -------- d-----w- C:\ProgramData\fltk.org
2018-08-04 20:53:11 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2.exe
2018-08-04 12:53:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-08-04 11:01:10 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Desktop\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 10:50:19 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 09:58:52 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Rybiz80\Downloads\RSITx64.exe
2018-08-03 22:20:26 C4CF62EB084B27D2C4F5F054FA3A3AC1 270 --sha-r- C:\Users\Rybiz80\ntuser.pol
2018-08-03 22:05:08 -------- d-----w- C:\ProgramData\bzLvYYFFZmFknGVB
2018-08-03 22:04:42 962FAAAA70CB48E7F4FEF7E44BEAD98A 3552 --sha-r- C:\ProgramData\ntuser.pol
2018-08-01 20:45:44 -------- d-----w- C:\Users\Public\Documents\Steam
2018-08-01 20:30:31 -------- d-----w- C:\Users\Public\Documents\Sports Interactive
2018-07-31 10:12:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO Creator 1.0
2018-07-30 23:03:41 -------- d-----w- C:\ProgramData\Epic
2018-07-27 21:41:08 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2018-07-24 22:20:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2018-07-24 22:20:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-07-23 12:31:51 -------- d-----w- C:\Users\Rybiz80\ansel
2018-07-23 11:10:55 -------- d-----w- C:\ProgramData\Gaijin
2018-07-23 10:52:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-07-23 10:42:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\Searches
2018-07-23 10:23:19 -------- d-----r- C:\Users\Rybiz80\Contacts
2018-07-23 10:21:12 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Rybiz80\ntuser.ini
2018-07-23 10:21:12 -------- d--h--w- C:\Users\Rybiz80\AppData
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Videos
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Saved Games
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Pictures
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Music
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Links
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Favorites
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Downloads
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Documents
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Desktop
2018-07-11 11:00:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-07-11 10:59:58 -------- d-----w- C:\ProgramData\NVIDIA
2018-07-11 10:59:07 -------- d-----w- C:\ProgramData\Package Cache
2018-07-11 10:58:45 -------- d-----w- C:\ProgramData\NVIDIA Corporation

====== C: exe-files ==
2018-08-06 17:29:12 8377C99BF813BE986D07730F5C433382 68096 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\ZAScan.exe
2018-08-06 17:29:12 75375C22C72F1BEB76BEA39C22A1ED68 167936 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\unzip.exe
2018-08-06 17:29:12 1A3F82F420340222F13C5633AEB716D6 533851 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\sr.exe
2018-08-06 17:02:55 E40542C4CC75E658A4615BFEFB308570 1790024 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\JRT_NewerVersion\JRT.exe
2018-08-06 17:02:51 2F9C7FDA92C346CB5AA32091536AE0CB 43520 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\nfo\nircmdc.exe
2018-08-06 17:02:46 9DF1469E76C21CFB43017D04847F6782 1663040 ----a-w- C:\Users\Rybiz80\Downloads\JRT.exe
2018-08-06 15:34:44 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2 (1).exe
2018-08-06 15:25:37 E8CDD33860A7F4433B0077AC7D8DE402 1479632 ----a-w- C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe
2018-08-04 20:53:11 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2.exe
2018-08-04 11:29:19 3E20B169C4CD6855965BB39D4D125814 61700616 ----a-w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Skype for Desktop\Skype-Setup.exe
2018-08-04 11:01:10 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Desktop\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 10:50:19 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 09:59:12 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Rybiz80.exe
2018-08-04 09:58:52 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Rybiz80\Downloads\RSITx64.exe
2018-08-03 10:53:32 EA5A02E5C0894DAAFC82514D22352234 479728 ----a-w- C:\Users\Rybiz80\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
2018-08-03 10:53:32 62E83FCAD4B85A41B94D3885C774AD44 445424 ----a-w- C:\Users\Rybiz80\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2018-08-03 07:01:02 730F03EB048405A3027CFFD427F1B834 20091496 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\68.0.3440.84\68.0.3440.84_67.0.3396.99_chrome_updater.exe
2018-08-02 00:05:54 2E1960B3CD0A2E266C4FAB95BC6DF448 17467960 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\win64\enlisted.exe
2018-08-01 23:53:52 DEE05780A497F44458B88B3303E81333 7261240 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\win64\enlist.exe
2018-08-01 14:49:02 C79DED78B960F3AF11E464A503BE3691 489016 ----a-w- C:\Hry\WarThunder\win64\cefprocess.exe
2018-08-01 14:49:02 6F422380DCE9A3D4EF6E44C12C2C1107 35001400 ----a-w- C:\Hry\WarThunder\win64\aces.exe
2018-08-01 14:47:52 C839AE829D203ADE0E7072095FA893C5 27491896 ----a-w- C:\Hry\WarThunder\win32\aces.exe
2018-08-01 14:47:52 68F2160C821B158957B6D50707FAE590 357944 ----a-w- C:\Hry\WarThunder\win32\cefprocess.exe
2018-08-01 14:47:52 4B80143C592FBC91FAB3ECD19C1F571D 1888312 ----a-w- C:\Hry\WarThunder\win32\bpreport.exe
2018-07-31 12:39:57 2B48F69517044D82E1EE675B1690C08B 455576 ------w- C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
2018-07-31 12:39:10 1191BA2A9908EE79C0220221233E850A 455720 ----a-w- C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
2018-07-31 12:25:11 E40383A864B0D9B344A3A5ACEC6B885C 382504 ----a-w- C:\Hry\Watch Dogs 2\EasyAntiCheat\EasyAntiCheat_Setup.exe
2018-07-31 12:25:11 6C2F8C8187023E7226AE076548582DF4 516016 ----a-w- C:\Hry\Watch Dogs 2\bin\SplashScreen.exe
2018-07-31 12:25:11 5F6C9078D1D32CB5B20882F99A810547 537008 ----a-w- C:\Hry\Watch Dogs 2\bin\WatchDogs2.exe
2018-07-31 12:25:11 23CE2A387560F42350255BE4E741AE65 131112 ----a-w- C:\Hry\Watch Dogs 2\EAC.exe
2018-07-31 10:14:23 56D52C503ADF02184F19EEE4767EF60A 299864 ----a-w- C:\Hry\Watch Dogs 2\_Redist\dxwebsetup.exe
2018-07-31 10:14:23 4B1D5EC11B2B5DB046233A28DBA73B83 103424 ----a-w- C:\Hry\Watch Dogs 2\_Redist\QuickSFV.EXE
2018-07-31 10:14:22 7F52A19ECAF7DB3C163DD164BE3E592E 6554576 ----a-w- C:\Hry\Watch Dogs 2\_Redist\vcredist_x86_2012_x86.exe
2018-07-31 10:14:22 3C03562B5AF9ED347614053D459D7778 7186992 ----a-w- C:\Hry\Watch Dogs 2\_Redist\vcredist_x64_2012_x64.exe
2018-07-31 10:14:22 3249D8B9914125878C099F6B3608EC71 1515889 ----a-w- C:\Hry\Watch Dogs 2\unins000.exe
2018-07-31 08:56:45 ACD98BAAE65A7D42B3B6B607BC7B35DB 145808 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteLauncher.exe
2018-07-31 08:56:45 9DFDC503E332C886A64E828A8790D48A 753552 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping_BE.exe
2018-07-31 08:56:45 0122E828AE9E7F035FF92C2A4F4177D4 1158544 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping_EAC.exe
2018-07-31 08:56:44 B0BC2103B6F7E492B8368D32ACB3A0E5 94312336 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping.exe
2018-07-31 08:56:43 4A0C61901CC0627ED97EC9597B981E18 18458000 ----a-w- C:\Program Files\Epic Games\Fortnite\Engine\Binaries\Win64\CrashReportClient.exe
2018-07-31 08:56:43 47BDE3A4730DFF012301586CEA47B650 3699600 ----a-w- C:\Program Files\Epic Games\Fortnite\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
=== C: other files ==
2018-08-07 03:52:02 978E340A8347DDA27477C55E00601B62 2630203 ----a-w- C:\Windows\{7CB0BBD3D374-4DEA-9751-2D08BC721AA7}\PkgMgr.iso.zip
2018-08-07 03:31:57 A5E456CD5A30B41D6B628BDB80F4FA7E 72816 ----a-w- C:\Windows\System32\drivers\ykgrjsmb.sys
2018-08-06 18:08:08 A2F7919FC6762EB8815E704C00A9AA11 2630211 ----a-w- C:\Windows\{7CB0BBD3D374-4DEA-9751-2D08BC721AA7}\_wow64.ocx.zip
2018-08-06 09:02:23 3EBB315F2B61CC212CBDC838A2E65830 2123 ----atw- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\.launcher_log\f46820ef-d6fb-4e21-a3c6-ae5712180806.zip
2018-08-04 13:28:10 4EB6B0ADD718268BF65A92A8C0919D92 2592066 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\{F4B8536D-9284-42DB-BDA2-FA6DA4E6B2A1}\_wow64.ocx.zip
2018-08-04 11:19:19 99E885018EE51F1BDDDC5228AADD873B 114920 ----a-w- C:\Windows\System32\drivers\farflt.sys
2018-08-04 11:19:05 8D93347D0E6A5EAB47F0423D6B9960D7 92792 ----a-w- C:\Windows\System32\drivers\mwac.sys
2018-08-04 11:11:30 E8F4540E13A62E1649824D4C5576EE29 48360 ----a-w- C:\Windows\System32\drivers\mbam.sys
2018-08-04 11:11:27 F6A196A0A107406D6BA54A1A7293C67A 191208 ----a-w- C:\Windows\System32\drivers\MbamChameleon.sys
2018-08-04 11:11:18 351BF8F77B0A15A7B5A2AE098C52A387 253664 ----a-w- C:\Windows\System32\drivers\mbamswissarmy.sys
2018-08-04 11:11:09 082F9D1ADB6DF9E5DB30EB52A34FCF0A 152688 ----a-w- C:\Windows\System32\drivers\mbae64.sys
2018-08-01 13:57:07 C40A5DF7FEC2B93A256C214AAAA10AE0 8533366 ----a-w- C:\Hry\WarThunder\win64\twitch64.zip
2018-08-01 13:57:05 5EE81215976D2C821B6E236DB4E576AD 6518100 ----a-w- C:\Hry\WarThunder\win32\twitch.zip
2018-08-01 13:56:35 0F7C46E25A58897A1350DD8C36FBC710 2535923 ----a-w- C:\Hry\WarThunder\cef_paks.zip
2018-08-01 13:50:28 831DCEC3C35D921DFDC74A305150A09F 47469571 ----a-w- C:\Hry\WarThunder\win64\cef64.zip
2018-08-01 13:50:21 849BE646199B67047ED9B628A81A7E6B 3402189 ----a-w- C:\Hry\WarThunder\win64\tools64.zip
2018-08-01 13:50:20 121609F35C3006712FB48315D6136302 18168418 ----a-w- C:\Hry\WarThunder\win64\pc64.zip
2018-08-01 13:50:17 D954409E2020CEEC3B62EA7AC018647F 13920138 ----a-w- C:\Hry\WarThunder\win32\pc.zip
2018-08-01 13:50:14 4C909D2578C5DF8294B909146493163D 3398214 ----a-w- C:\Hry\WarThunder\win32\tools.zip
2018-08-01 13:50:02 E417D063D1CB2D63D33CE025B9C95742 41363459 ----a-w- C:\Hry\WarThunder\win32\cef.zip
2018-07-31 12:24:59 9F12282FE80E889829BEA505262B4364 204 ----a-w- C:\Hry\Watch Dogs 2\Support\wd2disabledwmwin7.bat

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3959809308-3982947574-166100824-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

[HKEY_USERS\S-1-5-21-3959809308-3982947574-166100824-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201357\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cAudioFilterAgent"="C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe"
"SmartAudio"="C:\Program Files\CONEXANT\SAII\SACpl.exe /t"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe]
"C:\Windows\SysNative\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe]
"C:\Windows\SysNative\tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" ["C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"]
"C:\Windows\SysNative\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe]
"C:\Windows\SysNative\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe]
"C:\Windows\SysNative\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe]
"C:\Windows\SysNative\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\reQGtPgibmNDB2" [C:\Windows\system32\wscript.exe "C:\ProgramData\bzLvYYFFZmFknGVB\WwPsQUz.wsf"]
"C:\Windows\SysNative\tasks\vnKUActWDSalGNfrR2" [rundll32 "C:\Program Files (x86)\ELCdlNcAzQmJaXxTcwR\pmnDmUr.dll",#1]
"C:\Windows\SysNative\tasks\WAOtgPBGflHZLCaeTGs2" [rundll32 "C:\Program Files (x86)\LDRIRJvSptwQC\vcmkrFR.dll",#1]
"C:\Windows\SysNative\tasks\zleDohIUJuBRcb" [rundll32 "C:\Program Files (x86)\xpZXRwYFlIWU2\SXvgwIdYNQqtm.dll",#1]
"C:\Windows\SysNative\tasks\{5BB89D1A-AF5F-C2B9-357F-2D3F6FC9184B}" ["C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"]
"C:\Windows\SysNative\tasks\{D7713373-E515-8195-5CB1-9CFB584077E3}" ["C:\Program Files (x86)\Common Files\YpyUeU.exe"]
"C:\Windows\SysNative\tasks\{F173B0E5-C95D-4EE7-B6F1-5C759080AE8D}" ["C:\Program Files (x86)\Common Files\YInoUyyO.exe"]

==== Chromium Look ======================

Google Chrome Version: 68.0.3440.84


Slides - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Docs - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Sheets - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Docs Offline - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Video DownloadHelper - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk
Chrome Web Store Payments - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Chrome Media Router - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKCU\..\Run: [Gaijin.Net Agent] "C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
O4 - HKCU\..\Run: [EpicGamesLauncher] "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-21-3959809308-3982947574-166100824-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201357\..\Run: [Gaijin.Net Agent] "C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe" (User '?')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Heroes & Generals Steam Service (HnGSteamService) - Reto-Moto ApS - C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngservice.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on Łt 07.08.2018 at 5:36:28,59 ======================

[Rybiz]

Zoek.exe Version 5.0.0.2 Updated 03-May-2018
Tool run by Rybiz80 on Łt 07.08.2018 at 5:31:51,18.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Safe Mode MINIMAL No Internet Access Detected
Launched: C:\Users\Rybiz80\Desktop\zoek.exe [Scan all users] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2018-08-06-173104.log 368 bytes

==== Running Processes ======================

C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== System Specs ======================

Operating System: Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 64-bit
Manufacturer: extracomputer - Model: D3161-B1
Install Date: 23.7.2018 12:21:07
Last Boot: 7.8.2018 5:30:31
Processor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Number of Processors: 8
Work Station
Bootmode: Fail-safe boot
Total RAM: 16297 MB (free 14307 MB - 87)
Computername: Rybiz80-PC
Domain: WORKGROUP
User: Rybiz80 (Administrator account)
Local Disk: C:\ - NTFS - 465 GB (free 313 GB)
CD \ DVD Drive: D:\
Local Disk: E:\ - NTFS - 111 GB (free 111 GB)
Bootdevice: \Device\HarddiskVolume1
Windows update:
Country: ¬esk ˙republika
Language: CSY

==== System Specs (Software) ======================

Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated)
Anti-Spyware: Microsoft Security Essentials disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Google Chrome 68.0.3440.84
Internet Explorer Version: 11.0.9600.19080
Google Chrome version: 68.0.3440.84

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2018-07-24 06:29:34 12589371C087A76B6E8E152939E59E98 16896 ----a-w- C:\Windows\hh.exe
2018-07-24 06:29:30 A66E522F3CBFB8709EA37844922A002E 733696 ----a-w- C:\Windows\HelpPane.exe
2018-07-23 11:15:04 E185BDA84E5F03F4E1D8DCA30E209277 1912 ----a-w- C:\Windows\epplauncher.mif
2018-07-11 11:00:33 74F28574BB8F61FFC7DD419FE6B6E0D5 1951 ----a-w- C:\Windows\NvTelemetryContainerRecovery.bat
2018-07-11 10:59:58 74F28574BB8F61FFC7DD419FE6B6E0D5 1951 ----a-w- C:\Windows\NvContainerRecovery.bat
====== C:\Users\Rybiz80\AppData\Local\Temp ====
2018-08-06 17:29:12 8377C99BF813BE986D07730F5C433382 68096 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\ZAScan.exe
2018-08-06 17:29:12 75375C22C72F1BEB76BEA39C22A1ED68 167936 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\unzip.exe
2018-08-06 17:29:12 1A3F82F420340222F13C5633AEB716D6 533851 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\sr.exe
2018-08-06 17:02:55 E40542C4CC75E658A4615BFEFB308570 1790024 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\JRT_NewerVersion\JRT.exe
2018-08-06 17:02:51 2F9C7FDA92C346CB5AA32091536AE0CB 43520 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\nfo\nircmdc.exe
2018-08-03 15:13:24 8D49B6321F1C1AA6C0D49BA3B022E1A8 25775920 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\setup.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2018-07-24 08:45:26 960AE99A15B1C8C9FBDDDE97606478F9 3550208 ----a-w- C:\Windows\SysWOW64\D3DCompiler_47.dll
2018-07-24 06:29:35 F14C2821DDB2D09A527FF258EC434B52 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-07-24 06:29:35 81CB1981A9CC574008E9839AB137FB2F 17240 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-07-24 06:29:35 2838609DD1AFA03D4A68228F2C818CEA 2048 ----a-w- C:\Windows\SysWOW64\user.exe
2018-07-24 06:29:34 FF8B6558BB9CD8890253FFC01E57E3EC 282624 ----a-w- C:\Windows\SysWOW64\mstext40.dll
2018-07-24 06:29:34 FCEE7E4A37BB971ED4A11E9D496C7274 299008 ----a-w- C:\Windows\SysWOW64\ntprint.dll
2018-07-24 06:29:34 FB8B6E9543FEFF706967BC9437197CC5 12120 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-07-24 06:29:34 F6E1AE3EF2BED36CB739BB90478B6493 17240 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-24 06:29:34 F5357CAC91CAA28CC97BFAADF95C1C20 82944 ----a-w- C:\Windows\SysWOW64\bcrypt.dll
2018-07-24 06:29:34 F05F26DD4B8640CB71F8C40BD6530FD1 16384 ----a-w- C:\Windows\SysWOW64\winnsi.dll
2018-07-24 06:29:34 EC5A71B7AB0902B82177FCE9769F6C36 12120 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-07-24 06:29:34 E53488EA2F13C3E93FABABDAE10C36C1 184320 ----a-w- C:\Windows\SysWOW64\scksp.dll
2018-07-24 06:29:34 E44701B42419962136EF5CAC198F8D1C 77312 ----a-w- C:\Windows\SysWOW64\mfmjpegdec.dll
2018-07-24 06:29:34 E1A2A1C53E354D9016E68B16B86AE570 343552 ----a-w- C:\Windows\SysWOW64\msrd3x40.dll
2018-07-24 06:29:34 DE7337C3EDD617029AE585724DA0DC7A 26112 ----a-w- C:\Windows\SysWOW64\oleres.dll
2018-07-24 06:29:34 D9A9C40BE182CB3E4644971D8E6D59BC 13152 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-24 06:29:34 D5FDF7E990A1AE2E19C64E1FF267580A 444928 ----a-w- C:\Windows\SysWOW64\wvc.dll
2018-07-24 06:29:34 D1DE6861C97B6184A81C010E78CBF272 59392 ----a-w- C:\Windows\SysWOW64\msscntrs.dll
2018-07-24 06:29:34 C508CD60FB68D39482966EDEFBD7CB43 290816 ----a-w- C:\Windows\SysWOW64\msjtes40.dll
2018-07-24 06:29:34 C08A83FD5F3D495F1267CC98727B70BD 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll
2018-07-24 06:29:34 BDCBA6F7B8C538305FE8C0A7D78D2683 15192 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-07-24 06:29:34 BB1D7E779FFC9D4D58DE6D6C39429FF1 103424 ----a-w- C:\Windows\SysWOW64\resmon.exe
2018-07-24 06:29:34 B8AF75A6FB1BEA49A38C00B3EEDBEFCE 22528 ----a-w- C:\Windows\SysWOW64\rasser.dll
2018-07-24 06:29:34 B2EF83F99837C68E646BA5E419F8D16A 172544 ----a-w- C:\Windows\SysWOW64\cic.dll
2018-07-24 06:29:34 AE033EA471A27FE2138FF4C83E95E51F 164352 ----a-w- C:\Windows\SysWOW64\SearchProtocolHost.exe
2018-07-24 06:29:34 A554AE8240E2C8EE389E6BCD76E05198 337408 ----a-w- C:\Windows\SysWOW64\mssph.dll
2018-07-24 06:29:34 A2A5D487D0C3D55739A0491B6872480D 1401344 ----a-w- C:\Windows\SysWOW64\mmc.exe
2018-07-24 06:29:34 9E4BC729899C1E1C5FA6DE50FFAFDBB7 1549824 ----a-w- C:\Windows\SysWOW64\tquery.dll
2018-07-24 06:29:34 9B2BA304828D5FABF87348D59D635AC7 91368 ----a-w- C:\Windows\SysWOW64\MigAutoPlay.exe
2018-07-24 06:29:34 9A8DA9190702FAA9944AE3099BD3EF1C 104448 ----a-w- C:\Windows\SysWOW64\mssitlb.dll
2018-07-24 06:29:34 970CD7D328C23D9865FF54B7B10E33A3 197120 ----a-w- C:\Windows\SysWOW64\mssphtb.dll
2018-07-24 06:29:34 970B24D86AA519A66CA2A03E18D5B68B 54272 ----a-w- C:\Windows\SysWOW64\wermgr.exe
2018-07-24 06:29:34 94D10B11B61DB26940B4FB1B3ECFCE84 310272 ----a-w- C:\Windows\SysWOW64\msrd2x40.dll
2018-07-24 06:29:34 94A4BD919D8D6FEAE8DAC69A1FBE7094 518144 ----a-w- C:\Windows\SysWOW64\msjetoledb40.dll
2018-07-24 06:29:34 857999CECCB0C9D255D5F7FCF3BA0C2C 427520 ----a-w- C:\Windows\SysWOW64\SearchIndexer.exe
2018-07-24 06:29:34 8066F32DBF9E7BAF35758849F90776B1 342528 ----a-w- C:\Windows\SysWOW64\certcli.dll
2018-07-24 06:29:34 741E8E1DD841506A58F9A28895D7FE2E 1363968 ----a-w- C:\Windows\SysWOW64\Query.dll
2018-07-24 06:29:34 6F3E6F978E6DF7D751C2EA62F60EF788 7168 ----a-w- C:\Windows\SysWOW64\MsraLegacy.tlb
2018-07-24 06:29:34 66CFEF9459FE5771D640BDADE2840192 83968 ----a-w- C:\Windows\SysWOW64\msjter40.dll
2018-07-24 06:29:34 6691B0F9B2F8CF2146A46C4F33779D6B 128512 ----a-w- C:\Windows\SysWOW64\mmcshext.dll
2018-07-24 06:29:34 633CD8A938AB8C6B2D0166A4A55A225F 409600 ----a-w- C:\Windows\SysWOW64\msexch40.dll
2018-07-24 06:29:34 568B65A1B16264570F1B4E3565F49519 47104 ----a-w- C:\Windows\SysWOW64\pdhui.dll
2018-07-24 06:29:34 53FF7C0EF6A7E6DAFAEE2FE1B526A01A 157184 ----a-w- C:\Windows\SysWOW64\perfmon.exe
2018-07-24 06:29:34 527BB14847DB8264C31380C40CBC1CD7 8192 ----a-w- C:\Windows\SysWOW64\spwmp.dll
2018-07-24 06:29:34 51EA6BD2E56AEF9691A82C05D60D07A7 28672 ----a-w- C:\Windows\SysWOW64\werdiagcontroller.dll
2018-07-24 06:29:34 4FDF9502D0B57D3EDB185DA4B6848BFE 1400320 ----a-w- C:\Windows\SysWOW64\mssrch.dll
2018-07-24 06:29:34 4BF00F7ACDC0B9F81EC6BBFF3648BC44 4096 ----a-w- C:\Windows\SysWOW64\msdxm.ocx
2018-07-24 06:29:34 4BF00F7ACDC0B9F81EC6BBFF3648BC44 4096 ----a-w- C:\Windows\SysWOW64\dxmasf.dll
2018-07-24 06:29:34 4A61E18E7EBCC2886653E771D785D9EA 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2018-07-24 06:29:34 44227E048D0A7BB5A7AEB839936BF9DE 7168 ----a-w- C:\Windows\SysWOW64\comcat.dll
2018-07-24 06:29:34 3635DED9860DC2570D47462752090C36 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-07-24 06:29:34 2DC31C166BF979BC5488932C84810D80 86528 ----a-w- C:\Windows\SysWOW64\SearchFilterHost.exe
2018-07-24 06:29:34 2B7A702E23751739AF46760436873929 390144 ----a-w- C:\Windows\SysWOW64\sysmon.ocx
2018-07-24 06:29:34 290142B625251D993BEAE6521619D5C6 330240 ----a-w- C:\Windows\SysWOW64\zipfldr.dll
2018-07-24 06:29:34 1AB31F3FD29D74074BCC64DE8FEE5540 103424 ----a-w- C:\Windows\SysWOW64\mfps.dll
2018-07-24 06:29:34 1AA810BFEEE8695BF4CB49C7786B7827 18776 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-24 06:29:34 1A49393991C4BF4A56EE64B686C584E8 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-07-24 06:29:34 17A4059BB257051EF3A6480815DCA419 9728 ----a-w- C:\Windows\SysWOW64\msshooks.dll
2018-07-24 06:29:34 0723A00C740A0D1B5460FBFE048C3E68 8704 ----a-w- C:\Windows\SysWOW64\nsi.dll
2018-07-24 06:29:34 0436312135E0A5B8DDDAFAF976821D51 23040 ----a-w- C:\Windows\SysWOW64\mfpmp.exe
2018-07-24 06:29:34 02D425A51431FC87E3274D90B2B6A062 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-07-24 06:29:33 FFEAED0E3BD67DA3559231F762B6E201 866816 ----a-w- C:\Windows\SysWOW64\mswdat10.dll
2018-07-24 06:29:33 FC8A22A65745A620DDEE41669765BB56 1329664 ----a-w- C:\Windows\SysWOW64\quartz.dll
2018-07-24 06:29:33 F0A6576528FD5AF099821D5360770CC8 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll
2018-07-24 06:29:33 F02EB1D48A1A0CD59C81462055A69AD1 142848 ----a-w- C:\Windows\SysWOW64\itss.dll
2018-07-24 06:29:33 E0FC6700E341A2026C08DF29A9B4FEAD 20480 ----a-w- C:\Windows\SysWOW64\WcnEapPeerProxy.dll
2018-07-24 06:29:33 D03CBC7A13DB67F83EAD4BB2B1B2C9D2 616448 ----a-w- C:\Windows\SysWOW64\msrepl40.dll
2018-07-24 06:29:33 C67881BF26EEDCBE0E97875AC7AECCD8 2048 ----a-w- C:\Windows\SysWOW64\mferror.dll
2018-07-24 06:29:33 C614AA3804DF9FCAA829B57E98945DC1 363520 ----a-w- C:\Windows\SysWOW64\StructuredQuery.dll
2018-07-24 06:29:33 AF0002DF9D2AC73587596C29886D505C 91136 ----a-w- C:\Windows\SysWOW64\inseng.dll
2018-07-24 06:29:33 A7999BEEE52B87FDBF15E60F207B51C8 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2018-07-24 06:29:33 A03B2893AB4DC114870F425809C030B2 148160 ----a-w- C:\Windows\SysWOW64\basecsp.dll
2018-07-24 06:29:33 9F49B8E154DBAC9D60125CBBE3609C70 217600 ----a-w- C:\Windows\SysWOW64\P2P.dll
2018-07-24 06:29:33 87745417DFFEE0F341144063F11FFAFA 83968 ----a-w- C:\Windows\SysWOW64\wlanhlp.dll
2018-07-24 06:29:33 75326D9940A86E23AB8283D6E31B70DE 497664 ----a-w- C:\Windows\SysWOW64\win32spl.dll
2018-07-24 06:29:33 71BA6F21132623EEC68E25779843FD0A 9728 ----a-w- C:\Windows\SysWOW64\sscore.dll
2018-07-24 06:29:33 6EBE64B2FA84F9A3A3070C79CDCF19E0 382976 ----a-w- C:\Windows\SysWOW64\wer.dll
2018-07-24 06:29:33 6CBFBC933B6D98C2E349B02D2B07813B 81920 ----a-w- C:\Windows\SysWOW64\fdWCN.dll
2018-07-24 06:29:33 57C122CBD283A1E6FE5A5509AFA35CB2 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe
2018-07-24 06:29:33 5483D87CA77CE60B29D46BCB4C4C21FB 973312 ----a-w- C:\Windows\SysWOW64\DXPTaskRingtone.dll
2018-07-24 06:29:33 5119041A556E15DB1B62E5D5246E5105 573440 ----a-w- C:\Windows\SysWOW64\wuapi.dll
2018-07-24 06:29:33 417BB0E54DB7B7208520A8E71255CECC 8704 ----a-w- C:\Windows\SysWOW64\msjint40.dll
2018-07-24 06:29:33 3273C18621DE987823E5433BD7F658DE 33280 ----a-w- C:\Windows\SysWOW64\traffic.dll
2018-07-24 06:29:33 28BE06FF78CC94F13276583170540E50 805376 ----a-w- C:\Windows\SysWOW64\cdosys.dll
2018-07-24 06:29:33 20CF6E763CCCCA5E09A7512604CAA529 2048 ----a-w- C:\Windows\SysWOW64\msxml6r.dll
2018-07-24 06:29:33 1E614D1B8C522ED15E9151409F6E9A4D 223232 ----a-w- C:\Windows\SysWOW64\ncrypt.dll
2018-07-24 06:29:33 1D7EFFA5EDE72D3FC1CF20DE998259C6 340480 ----a-w- C:\Windows\SysWOW64\msexcl40.dll
2018-07-24 06:29:33 149FE64A2BD27129CB731D09AF4ACDDE 75264 ----a-w- C:\Windows\SysWOW64\mprdim.dll
2018-07-24 06:29:33 12CDAF1592A33096CD90FDB411EA6337 666624 ----a-w- C:\Windows\SysWOW64\mssvp.dll
2018-07-24 06:29:33 09B61B4894B05723BACE59F46EF892D4 1508352 ----a-w- C:\Windows\SysWOW64\pla.dll
2018-07-24 06:29:32 F14AB91AA612D0AD5839C5D13B218360 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2018-07-24 06:29:32 EBA82F1B920E64DDFCD1E0BF9706B8F3 15704 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-24 06:29:32 E859E76A8766B7F1925EB7D0792CC3C1 33280 ----a-w- C:\Windows\SysWOW64\rasmxs.dll
2018-07-24 06:29:32 E5A2788702F4603CBBEEA230ACFAADB1 86528 ----a-w- C:\Windows\SysWOW64\WcnApi.dll
2018-07-24 06:29:32 DE8A6902C401DDD252954C7894C895A2 827904 ----a-w- C:\Windows\SysWOW64\rdpcore.dll
2018-07-24 06:29:32 C7C2A39C4B3F1B37F3C816A282D3E332 35328 ----a-w- C:\Windows\SysWOW64\wuapp.exe
2018-07-24 06:29:32 C27751B11ACCAB98BA087A38C469B907 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll
2018-07-24 06:29:32 ABAD533F465380421B66687D4FBA807E 34816 ----a-w- C:\Windows\SysWOW64\mssprxy.dll
2018-07-24 06:29:32 A8D212AF14E65905B5631742656A3C43 43008 ----a-w- C:\Windows\SysWOW64\hhsetup.dll
2018-07-24 06:29:32 9AD4807BFD28CD14362FAE2DE0AA7890 1227264 ----a-w- C:\Windows\SysWOW64\wdc.dll
2018-07-24 06:29:32 94052D294092794E1D1C0D7417161381 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe
2018-07-24 06:29:32 93DD6BEE13FF4CB917F8E1234F2A464F 21848 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-07-24 06:29:32 837E870DBDEE3D19122C833389D81CC9 80896 ----a-w- C:\Windows\SysWOW64\wlanapi.dll
2018-07-24 06:29:32 6CB8D5AF44F0F07565DE45F86528B073 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe
2018-07-24 06:29:32 6673E73084216129F3E64FDD819368EC 2150912 ----a-w- C:\Windows\SysWOW64\mmcndmgr.dll
2018-07-24 06:29:32 61259DE5266CC28045856882B144F804 30208 ----a-w- C:\Windows\SysWOW64\wups.dll
2018-07-24 06:29:32 5ADEF0B67913448A7850836010F48ED9 1311744 ----a-w- C:\Windows\SysWOW64\msjet40.dll
2018-07-24 06:29:32 56E994E79DB22F583683C8EB7493C45E 111616 ----a-w- C:\Windows\SysWOW64\racpldlg.dll
2018-07-24 06:29:32 516BA2B650C242C17AAE680BFD08814E 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll
2018-07-24 06:29:32 4BDF9C2B4B517B55BFCC49B8E44B40C7 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll
2018-07-24 06:29:32 49A1DFA86B6733E5D98CB0EA81B13AF3 3207168 ----a-w- C:\Windows\SysWOW64\mf.dll
2018-07-24 06:29:32 47D0B25AEAFEFC8937D86F22C7C5278F 13656 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-07-24 06:29:32 42B2F788D85DEBF29F6E4A6ED5004C2D 2292224 ----a-w- C:\Windows\SysWOW64\MSVidCtl.dll
2018-07-24 06:29:32 3650AD6EA1A9CD1CD1BBF4EB93E7604D 93696 ----a-w- C:\Windows\SysWOW64\wudriver.dll
2018-07-24 06:29:32 361BBC8BE82ECF8A27F57BD4631B9164 158720 ----a-w- C:\Windows\SysWOW64\itircl.dll
2018-07-24 06:29:32 2F58C0DD4BCFE7CD9752EEDE8B08C261 240640 ----a-w- C:\Windows\SysWOW64\msltus40.dll
2018-07-24 06:29:32 2DBA413FACC332703C12EFD3B997938B 275456 ----a-w- C:\Windows\SysWOW64\KernelBase.dll
2018-07-24 06:29:32 2AF284D0737FE5BCB3581DA8C536CDF7 32768 ----a-w- C:\Windows\SysWOW64\WcsPlugInService.dll
2018-07-24 06:29:32 249C741009425ED4DA99080333691016 50176 ----a-w- C:\Windows\SysWOW64\rrinstaller.exe
2018-07-24 06:29:32 1C92F07DB3B860294251C31C4DD97D4B 1390080 ----a-w- C:\Windows\SysWOW64\msxml6.dll
2018-07-24 06:29:32 11D1846FCA7D8A5EB825CD731A0F6304 19968 ----a-w- C:\Windows\SysWOW64\WcnEapAuthProxy.dll
2018-07-24 06:29:32 0A613D0301B0EACE35508D11B4D0423A 392704 ----a-w- C:\Windows\SysWOW64\wlansec.dll
2018-07-24 06:29:32 050AB578E032A7C9CA722F632A4018AC 15360 ----a-w- C:\Windows\SysWOW64\hh.exe
2018-07-24 06:29:32 01AEB7B9C67E38E14088D108F024631C 375808 ----a-w- C:\Windows\SysWOW64\mspbde40.dll
2018-07-24 06:29:31 CF679F83D98C4873EDA7E4F96F7E6FD9 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll
2018-07-24 06:29:31 AC81B22606B50A61B02F2082EA2CE187 640512 ----a-w- C:\Windows\SysWOW64\mswstr10.dll
2018-07-24 06:29:31 81063E39D04B73670ACAD9E9AD45A53C 12574208 ----a-w- C:\Windows\SysWOW64\wmploc.DLL
2018-07-24 06:29:31 75B35268C9B882825672FBFB94953222 84480 ----a-w- C:\Windows\SysWOW64\INETRES.dll
2018-07-24 06:29:31 2D8302C12657BC51C3382553D3329011 2755072 ----a-w- C:\Windows\SysWOW64\themeui.dll
2018-07-24 06:29:31 258D04C8877C8645FEC99853E6A334BA 348824 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
2018-07-24 06:29:31 1AC3F87F3141181653E7D222E27151A2 11410944 ----a-w- C:\Windows\SysWOW64\wmp.dll
2018-07-24 06:29:31 01EA2D445830658A62D45ED228AC7D58 1313792 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2018-07-24 06:29:28 F9F3C19B1029BB7C63EF478D4A237941 953344 ----a-w- C:\Windows\SysWOW64\gpedit.dll
2018-07-24 06:29:28 F58B62BFD8C64F860FB2365FCF5CA375 3405824 ----a-w- C:\Windows\SysWOW64\xpsrchvw.exe
2018-07-24 06:29:28 F4B6F8839170EDF9FD65B0745E3638B5 36352 ----a-w- C:\Windows\SysWOW64\cryptbase.dll
2018-07-24 06:29:28 F112E8D8B5EF4F6AE02DCE3E062C0CBD 696320 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2018-07-24 06:29:28 E419FE2098168F7CEA2A233EA81674F3 428032 ----a-w- C:\Windows\SysWOW64\wlanmsm.dll
2018-07-24 06:29:28 E14FC4B37C6DFDCAFB4EA349D9D66EAB 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll
2018-07-24 06:29:28 CFD3330A45D8C292C4C6DE89325A57F1 18944 ----a-w- C:\Windows\SysWOW64\wfapigp.dll
2018-07-24 06:29:28 CB10DC5D6E2D8FFB6290303DF3BC9875 65880 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-07-24 06:29:28 C648901695E275C8F2AD04B687A68CE2 45056 ----a-w- C:\Windows\SysWOW64\rundll32.exe
2018-07-24 06:29:28 C0ADC3DABA23072F8A7AA64ABE8AA9A6 61952 ----a-w- C:\Windows\SysWOW64\ntprint.exe
2018-07-24 06:29:28 B0B6C6F78E5FC9F90D7C7345E214A4C7 276992 ----a-w- C:\Windows\SysWOW64\wcncsvc.dll
2018-07-24 06:29:28 AF40FDAB98B0FF209632C3403DB6C39F 830464 ----a-w- C:\Windows\SysWOW64\msctf.dll
2018-07-24 06:29:28 8F16118E9C9EAB9237FC8FC57BA9165F 10240 ----a-w- C:\Windows\SysWOW64\dciman32.dll
2018-07-24 06:29:28 6B47A9ECFBA6A3775B36780FAF5D533E 50688 ----a-w- C:\Windows\SysWOW64\appidapi.dll
2018-07-24 06:29:28 585987A92FDD082A032CCE1FBF654D22 309760 ----a-w- C:\Windows\SysWOW64\actxprxy.dll
2018-07-24 06:29:28 48B8FD7C090A8B8EC47BF7A9AF8B954B 475648 ----a-w- C:\Windows\SysWOW64\msxbde40.dll
2018-07-24 06:29:28 47E0F093BA5B11C13362740F30D2D9EE 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-07-24 06:29:28 47B6897054A76E8F56718DEEFB2B2737 67584 ----a-w- C:\Windows\SysWOW64\asycfilt.dll
2018-07-24 06:29:28 4481672EB5DECBC35D6BC77410277897 254464 ----a-w- C:\Windows\SysWOW64\schannel.dll
2018-07-24 06:29:28 414E182C926F903360B6726EC160C0A6 498176 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2018-07-24 06:29:28 411D8E3A2B55B9A2873C884A5743F88F 304640 ----a-w- C:\Windows\SysWOW64\taskcomp.dll
2018-07-24 06:29:28 3BD3BEFFA4348B8B5F8320EDABD6B3C8 523776 ----a-w- C:\Windows\SysWOW64\hhctrl.ocx
2018-07-24 06:29:28 3B58E0C9ABC280044ADB770F52C4622D 130048 ----a-w- C:\Windows\SysWOW64\occache.dll
2018-07-24 06:29:28 3964B9FF1C2AFDB5E61B17E66CF8BAF9 8192 ----a-w- C:\Windows\SysWOW64\iprtprio.dll
2018-07-24 06:29:28 38A6B70D44AF764307F7B8964DE205A2 174080 ----a-w- C:\Windows\SysWOW64\wuwebv.dll
2018-07-24 06:29:28 351F369731B85DFF224115B3A751F852 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll
2018-07-24 06:29:28 3433D2B85A2A325509BF85707D2611EA 13824 ----a-w- C:\Windows\SysWOW64\wshqos.dll
2018-07-24 06:29:28 2C7FC26E90C858C793226A6D18F1D68A 139776 ----a-w- C:\Windows\SysWOW64\PeerDist.dll
2018-07-24 06:29:28 29F8B58C22BD2F97EC2E8F0B87CF631C 1499648 ----a-w- C:\Windows\SysWOW64\ExplorerFrame.dll
2018-07-24 06:29:28 13FDF0CBACAF55BEAFF80F943EE3AAC8 1806848 ----a-w- C:\Windows\SysWOW64\authui.dll
2018-07-24 06:29:28 1107555801A14488CAFA1831D54CC821 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll
2018-07-24 06:29:28 0BDA99A6A2FB8AF0C4BD40541F659A7F 279040 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2018-07-24 06:29:27 B73966CFD747762F93CC27DF6544BC50 2060288 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2018-07-24 06:29:27 6A25198AA332CA656BD76B03D7B29F03 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
2018-07-24 06:29:27 638DEF534C723534A0048AD1AA4F7C2D 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2018-07-24 06:29:27 24FF25A3D32E8B0C1D640DADBA81DC66 20286464 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2018-07-24 06:29:27 071F0D72D938DE283AEBBB0CD0E95200 2295296 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2018-07-24 06:29:26 25AA0C561E288AE52D3E97E3997A506A 12880384 ----a-w- C:\Windows\SysWOW64\shell32.dll
2018-07-24 06:29:25 FB8032DFBE22B7C48AC9A4EC2FEAE3F1 134656 ----a-w- C:\Windows\SysWOW64\WinSCard.dll
2018-07-24 06:29:25 F9CAB9D2E5BF1D9C8B01CC59C9F4F51C 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2018-07-24 06:29:25 F92D1A5B21D241D789E2541208621EBA 4050624 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
2018-07-24 06:29:25 EAD9FBA82C6A66FBD088E9CCB8480C57 303104 ----a-w- C:\Windows\SysWOW64\mmcbase.dll
2018-07-24 06:29:25 E597131CF7FCF899C77947641296AD7E 662016 ----a-w- C:\Windows\SysWOW64\jscript.dll
2018-07-24 06:29:25 E53022747443FC3E8A69C7858E7248A0 918296 ----a-w- C:\Windows\SysWOW64\ucrtbase.dll
2018-07-24 06:29:25 E174722F442E9FA3EAB830357A10A913 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll
2018-07-24 06:29:25 E097B097231DF2C03F6B5083092A6F95 70144 ----a-w- C:\Windows\SysWOW64\TSpkg.dll
2018-07-24 06:29:25 DB1917A860BB61D48AD3459DF441B34B 25600 ----a-w- C:\Windows\SysWOW64\lpk.dll
2018-07-24 06:29:25 D133305F1B700163CCF242FE9868B076 52224 ----a-w- C:\Windows\SysWOW64\wsnmp32.dll
2018-07-24 06:29:25 CAF62939BCD04EA799C53BBEC4486EFC 106496 ----a-w- C:\Windows\SysWOW64\cryptnet.dll
2018-07-24 06:29:25 C4FADD724DA8B6E958B92DE6692DFD3E 463360 ----a-w- C:\Windows\SysWOW64\FirewallAPI.dll
2018-07-24 06:29:25 C043A37A5E9DFFE7BA69A52A19D9A063 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll
2018-07-24 06:29:25 B505FA46BAB4FA1D6E4141FF1D8ED7C1 487936 ----a-w- C:\Windows\SysWOW64\catsrvut.dll
2018-07-24 06:29:25 AC157A35A63CBBC28A3729D5D3FBE66A 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2018-07-24 06:29:25 A036E55D6B443FF53E79AD82550D6993 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll
2018-07-24 06:29:25 9392CD363C6FE0CC6EFC927903F85845 216576 ----a-w- C:\Windows\SysWOW64\FWPUCLNT.DLL
2018-07-24 06:29:25 8E91E0F429D18017ED00F096EE8CE994 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll
2018-07-24 06:29:25 8C706932FCE03C8C5C79DE879037E4DD 1314072 ----a-w- C:\Windows\SysWOW64\ntdll.dll
2018-07-24 06:29:25 841D64BF6AE3EF0013EBCA020810BFE2 141312 ----a-w- C:\Windows\SysWOW64\rpchttp.dll
2018-07-24 06:29:25 8350EEB762B80BD9D80B650BA2609344 308224 ----a-w- C:\Windows\SysWOW64\scesrv.dll
2018-07-24 06:29:25 7D9EE3EA2210D64FBB5979C71F19736B 179200 ----a-w- C:\Windows\SysWOW64\wintrust.dll
2018-07-24 06:29:25 7B72D697D37D80D156C869A306AF4EA3 73216 ----a-w- C:\Windows\SysWOW64\tdc.ocx
2018-07-24 06:29:25 310D798E3DEAA0EB33E1F4F2B66749F4 261120 ----a-w- C:\Windows\SysWOW64\msv1_0.dll
2018-07-24 06:29:25 2F3887E33B087C86EE71C8D88B4C32D9 337408 ----a-w- C:\Windows\SysWOW64\msihnd.dll
2018-07-24 06:29:25 296E6705C2C898865F85A56F9B056A5D 309440 ----a-w- C:\Windows\SysWOW64\atmfd.dll
2018-07-24 06:29:25 27607C3219A98ADECDB355628D48E17B 145920 ----a-w- C:\Windows\SysWOW64\cryptsvc.dll
2018-07-24 06:29:25 1A196E43301519920A4C8A98DD73AB49 271360 ----a-w- C:\Windows\SysWOW64\iprtrmgr.dll
2018-07-24 06:29:25 0BBFF8141438C1AD9E8B8108E4828F50 666624 ----a-w- C:\Windows\SysWOW64\nshwfp.dll
2018-07-24 06:29:25 06983C58F6D1CAE00A72CE5091715C79 73216 ----a-w- C:\Windows\SysWOW64\msiexec.exe
2018-07-24 06:29:25 02814474C497130152E6C5D1F6F36D95 52224 ----a-w- C:\Windows\SysWOW64\nlaapi.dll
2018-07-24 06:29:24 EB9A60C605137C204C01116B9C26F693 13680128 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2018-07-24 06:29:24 5733F1CB6F4EDB64B10664EB5C0C9C47 416256 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2018-07-24 06:29:24 179882638338C54703CC695A63D6B3D3 476160 ----a-w- C:\Windows\SysWOW64\ieui.dll
2018-07-24 06:29:23 8594BD814DAFE7476C73FF20444C8A80 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll
2018-07-24 06:29:23 49EFFD4C26029ABC5744078AB5BB1FAE 4496384 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2018-07-24 06:29:23 1BD1A7ED0EAC57B4B2C02BD81E535A09 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll
2018-07-24 06:29:22 FBE7918B0CF71FCB71478971A1DD7134 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll
2018-07-24 06:29:22 E069A3B525828F055D9BF71A1B3DBC1E 312832 ----a-w- C:\Windows\SysWOW64\gdi32.dll
2018-07-24 06:29:22 C9D6D5A1C281BB93A3237F9059ECF2B2 2365952 ----a-w- C:\Windows\SysWOW64\msi.dll
2018-07-24 06:29:22 C1A06699B139B51804579ACD107C19A0 481792 ----a-w- C:\Windows\SysWOW64\mscms.dll
2018-07-24 06:29:22 9A302F3036CB2CE62837D035444FF1DD 741888 ----a-w- C:\Windows\SysWOW64\inetcomm.dll
2018-07-24 06:29:22 93DE30FA0FA2E0BD31D099CC7FDD2460 1241600 ----a-w- C:\Windows\SysWOW64\comsvcs.dll
2018-07-24 06:29:22 55B6D1A0293AC4CAB6FDC46887F869F8 341504 ----a-w- C:\Windows\SysWOW64\html.iec
2018-07-24 06:29:22 3D3C1F0BE3644B6C1D728D4970C07DD0 2767872 ----a-w- C:\Windows\SysWOW64\wininet.dll
2018-07-24 06:29:22 2F929C103155EE98EFB649FE9AF21740 271360 ----a-w- C:\Windows\SysWOW64\Wldap32.dll
2018-07-24 06:29:22 1E38AEB134500A43DB7D4E4EA6F49B85 351744 ----a-w- C:\Windows\SysWOW64\winhttp.dll
2018-07-24 06:29:21 ED03B8BFE1AF6039304814AED8A675B2 3962048 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
2018-07-24 06:29:20 E1D94AE90FEF0AAA0D2C0582651AF372 582144 ----a-w- C:\Windows\SysWOW64\oleaut32.dll
2018-07-24 06:29:20 D99D2588AB30658287818CF6778E5261 25088 ----a-w- C:\Windows\SysWOW64\msimsg.dll
2018-07-24 06:29:20 C8C5D6F1B47CB63DAC39FD3D35B888E1 237056 ----a-w- C:\Windows\SysWOW64\pdh.dll
2018-07-24 06:29:20 BE2F9603030393367735B0279A78E495 644096 ----a-w- C:\Windows\SysWOW64\advapi32.dll
2018-07-24 06:29:20 4EB42FA4DC131C86B3BF429CAE8D5E8F 554496 ----a-w- C:\Windows\SysWOW64\kerberos.dll
2018-07-24 06:29:20 3BE82330701A81F0F9857A1A9FC7AAC7 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll
2018-07-24 06:29:20 2F872A04443BD29C380DAE1A4693AFB2 1417728 ----a-w- C:\Windows\SysWOW64\ole32.dll
2018-07-24 06:29:20 2B7401DB11654B3C50D8E5C39C620606 666112 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll
2018-07-24 06:29:20 27D66C4E06281DA3B0644B1BAA9DDAC8 782848 ----a-w- C:\Windows\SysWOW64\webservices.dll
2018-07-24 06:29:20 0A56461A2E07C0E4CB80492B3795E7B0 1176576 ----a-w- C:\Windows\SysWOW64\crypt32.dll
2018-07-24 06:29:14 F8C7346CE9939F2E67887E2300F25694 629760 ----a-w- C:\Windows\SysWOW64\usp10.dll
2018-07-24 06:29:14 F31B13F9591F1350892BB4BFECFAA1C4 215040 ----a-w- C:\Windows\SysWOW64\icm32.dll
2018-07-24 06:29:14 ECE9B3300C87CA315D22D5132F2A64D7 50688 ----a-w- C:\Windows\SysWOW64\ndptsp.tsp
2018-07-24 06:29:14 EB3C5DF7C68432A78D01FEF449183DE4 84992 ----a-w- C:\Windows\SysWOW64\hlink.dll
2018-07-24 06:29:14 C2E787F8373A8287B06ECFA373B88CC2 1251328 ----a-w- C:\Windows\SysWOW64\DWrite.dll
2018-07-24 06:29:14 BA391DDC881CE3C30A42B1A7E7AE2908 111616 ----a-w- C:\Windows\SysWOW64\t2embed.dll
2018-07-24 06:29:14 A6949E802060E20D3B6BB0E39AD7378B 115200 ----a-w- C:\Windows\SysWOW64\rtm.dll
2018-07-24 06:29:14 A4CFBA9772F2D54F466771AFABCB7A22 34304 ----a-w- C:\Windows\SysWOW64\atmlib.dll
2018-07-24 06:29:14 9200B9BBA562D4969EC135A3B7F59EA9 38912 ----a-w- C:\Windows\SysWOW64\kmddsp.tsp
2018-07-24 06:29:14 45562FDC64E30695C97D0C98863A1FC8 71680 ----a-w- C:\Windows\SysWOW64\fontsub.dll
2018-07-24 06:29:14 0DF768001BB6B2191E475F5DC0EC6328 303616 ----a-w- C:\Windows\SysWOW64\msinfo32.exe
2018-07-24 06:29:13 DE4466627EEA8FB832015A12960D6FB1 40960 ----a-w- C:\Windows\SysWOW64\sdchange.exe
2018-07-24 06:29:13 C815C7A3371054ED45426FC7BF439701 108032 ----a-w- C:\Windows\SysWOW64\msra.exe
2018-07-24 06:29:13 802FCE56C31D9400F857D818746B70FE 26624 ----a-w- C:\Windows\SysWOW64\netbtugc.exe
2018-07-24 06:29:13 71C8F44D3323EF92EC39A4D6013C60E8 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll
2018-07-24 06:29:13 690094D4EA6E25405DC737B7BAAB382F 81408 ----a-w- C:\Windows\SysWOW64\rascfg.dll
2018-07-24 06:29:13 5A8D4FB46CD8CA305197B4B2B4E3118B 690688 ----a-w- C:\Windows\SysWOW64\adtschema.dll
2018-07-24 06:29:13 54E453BA0809EA822E703DDB8A799670 162304 ----a-w- C:\Windows\SysWOW64\ncsi.dll
2018-07-24 06:29:13 4A35D7B172AFF9C6B362D7297568836A 269824 ----a-w- C:\Windows\SysWOW64\dnsapi.dll
2018-07-24 06:29:13 2E89C71A89DBB79E7B2D4C8022CC870C 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll
2018-07-24 06:29:13 04A7545E4C8FE10918AE92DF92307CA1 61952 ----a-w- C:\Windows\SysWOW64\rasdiag.dll
2018-07-24 06:29:11 D9800BFB545D192CF19930014045CA70 30720 ----a-w- C:\Windows\SysWOW64\dnscacheugc.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2018-07-24 08:45:26 DFACE0E54E6F3FA1DC0092B6B16F390C 4296704 ----a-w- C:\Windows\Sysnative\D3DCompiler_47.dll
2018-07-24 06:29:44 F28BA5D926706E817FBBDE6A646BF184 140992 ----a-w- C:\Windows\Sysnative\CompatTelRunner.exe
2018-07-24 06:29:44 C6D099A97030F551D9339549CAC9E64F 246272 ----a-w- C:\Windows\Sysnative\aepic.dll
2018-07-24 06:29:44 A951597908E55D34E64BF0F801272C49 2860032 ----a-w- C:\Windows\Sysnative\aitstatic.exe
2018-07-24 06:29:44 6A8491A066FD55EC24DE34B23208DE2F 470016 ----a-w- C:\Windows\Sysnative\centel.dll
2018-07-24 06:29:44 5B0D66A15245E0F0394A3F0605BB2056 443392 ----a-w- C:\Windows\Sysnative\invagent.dll
2018-07-24 06:29:43 EBDB52C995E3915EA4159FDCD92F45B2 783872 ----a-w- C:\Windows\Sysnative\generaltel.dll
2018-07-24 06:29:43 E0E860556906246367CBF595DF5905A1 680960 ----a-w- C:\Windows\Sysnative\aeinv.dll
2018-07-24 06:29:43 B4F45446416C85DA7F099E42F9F9F907 612352 ----a-w- C:\Windows\Sysnative\devinv.dll
2018-07-24 06:29:43 8E5D58AA60B350C69BED3476937899CF 301056 ----a-w- C:\Windows\Sysnative\acmigration.dll
2018-07-24 06:29:43 17147053A522FA230B4744E15A465B1B 1602048 ----a-w- C:\Windows\Sysnative\appraiser.dll
2018-07-24 06:29:35 F5F31DC3B928073274BCDF7B4D4136F9 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-environment-l1-1-0.dll
2018-07-24 06:29:35 97741740B1831234D80ED912F8B9A964 91368 ----a-w- C:\Windows\Sysnative\MigAutoPlay.exe
2018-07-24 06:29:35 1BF2AF4DEB96801EDFDE04A763EA4028 14168 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-time-l1-1-0.dll
2018-07-24 06:29:35 1A3292019AF01D7A6ED8BC52686840E6 17752 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-string-l1-1-0.dll
2018-07-24 06:29:34 FF6E04A942AB95C3CAD6C111B730102E 2058240 ----a-w- C:\Windows\Sysnative\Query.dll
2018-07-24 06:29:34 FD374A7F3079A4F7D96B4C8A1E71B1A3 20824 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-math-l1-1-0.dll
2018-07-24 06:29:34 FCFB6405CF54D78C5BAA81A66802918C 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-utility-l1-1-0.dll
2018-07-24 06:29:34 F90898CEFAAF450857C3C6A7EB08DB42 103936 ----a-w- C:\Windows\Sysnative\resmon.exe
2018-07-24 06:29:34 F5D4EF8A0C33CBF321DD51ABAFD5FFB2 15704 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-convert-l1-1-0.dll
2018-07-24 06:29:34 E8E4E71C396E184A65E3E46112825985 288256 ----a-w- C:\Windows\Sysnative\mssphtb.dll
2018-07-24 06:29:34 DBB0E88A94589792069DB5DECC9D5D60 58880 ----a-w- C:\Windows\Sysnative\pdhui.dll
2018-07-24 06:29:34 D3252C57563DEEF1D9E257FB17577690 53248 ----a-w- C:\Windows\Sysnative\hhsetup.dll
2018-07-24 06:29:34 D263B7CE85EFDC007C40AABCA5ACB255 17752 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-24 06:29:34 B4B63F1D78B3DF2EFA57192F3329D202 9728 ----a-w- C:\Windows\Sysnative\iprtprio.dll
2018-07-24 06:29:34 9FFDF8425078B97D31DF095AE0BA2A43 48640 ----a-w- C:\Windows\Sysnative\wpnpinst.exe
2018-07-24 06:29:34 9A2F550B05720F69592A66EE9733E1E1 5120 ----a-w- C:\Windows\Sysnative\msdxm.ocx
2018-07-24 06:29:34 9A2F550B05720F69592A66EE9733E1E1 5120 ----a-w- C:\Windows\Sysnative\dxmasf.dll
2018-07-24 06:29:34 9600008630390E2209199E7791185075 12632 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-process-l1-1-0.dll
2018-07-24 06:29:34 934FEAED29730C6F894872EEA7577A80 128512 ----a-w- C:\Windows\Sysnative\IcCoinstall.dll
2018-07-24 06:29:34 861A2FD3AFB4557BA49A6D60A02C39BF 13656 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-24 06:29:34 842CA37133BE98BE81EE569F8BA6D2AD 9216 ----a-w- C:\Windows\Sysnative\plasrv.exe
2018-07-24 06:29:34 8003D39B386EDCCFB08DC21AACC0683A 559616 ----a-w- C:\Windows\Sysnative\spoolsv.exe
2018-07-24 06:29:34 7DF8B500AE98DE6CD677C15FC653F47D 9728 ----a-w- C:\Windows\Sysnative\spwmp.dll
2018-07-24 06:29:34 730153373C28F016B84D7F717775954D 25600 ----a-w- C:\Windows\Sysnative\winnsi.dll
2018-07-24 06:29:34 72EBE4E993A0EA5BEEB25A71F36A7E5F 131072 ----a-w- C:\Windows\Sysnative\mmcshext.dll
2018-07-24 06:29:34 71340AB9EA9678E8C095E8C6DA06563E 194048 ----a-w- C:\Windows\Sysnative\itircl.dll
2018-07-24 06:29:34 6A0A2D8C5C9CA9826930872602472195 11264 ----a-w- C:\Windows\Sysnative\msmmsp.dll
2018-07-24 06:29:34 64EECB4CE99C99B1136F88A17AD8EF58 22528 ----a-w- C:\Windows\Sysnative\inetppui.dll
2018-07-24 06:29:34 54F104E6825A8B82E3552BA060D2C0CF 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2018-07-24 06:29:34 54C942A045F24C63DB6C49DD9618984F 594432 ----a-w- C:\Windows\Sysnative\wvc.dll
2018-07-24 06:29:34 4BB23FCE63D49211BB520D368E1FDD3F 34304 ----a-w- C:\Windows\Sysnative\werdiagcontroller.dll
2018-07-24 06:29:34 471FA523AFE0C531052190789916AD91 1133568 ----a-w- C:\Windows\Sysnative\cdosys.dll
2018-07-24 06:29:34 34B55B7F3479B1C1AD4F109614F29D19 170496 ----a-w- C:\Windows\Sysnative\itss.dll
2018-07-24 06:29:34 34450D8B9F8638E486F92780D5728D07 473600 ----a-w- C:\Windows\Sysnative\taskcomp.dll
2018-07-24 06:29:34 2E33759FA0983CCEF45621AE716205B0 26112 ----a-w- C:\Windows\Sysnative\oleres.dll
2018-07-24 06:29:34 2C653B6993E3C9C6C7138802E6FAFAC4 12288 ----a-w- C:\Windows\Sysnative\wu.upgrade.ps.dll
2018-07-24 06:29:34 21F7875DF5DD6FB0C1B961B40336129D 113664 ----a-w- C:\Windows\Sysnative\SearchFilterHost.exe
2018-07-24 06:29:34 21AB8A6F559D1E49C8FFA3CDAF037839 12640 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-conio-l1-1-0.dll
2018-07-24 06:29:34 1B923D7B425EE35CC865715E8FF2B920 16216 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-24 06:29:34 17AA424DAD67E33C231241A7AB0EFF07 75264 ----a-w- C:\Windows\Sysnative\msscntrs.dll
2018-07-24 06:29:34 158E32C297632CA1733A31FC3917DD6C 14336 ----a-w- C:\Windows\Sysnative\msshooks.dll
2018-07-24 06:29:34 156DA44DE8586202CD7BADDA883B5994 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-heap-l1-1-0.dll
2018-07-24 06:29:34 13669EF8AE3C36E077BBCDA1EF6CE30C 19288 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-24 06:29:34 10C18EE8EB974E9F6382917AD3CD7D11 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-locale-l1-1-0.dll
2018-07-24 06:29:34 08A13AC17CBDC76276370DA5D5F20060 369664 ----a-w- C:\Windows\Sysnative\zipfldr.dll
2018-07-24 06:29:33 DC4EEBF548FDF3DDD6A3A7AD4293A61B 2851328 ----a-w- C:\Windows\Sysnative\themeui.dll
2018-07-24 06:29:33 C8584E8773E541BAC251CAA92DEBCE7D 491520 ----a-w- C:\Windows\Sysnative\mssph.dll
2018-07-24 06:29:33 C5AA76BE7645EECE0C34562FA96C7B38 13312 ----a-w- C:\Windows\Sysnative\nsi.dll
2018-07-24 06:29:33 C2D848F56293ED04C730D75AF0F64233 115200 ----a-w- C:\Windows\Sysnative\mssitlb.dll
2018-07-24 06:29:33 A42CC1EA7DE02E77B8F610C9DB4688EB 463872 ----a-w- C:\Windows\Sysnative\certcli.dll
2018-07-24 06:29:33 9A9174065781052CF8822E13FA105738 591872 ----a-w- C:\Windows\Sysnative\SearchIndexer.exe
2018-07-24 06:29:33 92CD3565621335BC1432850B0AE5C012 419840 ----a-w- C:\Windows\Sysnative\KernelBase.dll
2018-07-24 06:29:33 8EECC364ABE9ABA05AFB7B3E26C91F37 50176 ----a-w- C:\Windows\Sysnative\srclient.dll
2018-07-24 06:29:33 89B1F9A2A9A872906C113803CA3B0361 2319872 ----a-w- C:\Windows\Sysnative\tquery.dll
2018-07-24 06:29:33 7B828D19E030EB29232AB923DDCE9BBF 24576 ----a-w- C:\Windows\Sysnative\WcnEapPeerProxy.dll
2018-07-24 06:29:33 7A65B9A545133941EBF23A6E06A6CE1F 8704 ----a-w- C:\Windows\Sysnative\comcat.dll
2018-07-24 06:29:33 7770E03C9DC6FDA3549932D1BBB9C2FE 296960 ----a-w- C:\Windows\Sysnative\rstrui.exe
2018-07-24 06:29:33 61151E4E079FCA5601CCD05ADFE93064 13312 ----a-w- C:\Windows\Sysnative\wshnetbs.dll
2018-07-24 06:29:33 5CEFEDE17307B080125D16FBA2125602 37888 ----a-w- C:\Windows\Sysnative\wuapp.exe
2018-07-24 06:29:33 3A5A8A94B88C8FD0D8819F82136A5F8A 249856 ----a-w- C:\Windows\Sysnative\SearchProtocolHost.exe
2018-07-24 06:29:33 0BDEF8EAE185FFC435023217347C6E31 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll
2018-07-24 06:29:33 0B172766B1E78AEBCA583713A850FFF8 63488 ----a-w- C:\Windows\Sysnative\setbcdlocale.dll
2018-07-24 06:29:32 F9B0D652B2934AB8EC64DD26CB7601C6 211968 ----a-w- C:\Windows\Sysnative\cic.dll
2018-07-24 06:29:32 F99E94CEF9DB4A0D269870DBA1E0A0DC 101376 ----a-w- C:\Windows\Sysnative\fdWCN.dll
2018-07-24 06:29:32 F97C397CE4778CA49F105463FB6BD287 85504 ----a-w- C:\Windows\Sysnative\asycfilt.dll
2018-07-24 06:29:32 F88906103EE31C7B5FE0C489452F72FC 1163264 ----a-w- C:\Windows\Sysnative\kernel32.dll
2018-07-24 06:29:32 F625EA4C3102411C52F5D9AF4559174B 61952 ----a-w- C:\Windows\Sysnative\ntprint.exe
2018-07-24 06:29:32 E5A1E7B40B5086E643705B2D85A139C4 1110528 ----a-w- C:\Windows\Sysnative\schedsvc.dll
2018-07-24 06:29:32 E282BB751CD40C38FD8D3B93C6CEDAE3 22016 ----a-w- C:\Windows\Sysnative\credssp.dll
2018-07-24 06:29:32 D9800890FAF5723DCA476FA6A762DE4B 63832 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-private-l1-1-0.dll
2018-07-24 06:29:32 D682E67712CCF3E6D297D915A420AB1B 16896 ----a-w- C:\Windows\Sysnative\wshqos.dll
2018-07-24 06:29:32 D258DBCB124F0B06951A80C58276EF46 346112 ----a-w- C:\Windows\Sysnative\ntprint.dll
2018-07-24 06:29:32 BEEF124AE870E5DE7F0DDC7C68DF8F76 2048 ----a-w- C:\Windows\Sysnative\mferror.dll
2018-07-24 06:29:32 BBBFA70DDA53A309701E44B5948C8FDA 24064 ----a-w- C:\Windows\Sysnative\WcnEapAuthProxy.dll
2018-07-24 06:29:32 98C74D7C3D6FFA2851E485FE91C2C695 17920 ----a-w- C:\Windows\Sysnative\appidcertstorecheck.exe
2018-07-24 06:29:32 96AA4C72100C0C1731783A5BB5430713 51712 ----a-w- C:\Windows\Sysnative\vmictimeprovider.dll
2018-07-24 06:29:32 92A3CD6057E9F44AA645341E6D717BEF 172544 ----a-w- C:\Windows\Sysnative\perfmon.exe
2018-07-24 06:29:32 8E15963FF62A61EA58A7D5EB1845542B 701952 ----a-w- C:\Windows\Sysnative\hhctrl.ocx
2018-07-24 06:29:32 89765E5A616A11A0B78E015F88563D60 50688 ----a-w- C:\Windows\Sysnative\wermgr.exe
2018-07-24 06:29:32 814754FE14D1D97D5D565746E1AD458E 210432 ----a-w- C:\Windows\Sysnative\wdigest.dll
2018-07-24 06:29:32 80AD73B817FFDB549F3CDC2E6A160A2C 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll
2018-07-24 06:29:32 7FEBFC27067BE03D7CECDE09AFFAF2A8 93696 ----a-w- C:\Windows\Sysnative\mfmjpegdec.dll
2018-07-24 06:29:32 668B9EFF5CCA4542F435D2CD9CE3C778 26112 ----a-w- C:\Windows\Sysnative\nsisvc.dll
2018-07-24 06:29:32 5B12DFB01574840526AD244E24BCE692 170176 ----a-w- C:\Windows\Sysnative\basecsp.dll
2018-07-24 06:29:32 55733700CBB49AE48379A38FDFCAB8AD 215552 ----a-w- C:\Windows\Sysnative\winsrv.dll
2018-07-24 06:29:32 296D4475DF8458A8E4DDA8842D37DD2F 2048 ----a-w- C:\Windows\Sysnative\msxml6r.dll
2018-07-24 06:29:32 24F1EE7FBCA5999F164CDAF5034519EB 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe
2018-07-24 06:29:32 2067F48D026667923B7BC7184E0D234C 757248 ----a-w- C:\Windows\Sysnative\win32spl.dll
2018-07-24 06:29:32 1EC28916E6C098DEF52EE49D98E4D4CE 7168 ----a-w- C:\Windows\Sysnative\MsraLegacy.tlb
2018-07-24 06:29:32 1DD375A8607A64F53406607195A5BA32 166400 ----a-w- C:\Windows\Sysnative\inetpp.dll
2018-07-24 06:29:32 1BE23B677B6A2631557FB56EA72D0E74 475136 ----a-w- C:\Windows\Sysnative\sysmon.ocx
2018-07-24 06:29:32 19A5175A3D5E386FC3201C4F4B2F8EA1 264704 ----a-w- C:\Windows\Sysnative\P2P.dll
2018-07-24 06:29:32 15F5FC11B490D77AA6A389F7F48530AF 116224 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe
2018-07-24 06:29:32 0396C80CC7120379B2CF5A1A4CBF7CF8 37888 ----a-w- C:\Windows\Sysnative\wups2.dll
2018-07-24 06:29:32 0301EEE83B03229F555C6F8025FB5540 97792 ----a-w- C:\Windows\Sysnative\mprdim.dll
2018-07-24 06:29:32 007665F8DE4B18F82CEC63313F8ADCD2 2144256 ----a-w- C:\Windows\Sysnative\mmc.exe
2018-07-24 06:29:31 E79487826558CC5C43E3F1779CC9D87F 484864 ----a-w- C:\Windows\Sysnative\StructuredQuery.dll
2018-07-24 06:29:31 D11DB8D23EC381BC7B774B5EF7088FF6 140288 ----a-w- C:\Windows\Sysnative\wuauclt.exe
2018-07-24 06:29:31 C70ED53A31477F76600A6BC58753FBBE 709120 ----a-w- C:\Windows\Sysnative\wuapi.dll
2018-07-24 06:29:31 B59C2D5D0F8EE9B287EA31702D291281 778240 ----a-w- C:\Windows\Sysnative\mssvp.dll
2018-07-24 06:29:31 B37049F67D49A88EA7D74E74D00DF6C6 2222080 ----a-w- C:\Windows\Sysnative\mssrch.dll
2018-07-24 06:29:31 AA732CFC19AFC581020FB9FDBF1B8F93 1143296 ----a-w- C:\Windows\Sysnative\DXPTaskRingtone.dll
2018-07-24 06:29:31 9227B8390D601DE8F0423ECD0A60EA57 503808 ----a-w- C:\Windows\Sysnative\srcore.dll
2018-07-24 06:29:31 7085531CD4D020257CEC121317415433 728064 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2018-07-24 06:29:31 1E229A071AA54F1FF4C2FB9D44EEB2B8 107520 ----a-w- C:\Windows\Sysnative\inseng.dll
2018-07-24 06:29:30 FFE6670F3E359484E6B62841203571E0 1574912 ----a-w- C:\Windows\Sysnative\quartz.dll
2018-07-24 06:29:30 627D80A5F4604E5623BF647C27596B69 971776 ----a-w- C:\Windows\Sysnative\localspl.dll
2018-07-24 06:29:30 6129FB75F11062BA2A119E87621DEC14 2004480 ----a-w- C:\Windows\Sysnative\msxml6.dll
2018-07-24 06:29:29 E41DD12A023A54B071A55CEC3537904A 109568 ----a-w- C:\Windows\Sysnative\hlink.dll
2018-07-24 06:29:29 BE8C1B098C47FF68D9A590044389F9EF 345600 ----a-w- C:\Windows\Sysnative\schannel.dll
2018-07-24 06:29:29 BC5F8C5C7ACCD0B884FCB8B67616F537 1389056 ----a-w- C:\Windows\Sysnative\pla.dll
2018-07-24 06:29:29 B7B3C07D8EB33481BCFF3C075381A09B 338432 ----a-w- C:\Windows\Sysnative\conhost.exe
2018-07-24 06:29:29 72F42C96CE1982628CAA275F703C7FED 217600 ----a-w- C:\Windows\Sysnative\WinSCard.dll
2018-07-24 06:29:29 6F14CB391767A3BB45CE9AA5E36B8B15 486400 ----a-w- C:\Windows\Sysnative\wer.dll
2018-07-24 06:29:29 4190FD659E26999CE7E024475BFBBA41 3665920 ----a-w- C:\Windows\Sysnative\MSVidCtl.dll
2018-07-24 06:29:29 2B97029736390D5A34A90A0AD9AC8A62 404992 ----a-w- C:\Windows\Sysnative\wisptis.exe
2018-07-24 06:29:29 0D38C1ED3D068E8EBCBFFAED332F0032 1363456 ----a-w- C:\Windows\Sysnative\wdc.dll
2018-07-24 06:29:29 04476FEA865294E1B1CE9EC008F4D6DC 3203584 ----a-w- C:\Windows\Sysnative\mmcndmgr.dll
2018-07-24 06:29:28 F8DBB1C24F8FFBCA97E61ED06A8307F2 229376 ----a-w- C:\Windows\Sysnative\scksp.dll
2018-07-24 06:29:28 CB92C5DD2BF928BE2F7D893BAD9332D2 34816 ----a-w- C:\Windows\Sysnative\appidsvc.dll
2018-07-24 06:29:28 C3532E4A656E0B986E5674576031AFEF 504320 ----a-w- C:\Windows\Sysnative\msihnd.dll
2018-07-24 06:29:28 AAAC72FC092ED7245DABEAE48890EBC6 119296 ----a-w- C:\Windows\Sysnative\racpldlg.dll
2018-07-24 06:29:28 90FE38C6A8FE7EAA921DEBDEFBDDBAEF 98816 ----a-w- C:\Windows\Sysnative\wudriver.dll
2018-07-24 06:29:28 8886F053688EC10FE4858C3302266920 244224 ----a-w- C:\Windows\Sysnative\vmicsvc.exe
2018-07-24 06:29:28 79DB2B358BF0B152F15D1C5A525233BD 439296 ----a-w- C:\Windows\Sysnative\p2psvc.dll
2018-07-24 06:29:28 4CF5B8F1AF0A757B169795AA21070A6A 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2018-07-24 06:29:28 4377D5CD793F8F1DD698FF7A2639F5E8 148480 ----a-w- C:\Windows\Sysnative\appidpolicyconverter.exe
2018-07-24 06:29:28 414ED8500CAF9869BDD23296886878D7 120320 ----a-w- C:\Windows\Sysnative\WcnApi.dll
2018-07-24 06:29:28 396B9CC3BCC1BEADFAA6C1A6A5FA54D0 23744 ----a-w- C:\Windows\Sysnative\streamci.dll
2018-07-24 06:29:28 35050F01D00E7E72A2449EB6F9ABF8B4 40960 ----a-w- C:\Windows\Sysnative\WcsPlugInService.dll
2018-07-24 06:29:28 26E0462BFF018B9B2DC95B83B36A58F9 36864 ----a-w- C:\Windows\Sysnative\wups.dll
2018-07-24 06:29:28 21CA3FEC7A49BEE4CCC39BC59F5D2FA9 99840 ----a-w- C:\Windows\Sysnative\mssprxy.dll
2018-07-24 06:29:28 17AC9353D8BCDB0E4D978D0C0703B623 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll
2018-07-24 06:29:28 1197C7F741BF8AFC201D081C4FA59927 1032192 ----a-w- C:\Windows\Sysnative\rdpcore.dll
2018-07-24 06:29:28 0535EE6D57256EB96350E8C12B2887E9 2048 ----a-w- C:\Windows\Sysnative\tzres.dll
2018-07-24 06:29:27 F670C35EDE5F6B6E7624608C31710FA7 398376 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
2018-07-24 06:29:27 E30B11795F0E8600F6737D7DEB25D158 3165184 ----a-w- C:\Windows\Sysnative\wucltux.dll
2018-07-24 06:29:27 6AD64BB3B7183B64B73609CB093CDCB7 12574720 ----a-w- C:\Windows\Sysnative\wmploc.DLL
2018-07-24 06:29:27 691D953D90BB9552057CF82D86E8BF55 84480 ----a-w- C:\Windows\Sysnative\INETRES.dll
2018-07-24 06:29:27 28B0044D934B9D922B03C0330BC5C28C 1545216 ----a-w- C:\Windows\Sysnative\urlmon.dll
2018-07-24 06:29:27 1DD626FE4DE2D4B710DD1360F404A54F 71680 ----a-w- C:\Windows\Sysnative\PrintBrmUi.exe
2018-07-24 06:29:26 FFC84C824A0F2F36CEE385D64A4E0044 152064 ----a-w- C:\Windows\Sysnative\occache.dll
2018-07-24 06:29:26 EE896904F18B1DEA01A3762B2E662441 1867776 ----a-w- C:\Windows\Sysnative\ExplorerFrame.dll
2018-07-24 06:29:26 CF90304887A6D65641FA6AF70CD7D095 114368 ----a-w- C:\Windows\Sysnative\consent.exe
2018-07-24 06:29:26 8F8FE1115D56F601EBB707B353DA6030 961024 ----a-w- C:\Windows\Sysnative\actxprxy.dll
2018-07-24 06:29:26 734EBDB764E033B8E4E55898AED6CEB9 1942016 ----a-w- C:\Windows\Sysnative\authui.dll
2018-07-24 06:29:26 6ED680CF33CF6883F9F900D978A6E588 14635008 ----a-w- C:\Windows\Sysnative\wmp.dll
2018-07-24 06:29:26 0545A00F0E6E387A91BA59427AE1C6F7 1001984 ----a-w- C:\Windows\Sysnative\gpedit.dll
2018-07-24 06:29:25 E59C04C0681BB1EA90406254647DBA4D 44032 ----a-w- C:\Windows\Sysnative\csrsrv.dll
2018-07-24 06:29:25 DA4C42CE3913EC5B1471485CD232CC5A 28160 ----a-w- C:\Windows\Sysnative\secur32.dll
2018-07-24 06:29:25 D92C0D871FBA258CBF2126EABFE31447 70144 ----a-w- C:\Windows\Sysnative\appinfo.dll
2018-07-24 06:29:25 C36BB659F08F046B139C8D1B980BF1AC 46080 ----a-w- C:\Windows\Sysnative\rundll32.exe
2018-07-24 06:29:25 BF1BBA9F3C707FD6B2B07ADD6DB47E49 312320 ----a-w- C:\Windows\Sysnative\ncrypt.dll
2018-07-24 06:29:25 B7A23A91AD9CB04AF9E21CF775CCE775 30720 ----a-w- C:\Windows\Sysnative\lsass.exe
2018-07-24 06:29:25 B42CD13EEDF756570C490BC6B9CB44DD 14336 ----a-w- C:\Windows\Sysnative\dciman32.dll
2018-07-24 06:29:25 A64B7797CF2C49906B27376B64158871 13312 ----a-w- C:\Windows\Sysnative\sscore.dll
2018-07-24 06:29:25 A5979BDEE89F69E596437AA258BF9538 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll
2018-07-24 06:29:25 9D214A2727F3633C5EAF5E52658B0EBA 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll
2018-07-24 06:29:25 8F511C1E7347EF43FB5ECD7C748C4803 25088 ----a-w- C:\Windows\Sysnative\msimsg.dll
2018-07-24 06:29:25 7C7CB27E0025B9387C193DC10907F2D0 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll
2018-07-24 06:29:25 7715910112D44F7501F560995AB052F4 123904 ----a-w- C:\Windows\Sysnative\bcrypt.dll
2018-07-24 06:29:25 4CF347F478EE4CA538DE56B2772306A1 43520 ----a-w- C:\Windows\Sysnative\cryptbase.dll
2018-07-24 06:29:25 39599BF2945B67A36769DB69F3D63BCC 28672 ----a-w- C:\Windows\Sysnative\sspisrv.dll
2018-07-24 06:29:25 31C0F011CED277003021C12F31563996 113664 ----a-w- C:\Windows\Sysnative\wlanapi.dll
2018-07-24 06:29:25 1CD1341FCBEA8E5E057D555CA94C9B77 448512 ----a-w- C:\Windows\Sysnative\wlansec.dll
2018-07-24 06:29:25 15CF7B24AA64FE958CAEA00274838B1C 1741312 ----a-w- C:\Windows\Sysnative\sysmain.dll
2018-07-24 06:29:25 04841947C5F9A7E31EFB0914A056AD62 1068544 ----a-w- C:\Windows\Sysnative\msctf.dll
2018-07-24 06:29:25 042747AD32A51760D1C7F21A47BBF437 24576 ----a-w- C:\Windows\Sysnative\mfpmp.exe
2018-07-24 06:29:24 DC1BC5F2B1C54EA6725734BF4C0E5454 16384 ----a-w- C:\Windows\Sysnative\RdpGroupPolicyExtension.dll
2018-07-24 06:29:24 DB2EF7E6E4C76A32ACB777F71F10A79C 4834816 ----a-w- C:\Windows\Sysnative\xpsrchvw.exe
2018-07-24 06:29:24 CB2515803A8BBBDD7207A1F3CB554DC4 192512 ----a-w- C:\Windows\Sysnative\wuwebv.dll
2018-07-24 06:29:24 B8A2835643EB138B4081E50079353774 181760 ----a-w- C:\Windows\Sysnative\PeerDist.dll
2018-07-24 06:29:24 AD359C53941A6AC57FB935E7E9F1D16E 92160 ----a-w- C:\Windows\Sysnative\TabSvc.dll
2018-07-24 06:29:24 9B150E212F7905E08EC36977C38735B0 131584 ----a-w- C:\Windows\Sysnative\PeerDistWSDDiscoProv.dll
2018-07-24 06:29:24 99B4EC8C18D864213258FF96796A3F40 51200 ----a-w- C:\Windows\Sysnative\PeerDistHttpTrans.dll
2018-07-24 06:29:24 7F1A8D2D82F9B9AE61ADC986C5D4B457 91136 ----a-w- C:\Windows\Sysnative\WinSetupUI.dll
2018-07-24 06:29:24 7CFC917E6019DBABE474BC99E2BC3ADD 969216 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2018-07-24 06:29:24 79E3903FD75A22386326B542F17A2563 366592 ----a-w- C:\Windows\Sysnative\wcncsvc.dll
2018-07-24 06:29:24 64FB16C5849444F0CFD403C83D9579A1 327168 ----a-w- C:\Windows\Sysnative\pnrpsvc.dll
2018-07-24 06:29:24 634DCA9B1512DEDDADB4887116BFAECE 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll
2018-07-24 06:29:24 5BA6A8A4404B7B68999F6687404AB968 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
2018-07-24 06:29:24 42AEC5BC87A54240115A9230BF495F86 315392 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2018-07-24 06:29:24 369389F447AE7B741B06AAB66A10EED7 809472 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2018-07-24 06:29:24 307312447AD71ECC414B7B33E3006C57 95744 ----a-w- C:\Windows\Sysnative\rascfg.dll
2018-07-24 06:29:24 28BE388215DBA049A038F1E55FE92AF9 59904 ----a-w- C:\Windows\Sysnative\appidapi.dll
2018-07-24 06:29:23 E15CD986AEC0ABB5C6C03194F61C268B 2135552 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2018-07-24 06:29:23 C3C062499B700B9501E63D6D049CF982 2902016 ----a-w- C:\Windows\Sysnative\iertutil.dll
2018-07-24 06:29:23 9E42E092BC8336AF5F00CA9B56F45370 14185984 ----a-w- C:\Windows\Sysnative\shell32.dll
2018-07-24 06:29:23 7FA39F97E70048CF087AB8C5D201A680 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll
2018-07-24 06:29:23 468E317BD66B892DA9BF3097E5A3452F 355328 ----a-w- C:\Windows\Sysnative\mmcbase.dll
2018-07-24 06:29:23 4648043558C20D3D9E6CBE4B0A17EF4E 576512 ----a-w- C:\Windows\Sysnative\vbscript.dll
2018-07-24 06:29:23 0B739D33715DE42880F74EEEF9F26EFF 361984 ----a-w- C:\Windows\Sysnative\wow64win.dll
2018-07-24 06:29:22 E6499E0BFB97D128C0019F564AECA79B 749568 ----a-w- C:\Windows\Sysnative\FirewallAPI.dll
2018-07-24 06:29:22 BAD009A2A00ED9E793788EE3B8D29D13 70656 ----a-w- C:\Windows\Sysnative\nlaapi.dll
2018-07-24 06:29:22 B5D7A0638CA817BA7D8A4DFD3499BA2A 371392 ----a-w- C:\Windows\Sysnative\clfs.sys
2018-07-24 06:29:22 9984C87858BB977FD6DCD516BF8C5029 998912 ----a-w- C:\Windows\Sysnative\ucrtbase.dll
2018-07-24 06:29:22 85915F0BF5A7314A65B43602971ADFDC 525824 ----a-w- C:\Windows\Sysnative\catsrvut.dll
2018-07-24 06:29:22 7D789D1E8222877722A68B5EA0A8EB65 128512 ----a-w- C:\Windows\Sysnative\msiexec.exe
2018-07-24 06:29:22 77A0CB0FD36B1E3792504B437ED5AE82 87552 ----a-w- C:\Windows\Sysnative\tdc.ocx
2018-07-24 06:29:22 62379E30C5842B0751E84D99881A5C31 144384 ----a-w- C:\Windows\Sysnative\cdd.dll
2018-07-24 06:29:22 5AE580537C52D695EABE7612A670B07E 324096 ----a-w- C:\Windows\Sysnative\FWPUCLNT.DLL
2018-07-24 06:29:22 3A297EFFE6491B79525431B48DC24B3A 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2018-07-24 06:29:22 163184DBC77178B0A98D60F04EFE3518 842752 ----a-w- C:\Windows\Sysnative\nshwfp.dll
2018-07-24 06:29:21 D221688A4959B28955C23C840FD0BDB9 383680 ----a-w- C:\Windows\Sysnative\atmfd.dll
2018-07-24 06:29:21 C0EBC0C6894B8847C68D5719068E1A06 243712 ----a-w- C:\Windows\Sysnative\wow64.dll
2018-07-24 06:29:21 B7E822E262620F65B0D3DE97D0A0601C 112640 ----a-w- C:\Windows\Sysnative\smss.exe
2018-07-24 06:29:21 9BD47F0DFE540DDF3DE1DF1D9E06BD09 190464 ----a-w- C:\Windows\Sysnative\rpchttp.dll
2018-07-24 06:29:21 777D8C353728538DEF6AC017C6FF2778 281600 ----a-w- C:\Windows\Sysnative\iprtrmgr.dll
2018-07-24 06:29:21 42E2902255B1EC83E2481ACF542A8E69 1665344 ----a-w- C:\Windows\Sysnative\ntdll.dll
2018-07-24 06:29:21 0FC46C397FA85BE58BC1E1F46A2B026C 262336 ----a-w- C:\Windows\Sysnative\hal.dll
2018-07-24 06:29:20 F9B2FCFF14D866C9C6F27A041C364F9C 67072 ----a-w- C:\Windows\Sysnative\wsnmp32.dll
2018-07-24 06:29:20 EE5F8717CBCDB28A42A408D14B7ADB72 3181568 ----a-w- C:\Windows\Sysnative\rdpcorets.dll
2018-07-24 06:29:20 EC0550300E899BD69BDB5937E684D348 190976 ----a-w- C:\Windows\Sysnative\cryptsvc.dll
2018-07-24 06:29:20 E65118228501478C4630BC96F2E1C876 236032 ----a-w- C:\Windows\Sysnative\srvsvc.dll
2018-07-24 06:29:20 E3960944590EC8350C7049BC5ECC709D 414208 ----a-w- C:\Windows\Sysnative\wlanmsm.dll
2018-07-24 06:29:20 C59E17D5E30972ECA28A72004795AEA7 1361408 ----a-w- C:\Windows\Sysnative\PeerDistSvc.dll
2018-07-24 06:29:20 C45C167AEF19509C6C156C7D2CFE4AC0 118784 ----a-w- C:\Windows\Sysnative\wlanhlp.dll
2018-07-24 06:29:20 B1E26EFC437F19277403F8519946AFB6 41472 ----a-w- C:\Windows\Sysnative\lpk.dll
2018-07-24 06:29:20 AF043145FDA1CAB4362E49550237F498 206848 ----a-w- C:\Windows\Sysnative\mfps.dll
2018-07-24 06:29:20 AE3A1739F010CCE45B8B36B53EEFA7BF 243200 ----a-w- C:\Windows\Sysnative\rdpudd.dll
2018-07-24 06:29:20 AA81D975FEB65CD4D1817E3CD1AEE1A5 135680 ----a-w- C:\Windows\Sysnative\sspicli.dll
2018-07-24 06:29:20 A5599B0804E7FFC667259F4E31643C8C 141824 ----a-w- C:\Windows\Sysnative\cryptnet.dll
2018-07-24 06:29:20 9DFECE11850EF9679FE46017DF168CE2 55808 ----a-w- C:\Windows\Sysnative\rrinstaller.exe
2018-07-24 06:29:20 8AA244A59261BE7A3A3A4C4744A65F08 407040 ----a-w- C:\Windows\Sysnative\scesrv.dll
2018-07-24 06:29:20 8531E27ED3B7B89FBF2625CF25E6ACB0 229376 ----a-w- C:\Windows\Sysnative\wintrust.dll
2018-07-24 06:29:20 6A118B401CF3AB7F22B67029FC3A7F4F 22528 ----a-w- C:\Windows\Sysnative\icaapi.dll
2018-07-24 06:29:20 614E8B7CEE39C7AFC7695BB90B1EB1D8 316928 ----a-w- C:\Windows\Sysnative\msv1_0.dll
2018-07-24 06:29:20 43CCB07A71347064695B8852492DA126 512000 ----a-w- C:\Windows\Sysnative\rpcss.dll
2018-07-24 06:29:20 30646AB10A0981A1BBB1F95400E99C08 94208 ----a-w- C:\Windows\Sysnative\TSpkg.dll
2018-07-24 06:29:20 11D6A262B617130F7C16E308C12E0D41 455680 ----a-w- C:\Windows\Sysnative\winlogon.exe
2018-07-24 06:29:20 0A2E5059B5775E7DBBE05B8156ECE0C6 2651648 ----a-w- C:\Windows\Sysnative\wuaueng.dll
2018-07-24 06:29:19 E8A170DBAD23508376BE020934FF19D6 5779968 ----a-w- C:\Windows\Sysnative\jscript9.dll
2018-07-24 06:29:19 BA3688C4CBC20A3817DD118C768E2A79 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll
2018-07-24 06:29:19 9647B3BD734351FC209E416A621B1753 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll
2018-07-24 06:29:19 94F674F4D1AD1B41E97FA471FAF34FA3 794624 ----a-w- C:\Windows\Sysnative\jscript.dll
2018-07-24 06:29:19 8C1CB1F617A343D93AB3511366FFC3E3 489984 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2018-07-24 06:29:19 53A8232418A4728F2374E393767F539E 15283200 ----a-w- C:\Windows\Sysnative\ieframe.dll
2018-07-24 06:29:19 48E075759ECF6AB15CB224633A5CB1CB 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll
2018-07-24 06:29:19 43B8084AB3CC8A87D13E2B3E2BC58396 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2018-07-24 06:29:19 1CBBCAF325E2961724A2436A29824A9C 615936 ----a-w- C:\Windows\Sysnative\ieui.dll
2018-07-24 06:29:18 C66D2F929CDDB3DAEE59F9C6B86A2645 417280 ----a-w- C:\Windows\Sysnative\html.iec
2018-07-24 06:29:18 ACEEFC5988E5FBE0AE624F04CA62E75E 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll
2018-07-24 06:29:18 ACCE9A86D69F34E1EDDE7B53F2D64699 625664 ----a-w- C:\Windows\Sysnative\mscms.dll
2018-07-24 06:29:18 A11391166113D74AA4F34FA9373EE68D 3241472 ----a-w- C:\Windows\Sysnative\wininet.dll
2018-07-24 06:29:18 8FBB89B99E5A5259D0EC8FE688DB2740 199680 ----a-w- C:\Windows\Sysnative\msrating.dll
2018-07-24 06:29:18 0C15874715A6B2E3074B93ADE4443D33 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2018-07-24 06:29:17 E3ED6C06462FDDE33100F7E45E8F5213 705024 ----a-w- C:\Windows\Sysnative\BFE.DLL
2018-07-24 06:29:17 D7FC199EADC4438660A6338C2E6A9F90 444928 ----a-w- C:\Windows\Sysnative\winhttp.dll
2018-07-24 06:29:17 D6AC76621D74E415113D83F03E7AF8D4 405504 ----a-w- C:\Windows\Sysnative\gdi32.dll
2018-07-24 06:29:17 93DEDBE8E24F31962755E6AA4AC2D7B0 303104 ----a-w- C:\Windows\Sysnative\nlasvc.dll
2018-07-24 06:29:17 8C8D675AFB55BC15165F36D39FEE2403 3246080 ----a-w- C:\Windows\Sysnative\msi.dll
2018-07-24 06:29:17 3FA0F2D5BCF878BBBCBF1D80E698552B 828928 ----a-w- C:\Windows\Sysnative\MPSSVC.dll
2018-07-24 06:29:17 3B49EEE6F346CCB044C1EA2245855849 3226112 ----a-w- C:\Windows\Sysnative\win32k.sys
2018-07-24 06:29:17 25AF7D5C819F19D7C97F4A9607F2609A 863232 ----a-w- C:\Windows\Sysnative\IKEEXT.DLL
2018-07-24 06:29:17 0AE751DFA0C96532D283C87E0EAC21F0 1735168 ----a-w- C:\Windows\Sysnative\comsvcs.dll
2018-07-24 06:29:16 E6F5C9788BF800772914BEDC12FCC3F4 731648 ----a-w- C:\Windows\Sysnative\kerberos.dll
2018-07-24 06:29:16 D376A4B1765B8DF3E7E9CDE98DB3200E 2066432 ----a-w- C:\Windows\Sysnative\ole32.dll
2018-07-24 06:29:16 6C2E6C1AD1476BABC6F303678BB144FE 313856 ----a-w- C:\Windows\Sysnative\Wldap32.dll
2018-07-24 06:29:16 59960219F73C56B06271B75B5C41CA51 880640 ----a-w- C:\Windows\Sysnative\advapi32.dll
2018-07-24 06:29:16 48BF5FBF74532BCC1F720968FC02367A 300544 ----a-w- C:\Windows\Sysnative\pdh.dll
2018-07-24 06:29:16 448853F460D6627386D812CE948ADEFE 977408 ----a-w- C:\Windows\Sysnative\inetcomm.dll
2018-07-24 06:29:16 4085CEEA9EA0ECED65C8B306D49CF0C8 5577408 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe
2018-07-24 06:29:16 1BCF1641BF09C022E760F070A328F861 876032 ----a-w- C:\Windows\Sysnative\oleaut32.dll
2018-07-24 06:29:16 0FDF3E7637424DD987D1DFD2F6B85CAD 1461760 ----a-w- C:\Windows\Sysnative\lsasrv.dll
2018-07-24 06:29:16 08C8866D1538825E605D4D4B5E47F772 1211904 ----a-w- C:\Windows\Sysnative\rpcrt4.dll
2018-07-24 06:29:15 DC46807E86DD8EDDFD31FDE6127D4D43 4120576 ----a-w- C:\Windows\Sysnative\mf.dll
2018-07-24 06:29:15 71854E8E246FF283800D4AECE661D9C8 25743872 ----a-w- C:\Windows\Sysnative\mshtml.dll
2018-07-24 06:29:15 4BB2486807C1B0D29282E40568990334 1159680 ----a-w- C:\Windows\Sysnative\webservices.dll
2018-07-24 06:29:15 4B7912EB80820EAC543EE54806EFCAF0 886272 ----a-w- C:\Windows\Sysnative\wlansvc.dll
2018-07-24 06:29:15 0F76EB1552896B51F838B8CD674A9C46 1484288 ----a-w- C:\Windows\Sysnative\crypt32.dll
2018-07-24 06:29:14 FBDC49AB136FE84277E4239192E9502B 634272 ----a-w- C:\Windows\Sysnative\winload.exe
2018-07-24 06:29:14 E96131836A9B63153EB3FA63BFD9A9AB 76288 ----a-w- C:\Windows\Sysnative\rasdiag.dll
2018-07-24 06:29:14 E0B43EA51494F84930CABE418792BB8F 708288 ----a-w- C:\Windows\Sysnative\winload.efi
2018-07-24 06:29:14 D52EADF6043C0BA6E5CB20BBE91F516B 152064 ----a-w- C:\Windows\Sysnative\t2embed.dll
2018-07-24 06:29:14 D44CECD80278138D5D7B77F495DD34FF 138240 ----a-w- C:\Windows\Sysnative\rtm.dll
2018-07-24 06:29:14 D2A34BE3588B3A6FAE032B6B8037A8DF 41472 ----a-w- C:\Windows\Sysnative\rasmxs.dll
2018-07-24 06:29:14 BD69F99287CA0FA032882BAFE928A9FF 250880 ----a-w- C:\Windows\Sysnative\icm32.dll
2018-07-24 06:29:14 BCE48EAA229651AF8BA4D5D9D42547CD 379392 ----a-w- C:\Windows\Sysnative\msinfo32.exe
2018-07-24 06:29:14 BCC0DECE39579AE964C8FA81E3C9CF65 100864 ----a-w- C:\Windows\Sysnative\fontsub.dll
2018-07-24 06:29:14 BC11B2BF35D85EAD537306D82ABC1AA1 459632 ----a-w- C:\Windows\Sysnative\ci.dll
2018-07-24 06:29:14 B15EE6C1BF8F1B60C893900671E6906F 46080 ----a-w- C:\Windows\Sysnative\atmlib.dll
2018-07-24 06:29:14 98CBA639FF0D76AFC9078686ECC50062 1648128 ----a-w- C:\Windows\Sysnative\DWrite.dll
2018-07-24 06:29:14 8EB418BE78839A3509B3DBA889F842B1 60928 ----a-w- C:\Windows\Sysnative\ndptsp.tsp
2018-07-24 06:29:14 8378755374D418E0F912880FA3D4A5D8 653312 ----a-w- C:\Windows\Sysnative\msra.exe
2018-07-24 06:29:14 7C510B22EEF336697780B33B74802BFD 806912 ----a-w- C:\Windows\Sysnative\usp10.dll
2018-07-24 06:29:14 785F474FB5E67E448E1931C98E8D0ABC 1180160 ----a-w- C:\Windows\Sysnative\FntCache.dll
2018-07-24 06:29:14 608E43CDDF8284116F05DEEC7C206434 47104 ----a-w- C:\Windows\Sysnative\kmddsp.tsp
2018-07-24 06:29:14 53657AA4B72E47FC25EE657FF3A629C1 39424 ----a-w- C:\Windows\Sysnative\traffic.dll
2018-07-24 06:29:14 394BE905D8D6550438048E77FB04B775 631640 ----a-w- C:\Windows\Sysnative\winresume.efi
2018-07-24 06:29:14 35FB72FF3454FB9619AE68AE2A18BC9F 51712 ----a-w- C:\Windows\Sysnative\sdchange.exe
2018-07-24 06:29:14 27CA1884251ABFEBEC9266B668E383C6 133120 ----a-w- C:\Windows\Sysnative\msrahc.dll
2018-07-24 06:29:14 0EA0557A4347F0606FE93957C6BC4ABD 29696 ----a-w- C:\Windows\Sysnative\rasser.dll
2018-07-24 06:29:13 FAD7F5BB92A7DF63942AB9999BFA84A1 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll
2018-07-24 06:29:13 F934E20D19193BA7B0BA77532B155A88 22528 ----a-w- C:\Windows\Sysnative\wfapigp.dll
2018-07-24 06:29:13 EEEFC204476D5C44E4F6802F55697179 182272 ----a-w- C:\Windows\Sysnative\dnsrslvr.dll
2018-07-24 06:29:13 BDB3B4DE7BC4A01BB7785A64AB8590E1 108544 ----a-w- C:\Windows\Sysnative\icfupgd.dll
2018-07-24 06:29:13 ACD5C99440D65A1AEE1DBA73CA35B9A2 223232 ----a-w- C:\Windows\Sysnative\ncsi.dll
2018-07-24 06:29:13 A142ED2B42A82F10CA32B58CA336BA55 53760 ----a-w- C:\Windows\Sysnative\vmicres.dll
2018-07-24 06:29:13 9B86DF86D1EFF32893BC3FB49BFAA993 357888 ----a-w- C:\Windows\Sysnative\dnsapi.dll
2018-07-24 06:29:13 4C3C4395BBD7417647AB9C96DB4F99AB 25088 ----a-w- C:\Windows\Sysnative\netbtugc.exe
2018-07-24 06:29:13 46C9ED5E5DCA790BCAB1664894CF7D5C 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll
2018-07-24 06:29:13 12F14818522DD268514F08E7C15A2F28 690688 ----a-w- C:\Windows\Sysnative\adtschema.dll
2018-07-24 06:29:13 01C95A8CAE16CCF1EA1181395C872B9F 124416 ----a-w- C:\Windows\Sysnative\wkssvc.dll
2018-07-24 06:29:11 836B8AC6AC18AA6A34DE84F414981FED 30208 ----a-w- C:\Windows\Sysnative\dnscacheugc.exe
====== C:\Windows\Sysnative\drivers =====
2018-08-07 03:31:57 A5E456CD5A30B41D6B628BDB80F4FA7E 72816 ----a-w- C:\Windows\Sysnative\drivers\ykgrjsmb.sys
2018-08-04 11:19:19 99E885018EE51F1BDDDC5228AADD873B 114920 ----a-w- C:\Windows\Sysnative\drivers\farflt.sys
2018-08-04 11:19:05 8D93347D0E6A5EAB47F0423D6B9960D7 92792 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2018-08-04 11:11:30 E8F4540E13A62E1649824D4C5576EE29 48360 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2018-08-04 11:11:27 F6A196A0A107406D6BA54A1A7293C67A 191208 ----a-w- C:\Windows\Sysnative\drivers\MbamChameleon.sys
2018-08-04 11:11:18 351BF8F77B0A15A7B5A2AE098C52A387 253664 ----a-w- C:\Windows\Sysnative\drivers\mbamswissarmy.sys
2018-08-04 11:11:09 082F9D1ADB6DF9E5DB30EB52A34FCF0A 152688 ----a-w- C:\Windows\Sysnative\drivers\mbae64.sys
2018-07-24 06:29:34 1FC0BF25FFCB9F751BCBC6C6AC577078 31936 ----a-w- C:\Windows\Sysnative\drivers\mssmbios.sys
2018-07-24 06:29:34 10DCD3BDFA785E1482EC02304A7E9B96 12096 ----a-w- C:\Windows\Sysnative\drivers\swenum.sys
2018-07-24 06:29:32 466BF4170DC41BB939F1F9AB8F97F8F5 60608 ----a-w- C:\Windows\Sysnative\drivers\AGP440.sys
2018-07-24 06:29:28 B70E26A57F35ECA5199E6D6B9592A67C 64192 ----a-w- C:\Windows\Sysnative\drivers\ULIAGPKX.SYS
2018-07-24 06:29:28 905E9D664F38B93B53FA05422165F5B5 20160 ----a-w- C:\Windows\Sysnative\drivers\isapnp.sys
2018-07-24 06:29:28 9002EED07FD7FCFF6B8C5C06B454AC19 9728 ----a-w- C:\Windows\Sysnative\drivers\errdev.sys
2018-07-24 06:29:28 626BD5A1A3205255E57FF116A431DC5F 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys
2018-07-24 06:29:28 4B1C343E11065819F687EAC68A5E13F3 169984 ----a-w- C:\Windows\Sysnative\drivers\srvnet.sys
2018-07-24 06:29:28 3F217F77899654833B650ED6A1372BE4 24064 ----a-w- C:\Windows\Sysnative\drivers\ndistapi.sys
2018-07-24 06:29:28 2CF58216424757ED29605B4F18EC443C 40448 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys
2018-07-24 06:29:28 28879F924D021D56431DD142155A9644 62464 ----a-w- C:\Windows\Sysnative\drivers\appid.sys
2018-07-24 06:29:25 E6DFE1F33B1250A6E26EA6F6CE10B09C 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys
2018-07-24 06:29:25 E46AF308E96F7730F59B0F250A884CD6 58368 ----a-w- C:\Windows\Sysnative\drivers\ndproxy.sys
2018-07-24 06:29:25 9C456BFD0FF50CB5B7ECDA7B7529F63B 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys
2018-07-24 06:29:25 90D91013D16A15B22A4B4EB6D4140A5B 30208 ----a-w- C:\Windows\Sysnative\drivers\hidusb.sys
2018-07-24 06:29:25 7E45F8B117419ABA3BB26579F6E70324 195584 ----a-w- C:\Windows\Sysnative\drivers\exfat.sys
2018-07-24 06:29:25 7BDCE021786C3DCCFD2C22EBF643EE36 36032 ----a-w- C:\Windows\Sysnative\drivers\vdrvroot.sys
2018-07-24 06:29:25 7425A6B64F5D37D0565F2581B886E5E3 122560 ----a-w- C:\Windows\Sysnative\drivers\NV_AGP.SYS
2018-07-24 06:29:25 6FE3DBEEA730A857CA3DF603B7DEADA2 15040 ----a-w- C:\Windows\Sysnative\drivers\msisadrv.sys
2018-07-24 06:29:25 640456A9D6EBCD3BC25C64CA8D38B5F5 129536 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys
2018-07-24 06:29:25 481DADB90C1D4E9F19328079C7A9E63D 185024 ----a-w- C:\Windows\Sysnative\drivers\pci.sys
2018-07-24 06:29:25 43471A750D4F3918AC92F5131AE252D3 14336 ----a-w- C:\Windows\Sysnative\drivers\wmiacpi.sys
2018-07-24 06:29:25 421F2BB55F7B686DF490171E5642C3F2 325632 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys
2018-07-24 06:29:25 2D8FFA3B636368130F909E0CD935B555 406016 ----a-w- C:\Windows\Sysnative\drivers\srv2.sys
2018-07-24 06:29:25 1BEF8EC7C33657F18F5ED492B3683470 287936 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2018-07-24 06:29:25 0A33C9EC6822B24E26687F1EC6346922 344064 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys
2018-07-24 06:29:22 DC591A7A196E99EFB5A48D708CB989FD 288488 ----a-w- C:\Windows\Sysnative\drivers\fltMgr.sys
2018-07-24 06:29:22 DC4CB3626E7423B9D83CF1B4857FDF15 88576 ----a-w- C:\Windows\Sysnative\drivers\wanarp.sys
2018-07-24 06:29:22 B16D8FEC7EE13C8575B4B8BD8F4F6405 95424 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
2018-07-24 06:29:22 A21C2034FC556EBCA6478E434B5AF693 159744 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys
2018-07-24 06:29:22 9FB2A095B1166CB3C9A06651863B3452 324608 ----a-w- C:\Windows\Sysnative\drivers\nwifi.sys
2018-07-24 06:29:22 93C367EA831FB39DEE3BA96539A187FB 754176 ----a-w- C:\Windows\Sysnative\drivers\http.sys
2018-07-24 06:29:22 8EDE91FBAC7BF7605323C517C717A253 68288 ----a-w- C:\Windows\Sysnative\drivers\volmgr.sys
2018-07-24 06:29:22 734837208CAFD6E0959A7A0333C95C9D 262656 ----a-w- C:\Windows\Sysnative\drivers\netbt.sys
2018-07-24 06:29:22 63705A08981F7EDD376241D6E0A9C2AC 115200 ----a-w- C:\Windows\Sysnative\drivers\dfsc.sys
2018-07-24 06:29:22 5CEF80AE869336376F550ECAE91E424A 986856 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys
2018-07-24 06:29:22 5416CEB2916BBE635288C4D1075B045E 113152 ----a-w- C:\Windows\Sysnative\drivers\luafv.sys
2018-07-24 06:29:22 4DD986720F7CB7A8A5D1226793097B9A 117248 ----a-w- C:\Windows\Sysnative\drivers\tdx.sys
2018-07-24 06:29:22 4CE827A5433451551E99C2C1D20E4A43 131584 ----a-w- C:\Windows\Sysnative\drivers\pacer.sys
2018-07-24 06:29:22 2509EA6C74884402F37FB8E84C5F714B 377024 ----a-w- C:\Windows\Sysnative\drivers\netio.sys
2018-07-24 06:29:22 1792FCF97D2420514F9102C18B015B29 265448 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys
2018-07-24 06:29:22 1145EC013B72D4E6C60497707BB1A4B6 464384 ----a-w- C:\Windows\Sysnative\drivers\srv.sys
2018-07-24 06:29:22 0DC2A9882540DEA4A55B08785E09D8FC 496128 ----a-w- C:\Windows\Sysnative\drivers\afd.sys
2018-07-24 06:29:22 072D8646E23ECF8A3F5F0157017B4DB6 94440 ----a-w- C:\Windows\Sysnative\drivers\mountmgr.sys
2018-07-24 06:29:21 F4287A980C0AA41DE3073F053E5EA73C 213736 ----a-w- C:\Windows\Sysnative\drivers\rdyboost.sys
2018-07-24 06:29:21 DCA5495CA17AEB2F4FD8AC60812C3999 334528 ----a-w- C:\Windows\Sysnative\drivers\acpi.sys
2018-07-24 06:29:21 BE313E566EEA2A4B7F9AAC9782A567D4 26112 ----a-w- C:\Windows\Sysnative\drivers\nsiproxy.sys
2018-07-24 06:29:21 AC24D7A7D9EEDE11E2926F9001BEAFB5 63168 ----a-w- C:\Windows\Sysnative\drivers\termdd.sys
2018-07-24 06:29:21 94FE5C648F51D093630AE1CD33284C23 77312 ----a-w- C:\Windows\Sysnative\drivers\mpsdrv.sys
2018-07-24 06:29:21 3C1D50EBDC6F531C0AA905D71956E106 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys
2018-07-24 06:29:21 2E19EB10185992AB08BC3688AACA4CE2 45056 ----a-w- C:\Windows\Sysnative\drivers\netbios.sys
2018-07-24 06:29:21 2DAA11557AD647010C2CC09202DD6C0B 291328 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys
2018-07-24 06:29:21 24512A8F8CA9BE62AAB8561484B1CF7F 33152 ----a-w- C:\Windows\Sysnative\drivers\hidparse.sys
2018-07-24 06:29:21 234F9E56606CE5D1549DE7D4CCA4DE0C 56320 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys
2018-07-24 06:29:21 1EA66940941514A151804663BB475CA7 129024 ----a-w- C:\Windows\Sysnative\drivers\videoprt.sys
2018-07-24 06:29:21 1E7D9762BBB89D879065F5EE7E0EC45C 76800 ----a-w- C:\Windows\Sysnative\drivers\hidclass.sys
2018-07-24 06:29:20 9DE8D00626F01DBD1879A6655D7A752D 467856 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
2018-07-24 06:29:20 94275393BB85D1E2B74BFEFEC386B4A0 367296 ----a-w- C:\Windows\Sysnative\drivers\msrpc.sys
2018-07-24 06:29:20 6EDFA237D25433C03F42FBFDB16BDD24 205312 ----a-w- C:\Windows\Sysnative\drivers\fastfat.sys
2018-07-24 06:29:18 85C5468BC395819AE2A0C747334BA14C 363752 ----a-w- C:\Windows\Sysnative\drivers\volmgrx.sys
2018-07-24 06:29:17 FB45727105E27756B3252572A138FA19 317440 ----a-w- C:\Windows\Sysnative\drivers\rdbss.sys
2018-07-24 06:29:17 C2B2F27629913C7DC1239E90F9A3D107 1893568 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2018-07-24 06:29:17 261F27367EB6EA6478B940811F0A6F03 948968 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys
2018-07-24 06:29:16 8422AFBD1C2D30FFC913309D7F1A366D 1681088 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys
2018-07-24 06:29:14 968F43D731E8FBC2E75BBA07EE0FC086 154816 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2018-07-11 10:58:58 E880D79F0EF4C349D734274AD8A7DFC0 68112 ----a-w- C:\Windows\Sysnative\drivers\nvvhci.sys
2018-07-11 10:58:57 DE3B81FBC9B8EBA4C22B13E530DBD8B9 17000808 ----a-w- C:\Windows\Sysnative\drivers\nvlddmkm.sys
2018-07-11 10:58:57 4FD4739B359C2923965FE99B03AFD090 227928 ----a-w- C:\Windows\Sysnative\drivers\nvhda64v.sys
2018-07-11 10:58:57 1DD1FEA987D9881C07581C10666B1240 67432 ----a-w- C:\Windows\Sysnative\drivers\nvvad64v.sys
====== C:\Windows\Tasks ======
2018-08-03 22:14:26 38E5906DDB4080D05DC282C99051695E 3650 ----a-w- C:\Windows\Sysnative\Tasks\{F173B0E5-C95D-4EE7-B6F1-5C759080AE8D}
2018-08-03 22:14:26 0C275428E6F8E51562538CB71A8821C4 3446 ----a-w- C:\Windows\Sysnative\Tasks\{D7713373-E515-8195-5CB1-9CFB584077E3}
2018-08-03 22:14:24 49B4DEDFEFE650F1E9BCD8807A7621DC 3754 ----a-w- C:\Windows\Sysnative\Tasks\{5BB89D1A-AF5F-C2B9-357F-2D3F6FC9184B}
2018-08-03 22:05:09 CD6A27417CB0EC06E7207C9648E12620 2872 ----a-w- C:\Windows\Sysnative\Tasks\vnKUActWDSalGNfrR2
2018-08-03 22:05:09 54565A070C19733FA85AF6C1795D60DF 2860 ----a-w- C:\Windows\Sysnative\Tasks\WAOtgPBGflHZLCaeTGs2
2018-08-03 22:05:08 12DA38377D8FE3C26C3214936368BBD1 2890 ----a-w- C:\Windows\Sysnative\Tasks\reQGtPgibmNDB2
2018-08-03 22:05:07 C7CA432159F08A06B0982B06C1CA188A 3058 ----a-w- C:\Windows\Sysnative\Tasks\zleDohIUJuBRcb
2018-07-23 10:36:02 FFDD51BB585CFCC49D77D181693652A6 3386 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2018-07-23 10:36:01 85463238B414876E1C088CC67B14F290 3258 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2018-07-11 11:00:44 6D942C9E07C810B68033EA5BFEF10C35 3798 ----a-w- C:\Windows\Sysnative\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:43 3C3D883E7E2DE4DC6D9767FE67509927 3790 ----a-w- C:\Windows\Sysnative\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:39 A43B2DA4F256429E764C57BB1335FB71 3940 ----a-w- C:\Windows\Sysnative\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:38 A26F0A46F668F5A333909A6CA9DD95E8 4146 ----a-w- C:\Windows\Sysnative\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:37 B4B387085707927B155D538CA6A4C6ED 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 FB2CFC9ABF487D16B8BC3AC399D76779 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 B72CB496BA791231D814C508E5DB2963 3738 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 8C70F48179F211F0163FB1D1491FD41B 3494 ----a-w- C:\Windows\Sysnative\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 4D656907EC768BDF92B5706DEE3CB6C4 3730 ----a-w- C:\Windows\Sysnative\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 151C5ABC1A1B569FD87DF8564C99E529 3738 ----a-w- C:\Windows\Sysnative\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 038BD22F4F4105D2078F07D38BBD95D4 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2018-08-04 12:52:29 -------- d-----w- C:\Program Files\Microsoft Silverlight
2018-08-04 09:59:11 -------- d-----w- C:\Program Files\trend micro
2018-07-30 23:08:02 -------- d-----w- C:\Program Files\Epic Games
2018-07-24 22:20:52 -------- d-----w- C:\Program Files\qBittorrent
2018-07-24 22:20:40 -------- d-----w- C:\Program Files\WinRAR
2018-07-11 10:57:42 -------- d-----w- C:\Program Files\NVIDIA Corporation
======= C:\Program Files (x86) =====
2018-08-04 12:52:29 -------- d-----w- C:\Program Files (x86)\Microsoft Silverlight
2018-07-31 10:12:36 -------- d-----w- C:\Program Files (x86)\Bunny-Wabbit
2018-07-30 23:03:41 -------- d-----w- C:\Program Files (x86)\Epic Games
2018-07-27 21:41:08 -------- d-----w- C:\Program Files (x86)\Grinding Gear Games
2018-07-23 12:02:18 -------- d-----w- C:\Program Files (x86)\EasyAntiCheat
2018-07-23 10:52:57 -------- d-----w- C:\Program Files (x86)\Steam
2018-07-23 10:42:52 -------- d-----w- C:\Program Files (x86)\Microsoft
2018-07-23 10:36:01 -------- d-----w- C:\Program Files (x86)\Google
2018-07-11 12:05:19 -------- d-----w- C:\Program Files (x86)\Common Files\BattlEye
2018-07-11 11:14:51 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2018-07-11 11:00:09 -------- d-----w- C:\Program Files (x86)\VulkanRT
2018-07-11 10:59:51 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
======= C: =====
====== C:\Users\Rybiz80\AppData\Roaming ======
2018-08-06 08:59:42 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\fltk.org
2018-08-04 11:00:59 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Diagnostics
2018-08-04 08:28:50 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs
2018-08-03 22:14:31 23B58DEF11B45727D3351702515F86AF 2 ----a-w- C:\Users\Rybiz80\AppData\Local\imw.ini
2018-08-01 20:30:31 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Sports Interactive
2018-08-01 20:30:26 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\REVOLT
2018-08-01 20:26:38 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\WinRAR
2018-07-30 23:16:54 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\qBittorrent
2018-07-30 23:16:53 -------- d-----w- C:\Users\Rybiz80\AppData\Local\qBittorrent
2018-07-30 23:04:28 -------- d-----w- C:\Users\Rybiz80\AppData\Local\UnrealEngineLauncher
2018-07-30 23:04:26 -------- d-----w- C:\Users\Rybiz80\AppData\Local\UnrealEngine
2018-07-30 23:04:26 -------- d-----w- C:\Users\Rybiz80\AppData\Local\EpicGamesLauncher
2018-07-25 07:02:02 -------- d-----w- C:\Users\Rybiz80\AppData\Local\NVIDIA
2018-07-24 22:20:41 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-07-23 12:21:35 -------- d-----w- C:\Users\Rybiz80\AppData\Locallow\Heroes and Generals
2018-07-23 12:21:32 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\HeroesAndGeneralsDesktop
2018-07-23 12:04:53 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\EasyAntiCheat
2018-07-23 12:03:40 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Enlisted
2018-07-23 12:02:20 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cuisine Royale
2018-07-23 11:10:56 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Gaijin
2018-07-23 11:10:40 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2018-07-23 11:04:38 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-07-23 10:53:33 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Steam
2018-07-23 10:53:33 -------- d-----w- C:\Users\Rybiz80\AppData\Local\CEF
2018-07-23 10:51:11 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-07-23 10:51:09 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\discord
2018-07-23 10:51:05 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Discord
2018-07-23 10:51:02 -------- d-----w- C:\Users\Rybiz80\AppData\Local\SquirrelTemp
2018-07-23 10:42:58 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Skype
2018-07-23 10:42:49 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Programs
2018-07-23 10:36:40 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Google
2018-07-23 10:35:57 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Google
2018-07-23 10:35:47 309C0BA4DFD8796EA4EB1EE82EBA4C9A 58128 ----a-w- C:\Users\Rybiz80\AppData\Local\GDIPFONTCACHEV1.DAT
2018-07-23 10:35:45 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Deployment
2018-07-23 10:35:45 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Apps
2018-07-23 10:24:15 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Conexant
2018-07-23 10:24:14 -------- d-s---w- C:\Users\Rybiz80\AppData\Locallow\Microsoft
2018-07-23 10:23:29 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Adobe
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2018-07-23 10:23:21 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Identities
2018-07-23 10:21:19 -------- d-----w- C:\Users\Rybiz80\AppData\Local\NVIDIA Corporation
2018-07-23 10:21:16 -------- d-----w- C:\Users\Rybiz80\AppData\Local\VirtualStore
2018-07-23 10:21:12 -------- d-s---w- C:\Users\Rybiz80\AppData\Roaming\Microsoft
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Media Center Programs
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Temp
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Microsoft
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2018-07-23 10:19:52 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2018-07-23 10:19:45 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2018-07-12 09:03:51 -------- d-s---w- C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft
====== C:\Users\Rybiz80 ======
2018-08-06 17:02:46 9DF1469E76C21CFB43017D04847F6782 1663040 ----a-w- C:\Users\Rybiz80\Downloads\JRT.exe
2018-08-06 15:34:44 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2 (1).exe
2018-08-06 08:59:42 -------- d-----w- C:\ProgramData\fltk.org
2018-08-04 20:53:11 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2.exe
2018-08-04 12:53:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-08-04 11:01:10 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Desktop\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 10:50:19 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 09:58:52 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Rybiz80\Downloads\RSITx64.exe
2018-08-03 22:20:26 C4CF62EB084B27D2C4F5F054FA3A3AC1 270 --sha-r- C:\Users\Rybiz80\ntuser.pol
2018-08-03 22:05:08 -------- d-----w- C:\ProgramData\bzLvYYFFZmFknGVB
2018-08-03 22:04:42 962FAAAA70CB48E7F4FEF7E44BEAD98A 3552 --sha-r- C:\ProgramData\ntuser.pol
2018-08-01 20:45:44 -------- d-----w- C:\Users\Public\Documents\Steam
2018-08-01 20:30:31 -------- d-----w- C:\Users\Public\Documents\Sports Interactive
2018-07-31 10:12:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO Creator 1.0
2018-07-30 23:03:41 -------- d-----w- C:\ProgramData\Epic
2018-07-27 21:41:08 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2018-07-24 22:20:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2018-07-24 22:20:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-07-23 12:31:51 -------- d-----w- C:\Users\Rybiz80\ansel
2018-07-23 11:10:55 -------- d-----w- C:\ProgramData\Gaijin
2018-07-23 10:52:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-07-23 10:42:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\Searches
2018-07-23 10:23:19 -------- d-----r- C:\Users\Rybiz80\Contacts
2018-07-23 10:21:12 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Rybiz80\ntuser.ini
2018-07-23 10:21:12 -------- d--h--w- C:\Users\Rybiz80\AppData
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Videos
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Saved Games
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Pictures
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Music
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Links
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Favorites
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Downloads
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Documents
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Desktop
2018-07-11 11:00:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-07-11 10:59:58 -------- d-----w- C:\ProgramData\NVIDIA
2018-07-11 10:59:07 -------- d-----w- C:\ProgramData\Package Cache
2018-07-11 10:58:45 -------- d-----w- C:\ProgramData\NVIDIA Corporation

====== C: exe-files ==
2018-08-06 17:29:12 8377C99BF813BE986D07730F5C433382 68096 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\ZAScan.exe
2018-08-06 17:29:12 75375C22C72F1BEB76BEA39C22A1ED68 167936 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\unzip.exe
2018-08-06 17:29:12 1A3F82F420340222F13C5633AEB716D6 533851 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\sr.exe
2018-08-06 17:02:55 E40542C4CC75E658A4615BFEFB308570 1790024 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\JRT_NewerVersion\JRT.exe
2018-08-06 17:02:51 2F9C7FDA92C346CB5AA32091536AE0CB 43520 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\nfo\nircmdc.exe
2018-08-06 17:02:46 9DF1469E76C21CFB43017D04847F6782 1663040 ----a-w- C:\Users\Rybiz80\Downloads\JRT.exe
2018-08-06 15:34:44 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2 (1).exe
2018-08-06 15:25:37 E8CDD33860A7F4433B0077AC7D8DE402 1479632 ----a-w- C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe
2018-08-04 20:53:11 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2.exe
2018-08-04 11:29:19 3E20B169C4CD6855965BB39D4D125814 61700616 ----a-w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Skype for Desktop\Skype-Setup.exe
2018-08-04 11:01:10 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Desktop\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 10:50:19 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 09:59:12 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Rybiz80.exe
2018-08-04 09:58:52 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Rybiz80\Downloads\RSITx64.exe
2018-08-03 10:53:32 EA5A02E5C0894DAAFC82514D22352234 479728 ----a-w- C:\Users\Rybiz80\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
2018-08-03 10:53:32 62E83FCAD4B85A41B94D3885C774AD44 445424 ----a-w- C:\Users\Rybiz80\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2018-08-03 07:01:02 730F03EB048405A3027CFFD427F1B834 20091496 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\68.0.3440.84\68.0.3440.84_67.0.3396.99_chrome_updater.exe
2018-08-02 00:05:54 2E1960B3CD0A2E266C4FAB95BC6DF448 17467960 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\win64\enlisted.exe
2018-08-01 23:53:52 DEE05780A497F44458B88B3303E81333 7261240 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\win64\enlist.exe
2018-08-01 14:49:02 C79DED78B960F3AF11E464A503BE3691 489016 ----a-w- C:\Hry\WarThunder\win64\cefprocess.exe
2018-08-01 14:49:02 6F422380DCE9A3D4EF6E44C12C2C1107 35001400 ----a-w- C:\Hry\WarThunder\win64\aces.exe
2018-08-01 14:47:52 C839AE829D203ADE0E7072095FA893C5 27491896 ----a-w- C:\Hry\WarThunder\win32\aces.exe
2018-08-01 14:47:52 68F2160C821B158957B6D50707FAE590 357944 ----a-w- C:\Hry\WarThunder\win32\cefprocess.exe
2018-08-01 14:47:52 4B80143C592FBC91FAB3ECD19C1F571D 1888312 ----a-w- C:\Hry\WarThunder\win32\bpreport.exe
2018-07-31 12:39:57 2B48F69517044D82E1EE675B1690C08B 455576 ------w- C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
2018-07-31 12:39:10 1191BA2A9908EE79C0220221233E850A 455720 ----a-w- C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
2018-07-31 12:25:11 E40383A864B0D9B344A3A5ACEC6B885C 382504 ----a-w- C:\Hry\Watch Dogs 2\EasyAntiCheat\EasyAntiCheat_Setup.exe
2018-07-31 12:25:11 6C2F8C8187023E7226AE076548582DF4 516016 ----a-w- C:\Hry\Watch Dogs 2\bin\SplashScreen.exe
2018-07-31 12:25:11 5F6C9078D1D32CB5B20882F99A810547 537008 ----a-w- C:\Hry\Watch Dogs 2\bin\WatchDogs2.exe
2018-07-31 12:25:11 23CE2A387560F42350255BE4E741AE65 131112 ----a-w- C:\Hry\Watch Dogs 2\EAC.exe
2018-07-31 10:14:23 56D52C503ADF02184F19EEE4767EF60A 299864 ----a-w- C:\Hry\Watch Dogs 2\_Redist\dxwebsetup.exe
2018-07-31 10:14:23 4B1D5EC11B2B5DB046233A28DBA73B83 103424 ----a-w- C:\Hry\Watch Dogs 2\_Redist\QuickSFV.EXE
2018-07-31 10:14:22 7F52A19ECAF7DB3C163DD164BE3E592E 6554576 ----a-w- C:\Hry\Watch Dogs 2\_Redist\vcredist_x86_2012_x86.exe
2018-07-31 10:14:22 3C03562B5AF9ED347614053D459D7778 7186992 ----a-w- C:\Hry\Watch Dogs 2\_Redist\vcredist_x64_2012_x64.exe
2018-07-31 10:14:22 3249D8B9914125878C099F6B3608EC71 1515889 ----a-w- C:\Hry\Watch Dogs 2\unins000.exe
2018-07-31 08:56:45 ACD98BAAE65A7D42B3B6B607BC7B35DB 145808 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteLauncher.exe
2018-07-31 08:56:45 9DFDC503E332C886A64E828A8790D48A 753552 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping_BE.exe
2018-07-31 08:56:45 0122E828AE9E7F035FF92C2A4F4177D4 1158544 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping_EAC.exe
2018-07-31 08:56:44 B0BC2103B6F7E492B8368D32ACB3A0E5 94312336 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping.exe
2018-07-31 08:56:43 4A0C61901CC0627ED97EC9597B981E18 18458000 ----a-w- C:\Program Files\Epic Games\Fortnite\Engine\Binaries\Win64\CrashReportClient.exe
2018-07-31 08:56:43 47BDE3A4730DFF012301586CEA47B650 3699600 ----a-w- C:\Program Files\Epic Games\Fortnite\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
=== C: other files ==
2018-08-07 03:52:02 978E340A8347DDA27477C55E00601B62 2630203 ----a-w- C:\Windows\{7CB0BBD3D374-4DEA-9751-2D08BC721AA7}\PkgMgr.iso.zip
2018-08-07 03:31:57 A5E456CD5A30B41D6B628BDB80F4FA7E 72816 ----a-w- C:\Windows\System32\drivers\ykgrjsmb.sys
2018-08-06 18:08:08 A2F7919FC6762EB8815E704C00A9AA11 2630211 ----a-w- C:\Windows\{7CB0BBD3D374-4DEA-9751-2D08BC721AA7}\_wow64.ocx.zip
2018-08-06 09:02:23 3EBB315F2B61CC212CBDC838A2E65830 2123 ----atw- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\.launcher_log\f46820ef-d6fb-4e21-a3c6-ae5712180806.zip
2018-08-04 13:28:10 4EB6B0ADD718268BF65A92A8C0919D92 2592066 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\{F4B8536D-9284-42DB-BDA2-FA6DA4E6B2A1}\_wow64.ocx.zip
2018-08-04 11:19:19 99E885018EE51F1BDDDC5228AADD873B 114920 ----a-w- C:\Windows\System32\drivers\farflt.sys
2018-08-04 11:19:05 8D93347D0E6A5EAB47F0423D6B9960D7 92792 ----a-w- C:\Windows\System32\drivers\mwac.sys
2018-08-04 11:11:30 E8F4540E13A62E1649824D4C5576EE29 48360 ----a-w- C:\Windows\System32\drivers\mbam.sys
2018-08-04 11:11:27 F6A196A0A107406D6BA54A1A7293C67A 191208 ----a-w- C:\Windows\System32\drivers\MbamChameleon.sys
2018-08-04 11:11:18 351BF8F77B0A15A7B5A2AE098C52A387 253664 ----a-w- C:\Windows\System32\drivers\mbamswissarmy.sys
2018-08-04 11:11:09 082F9D1ADB6DF9E5DB30EB52A34FCF0A 152688 ----a-w- C:\Windows\System32\drivers\mbae64.sys
2018-08-01 13:57:07 C40A5DF7FEC2B93A256C214AAAA10AE0 8533366 ----a-w- C:\Hry\WarThunder\win64\twitch64.zip
2018-08-01 13:57:05 5EE81215976D2C821B6E236DB4E576AD 6518100 ----a-w- C:\Hry\WarThunder\win32\twitch.zip
2018-08-01 13:56:35 0F7C46E25A58897A1350DD8C36FBC710 2535923 ----a-w- C:\Hry\WarThunder\cef_paks.zip
2018-08-01 13:50:28 831DCEC3C35D921DFDC74A305150A09F 47469571 ----a-w- C:\Hry\WarThunder\win64\cef64.zip
2018-08-01 13:50:21 849BE646199B67047ED9B628A81A7E6B 3402189 ----a-w- C:\Hry\WarThunder\win64\tools64.zip
2018-08-01 13:50:20 121609F35C3006712FB48315D6136302 18168418 ----a-w- C:\Hry\WarThunder\win64\pc64.zip
2018-08-01 13:50:17 D954409E2020CEEC3B62EA7AC018647F 13920138 ----a-w- C:\Hry\WarThunder\win32\pc.zip
2018-08-01 13:50:14 4C909D2578C5DF8294B909146493163D 3398214 ----a-w- C:\Hry\WarThunder\win32\tools.zip
2018-08-01 13:50:02 E417D063D1CB2D63D33CE025B9C95742 41363459 ----a-w- C:\Hry\WarThunder\win32\cef.zip
2018-07-31 12:24:59 9F12282FE80E889829BEA505262B4364 204 ----a-w- C:\Hry\Watch Dogs 2\Support\wd2disabledwmwin7.bat

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3959809308-3982947574-166100824-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

[HKEY_USERS\S-1-5-21-3959809308-3982947574-166100824-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201357\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cAudioFilterAgent"="C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe"
"SmartAudio"="C:\Program Files\CONEXANT\SAII\SACpl.exe /t"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe]
"C:\Windows\SysNative\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe]
"C:\Windows\SysNative\tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" ["C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"]
"C:\Windows\SysNative\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe]
"C:\Windows\SysNative\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe]
"C:\Windows\SysNative\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe]
"C:\Windows\SysNative\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\reQGtPgibmNDB2" [C:\Windows\system32\wscript.exe "C:\ProgramData\bzLvYYFFZmFknGVB\WwPsQUz.wsf"]
"C:\Windows\SysNative\tasks\vnKUActWDSalGNfrR2" [rundll32 "C:\Program Files (x86)\ELCdlNcAzQmJaXxTcwR\pmnDmUr.dll",#1]
"C:\Windows\SysNative\tasks\WAOtgPBGflHZLCaeTGs2" [rundll32 "C:\Program Files (x86)\LDRIRJvSptwQC\vcmkrFR.dll",#1]
"C:\Windows\SysNative\tasks\zleDohIUJuBRcb" [rundll32 "C:\Program Files (x86)\xpZXRwYFlIWU2\SXvgwIdYNQqtm.dll",#1]
"C:\Windows\SysNative\tasks\{5BB89D1A-AF5F-C2B9-357F-2D3F6FC9184B}" ["C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"]
"C:\Windows\SysNative\tasks\{D7713373-E515-8195-5CB1-9CFB584077E3}" ["C:\Program Files (x86)\Common Files\YpyUeU.exe"]
"C:\Windows\SysNative\tasks\{F173B0E5-C95D-4EE7-B6F1-5C759080AE8D}" ["C:\Program Files (x86)\Common Files\YInoUyyO.exe"]

==== Chromium Look ======================

Google Chrome Version: 68.0.3440.84


Slides - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Docs - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Sheets - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Docs Offline - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Video DownloadHelper - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk
Chrome Web Store Payments - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Chrome Media Router - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKCU\..\Run: [Gaijin.Net Agent] "C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
O4 - HKCU\..\Run: [EpicGamesLauncher] "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-21-3959809308-3982947574-166100824-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201357\..\Run: [Gaijin.Net Agent] "C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe" (User '?')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Heroes & Generals Steam Service (HnGSteamService) - Reto-Moto ApS - C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngservice.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on Łt 07.08.2018 at 5:36:28,59 ======================

[Rybiz]

Zoek.exe Version 5.0.0.2 Updated 03-May-2018
Tool run by Rybiz80 on Łt 07.08.2018 at 5:31:51,18.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Safe Mode MINIMAL No Internet Access Detected
Launched: C:\Users\Rybiz80\Desktop\zoek.exe [Scan all users] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2018-08-06-173104.log 368 bytes

==== Running Processes ======================

C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== System Specs ======================

Operating System: Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 64-bit
Manufacturer: extracomputer - Model: D3161-B1
Install Date: 23.7.2018 12:21:07
Last Boot: 7.8.2018 5:30:31
Processor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Number of Processors: 8
Work Station
Bootmode: Fail-safe boot
Total RAM: 16297 MB (free 14307 MB - 87)
Computername: Rybiz80-PC
Domain: WORKGROUP
User: Rybiz80 (Administrator account)
Local Disk: C:\ - NTFS - 465 GB (free 313 GB)
CD \ DVD Drive: D:\
Local Disk: E:\ - NTFS - 111 GB (free 111 GB)
Bootdevice: \Device\HarddiskVolume1
Windows update:
Country: ¬esk ˙republika
Language: CSY

==== System Specs (Software) ======================

Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated)
Anti-Spyware: Microsoft Security Essentials disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Google Chrome 68.0.3440.84
Internet Explorer Version: 11.0.9600.19080
Google Chrome version: 68.0.3440.84

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2018-07-24 06:29:34 12589371C087A76B6E8E152939E59E98 16896 ----a-w- C:\Windows\hh.exe
2018-07-24 06:29:30 A66E522F3CBFB8709EA37844922A002E 733696 ----a-w- C:\Windows\HelpPane.exe
2018-07-23 11:15:04 E185BDA84E5F03F4E1D8DCA30E209277 1912 ----a-w- C:\Windows\epplauncher.mif
2018-07-11 11:00:33 74F28574BB8F61FFC7DD419FE6B6E0D5 1951 ----a-w- C:\Windows\NvTelemetryContainerRecovery.bat
2018-07-11 10:59:58 74F28574BB8F61FFC7DD419FE6B6E0D5 1951 ----a-w- C:\Windows\NvContainerRecovery.bat
====== C:\Users\Rybiz80\AppData\Local\Temp ====
2018-08-06 17:29:12 8377C99BF813BE986D07730F5C433382 68096 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\ZAScan.exe
2018-08-06 17:29:12 75375C22C72F1BEB76BEA39C22A1ED68 167936 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\unzip.exe
2018-08-06 17:29:12 1A3F82F420340222F13C5633AEB716D6 533851 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\sr.exe
2018-08-06 17:02:55 E40542C4CC75E658A4615BFEFB308570 1790024 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\JRT_NewerVersion\JRT.exe
2018-08-06 17:02:51 2F9C7FDA92C346CB5AA32091536AE0CB 43520 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\nfo\nircmdc.exe
2018-08-03 15:13:24 8D49B6321F1C1AA6C0D49BA3B022E1A8 25775920 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\setup.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2018-07-24 08:45:26 960AE99A15B1C8C9FBDDDE97606478F9 3550208 ----a-w- C:\Windows\SysWOW64\D3DCompiler_47.dll
2018-07-24 06:29:35 F14C2821DDB2D09A527FF258EC434B52 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-07-24 06:29:35 81CB1981A9CC574008E9839AB137FB2F 17240 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-07-24 06:29:35 2838609DD1AFA03D4A68228F2C818CEA 2048 ----a-w- C:\Windows\SysWOW64\user.exe
2018-07-24 06:29:34 FF8B6558BB9CD8890253FFC01E57E3EC 282624 ----a-w- C:\Windows\SysWOW64\mstext40.dll
2018-07-24 06:29:34 FCEE7E4A37BB971ED4A11E9D496C7274 299008 ----a-w- C:\Windows\SysWOW64\ntprint.dll
2018-07-24 06:29:34 FB8B6E9543FEFF706967BC9437197CC5 12120 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-07-24 06:29:34 F6E1AE3EF2BED36CB739BB90478B6493 17240 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-24 06:29:34 F5357CAC91CAA28CC97BFAADF95C1C20 82944 ----a-w- C:\Windows\SysWOW64\bcrypt.dll
2018-07-24 06:29:34 F05F26DD4B8640CB71F8C40BD6530FD1 16384 ----a-w- C:\Windows\SysWOW64\winnsi.dll
2018-07-24 06:29:34 EC5A71B7AB0902B82177FCE9769F6C36 12120 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-07-24 06:29:34 E53488EA2F13C3E93FABABDAE10C36C1 184320 ----a-w- C:\Windows\SysWOW64\scksp.dll
2018-07-24 06:29:34 E44701B42419962136EF5CAC198F8D1C 77312 ----a-w- C:\Windows\SysWOW64\mfmjpegdec.dll
2018-07-24 06:29:34 E1A2A1C53E354D9016E68B16B86AE570 343552 ----a-w- C:\Windows\SysWOW64\msrd3x40.dll
2018-07-24 06:29:34 DE7337C3EDD617029AE585724DA0DC7A 26112 ----a-w- C:\Windows\SysWOW64\oleres.dll
2018-07-24 06:29:34 D9A9C40BE182CB3E4644971D8E6D59BC 13152 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-24 06:29:34 D5FDF7E990A1AE2E19C64E1FF267580A 444928 ----a-w- C:\Windows\SysWOW64\wvc.dll
2018-07-24 06:29:34 D1DE6861C97B6184A81C010E78CBF272 59392 ----a-w- C:\Windows\SysWOW64\msscntrs.dll
2018-07-24 06:29:34 C508CD60FB68D39482966EDEFBD7CB43 290816 ----a-w- C:\Windows\SysWOW64\msjtes40.dll
2018-07-24 06:29:34 C08A83FD5F3D495F1267CC98727B70BD 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll
2018-07-24 06:29:34 BDCBA6F7B8C538305FE8C0A7D78D2683 15192 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-07-24 06:29:34 BB1D7E779FFC9D4D58DE6D6C39429FF1 103424 ----a-w- C:\Windows\SysWOW64\resmon.exe
2018-07-24 06:29:34 B8AF75A6FB1BEA49A38C00B3EEDBEFCE 22528 ----a-w- C:\Windows\SysWOW64\rasser.dll
2018-07-24 06:29:34 B2EF83F99837C68E646BA5E419F8D16A 172544 ----a-w- C:\Windows\SysWOW64\cic.dll
2018-07-24 06:29:34 AE033EA471A27FE2138FF4C83E95E51F 164352 ----a-w- C:\Windows\SysWOW64\SearchProtocolHost.exe
2018-07-24 06:29:34 A554AE8240E2C8EE389E6BCD76E05198 337408 ----a-w- C:\Windows\SysWOW64\mssph.dll
2018-07-24 06:29:34 A2A5D487D0C3D55739A0491B6872480D 1401344 ----a-w- C:\Windows\SysWOW64\mmc.exe
2018-07-24 06:29:34 9E4BC729899C1E1C5FA6DE50FFAFDBB7 1549824 ----a-w- C:\Windows\SysWOW64\tquery.dll
2018-07-24 06:29:34 9B2BA304828D5FABF87348D59D635AC7 91368 ----a-w- C:\Windows\SysWOW64\MigAutoPlay.exe
2018-07-24 06:29:34 9A8DA9190702FAA9944AE3099BD3EF1C 104448 ----a-w- C:\Windows\SysWOW64\mssitlb.dll
2018-07-24 06:29:34 970CD7D328C23D9865FF54B7B10E33A3 197120 ----a-w- C:\Windows\SysWOW64\mssphtb.dll
2018-07-24 06:29:34 970B24D86AA519A66CA2A03E18D5B68B 54272 ----a-w- C:\Windows\SysWOW64\wermgr.exe
2018-07-24 06:29:34 94D10B11B61DB26940B4FB1B3ECFCE84 310272 ----a-w- C:\Windows\SysWOW64\msrd2x40.dll
2018-07-24 06:29:34 94A4BD919D8D6FEAE8DAC69A1FBE7094 518144 ----a-w- C:\Windows\SysWOW64\msjetoledb40.dll
2018-07-24 06:29:34 857999CECCB0C9D255D5F7FCF3BA0C2C 427520 ----a-w- C:\Windows\SysWOW64\SearchIndexer.exe
2018-07-24 06:29:34 8066F32DBF9E7BAF35758849F90776B1 342528 ----a-w- C:\Windows\SysWOW64\certcli.dll
2018-07-24 06:29:34 741E8E1DD841506A58F9A28895D7FE2E 1363968 ----a-w- C:\Windows\SysWOW64\Query.dll
2018-07-24 06:29:34 6F3E6F978E6DF7D751C2EA62F60EF788 7168 ----a-w- C:\Windows\SysWOW64\MsraLegacy.tlb
2018-07-24 06:29:34 66CFEF9459FE5771D640BDADE2840192 83968 ----a-w- C:\Windows\SysWOW64\msjter40.dll
2018-07-24 06:29:34 6691B0F9B2F8CF2146A46C4F33779D6B 128512 ----a-w- C:\Windows\SysWOW64\mmcshext.dll
2018-07-24 06:29:34 633CD8A938AB8C6B2D0166A4A55A225F 409600 ----a-w- C:\Windows\SysWOW64\msexch40.dll
2018-07-24 06:29:34 568B65A1B16264570F1B4E3565F49519 47104 ----a-w- C:\Windows\SysWOW64\pdhui.dll
2018-07-24 06:29:34 53FF7C0EF6A7E6DAFAEE2FE1B526A01A 157184 ----a-w- C:\Windows\SysWOW64\perfmon.exe
2018-07-24 06:29:34 527BB14847DB8264C31380C40CBC1CD7 8192 ----a-w- C:\Windows\SysWOW64\spwmp.dll
2018-07-24 06:29:34 51EA6BD2E56AEF9691A82C05D60D07A7 28672 ----a-w- C:\Windows\SysWOW64\werdiagcontroller.dll
2018-07-24 06:29:34 4FDF9502D0B57D3EDB185DA4B6848BFE 1400320 ----a-w- C:\Windows\SysWOW64\mssrch.dll
2018-07-24 06:29:34 4BF00F7ACDC0B9F81EC6BBFF3648BC44 4096 ----a-w- C:\Windows\SysWOW64\msdxm.ocx
2018-07-24 06:29:34 4BF00F7ACDC0B9F81EC6BBFF3648BC44 4096 ----a-w- C:\Windows\SysWOW64\dxmasf.dll
2018-07-24 06:29:34 4A61E18E7EBCC2886653E771D785D9EA 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2018-07-24 06:29:34 44227E048D0A7BB5A7AEB839936BF9DE 7168 ----a-w- C:\Windows\SysWOW64\comcat.dll
2018-07-24 06:29:34 3635DED9860DC2570D47462752090C36 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-07-24 06:29:34 2DC31C166BF979BC5488932C84810D80 86528 ----a-w- C:\Windows\SysWOW64\SearchFilterHost.exe
2018-07-24 06:29:34 2B7A702E23751739AF46760436873929 390144 ----a-w- C:\Windows\SysWOW64\sysmon.ocx
2018-07-24 06:29:34 290142B625251D993BEAE6521619D5C6 330240 ----a-w- C:\Windows\SysWOW64\zipfldr.dll
2018-07-24 06:29:34 1AB31F3FD29D74074BCC64DE8FEE5540 103424 ----a-w- C:\Windows\SysWOW64\mfps.dll
2018-07-24 06:29:34 1AA810BFEEE8695BF4CB49C7786B7827 18776 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-24 06:29:34 1A49393991C4BF4A56EE64B686C584E8 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-07-24 06:29:34 17A4059BB257051EF3A6480815DCA419 9728 ----a-w- C:\Windows\SysWOW64\msshooks.dll
2018-07-24 06:29:34 0723A00C740A0D1B5460FBFE048C3E68 8704 ----a-w- C:\Windows\SysWOW64\nsi.dll
2018-07-24 06:29:34 0436312135E0A5B8DDDAFAF976821D51 23040 ----a-w- C:\Windows\SysWOW64\mfpmp.exe
2018-07-24 06:29:34 02D425A51431FC87E3274D90B2B6A062 11608 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-07-24 06:29:33 FFEAED0E3BD67DA3559231F762B6E201 866816 ----a-w- C:\Windows\SysWOW64\mswdat10.dll
2018-07-24 06:29:33 FC8A22A65745A620DDEE41669765BB56 1329664 ----a-w- C:\Windows\SysWOW64\quartz.dll
2018-07-24 06:29:33 F0A6576528FD5AF099821D5360770CC8 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll
2018-07-24 06:29:33 F02EB1D48A1A0CD59C81462055A69AD1 142848 ----a-w- C:\Windows\SysWOW64\itss.dll
2018-07-24 06:29:33 E0FC6700E341A2026C08DF29A9B4FEAD 20480 ----a-w- C:\Windows\SysWOW64\WcnEapPeerProxy.dll
2018-07-24 06:29:33 D03CBC7A13DB67F83EAD4BB2B1B2C9D2 616448 ----a-w- C:\Windows\SysWOW64\msrepl40.dll
2018-07-24 06:29:33 C67881BF26EEDCBE0E97875AC7AECCD8 2048 ----a-w- C:\Windows\SysWOW64\mferror.dll
2018-07-24 06:29:33 C614AA3804DF9FCAA829B57E98945DC1 363520 ----a-w- C:\Windows\SysWOW64\StructuredQuery.dll
2018-07-24 06:29:33 AF0002DF9D2AC73587596C29886D505C 91136 ----a-w- C:\Windows\SysWOW64\inseng.dll
2018-07-24 06:29:33 A7999BEEE52B87FDBF15E60F207B51C8 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2018-07-24 06:29:33 A03B2893AB4DC114870F425809C030B2 148160 ----a-w- C:\Windows\SysWOW64\basecsp.dll
2018-07-24 06:29:33 9F49B8E154DBAC9D60125CBBE3609C70 217600 ----a-w- C:\Windows\SysWOW64\P2P.dll
2018-07-24 06:29:33 87745417DFFEE0F341144063F11FFAFA 83968 ----a-w- C:\Windows\SysWOW64\wlanhlp.dll
2018-07-24 06:29:33 75326D9940A86E23AB8283D6E31B70DE 497664 ----a-w- C:\Windows\SysWOW64\win32spl.dll
2018-07-24 06:29:33 71BA6F21132623EEC68E25779843FD0A 9728 ----a-w- C:\Windows\SysWOW64\sscore.dll
2018-07-24 06:29:33 6EBE64B2FA84F9A3A3070C79CDCF19E0 382976 ----a-w- C:\Windows\SysWOW64\wer.dll
2018-07-24 06:29:33 6CBFBC933B6D98C2E349B02D2B07813B 81920 ----a-w- C:\Windows\SysWOW64\fdWCN.dll
2018-07-24 06:29:33 57C122CBD283A1E6FE5A5509AFA35CB2 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe
2018-07-24 06:29:33 5483D87CA77CE60B29D46BCB4C4C21FB 973312 ----a-w- C:\Windows\SysWOW64\DXPTaskRingtone.dll
2018-07-24 06:29:33 5119041A556E15DB1B62E5D5246E5105 573440 ----a-w- C:\Windows\SysWOW64\wuapi.dll
2018-07-24 06:29:33 417BB0E54DB7B7208520A8E71255CECC 8704 ----a-w- C:\Windows\SysWOW64\msjint40.dll
2018-07-24 06:29:33 3273C18621DE987823E5433BD7F658DE 33280 ----a-w- C:\Windows\SysWOW64\traffic.dll
2018-07-24 06:29:33 28BE06FF78CC94F13276583170540E50 805376 ----a-w- C:\Windows\SysWOW64\cdosys.dll
2018-07-24 06:29:33 20CF6E763CCCCA5E09A7512604CAA529 2048 ----a-w- C:\Windows\SysWOW64\msxml6r.dll
2018-07-24 06:29:33 1E614D1B8C522ED15E9151409F6E9A4D 223232 ----a-w- C:\Windows\SysWOW64\ncrypt.dll
2018-07-24 06:29:33 1D7EFFA5EDE72D3FC1CF20DE998259C6 340480 ----a-w- C:\Windows\SysWOW64\msexcl40.dll
2018-07-24 06:29:33 149FE64A2BD27129CB731D09AF4ACDDE 75264 ----a-w- C:\Windows\SysWOW64\mprdim.dll
2018-07-24 06:29:33 12CDAF1592A33096CD90FDB411EA6337 666624 ----a-w- C:\Windows\SysWOW64\mssvp.dll
2018-07-24 06:29:33 09B61B4894B05723BACE59F46EF892D4 1508352 ----a-w- C:\Windows\SysWOW64\pla.dll
2018-07-24 06:29:32 F14AB91AA612D0AD5839C5D13B218360 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2018-07-24 06:29:32 EBA82F1B920E64DDFCD1E0BF9706B8F3 15704 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-24 06:29:32 E859E76A8766B7F1925EB7D0792CC3C1 33280 ----a-w- C:\Windows\SysWOW64\rasmxs.dll
2018-07-24 06:29:32 E5A2788702F4603CBBEEA230ACFAADB1 86528 ----a-w- C:\Windows\SysWOW64\WcnApi.dll
2018-07-24 06:29:32 DE8A6902C401DDD252954C7894C895A2 827904 ----a-w- C:\Windows\SysWOW64\rdpcore.dll
2018-07-24 06:29:32 C7C2A39C4B3F1B37F3C816A282D3E332 35328 ----a-w- C:\Windows\SysWOW64\wuapp.exe
2018-07-24 06:29:32 C27751B11ACCAB98BA087A38C469B907 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll
2018-07-24 06:29:32 ABAD533F465380421B66687D4FBA807E 34816 ----a-w- C:\Windows\SysWOW64\mssprxy.dll
2018-07-24 06:29:32 A8D212AF14E65905B5631742656A3C43 43008 ----a-w- C:\Windows\SysWOW64\hhsetup.dll
2018-07-24 06:29:32 9AD4807BFD28CD14362FAE2DE0AA7890 1227264 ----a-w- C:\Windows\SysWOW64\wdc.dll
2018-07-24 06:29:32 94052D294092794E1D1C0D7417161381 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe
2018-07-24 06:29:32 93DD6BEE13FF4CB917F8E1234F2A464F 21848 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-07-24 06:29:32 837E870DBDEE3D19122C833389D81CC9 80896 ----a-w- C:\Windows\SysWOW64\wlanapi.dll
2018-07-24 06:29:32 6CB8D5AF44F0F07565DE45F86528B073 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe
2018-07-24 06:29:32 6673E73084216129F3E64FDD819368EC 2150912 ----a-w- C:\Windows\SysWOW64\mmcndmgr.dll
2018-07-24 06:29:32 61259DE5266CC28045856882B144F804 30208 ----a-w- C:\Windows\SysWOW64\wups.dll
2018-07-24 06:29:32 5ADEF0B67913448A7850836010F48ED9 1311744 ----a-w- C:\Windows\SysWOW64\msjet40.dll
2018-07-24 06:29:32 56E994E79DB22F583683C8EB7493C45E 111616 ----a-w- C:\Windows\SysWOW64\racpldlg.dll
2018-07-24 06:29:32 516BA2B650C242C17AAE680BFD08814E 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll
2018-07-24 06:29:32 4BDF9C2B4B517B55BFCC49B8E44B40C7 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll
2018-07-24 06:29:32 49A1DFA86B6733E5D98CB0EA81B13AF3 3207168 ----a-w- C:\Windows\SysWOW64\mf.dll
2018-07-24 06:29:32 47D0B25AEAFEFC8937D86F22C7C5278F 13656 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-07-24 06:29:32 42B2F788D85DEBF29F6E4A6ED5004C2D 2292224 ----a-w- C:\Windows\SysWOW64\MSVidCtl.dll
2018-07-24 06:29:32 3650AD6EA1A9CD1CD1BBF4EB93E7604D 93696 ----a-w- C:\Windows\SysWOW64\wudriver.dll
2018-07-24 06:29:32 361BBC8BE82ECF8A27F57BD4631B9164 158720 ----a-w- C:\Windows\SysWOW64\itircl.dll
2018-07-24 06:29:32 2F58C0DD4BCFE7CD9752EEDE8B08C261 240640 ----a-w- C:\Windows\SysWOW64\msltus40.dll
2018-07-24 06:29:32 2DBA413FACC332703C12EFD3B997938B 275456 ----a-w- C:\Windows\SysWOW64\KernelBase.dll
2018-07-24 06:29:32 2AF284D0737FE5BCB3581DA8C536CDF7 32768 ----a-w- C:\Windows\SysWOW64\WcsPlugInService.dll
2018-07-24 06:29:32 249C741009425ED4DA99080333691016 50176 ----a-w- C:\Windows\SysWOW64\rrinstaller.exe
2018-07-24 06:29:32 1C92F07DB3B860294251C31C4DD97D4B 1390080 ----a-w- C:\Windows\SysWOW64\msxml6.dll
2018-07-24 06:29:32 11D1846FCA7D8A5EB825CD731A0F6304 19968 ----a-w- C:\Windows\SysWOW64\WcnEapAuthProxy.dll
2018-07-24 06:29:32 0A613D0301B0EACE35508D11B4D0423A 392704 ----a-w- C:\Windows\SysWOW64\wlansec.dll
2018-07-24 06:29:32 050AB578E032A7C9CA722F632A4018AC 15360 ----a-w- C:\Windows\SysWOW64\hh.exe
2018-07-24 06:29:32 01AEB7B9C67E38E14088D108F024631C 375808 ----a-w- C:\Windows\SysWOW64\mspbde40.dll
2018-07-24 06:29:31 CF679F83D98C4873EDA7E4F96F7E6FD9 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll
2018-07-24 06:29:31 AC81B22606B50A61B02F2082EA2CE187 640512 ----a-w- C:\Windows\SysWOW64\mswstr10.dll
2018-07-24 06:29:31 81063E39D04B73670ACAD9E9AD45A53C 12574208 ----a-w- C:\Windows\SysWOW64\wmploc.DLL
2018-07-24 06:29:31 75B35268C9B882825672FBFB94953222 84480 ----a-w- C:\Windows\SysWOW64\INETRES.dll
2018-07-24 06:29:31 2D8302C12657BC51C3382553D3329011 2755072 ----a-w- C:\Windows\SysWOW64\themeui.dll
2018-07-24 06:29:31 258D04C8877C8645FEC99853E6A334BA 348824 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
2018-07-24 06:29:31 1AC3F87F3141181653E7D222E27151A2 11410944 ----a-w- C:\Windows\SysWOW64\wmp.dll
2018-07-24 06:29:31 01EA2D445830658A62D45ED228AC7D58 1313792 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2018-07-24 06:29:28 F9F3C19B1029BB7C63EF478D4A237941 953344 ----a-w- C:\Windows\SysWOW64\gpedit.dll
2018-07-24 06:29:28 F58B62BFD8C64F860FB2365FCF5CA375 3405824 ----a-w- C:\Windows\SysWOW64\xpsrchvw.exe
2018-07-24 06:29:28 F4B6F8839170EDF9FD65B0745E3638B5 36352 ----a-w- C:\Windows\SysWOW64\cryptbase.dll
2018-07-24 06:29:28 F112E8D8B5EF4F6AE02DCE3E062C0CBD 696320 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2018-07-24 06:29:28 E419FE2098168F7CEA2A233EA81674F3 428032 ----a-w- C:\Windows\SysWOW64\wlanmsm.dll
2018-07-24 06:29:28 E14FC4B37C6DFDCAFB4EA349D9D66EAB 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll
2018-07-24 06:29:28 CFD3330A45D8C292C4C6DE89325A57F1 18944 ----a-w- C:\Windows\SysWOW64\wfapigp.dll
2018-07-24 06:29:28 CB10DC5D6E2D8FFB6290303DF3BC9875 65880 ----a-w- C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-07-24 06:29:28 C648901695E275C8F2AD04B687A68CE2 45056 ----a-w- C:\Windows\SysWOW64\rundll32.exe
2018-07-24 06:29:28 C0ADC3DABA23072F8A7AA64ABE8AA9A6 61952 ----a-w- C:\Windows\SysWOW64\ntprint.exe
2018-07-24 06:29:28 B0B6C6F78E5FC9F90D7C7345E214A4C7 276992 ----a-w- C:\Windows\SysWOW64\wcncsvc.dll
2018-07-24 06:29:28 AF40FDAB98B0FF209632C3403DB6C39F 830464 ----a-w- C:\Windows\SysWOW64\msctf.dll
2018-07-24 06:29:28 8F16118E9C9EAB9237FC8FC57BA9165F 10240 ----a-w- C:\Windows\SysWOW64\dciman32.dll
2018-07-24 06:29:28 6B47A9ECFBA6A3775B36780FAF5D533E 50688 ----a-w- C:\Windows\SysWOW64\appidapi.dll
2018-07-24 06:29:28 585987A92FDD082A032CCE1FBF654D22 309760 ----a-w- C:\Windows\SysWOW64\actxprxy.dll
2018-07-24 06:29:28 48B8FD7C090A8B8EC47BF7A9AF8B954B 475648 ----a-w- C:\Windows\SysWOW64\msxbde40.dll
2018-07-24 06:29:28 47E0F093BA5B11C13362740F30D2D9EE 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-07-24 06:29:28 47B6897054A76E8F56718DEEFB2B2737 67584 ----a-w- C:\Windows\SysWOW64\asycfilt.dll
2018-07-24 06:29:28 4481672EB5DECBC35D6BC77410277897 254464 ----a-w- C:\Windows\SysWOW64\schannel.dll
2018-07-24 06:29:28 414E182C926F903360B6726EC160C0A6 498176 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2018-07-24 06:29:28 411D8E3A2B55B9A2873C884A5743F88F 304640 ----a-w- C:\Windows\SysWOW64\taskcomp.dll
2018-07-24 06:29:28 3BD3BEFFA4348B8B5F8320EDABD6B3C8 523776 ----a-w- C:\Windows\SysWOW64\hhctrl.ocx
2018-07-24 06:29:28 3B58E0C9ABC280044ADB770F52C4622D 130048 ----a-w- C:\Windows\SysWOW64\occache.dll
2018-07-24 06:29:28 3964B9FF1C2AFDB5E61B17E66CF8BAF9 8192 ----a-w- C:\Windows\SysWOW64\iprtprio.dll
2018-07-24 06:29:28 38A6B70D44AF764307F7B8964DE205A2 174080 ----a-w- C:\Windows\SysWOW64\wuwebv.dll
2018-07-24 06:29:28 351F369731B85DFF224115B3A751F852 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll
2018-07-24 06:29:28 3433D2B85A2A325509BF85707D2611EA 13824 ----a-w- C:\Windows\SysWOW64\wshqos.dll
2018-07-24 06:29:28 2C7FC26E90C858C793226A6D18F1D68A 139776 ----a-w- C:\Windows\SysWOW64\PeerDist.dll
2018-07-24 06:29:28 29F8B58C22BD2F97EC2E8F0B87CF631C 1499648 ----a-w- C:\Windows\SysWOW64\ExplorerFrame.dll
2018-07-24 06:29:28 13FDF0CBACAF55BEAFF80F943EE3AAC8 1806848 ----a-w- C:\Windows\SysWOW64\authui.dll
2018-07-24 06:29:28 1107555801A14488CAFA1831D54CC821 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll
2018-07-24 06:29:28 0BDA99A6A2FB8AF0C4BD40541F659A7F 279040 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2018-07-24 06:29:27 B73966CFD747762F93CC27DF6544BC50 2060288 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2018-07-24 06:29:27 6A25198AA332CA656BD76B03D7B29F03 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
2018-07-24 06:29:27 638DEF534C723534A0048AD1AA4F7C2D 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2018-07-24 06:29:27 24FF25A3D32E8B0C1D640DADBA81DC66 20286464 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2018-07-24 06:29:27 071F0D72D938DE283AEBBB0CD0E95200 2295296 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2018-07-24 06:29:26 25AA0C561E288AE52D3E97E3997A506A 12880384 ----a-w- C:\Windows\SysWOW64\shell32.dll
2018-07-24 06:29:25 FB8032DFBE22B7C48AC9A4EC2FEAE3F1 134656 ----a-w- C:\Windows\SysWOW64\WinSCard.dll
2018-07-24 06:29:25 F9CAB9D2E5BF1D9C8B01CC59C9F4F51C 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2018-07-24 06:29:25 F92D1A5B21D241D789E2541208621EBA 4050624 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
2018-07-24 06:29:25 EAD9FBA82C6A66FBD088E9CCB8480C57 303104 ----a-w- C:\Windows\SysWOW64\mmcbase.dll
2018-07-24 06:29:25 E597131CF7FCF899C77947641296AD7E 662016 ----a-w- C:\Windows\SysWOW64\jscript.dll
2018-07-24 06:29:25 E53022747443FC3E8A69C7858E7248A0 918296 ----a-w- C:\Windows\SysWOW64\ucrtbase.dll
2018-07-24 06:29:25 E174722F442E9FA3EAB830357A10A913 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll
2018-07-24 06:29:25 E097B097231DF2C03F6B5083092A6F95 70144 ----a-w- C:\Windows\SysWOW64\TSpkg.dll
2018-07-24 06:29:25 DB1917A860BB61D48AD3459DF441B34B 25600 ----a-w- C:\Windows\SysWOW64\lpk.dll
2018-07-24 06:29:25 D133305F1B700163CCF242FE9868B076 52224 ----a-w- C:\Windows\SysWOW64\wsnmp32.dll
2018-07-24 06:29:25 CAF62939BCD04EA799C53BBEC4486EFC 106496 ----a-w- C:\Windows\SysWOW64\cryptnet.dll
2018-07-24 06:29:25 C4FADD724DA8B6E958B92DE6692DFD3E 463360 ----a-w- C:\Windows\SysWOW64\FirewallAPI.dll
2018-07-24 06:29:25 C043A37A5E9DFFE7BA69A52A19D9A063 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll
2018-07-24 06:29:25 B505FA46BAB4FA1D6E4141FF1D8ED7C1 487936 ----a-w- C:\Windows\SysWOW64\catsrvut.dll
2018-07-24 06:29:25 AC157A35A63CBBC28A3729D5D3FBE66A 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2018-07-24 06:29:25 A036E55D6B443FF53E79AD82550D6993 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll
2018-07-24 06:29:25 9392CD363C6FE0CC6EFC927903F85845 216576 ----a-w- C:\Windows\SysWOW64\FWPUCLNT.DLL
2018-07-24 06:29:25 8E91E0F429D18017ED00F096EE8CE994 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll
2018-07-24 06:29:25 8C706932FCE03C8C5C79DE879037E4DD 1314072 ----a-w- C:\Windows\SysWOW64\ntdll.dll
2018-07-24 06:29:25 841D64BF6AE3EF0013EBCA020810BFE2 141312 ----a-w- C:\Windows\SysWOW64\rpchttp.dll
2018-07-24 06:29:25 8350EEB762B80BD9D80B650BA2609344 308224 ----a-w- C:\Windows\SysWOW64\scesrv.dll
2018-07-24 06:29:25 7D9EE3EA2210D64FBB5979C71F19736B 179200 ----a-w- C:\Windows\SysWOW64\wintrust.dll
2018-07-24 06:29:25 7B72D697D37D80D156C869A306AF4EA3 73216 ----a-w- C:\Windows\SysWOW64\tdc.ocx
2018-07-24 06:29:25 310D798E3DEAA0EB33E1F4F2B66749F4 261120 ----a-w- C:\Windows\SysWOW64\msv1_0.dll
2018-07-24 06:29:25 2F3887E33B087C86EE71C8D88B4C32D9 337408 ----a-w- C:\Windows\SysWOW64\msihnd.dll
2018-07-24 06:29:25 296E6705C2C898865F85A56F9B056A5D 309440 ----a-w- C:\Windows\SysWOW64\atmfd.dll
2018-07-24 06:29:25 27607C3219A98ADECDB355628D48E17B 145920 ----a-w- C:\Windows\SysWOW64\cryptsvc.dll
2018-07-24 06:29:25 1A196E43301519920A4C8A98DD73AB49 271360 ----a-w- C:\Windows\SysWOW64\iprtrmgr.dll
2018-07-24 06:29:25 0BBFF8141438C1AD9E8B8108E4828F50 666624 ----a-w- C:\Windows\SysWOW64\nshwfp.dll
2018-07-24 06:29:25 06983C58F6D1CAE00A72CE5091715C79 73216 ----a-w- C:\Windows\SysWOW64\msiexec.exe
2018-07-24 06:29:25 02814474C497130152E6C5D1F6F36D95 52224 ----a-w- C:\Windows\SysWOW64\nlaapi.dll
2018-07-24 06:29:24 EB9A60C605137C204C01116B9C26F693 13680128 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2018-07-24 06:29:24 5733F1CB6F4EDB64B10664EB5C0C9C47 416256 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2018-07-24 06:29:24 179882638338C54703CC695A63D6B3D3 476160 ----a-w- C:\Windows\SysWOW64\ieui.dll
2018-07-24 06:29:23 8594BD814DAFE7476C73FF20444C8A80 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll
2018-07-24 06:29:23 49EFFD4C26029ABC5744078AB5BB1FAE 4496384 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2018-07-24 06:29:23 1BD1A7ED0EAC57B4B2C02BD81E535A09 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll
2018-07-24 06:29:22 FBE7918B0CF71FCB71478971A1DD7134 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll
2018-07-24 06:29:22 E069A3B525828F055D9BF71A1B3DBC1E 312832 ----a-w- C:\Windows\SysWOW64\gdi32.dll
2018-07-24 06:29:22 C9D6D5A1C281BB93A3237F9059ECF2B2 2365952 ----a-w- C:\Windows\SysWOW64\msi.dll
2018-07-24 06:29:22 C1A06699B139B51804579ACD107C19A0 481792 ----a-w- C:\Windows\SysWOW64\mscms.dll
2018-07-24 06:29:22 9A302F3036CB2CE62837D035444FF1DD 741888 ----a-w- C:\Windows\SysWOW64\inetcomm.dll
2018-07-24 06:29:22 93DE30FA0FA2E0BD31D099CC7FDD2460 1241600 ----a-w- C:\Windows\SysWOW64\comsvcs.dll
2018-07-24 06:29:22 55B6D1A0293AC4CAB6FDC46887F869F8 341504 ----a-w- C:\Windows\SysWOW64\html.iec
2018-07-24 06:29:22 3D3C1F0BE3644B6C1D728D4970C07DD0 2767872 ----a-w- C:\Windows\SysWOW64\wininet.dll
2018-07-24 06:29:22 2F929C103155EE98EFB649FE9AF21740 271360 ----a-w- C:\Windows\SysWOW64\Wldap32.dll
2018-07-24 06:29:22 1E38AEB134500A43DB7D4E4EA6F49B85 351744 ----a-w- C:\Windows\SysWOW64\winhttp.dll
2018-07-24 06:29:21 ED03B8BFE1AF6039304814AED8A675B2 3962048 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
2018-07-24 06:29:20 E1D94AE90FEF0AAA0D2C0582651AF372 582144 ----a-w- C:\Windows\SysWOW64\oleaut32.dll
2018-07-24 06:29:20 D99D2588AB30658287818CF6778E5261 25088 ----a-w- C:\Windows\SysWOW64\msimsg.dll
2018-07-24 06:29:20 C8C5D6F1B47CB63DAC39FD3D35B888E1 237056 ----a-w- C:\Windows\SysWOW64\pdh.dll
2018-07-24 06:29:20 BE2F9603030393367735B0279A78E495 644096 ----a-w- C:\Windows\SysWOW64\advapi32.dll
2018-07-24 06:29:20 4EB42FA4DC131C86B3BF429CAE8D5E8F 554496 ----a-w- C:\Windows\SysWOW64\kerberos.dll
2018-07-24 06:29:20 3BE82330701A81F0F9857A1A9FC7AAC7 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll
2018-07-24 06:29:20 2F872A04443BD29C380DAE1A4693AFB2 1417728 ----a-w- C:\Windows\SysWOW64\ole32.dll
2018-07-24 06:29:20 2B7401DB11654B3C50D8E5C39C620606 666112 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll
2018-07-24 06:29:20 27D66C4E06281DA3B0644B1BAA9DDAC8 782848 ----a-w- C:\Windows\SysWOW64\webservices.dll
2018-07-24 06:29:20 0A56461A2E07C0E4CB80492B3795E7B0 1176576 ----a-w- C:\Windows\SysWOW64\crypt32.dll
2018-07-24 06:29:14 F8C7346CE9939F2E67887E2300F25694 629760 ----a-w- C:\Windows\SysWOW64\usp10.dll
2018-07-24 06:29:14 F31B13F9591F1350892BB4BFECFAA1C4 215040 ----a-w- C:\Windows\SysWOW64\icm32.dll
2018-07-24 06:29:14 ECE9B3300C87CA315D22D5132F2A64D7 50688 ----a-w- C:\Windows\SysWOW64\ndptsp.tsp
2018-07-24 06:29:14 EB3C5DF7C68432A78D01FEF449183DE4 84992 ----a-w- C:\Windows\SysWOW64\hlink.dll
2018-07-24 06:29:14 C2E787F8373A8287B06ECFA373B88CC2 1251328 ----a-w- C:\Windows\SysWOW64\DWrite.dll
2018-07-24 06:29:14 BA391DDC881CE3C30A42B1A7E7AE2908 111616 ----a-w- C:\Windows\SysWOW64\t2embed.dll
2018-07-24 06:29:14 A6949E802060E20D3B6BB0E39AD7378B 115200 ----a-w- C:\Windows\SysWOW64\rtm.dll
2018-07-24 06:29:14 A4CFBA9772F2D54F466771AFABCB7A22 34304 ----a-w- C:\Windows\SysWOW64\atmlib.dll
2018-07-24 06:29:14 9200B9BBA562D4969EC135A3B7F59EA9 38912 ----a-w- C:\Windows\SysWOW64\kmddsp.tsp
2018-07-24 06:29:14 45562FDC64E30695C97D0C98863A1FC8 71680 ----a-w- C:\Windows\SysWOW64\fontsub.dll
2018-07-24 06:29:14 0DF768001BB6B2191E475F5DC0EC6328 303616 ----a-w- C:\Windows\SysWOW64\msinfo32.exe
2018-07-24 06:29:13 DE4466627EEA8FB832015A12960D6FB1 40960 ----a-w- C:\Windows\SysWOW64\sdchange.exe
2018-07-24 06:29:13 C815C7A3371054ED45426FC7BF439701 108032 ----a-w- C:\Windows\SysWOW64\msra.exe
2018-07-24 06:29:13 802FCE56C31D9400F857D818746B70FE 26624 ----a-w- C:\Windows\SysWOW64\netbtugc.exe
2018-07-24 06:29:13 71C8F44D3323EF92EC39A4D6013C60E8 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll
2018-07-24 06:29:13 690094D4EA6E25405DC737B7BAAB382F 81408 ----a-w- C:\Windows\SysWOW64\rascfg.dll
2018-07-24 06:29:13 5A8D4FB46CD8CA305197B4B2B4E3118B 690688 ----a-w- C:\Windows\SysWOW64\adtschema.dll
2018-07-24 06:29:13 54E453BA0809EA822E703DDB8A799670 162304 ----a-w- C:\Windows\SysWOW64\ncsi.dll
2018-07-24 06:29:13 4A35D7B172AFF9C6B362D7297568836A 269824 ----a-w- C:\Windows\SysWOW64\dnsapi.dll
2018-07-24 06:29:13 2E89C71A89DBB79E7B2D4C8022CC870C 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll
2018-07-24 06:29:13 04A7545E4C8FE10918AE92DF92307CA1 61952 ----a-w- C:\Windows\SysWOW64\rasdiag.dll
2018-07-24 06:29:11 D9800BFB545D192CF19930014045CA70 30720 ----a-w- C:\Windows\SysWOW64\dnscacheugc.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2018-07-24 08:45:26 DFACE0E54E6F3FA1DC0092B6B16F390C 4296704 ----a-w- C:\Windows\Sysnative\D3DCompiler_47.dll
2018-07-24 06:29:44 F28BA5D926706E817FBBDE6A646BF184 140992 ----a-w- C:\Windows\Sysnative\CompatTelRunner.exe
2018-07-24 06:29:44 C6D099A97030F551D9339549CAC9E64F 246272 ----a-w- C:\Windows\Sysnative\aepic.dll
2018-07-24 06:29:44 A951597908E55D34E64BF0F801272C49 2860032 ----a-w- C:\Windows\Sysnative\aitstatic.exe
2018-07-24 06:29:44 6A8491A066FD55EC24DE34B23208DE2F 470016 ----a-w- C:\Windows\Sysnative\centel.dll
2018-07-24 06:29:44 5B0D66A15245E0F0394A3F0605BB2056 443392 ----a-w- C:\Windows\Sysnative\invagent.dll
2018-07-24 06:29:43 EBDB52C995E3915EA4159FDCD92F45B2 783872 ----a-w- C:\Windows\Sysnative\generaltel.dll
2018-07-24 06:29:43 E0E860556906246367CBF595DF5905A1 680960 ----a-w- C:\Windows\Sysnative\aeinv.dll
2018-07-24 06:29:43 B4F45446416C85DA7F099E42F9F9F907 612352 ----a-w- C:\Windows\Sysnative\devinv.dll
2018-07-24 06:29:43 8E5D58AA60B350C69BED3476937899CF 301056 ----a-w- C:\Windows\Sysnative\acmigration.dll
2018-07-24 06:29:43 17147053A522FA230B4744E15A465B1B 1602048 ----a-w- C:\Windows\Sysnative\appraiser.dll
2018-07-24 06:29:35 F5F31DC3B928073274BCDF7B4D4136F9 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-environment-l1-1-0.dll
2018-07-24 06:29:35 97741740B1831234D80ED912F8B9A964 91368 ----a-w- C:\Windows\Sysnative\MigAutoPlay.exe
2018-07-24 06:29:35 1BF2AF4DEB96801EDFDE04A763EA4028 14168 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-time-l1-1-0.dll
2018-07-24 06:29:35 1A3292019AF01D7A6ED8BC52686840E6 17752 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-string-l1-1-0.dll
2018-07-24 06:29:34 FF6E04A942AB95C3CAD6C111B730102E 2058240 ----a-w- C:\Windows\Sysnative\Query.dll
2018-07-24 06:29:34 FD374A7F3079A4F7D96B4C8A1E71B1A3 20824 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-math-l1-1-0.dll
2018-07-24 06:29:34 FCFB6405CF54D78C5BAA81A66802918C 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-utility-l1-1-0.dll
2018-07-24 06:29:34 F90898CEFAAF450857C3C6A7EB08DB42 103936 ----a-w- C:\Windows\Sysnative\resmon.exe
2018-07-24 06:29:34 F5D4EF8A0C33CBF321DD51ABAFD5FFB2 15704 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-convert-l1-1-0.dll
2018-07-24 06:29:34 E8E4E71C396E184A65E3E46112825985 288256 ----a-w- C:\Windows\Sysnative\mssphtb.dll
2018-07-24 06:29:34 DBB0E88A94589792069DB5DECC9D5D60 58880 ----a-w- C:\Windows\Sysnative\pdhui.dll
2018-07-24 06:29:34 D3252C57563DEEF1D9E257FB17577690 53248 ----a-w- C:\Windows\Sysnative\hhsetup.dll
2018-07-24 06:29:34 D263B7CE85EFDC007C40AABCA5ACB255 17752 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-24 06:29:34 B4B63F1D78B3DF2EFA57192F3329D202 9728 ----a-w- C:\Windows\Sysnative\iprtprio.dll
2018-07-24 06:29:34 9FFDF8425078B97D31DF095AE0BA2A43 48640 ----a-w- C:\Windows\Sysnative\wpnpinst.exe
2018-07-24 06:29:34 9A2F550B05720F69592A66EE9733E1E1 5120 ----a-w- C:\Windows\Sysnative\msdxm.ocx
2018-07-24 06:29:34 9A2F550B05720F69592A66EE9733E1E1 5120 ----a-w- C:\Windows\Sysnative\dxmasf.dll
2018-07-24 06:29:34 9600008630390E2209199E7791185075 12632 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-process-l1-1-0.dll
2018-07-24 06:29:34 934FEAED29730C6F894872EEA7577A80 128512 ----a-w- C:\Windows\Sysnative\IcCoinstall.dll
2018-07-24 06:29:34 861A2FD3AFB4557BA49A6D60A02C39BF 13656 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-24 06:29:34 842CA37133BE98BE81EE569F8BA6D2AD 9216 ----a-w- C:\Windows\Sysnative\plasrv.exe
2018-07-24 06:29:34 8003D39B386EDCCFB08DC21AACC0683A 559616 ----a-w- C:\Windows\Sysnative\spoolsv.exe
2018-07-24 06:29:34 7DF8B500AE98DE6CD677C15FC653F47D 9728 ----a-w- C:\Windows\Sysnative\spwmp.dll
2018-07-24 06:29:34 730153373C28F016B84D7F717775954D 25600 ----a-w- C:\Windows\Sysnative\winnsi.dll
2018-07-24 06:29:34 72EBE4E993A0EA5BEEB25A71F36A7E5F 131072 ----a-w- C:\Windows\Sysnative\mmcshext.dll
2018-07-24 06:29:34 71340AB9EA9678E8C095E8C6DA06563E 194048 ----a-w- C:\Windows\Sysnative\itircl.dll
2018-07-24 06:29:34 6A0A2D8C5C9CA9826930872602472195 11264 ----a-w- C:\Windows\Sysnative\msmmsp.dll
2018-07-24 06:29:34 64EECB4CE99C99B1136F88A17AD8EF58 22528 ----a-w- C:\Windows\Sysnative\inetppui.dll
2018-07-24 06:29:34 54F104E6825A8B82E3552BA060D2C0CF 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2018-07-24 06:29:34 54C942A045F24C63DB6C49DD9618984F 594432 ----a-w- C:\Windows\Sysnative\wvc.dll
2018-07-24 06:29:34 4BB23FCE63D49211BB520D368E1FDD3F 34304 ----a-w- C:\Windows\Sysnative\werdiagcontroller.dll
2018-07-24 06:29:34 471FA523AFE0C531052190789916AD91 1133568 ----a-w- C:\Windows\Sysnative\cdosys.dll
2018-07-24 06:29:34 34B55B7F3479B1C1AD4F109614F29D19 170496 ----a-w- C:\Windows\Sysnative\itss.dll
2018-07-24 06:29:34 34450D8B9F8638E486F92780D5728D07 473600 ----a-w- C:\Windows\Sysnative\taskcomp.dll
2018-07-24 06:29:34 2E33759FA0983CCEF45621AE716205B0 26112 ----a-w- C:\Windows\Sysnative\oleres.dll
2018-07-24 06:29:34 2C653B6993E3C9C6C7138802E6FAFAC4 12288 ----a-w- C:\Windows\Sysnative\wu.upgrade.ps.dll
2018-07-24 06:29:34 21F7875DF5DD6FB0C1B961B40336129D 113664 ----a-w- C:\Windows\Sysnative\SearchFilterHost.exe
2018-07-24 06:29:34 21AB8A6F559D1E49C8FFA3CDAF037839 12640 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-conio-l1-1-0.dll
2018-07-24 06:29:34 1B923D7B425EE35CC865715E8FF2B920 16216 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-24 06:29:34 17AA424DAD67E33C231241A7AB0EFF07 75264 ----a-w- C:\Windows\Sysnative\msscntrs.dll
2018-07-24 06:29:34 158E32C297632CA1733A31FC3917DD6C 14336 ----a-w- C:\Windows\Sysnative\msshooks.dll
2018-07-24 06:29:34 156DA44DE8586202CD7BADDA883B5994 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-heap-l1-1-0.dll
2018-07-24 06:29:34 13669EF8AE3C36E077BBCDA1EF6CE30C 19288 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-24 06:29:34 10C18EE8EB974E9F6382917AD3CD7D11 12120 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-locale-l1-1-0.dll
2018-07-24 06:29:34 08A13AC17CBDC76276370DA5D5F20060 369664 ----a-w- C:\Windows\Sysnative\zipfldr.dll
2018-07-24 06:29:33 DC4EEBF548FDF3DDD6A3A7AD4293A61B 2851328 ----a-w- C:\Windows\Sysnative\themeui.dll
2018-07-24 06:29:33 C8584E8773E541BAC251CAA92DEBCE7D 491520 ----a-w- C:\Windows\Sysnative\mssph.dll
2018-07-24 06:29:33 C5AA76BE7645EECE0C34562FA96C7B38 13312 ----a-w- C:\Windows\Sysnative\nsi.dll
2018-07-24 06:29:33 C2D848F56293ED04C730D75AF0F64233 115200 ----a-w- C:\Windows\Sysnative\mssitlb.dll
2018-07-24 06:29:33 A42CC1EA7DE02E77B8F610C9DB4688EB 463872 ----a-w- C:\Windows\Sysnative\certcli.dll
2018-07-24 06:29:33 9A9174065781052CF8822E13FA105738 591872 ----a-w- C:\Windows\Sysnative\SearchIndexer.exe
2018-07-24 06:29:33 92CD3565621335BC1432850B0AE5C012 419840 ----a-w- C:\Windows\Sysnative\KernelBase.dll
2018-07-24 06:29:33 8EECC364ABE9ABA05AFB7B3E26C91F37 50176 ----a-w- C:\Windows\Sysnative\srclient.dll
2018-07-24 06:29:33 89B1F9A2A9A872906C113803CA3B0361 2319872 ----a-w- C:\Windows\Sysnative\tquery.dll
2018-07-24 06:29:33 7B828D19E030EB29232AB923DDCE9BBF 24576 ----a-w- C:\Windows\Sysnative\WcnEapPeerProxy.dll
2018-07-24 06:29:33 7A65B9A545133941EBF23A6E06A6CE1F 8704 ----a-w- C:\Windows\Sysnative\comcat.dll
2018-07-24 06:29:33 7770E03C9DC6FDA3549932D1BBB9C2FE 296960 ----a-w- C:\Windows\Sysnative\rstrui.exe
2018-07-24 06:29:33 61151E4E079FCA5601CCD05ADFE93064 13312 ----a-w- C:\Windows\Sysnative\wshnetbs.dll
2018-07-24 06:29:33 5CEFEDE17307B080125D16FBA2125602 37888 ----a-w- C:\Windows\Sysnative\wuapp.exe
2018-07-24 06:29:33 3A5A8A94B88C8FD0D8819F82136A5F8A 249856 ----a-w- C:\Windows\Sysnative\SearchProtocolHost.exe
2018-07-24 06:29:33 0BDEF8EAE185FFC435023217347C6E31 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll
2018-07-24 06:29:33 0B172766B1E78AEBCA583713A850FFF8 63488 ----a-w- C:\Windows\Sysnative\setbcdlocale.dll
2018-07-24 06:29:32 F9B0D652B2934AB8EC64DD26CB7601C6 211968 ----a-w- C:\Windows\Sysnative\cic.dll
2018-07-24 06:29:32 F99E94CEF9DB4A0D269870DBA1E0A0DC 101376 ----a-w- C:\Windows\Sysnative\fdWCN.dll
2018-07-24 06:29:32 F97C397CE4778CA49F105463FB6BD287 85504 ----a-w- C:\Windows\Sysnative\asycfilt.dll
2018-07-24 06:29:32 F88906103EE31C7B5FE0C489452F72FC 1163264 ----a-w- C:\Windows\Sysnative\kernel32.dll
2018-07-24 06:29:32 F625EA4C3102411C52F5D9AF4559174B 61952 ----a-w- C:\Windows\Sysnative\ntprint.exe
2018-07-24 06:29:32 E5A1E7B40B5086E643705B2D85A139C4 1110528 ----a-w- C:\Windows\Sysnative\schedsvc.dll
2018-07-24 06:29:32 E282BB751CD40C38FD8D3B93C6CEDAE3 22016 ----a-w- C:\Windows\Sysnative\credssp.dll
2018-07-24 06:29:32 D9800890FAF5723DCA476FA6A762DE4B 63832 ----a-w- C:\Windows\Sysnative\api-ms-win-crt-private-l1-1-0.dll
2018-07-24 06:29:32 D682E67712CCF3E6D297D915A420AB1B 16896 ----a-w- C:\Windows\Sysnative\wshqos.dll
2018-07-24 06:29:32 D258DBCB124F0B06951A80C58276EF46 346112 ----a-w- C:\Windows\Sysnative\ntprint.dll
2018-07-24 06:29:32 BEEF124AE870E5DE7F0DDC7C68DF8F76 2048 ----a-w- C:\Windows\Sysnative\mferror.dll
2018-07-24 06:29:32 BBBFA70DDA53A309701E44B5948C8FDA 24064 ----a-w- C:\Windows\Sysnative\WcnEapAuthProxy.dll
2018-07-24 06:29:32 98C74D7C3D6FFA2851E485FE91C2C695 17920 ----a-w- C:\Windows\Sysnative\appidcertstorecheck.exe
2018-07-24 06:29:32 96AA4C72100C0C1731783A5BB5430713 51712 ----a-w- C:\Windows\Sysnative\vmictimeprovider.dll
2018-07-24 06:29:32 92A3CD6057E9F44AA645341E6D717BEF 172544 ----a-w- C:\Windows\Sysnative\perfmon.exe
2018-07-24 06:29:32 8E15963FF62A61EA58A7D5EB1845542B 701952 ----a-w- C:\Windows\Sysnative\hhctrl.ocx
2018-07-24 06:29:32 89765E5A616A11A0B78E015F88563D60 50688 ----a-w- C:\Windows\Sysnative\wermgr.exe
2018-07-24 06:29:32 814754FE14D1D97D5D565746E1AD458E 210432 ----a-w- C:\Windows\Sysnative\wdigest.dll
2018-07-24 06:29:32 80AD73B817FFDB549F3CDC2E6A160A2C 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll
2018-07-24 06:29:32 7FEBFC27067BE03D7CECDE09AFFAF2A8 93696 ----a-w- C:\Windows\Sysnative\mfmjpegdec.dll
2018-07-24 06:29:32 668B9EFF5CCA4542F435D2CD9CE3C778 26112 ----a-w- C:\Windows\Sysnative\nsisvc.dll
2018-07-24 06:29:32 5B12DFB01574840526AD244E24BCE692 170176 ----a-w- C:\Windows\Sysnative\basecsp.dll
2018-07-24 06:29:32 55733700CBB49AE48379A38FDFCAB8AD 215552 ----a-w- C:\Windows\Sysnative\winsrv.dll
2018-07-24 06:29:32 296D4475DF8458A8E4DDA8842D37DD2F 2048 ----a-w- C:\Windows\Sysnative\msxml6r.dll
2018-07-24 06:29:32 24F1EE7FBCA5999F164CDAF5034519EB 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe
2018-07-24 06:29:32 2067F48D026667923B7BC7184E0D234C 757248 ----a-w- C:\Windows\Sysnative\win32spl.dll
2018-07-24 06:29:32 1EC28916E6C098DEF52EE49D98E4D4CE 7168 ----a-w- C:\Windows\Sysnative\MsraLegacy.tlb
2018-07-24 06:29:32 1DD375A8607A64F53406607195A5BA32 166400 ----a-w- C:\Windows\Sysnative\inetpp.dll
2018-07-24 06:29:32 1BE23B677B6A2631557FB56EA72D0E74 475136 ----a-w- C:\Windows\Sysnative\sysmon.ocx
2018-07-24 06:29:32 19A5175A3D5E386FC3201C4F4B2F8EA1 264704 ----a-w- C:\Windows\Sysnative\P2P.dll
2018-07-24 06:29:32 15F5FC11B490D77AA6A389F7F48530AF 116224 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe
2018-07-24 06:29:32 0396C80CC7120379B2CF5A1A4CBF7CF8 37888 ----a-w- C:\Windows\Sysnative\wups2.dll
2018-07-24 06:29:32 0301EEE83B03229F555C6F8025FB5540 97792 ----a-w- C:\Windows\Sysnative\mprdim.dll
2018-07-24 06:29:32 007665F8DE4B18F82CEC63313F8ADCD2 2144256 ----a-w- C:\Windows\Sysnative\mmc.exe
2018-07-24 06:29:31 E79487826558CC5C43E3F1779CC9D87F 484864 ----a-w- C:\Windows\Sysnative\StructuredQuery.dll
2018-07-24 06:29:31 D11DB8D23EC381BC7B774B5EF7088FF6 140288 ----a-w- C:\Windows\Sysnative\wuauclt.exe
2018-07-24 06:29:31 C70ED53A31477F76600A6BC58753FBBE 709120 ----a-w- C:\Windows\Sysnative\wuapi.dll
2018-07-24 06:29:31 B59C2D5D0F8EE9B287EA31702D291281 778240 ----a-w- C:\Windows\Sysnative\mssvp.dll
2018-07-24 06:29:31 B37049F67D49A88EA7D74E74D00DF6C6 2222080 ----a-w- C:\Windows\Sysnative\mssrch.dll
2018-07-24 06:29:31 AA732CFC19AFC581020FB9FDBF1B8F93 1143296 ----a-w- C:\Windows\Sysnative\DXPTaskRingtone.dll
2018-07-24 06:29:31 9227B8390D601DE8F0423ECD0A60EA57 503808 ----a-w- C:\Windows\Sysnative\srcore.dll
2018-07-24 06:29:31 7085531CD4D020257CEC121317415433 728064 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2018-07-24 06:29:31 1E229A071AA54F1FF4C2FB9D44EEB2B8 107520 ----a-w- C:\Windows\Sysnative\inseng.dll
2018-07-24 06:29:30 FFE6670F3E359484E6B62841203571E0 1574912 ----a-w- C:\Windows\Sysnative\quartz.dll
2018-07-24 06:29:30 627D80A5F4604E5623BF647C27596B69 971776 ----a-w- C:\Windows\Sysnative\localspl.dll
2018-07-24 06:29:30 6129FB75F11062BA2A119E87621DEC14 2004480 ----a-w- C:\Windows\Sysnative\msxml6.dll
2018-07-24 06:29:29 E41DD12A023A54B071A55CEC3537904A 109568 ----a-w- C:\Windows\Sysnative\hlink.dll
2018-07-24 06:29:29 BE8C1B098C47FF68D9A590044389F9EF 345600 ----a-w- C:\Windows\Sysnative\schannel.dll
2018-07-24 06:29:29 BC5F8C5C7ACCD0B884FCB8B67616F537 1389056 ----a-w- C:\Windows\Sysnative\pla.dll
2018-07-24 06:29:29 B7B3C07D8EB33481BCFF3C075381A09B 338432 ----a-w- C:\Windows\Sysnative\conhost.exe
2018-07-24 06:29:29 72F42C96CE1982628CAA275F703C7FED 217600 ----a-w- C:\Windows\Sysnative\WinSCard.dll
2018-07-24 06:29:29 6F14CB391767A3BB45CE9AA5E36B8B15 486400 ----a-w- C:\Windows\Sysnative\wer.dll
2018-07-24 06:29:29 4190FD659E26999CE7E024475BFBBA41 3665920 ----a-w- C:\Windows\Sysnative\MSVidCtl.dll
2018-07-24 06:29:29 2B97029736390D5A34A90A0AD9AC8A62 404992 ----a-w- C:\Windows\Sysnative\wisptis.exe
2018-07-24 06:29:29 0D38C1ED3D068E8EBCBFFAED332F0032 1363456 ----a-w- C:\Windows\Sysnative\wdc.dll
2018-07-24 06:29:29 04476FEA865294E1B1CE9EC008F4D6DC 3203584 ----a-w- C:\Windows\Sysnative\mmcndmgr.dll
2018-07-24 06:29:28 F8DBB1C24F8FFBCA97E61ED06A8307F2 229376 ----a-w- C:\Windows\Sysnative\scksp.dll
2018-07-24 06:29:28 CB92C5DD2BF928BE2F7D893BAD9332D2 34816 ----a-w- C:\Windows\Sysnative\appidsvc.dll
2018-07-24 06:29:28 C3532E4A656E0B986E5674576031AFEF 504320 ----a-w- C:\Windows\Sysnative\msihnd.dll
2018-07-24 06:29:28 AAAC72FC092ED7245DABEAE48890EBC6 119296 ----a-w- C:\Windows\Sysnative\racpldlg.dll
2018-07-24 06:29:28 90FE38C6A8FE7EAA921DEBDEFBDDBAEF 98816 ----a-w- C:\Windows\Sysnative\wudriver.dll
2018-07-24 06:29:28 8886F053688EC10FE4858C3302266920 244224 ----a-w- C:\Windows\Sysnative\vmicsvc.exe
2018-07-24 06:29:28 79DB2B358BF0B152F15D1C5A525233BD 439296 ----a-w- C:\Windows\Sysnative\p2psvc.dll
2018-07-24 06:29:28 4CF5B8F1AF0A757B169795AA21070A6A 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2018-07-24 06:29:28 4377D5CD793F8F1DD698FF7A2639F5E8 148480 ----a-w- C:\Windows\Sysnative\appidpolicyconverter.exe
2018-07-24 06:29:28 414ED8500CAF9869BDD23296886878D7 120320 ----a-w- C:\Windows\Sysnative\WcnApi.dll
2018-07-24 06:29:28 396B9CC3BCC1BEADFAA6C1A6A5FA54D0 23744 ----a-w- C:\Windows\Sysnative\streamci.dll
2018-07-24 06:29:28 35050F01D00E7E72A2449EB6F9ABF8B4 40960 ----a-w- C:\Windows\Sysnative\WcsPlugInService.dll
2018-07-24 06:29:28 26E0462BFF018B9B2DC95B83B36A58F9 36864 ----a-w- C:\Windows\Sysnative\wups.dll
2018-07-24 06:29:28 21CA3FEC7A49BEE4CCC39BC59F5D2FA9 99840 ----a-w- C:\Windows\Sysnative\mssprxy.dll
2018-07-24 06:29:28 17AC9353D8BCDB0E4D978D0C0703B623 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll
2018-07-24 06:29:28 1197C7F741BF8AFC201D081C4FA59927 1032192 ----a-w- C:\Windows\Sysnative\rdpcore.dll
2018-07-24 06:29:28 0535EE6D57256EB96350E8C12B2887E9 2048 ----a-w- C:\Windows\Sysnative\tzres.dll
2018-07-24 06:29:27 F670C35EDE5F6B6E7624608C31710FA7 398376 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
2018-07-24 06:29:27 E30B11795F0E8600F6737D7DEB25D158 3165184 ----a-w- C:\Windows\Sysnative\wucltux.dll
2018-07-24 06:29:27 6AD64BB3B7183B64B73609CB093CDCB7 12574720 ----a-w- C:\Windows\Sysnative\wmploc.DLL
2018-07-24 06:29:27 691D953D90BB9552057CF82D86E8BF55 84480 ----a-w- C:\Windows\Sysnative\INETRES.dll
2018-07-24 06:29:27 28B0044D934B9D922B03C0330BC5C28C 1545216 ----a-w- C:\Windows\Sysnative\urlmon.dll
2018-07-24 06:29:27 1DD626FE4DE2D4B710DD1360F404A54F 71680 ----a-w- C:\Windows\Sysnative\PrintBrmUi.exe
2018-07-24 06:29:26 FFC84C824A0F2F36CEE385D64A4E0044 152064 ----a-w- C:\Windows\Sysnative\occache.dll
2018-07-24 06:29:26 EE896904F18B1DEA01A3762B2E662441 1867776 ----a-w- C:\Windows\Sysnative\ExplorerFrame.dll
2018-07-24 06:29:26 CF90304887A6D65641FA6AF70CD7D095 114368 ----a-w- C:\Windows\Sysnative\consent.exe
2018-07-24 06:29:26 8F8FE1115D56F601EBB707B353DA6030 961024 ----a-w- C:\Windows\Sysnative\actxprxy.dll
2018-07-24 06:29:26 734EBDB764E033B8E4E55898AED6CEB9 1942016 ----a-w- C:\Windows\Sysnative\authui.dll
2018-07-24 06:29:26 6ED680CF33CF6883F9F900D978A6E588 14635008 ----a-w- C:\Windows\Sysnative\wmp.dll
2018-07-24 06:29:26 0545A00F0E6E387A91BA59427AE1C6F7 1001984 ----a-w- C:\Windows\Sysnative\gpedit.dll
2018-07-24 06:29:25 E59C04C0681BB1EA90406254647DBA4D 44032 ----a-w- C:\Windows\Sysnative\csrsrv.dll
2018-07-24 06:29:25 DA4C42CE3913EC5B1471485CD232CC5A 28160 ----a-w- C:\Windows\Sysnative\secur32.dll
2018-07-24 06:29:25 D92C0D871FBA258CBF2126EABFE31447 70144 ----a-w- C:\Windows\Sysnative\appinfo.dll
2018-07-24 06:29:25 C36BB659F08F046B139C8D1B980BF1AC 46080 ----a-w- C:\Windows\Sysnative\rundll32.exe
2018-07-24 06:29:25 BF1BBA9F3C707FD6B2B07ADD6DB47E49 312320 ----a-w- C:\Windows\Sysnative\ncrypt.dll
2018-07-24 06:29:25 B7A23A91AD9CB04AF9E21CF775CCE775 30720 ----a-w- C:\Windows\Sysnative\lsass.exe
2018-07-24 06:29:25 B42CD13EEDF756570C490BC6B9CB44DD 14336 ----a-w- C:\Windows\Sysnative\dciman32.dll
2018-07-24 06:29:25 A64B7797CF2C49906B27376B64158871 13312 ----a-w- C:\Windows\Sysnative\sscore.dll
2018-07-24 06:29:25 A5979BDEE89F69E596437AA258BF9538 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll
2018-07-24 06:29:25 9D214A2727F3633C5EAF5E52658B0EBA 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll
2018-07-24 06:29:25 8F511C1E7347EF43FB5ECD7C748C4803 25088 ----a-w- C:\Windows\Sysnative\msimsg.dll
2018-07-24 06:29:25 7C7CB27E0025B9387C193DC10907F2D0 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll
2018-07-24 06:29:25 7715910112D44F7501F560995AB052F4 123904 ----a-w- C:\Windows\Sysnative\bcrypt.dll
2018-07-24 06:29:25 4CF347F478EE4CA538DE56B2772306A1 43520 ----a-w- C:\Windows\Sysnative\cryptbase.dll
2018-07-24 06:29:25 39599BF2945B67A36769DB69F3D63BCC 28672 ----a-w- C:\Windows\Sysnative\sspisrv.dll
2018-07-24 06:29:25 31C0F011CED277003021C12F31563996 113664 ----a-w- C:\Windows\Sysnative\wlanapi.dll
2018-07-24 06:29:25 1CD1341FCBEA8E5E057D555CA94C9B77 448512 ----a-w- C:\Windows\Sysnative\wlansec.dll
2018-07-24 06:29:25 15CF7B24AA64FE958CAEA00274838B1C 1741312 ----a-w- C:\Windows\Sysnative\sysmain.dll
2018-07-24 06:29:25 04841947C5F9A7E31EFB0914A056AD62 1068544 ----a-w- C:\Windows\Sysnative\msctf.dll
2018-07-24 06:29:25 042747AD32A51760D1C7F21A47BBF437 24576 ----a-w- C:\Windows\Sysnative\mfpmp.exe
2018-07-24 06:29:24 DC1BC5F2B1C54EA6725734BF4C0E5454 16384 ----a-w- C:\Windows\Sysnative\RdpGroupPolicyExtension.dll
2018-07-24 06:29:24 DB2EF7E6E4C76A32ACB777F71F10A79C 4834816 ----a-w- C:\Windows\Sysnative\xpsrchvw.exe
2018-07-24 06:29:24 CB2515803A8BBBDD7207A1F3CB554DC4 192512 ----a-w- C:\Windows\Sysnative\wuwebv.dll
2018-07-24 06:29:24 B8A2835643EB138B4081E50079353774 181760 ----a-w- C:\Windows\Sysnative\PeerDist.dll
2018-07-24 06:29:24 AD359C53941A6AC57FB935E7E9F1D16E 92160 ----a-w- C:\Windows\Sysnative\TabSvc.dll
2018-07-24 06:29:24 9B150E212F7905E08EC36977C38735B0 131584 ----a-w- C:\Windows\Sysnative\PeerDistWSDDiscoProv.dll
2018-07-24 06:29:24 99B4EC8C18D864213258FF96796A3F40 51200 ----a-w- C:\Windows\Sysnative\PeerDistHttpTrans.dll
2018-07-24 06:29:24 7F1A8D2D82F9B9AE61ADC986C5D4B457 91136 ----a-w- C:\Windows\Sysnative\WinSetupUI.dll
2018-07-24 06:29:24 7CFC917E6019DBABE474BC99E2BC3ADD 969216 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2018-07-24 06:29:24 79E3903FD75A22386326B542F17A2563 366592 ----a-w- C:\Windows\Sysnative\wcncsvc.dll
2018-07-24 06:29:24 64FB16C5849444F0CFD403C83D9579A1 327168 ----a-w- C:\Windows\Sysnative\pnrpsvc.dll
2018-07-24 06:29:24 634DCA9B1512DEDDADB4887116BFAECE 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll
2018-07-24 06:29:24 5BA6A8A4404B7B68999F6687404AB968 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
2018-07-24 06:29:24 42AEC5BC87A54240115A9230BF495F86 315392 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2018-07-24 06:29:24 369389F447AE7B741B06AAB66A10EED7 809472 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2018-07-24 06:29:24 307312447AD71ECC414B7B33E3006C57 95744 ----a-w- C:\Windows\Sysnative\rascfg.dll
2018-07-24 06:29:24 28BE388215DBA049A038F1E55FE92AF9 59904 ----a-w- C:\Windows\Sysnative\appidapi.dll
2018-07-24 06:29:23 E15CD986AEC0ABB5C6C03194F61C268B 2135552 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2018-07-24 06:29:23 C3C062499B700B9501E63D6D049CF982 2902016 ----a-w- C:\Windows\Sysnative\iertutil.dll
2018-07-24 06:29:23 9E42E092BC8336AF5F00CA9B56F45370 14185984 ----a-w- C:\Windows\Sysnative\shell32.dll
2018-07-24 06:29:23 7FA39F97E70048CF087AB8C5D201A680 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll
2018-07-24 06:29:23 468E317BD66B892DA9BF3097E5A3452F 355328 ----a-w- C:\Windows\Sysnative\mmcbase.dll
2018-07-24 06:29:23 4648043558C20D3D9E6CBE4B0A17EF4E 576512 ----a-w- C:\Windows\Sysnative\vbscript.dll
2018-07-24 06:29:23 0B739D33715DE42880F74EEEF9F26EFF 361984 ----a-w- C:\Windows\Sysnative\wow64win.dll
2018-07-24 06:29:22 E6499E0BFB97D128C0019F564AECA79B 749568 ----a-w- C:\Windows\Sysnative\FirewallAPI.dll
2018-07-24 06:29:22 BAD009A2A00ED9E793788EE3B8D29D13 70656 ----a-w- C:\Windows\Sysnative\nlaapi.dll
2018-07-24 06:29:22 B5D7A0638CA817BA7D8A4DFD3499BA2A 371392 ----a-w- C:\Windows\Sysnative\clfs.sys
2018-07-24 06:29:22 9984C87858BB977FD6DCD516BF8C5029 998912 ----a-w- C:\Windows\Sysnative\ucrtbase.dll
2018-07-24 06:29:22 85915F0BF5A7314A65B43602971ADFDC 525824 ----a-w- C:\Windows\Sysnative\catsrvut.dll
2018-07-24 06:29:22 7D789D1E8222877722A68B5EA0A8EB65 128512 ----a-w- C:\Windows\Sysnative\msiexec.exe
2018-07-24 06:29:22 77A0CB0FD36B1E3792504B437ED5AE82 87552 ----a-w- C:\Windows\Sysnative\tdc.ocx
2018-07-24 06:29:22 62379E30C5842B0751E84D99881A5C31 144384 ----a-w- C:\Windows\Sysnative\cdd.dll
2018-07-24 06:29:22 5AE580537C52D695EABE7612A670B07E 324096 ----a-w- C:\Windows\Sysnative\FWPUCLNT.DLL
2018-07-24 06:29:22 3A297EFFE6491B79525431B48DC24B3A 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2018-07-24 06:29:22 163184DBC77178B0A98D60F04EFE3518 842752 ----a-w- C:\Windows\Sysnative\nshwfp.dll
2018-07-24 06:29:21 D221688A4959B28955C23C840FD0BDB9 383680 ----a-w- C:\Windows\Sysnative\atmfd.dll
2018-07-24 06:29:21 C0EBC0C6894B8847C68D5719068E1A06 243712 ----a-w- C:\Windows\Sysnative\wow64.dll
2018-07-24 06:29:21 B7E822E262620F65B0D3DE97D0A0601C 112640 ----a-w- C:\Windows\Sysnative\smss.exe
2018-07-24 06:29:21 9BD47F0DFE540DDF3DE1DF1D9E06BD09 190464 ----a-w- C:\Windows\Sysnative\rpchttp.dll
2018-07-24 06:29:21 777D8C353728538DEF6AC017C6FF2778 281600 ----a-w- C:\Windows\Sysnative\iprtrmgr.dll
2018-07-24 06:29:21 42E2902255B1EC83E2481ACF542A8E69 1665344 ----a-w- C:\Windows\Sysnative\ntdll.dll
2018-07-24 06:29:21 0FC46C397FA85BE58BC1E1F46A2B026C 262336 ----a-w- C:\Windows\Sysnative\hal.dll
2018-07-24 06:29:20 F9B2FCFF14D866C9C6F27A041C364F9C 67072 ----a-w- C:\Windows\Sysnative\wsnmp32.dll
2018-07-24 06:29:20 EE5F8717CBCDB28A42A408D14B7ADB72 3181568 ----a-w- C:\Windows\Sysnative\rdpcorets.dll
2018-07-24 06:29:20 EC0550300E899BD69BDB5937E684D348 190976 ----a-w- C:\Windows\Sysnative\cryptsvc.dll
2018-07-24 06:29:20 E65118228501478C4630BC96F2E1C876 236032 ----a-w- C:\Windows\Sysnative\srvsvc.dll
2018-07-24 06:29:20 E3960944590EC8350C7049BC5ECC709D 414208 ----a-w- C:\Windows\Sysnative\wlanmsm.dll
2018-07-24 06:29:20 C59E17D5E30972ECA28A72004795AEA7 1361408 ----a-w- C:\Windows\Sysnative\PeerDistSvc.dll
2018-07-24 06:29:20 C45C167AEF19509C6C156C7D2CFE4AC0 118784 ----a-w- C:\Windows\Sysnative\wlanhlp.dll
2018-07-24 06:29:20 B1E26EFC437F19277403F8519946AFB6 41472 ----a-w- C:\Windows\Sysnative\lpk.dll
2018-07-24 06:29:20 AF043145FDA1CAB4362E49550237F498 206848 ----a-w- C:\Windows\Sysnative\mfps.dll
2018-07-24 06:29:20 AE3A1739F010CCE45B8B36B53EEFA7BF 243200 ----a-w- C:\Windows\Sysnative\rdpudd.dll
2018-07-24 06:29:20 AA81D975FEB65CD4D1817E3CD1AEE1A5 135680 ----a-w- C:\Windows\Sysnative\sspicli.dll
2018-07-24 06:29:20 A5599B0804E7FFC667259F4E31643C8C 141824 ----a-w- C:\Windows\Sysnative\cryptnet.dll
2018-07-24 06:29:20 9DFECE11850EF9679FE46017DF168CE2 55808 ----a-w- C:\Windows\Sysnative\rrinstaller.exe
2018-07-24 06:29:20 8AA244A59261BE7A3A3A4C4744A65F08 407040 ----a-w- C:\Windows\Sysnative\scesrv.dll
2018-07-24 06:29:20 8531E27ED3B7B89FBF2625CF25E6ACB0 229376 ----a-w- C:\Windows\Sysnative\wintrust.dll
2018-07-24 06:29:20 6A118B401CF3AB7F22B67029FC3A7F4F 22528 ----a-w- C:\Windows\Sysnative\icaapi.dll
2018-07-24 06:29:20 614E8B7CEE39C7AFC7695BB90B1EB1D8 316928 ----a-w- C:\Windows\Sysnative\msv1_0.dll
2018-07-24 06:29:20 43CCB07A71347064695B8852492DA126 512000 ----a-w- C:\Windows\Sysnative\rpcss.dll
2018-07-24 06:29:20 30646AB10A0981A1BBB1F95400E99C08 94208 ----a-w- C:\Windows\Sysnative\TSpkg.dll
2018-07-24 06:29:20 11D6A262B617130F7C16E308C12E0D41 455680 ----a-w- C:\Windows\Sysnative\winlogon.exe
2018-07-24 06:29:20 0A2E5059B5775E7DBBE05B8156ECE0C6 2651648 ----a-w- C:\Windows\Sysnative\wuaueng.dll
2018-07-24 06:29:19 E8A170DBAD23508376BE020934FF19D6 5779968 ----a-w- C:\Windows\Sysnative\jscript9.dll
2018-07-24 06:29:19 BA3688C4CBC20A3817DD118C768E2A79 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll
2018-07-24 06:29:19 9647B3BD734351FC209E416A621B1753 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll
2018-07-24 06:29:19 94F674F4D1AD1B41E97FA471FAF34FA3 794624 ----a-w- C:\Windows\Sysnative\jscript.dll
2018-07-24 06:29:19 8C1CB1F617A343D93AB3511366FFC3E3 489984 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2018-07-24 06:29:19 53A8232418A4728F2374E393767F539E 15283200 ----a-w- C:\Windows\Sysnative\ieframe.dll
2018-07-24 06:29:19 48E075759ECF6AB15CB224633A5CB1CB 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll
2018-07-24 06:29:19 43B8084AB3CC8A87D13E2B3E2BC58396 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2018-07-24 06:29:19 1CBBCAF325E2961724A2436A29824A9C 615936 ----a-w- C:\Windows\Sysnative\ieui.dll
2018-07-24 06:29:18 C66D2F929CDDB3DAEE59F9C6B86A2645 417280 ----a-w- C:\Windows\Sysnative\html.iec
2018-07-24 06:29:18 ACEEFC5988E5FBE0AE624F04CA62E75E 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll
2018-07-24 06:29:18 ACCE9A86D69F34E1EDDE7B53F2D64699 625664 ----a-w- C:\Windows\Sysnative\mscms.dll
2018-07-24 06:29:18 A11391166113D74AA4F34FA9373EE68D 3241472 ----a-w- C:\Windows\Sysnative\wininet.dll
2018-07-24 06:29:18 8FBB89B99E5A5259D0EC8FE688DB2740 199680 ----a-w- C:\Windows\Sysnative\msrating.dll
2018-07-24 06:29:18 0C15874715A6B2E3074B93ADE4443D33 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2018-07-24 06:29:17 E3ED6C06462FDDE33100F7E45E8F5213 705024 ----a-w- C:\Windows\Sysnative\BFE.DLL
2018-07-24 06:29:17 D7FC199EADC4438660A6338C2E6A9F90 444928 ----a-w- C:\Windows\Sysnative\winhttp.dll
2018-07-24 06:29:17 D6AC76621D74E415113D83F03E7AF8D4 405504 ----a-w- C:\Windows\Sysnative\gdi32.dll
2018-07-24 06:29:17 93DEDBE8E24F31962755E6AA4AC2D7B0 303104 ----a-w- C:\Windows\Sysnative\nlasvc.dll
2018-07-24 06:29:17 8C8D675AFB55BC15165F36D39FEE2403 3246080 ----a-w- C:\Windows\Sysnative\msi.dll
2018-07-24 06:29:17 3FA0F2D5BCF878BBBCBF1D80E698552B 828928 ----a-w- C:\Windows\Sysnative\MPSSVC.dll
2018-07-24 06:29:17 3B49EEE6F346CCB044C1EA2245855849 3226112 ----a-w- C:\Windows\Sysnative\win32k.sys
2018-07-24 06:29:17 25AF7D5C819F19D7C97F4A9607F2609A 863232 ----a-w- C:\Windows\Sysnative\IKEEXT.DLL
2018-07-24 06:29:17 0AE751DFA0C96532D283C87E0EAC21F0 1735168 ----a-w- C:\Windows\Sysnative\comsvcs.dll
2018-07-24 06:29:16 E6F5C9788BF800772914BEDC12FCC3F4 731648 ----a-w- C:\Windows\Sysnative\kerberos.dll
2018-07-24 06:29:16 D376A4B1765B8DF3E7E9CDE98DB3200E 2066432 ----a-w- C:\Windows\Sysnative\ole32.dll
2018-07-24 06:29:16 6C2E6C1AD1476BABC6F303678BB144FE 313856 ----a-w- C:\Windows\Sysnative\Wldap32.dll
2018-07-24 06:29:16 59960219F73C56B06271B75B5C41CA51 880640 ----a-w- C:\Windows\Sysnative\advapi32.dll
2018-07-24 06:29:16 48BF5FBF74532BCC1F720968FC02367A 300544 ----a-w- C:\Windows\Sysnative\pdh.dll
2018-07-24 06:29:16 448853F460D6627386D812CE948ADEFE 977408 ----a-w- C:\Windows\Sysnative\inetcomm.dll
2018-07-24 06:29:16 4085CEEA9EA0ECED65C8B306D49CF0C8 5577408 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe
2018-07-24 06:29:16 1BCF1641BF09C022E760F070A328F861 876032 ----a-w- C:\Windows\Sysnative\oleaut32.dll
2018-07-24 06:29:16 0FDF3E7637424DD987D1DFD2F6B85CAD 1461760 ----a-w- C:\Windows\Sysnative\lsasrv.dll
2018-07-24 06:29:16 08C8866D1538825E605D4D4B5E47F772 1211904 ----a-w- C:\Windows\Sysnative\rpcrt4.dll
2018-07-24 06:29:15 DC46807E86DD8EDDFD31FDE6127D4D43 4120576 ----a-w- C:\Windows\Sysnative\mf.dll
2018-07-24 06:29:15 71854E8E246FF283800D4AECE661D9C8 25743872 ----a-w- C:\Windows\Sysnative\mshtml.dll
2018-07-24 06:29:15 4BB2486807C1B0D29282E40568990334 1159680 ----a-w- C:\Windows\Sysnative\webservices.dll
2018-07-24 06:29:15 4B7912EB80820EAC543EE54806EFCAF0 886272 ----a-w- C:\Windows\Sysnative\wlansvc.dll
2018-07-24 06:29:15 0F76EB1552896B51F838B8CD674A9C46 1484288 ----a-w- C:\Windows\Sysnative\crypt32.dll
2018-07-24 06:29:14 FBDC49AB136FE84277E4239192E9502B 634272 ----a-w- C:\Windows\Sysnative\winload.exe
2018-07-24 06:29:14 E96131836A9B63153EB3FA63BFD9A9AB 76288 ----a-w- C:\Windows\Sysnative\rasdiag.dll
2018-07-24 06:29:14 E0B43EA51494F84930CABE418792BB8F 708288 ----a-w- C:\Windows\Sysnative\winload.efi
2018-07-24 06:29:14 D52EADF6043C0BA6E5CB20BBE91F516B 152064 ----a-w- C:\Windows\Sysnative\t2embed.dll
2018-07-24 06:29:14 D44CECD80278138D5D7B77F495DD34FF 138240 ----a-w- C:\Windows\Sysnative\rtm.dll
2018-07-24 06:29:14 D2A34BE3588B3A6FAE032B6B8037A8DF 41472 ----a-w- C:\Windows\Sysnative\rasmxs.dll
2018-07-24 06:29:14 BD69F99287CA0FA032882BAFE928A9FF 250880 ----a-w- C:\Windows\Sysnative\icm32.dll
2018-07-24 06:29:14 BCE48EAA229651AF8BA4D5D9D42547CD 379392 ----a-w- C:\Windows\Sysnative\msinfo32.exe
2018-07-24 06:29:14 BCC0DECE39579AE964C8FA81E3C9CF65 100864 ----a-w- C:\Windows\Sysnative\fontsub.dll
2018-07-24 06:29:14 BC11B2BF35D85EAD537306D82ABC1AA1 459632 ----a-w- C:\Windows\Sysnative\ci.dll
2018-07-24 06:29:14 B15EE6C1BF8F1B60C893900671E6906F 46080 ----a-w- C:\Windows\Sysnative\atmlib.dll
2018-07-24 06:29:14 98CBA639FF0D76AFC9078686ECC50062 1648128 ----a-w- C:\Windows\Sysnative\DWrite.dll
2018-07-24 06:29:14 8EB418BE78839A3509B3DBA889F842B1 60928 ----a-w- C:\Windows\Sysnative\ndptsp.tsp
2018-07-24 06:29:14 8378755374D418E0F912880FA3D4A5D8 653312 ----a-w- C:\Windows\Sysnative\msra.exe
2018-07-24 06:29:14 7C510B22EEF336697780B33B74802BFD 806912 ----a-w- C:\Windows\Sysnative\usp10.dll
2018-07-24 06:29:14 785F474FB5E67E448E1931C98E8D0ABC 1180160 ----a-w- C:\Windows\Sysnative\FntCache.dll
2018-07-24 06:29:14 608E43CDDF8284116F05DEEC7C206434 47104 ----a-w- C:\Windows\Sysnative\kmddsp.tsp
2018-07-24 06:29:14 53657AA4B72E47FC25EE657FF3A629C1 39424 ----a-w- C:\Windows\Sysnative\traffic.dll
2018-07-24 06:29:14 394BE905D8D6550438048E77FB04B775 631640 ----a-w- C:\Windows\Sysnative\winresume.efi
2018-07-24 06:29:14 35FB72FF3454FB9619AE68AE2A18BC9F 51712 ----a-w- C:\Windows\Sysnative\sdchange.exe
2018-07-24 06:29:14 27CA1884251ABFEBEC9266B668E383C6 133120 ----a-w- C:\Windows\Sysnative\msrahc.dll
2018-07-24 06:29:14 0EA0557A4347F0606FE93957C6BC4ABD 29696 ----a-w- C:\Windows\Sysnative\rasser.dll
2018-07-24 06:29:13 FAD7F5BB92A7DF63942AB9999BFA84A1 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll
2018-07-24 06:29:13 F934E20D19193BA7B0BA77532B155A88 22528 ----a-w- C:\Windows\Sysnative\wfapigp.dll
2018-07-24 06:29:13 EEEFC204476D5C44E4F6802F55697179 182272 ----a-w- C:\Windows\Sysnative\dnsrslvr.dll
2018-07-24 06:29:13 BDB3B4DE7BC4A01BB7785A64AB8590E1 108544 ----a-w- C:\Windows\Sysnative\icfupgd.dll
2018-07-24 06:29:13 ACD5C99440D65A1AEE1DBA73CA35B9A2 223232 ----a-w- C:\Windows\Sysnative\ncsi.dll
2018-07-24 06:29:13 A142ED2B42A82F10CA32B58CA336BA55 53760 ----a-w- C:\Windows\Sysnative\vmicres.dll
2018-07-24 06:29:13 9B86DF86D1EFF32893BC3FB49BFAA993 357888 ----a-w- C:\Windows\Sysnative\dnsapi.dll
2018-07-24 06:29:13 4C3C4395BBD7417647AB9C96DB4F99AB 25088 ----a-w- C:\Windows\Sysnative\netbtugc.exe
2018-07-24 06:29:13 46C9ED5E5DCA790BCAB1664894CF7D5C 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll
2018-07-24 06:29:13 12F14818522DD268514F08E7C15A2F28 690688 ----a-w- C:\Windows\Sysnative\adtschema.dll
2018-07-24 06:29:13 01C95A8CAE16CCF1EA1181395C872B9F 124416 ----a-w- C:\Windows\Sysnative\wkssvc.dll
2018-07-24 06:29:11 836B8AC6AC18AA6A34DE84F414981FED 30208 ----a-w- C:\Windows\Sysnative\dnscacheugc.exe
====== C:\Windows\Sysnative\drivers =====
2018-08-07 03:31:57 A5E456CD5A30B41D6B628BDB80F4FA7E 72816 ----a-w- C:\Windows\Sysnative\drivers\ykgrjsmb.sys
2018-08-04 11:19:19 99E885018EE51F1BDDDC5228AADD873B 114920 ----a-w- C:\Windows\Sysnative\drivers\farflt.sys
2018-08-04 11:19:05 8D93347D0E6A5EAB47F0423D6B9960D7 92792 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2018-08-04 11:11:30 E8F4540E13A62E1649824D4C5576EE29 48360 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2018-08-04 11:11:27 F6A196A0A107406D6BA54A1A7293C67A 191208 ----a-w- C:\Windows\Sysnative\drivers\MbamChameleon.sys
2018-08-04 11:11:18 351BF8F77B0A15A7B5A2AE098C52A387 253664 ----a-w- C:\Windows\Sysnative\drivers\mbamswissarmy.sys
2018-08-04 11:11:09 082F9D1ADB6DF9E5DB30EB52A34FCF0A 152688 ----a-w- C:\Windows\Sysnative\drivers\mbae64.sys
2018-07-24 06:29:34 1FC0BF25FFCB9F751BCBC6C6AC577078 31936 ----a-w- C:\Windows\Sysnative\drivers\mssmbios.sys
2018-07-24 06:29:34 10DCD3BDFA785E1482EC02304A7E9B96 12096 ----a-w- C:\Windows\Sysnative\drivers\swenum.sys
2018-07-24 06:29:32 466BF4170DC41BB939F1F9AB8F97F8F5 60608 ----a-w- C:\Windows\Sysnative\drivers\AGP440.sys
2018-07-24 06:29:28 B70E26A57F35ECA5199E6D6B9592A67C 64192 ----a-w- C:\Windows\Sysnative\drivers\ULIAGPKX.SYS
2018-07-24 06:29:28 905E9D664F38B93B53FA05422165F5B5 20160 ----a-w- C:\Windows\Sysnative\drivers\isapnp.sys
2018-07-24 06:29:28 9002EED07FD7FCFF6B8C5C06B454AC19 9728 ----a-w- C:\Windows\Sysnative\drivers\errdev.sys
2018-07-24 06:29:28 626BD5A1A3205255E57FF116A431DC5F 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys
2018-07-24 06:29:28 4B1C343E11065819F687EAC68A5E13F3 169984 ----a-w- C:\Windows\Sysnative\drivers\srvnet.sys
2018-07-24 06:29:28 3F217F77899654833B650ED6A1372BE4 24064 ----a-w- C:\Windows\Sysnative\drivers\ndistapi.sys
2018-07-24 06:29:28 2CF58216424757ED29605B4F18EC443C 40448 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys
2018-07-24 06:29:28 28879F924D021D56431DD142155A9644 62464 ----a-w- C:\Windows\Sysnative\drivers\appid.sys
2018-07-24 06:29:25 E6DFE1F33B1250A6E26EA6F6CE10B09C 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys
2018-07-24 06:29:25 E46AF308E96F7730F59B0F250A884CD6 58368 ----a-w- C:\Windows\Sysnative\drivers\ndproxy.sys
2018-07-24 06:29:25 9C456BFD0FF50CB5B7ECDA7B7529F63B 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys
2018-07-24 06:29:25 90D91013D16A15B22A4B4EB6D4140A5B 30208 ----a-w- C:\Windows\Sysnative\drivers\hidusb.sys
2018-07-24 06:29:25 7E45F8B117419ABA3BB26579F6E70324 195584 ----a-w- C:\Windows\Sysnative\drivers\exfat.sys
2018-07-24 06:29:25 7BDCE021786C3DCCFD2C22EBF643EE36 36032 ----a-w- C:\Windows\Sysnative\drivers\vdrvroot.sys
2018-07-24 06:29:25 7425A6B64F5D37D0565F2581B886E5E3 122560 ----a-w- C:\Windows\Sysnative\drivers\NV_AGP.SYS
2018-07-24 06:29:25 6FE3DBEEA730A857CA3DF603B7DEADA2 15040 ----a-w- C:\Windows\Sysnative\drivers\msisadrv.sys
2018-07-24 06:29:25 640456A9D6EBCD3BC25C64CA8D38B5F5 129536 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys
2018-07-24 06:29:25 481DADB90C1D4E9F19328079C7A9E63D 185024 ----a-w- C:\Windows\Sysnative\drivers\pci.sys
2018-07-24 06:29:25 43471A750D4F3918AC92F5131AE252D3 14336 ----a-w- C:\Windows\Sysnative\drivers\wmiacpi.sys
2018-07-24 06:29:25 421F2BB55F7B686DF490171E5642C3F2 325632 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys
2018-07-24 06:29:25 2D8FFA3B636368130F909E0CD935B555 406016 ----a-w- C:\Windows\Sysnative\drivers\srv2.sys
2018-07-24 06:29:25 1BEF8EC7C33657F18F5ED492B3683470 287936 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2018-07-24 06:29:25 0A33C9EC6822B24E26687F1EC6346922 344064 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys
2018-07-24 06:29:22 DC591A7A196E99EFB5A48D708CB989FD 288488 ----a-w- C:\Windows\Sysnative\drivers\fltMgr.sys
2018-07-24 06:29:22 DC4CB3626E7423B9D83CF1B4857FDF15 88576 ----a-w- C:\Windows\Sysnative\drivers\wanarp.sys
2018-07-24 06:29:22 B16D8FEC7EE13C8575B4B8BD8F4F6405 95424 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
2018-07-24 06:29:22 A21C2034FC556EBCA6478E434B5AF693 159744 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys
2018-07-24 06:29:22 9FB2A095B1166CB3C9A06651863B3452 324608 ----a-w- C:\Windows\Sysnative\drivers\nwifi.sys
2018-07-24 06:29:22 93C367EA831FB39DEE3BA96539A187FB 754176 ----a-w- C:\Windows\Sysnative\drivers\http.sys
2018-07-24 06:29:22 8EDE91FBAC7BF7605323C517C717A253 68288 ----a-w- C:\Windows\Sysnative\drivers\volmgr.sys
2018-07-24 06:29:22 734837208CAFD6E0959A7A0333C95C9D 262656 ----a-w- C:\Windows\Sysnative\drivers\netbt.sys
2018-07-24 06:29:22 63705A08981F7EDD376241D6E0A9C2AC 115200 ----a-w- C:\Windows\Sysnative\drivers\dfsc.sys
2018-07-24 06:29:22 5CEF80AE869336376F550ECAE91E424A 986856 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys
2018-07-24 06:29:22 5416CEB2916BBE635288C4D1075B045E 113152 ----a-w- C:\Windows\Sysnative\drivers\luafv.sys
2018-07-24 06:29:22 4DD986720F7CB7A8A5D1226793097B9A 117248 ----a-w- C:\Windows\Sysnative\drivers\tdx.sys
2018-07-24 06:29:22 4CE827A5433451551E99C2C1D20E4A43 131584 ----a-w- C:\Windows\Sysnative\drivers\pacer.sys
2018-07-24 06:29:22 2509EA6C74884402F37FB8E84C5F714B 377024 ----a-w- C:\Windows\Sysnative\drivers\netio.sys
2018-07-24 06:29:22 1792FCF97D2420514F9102C18B015B29 265448 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys
2018-07-24 06:29:22 1145EC013B72D4E6C60497707BB1A4B6 464384 ----a-w- C:\Windows\Sysnative\drivers\srv.sys
2018-07-24 06:29:22 0DC2A9882540DEA4A55B08785E09D8FC 496128 ----a-w- C:\Windows\Sysnative\drivers\afd.sys
2018-07-24 06:29:22 072D8646E23ECF8A3F5F0157017B4DB6 94440 ----a-w- C:\Windows\Sysnative\drivers\mountmgr.sys
2018-07-24 06:29:21 F4287A980C0AA41DE3073F053E5EA73C 213736 ----a-w- C:\Windows\Sysnative\drivers\rdyboost.sys
2018-07-24 06:29:21 DCA5495CA17AEB2F4FD8AC60812C3999 334528 ----a-w- C:\Windows\Sysnative\drivers\acpi.sys
2018-07-24 06:29:21 BE313E566EEA2A4B7F9AAC9782A567D4 26112 ----a-w- C:\Windows\Sysnative\drivers\nsiproxy.sys
2018-07-24 06:29:21 AC24D7A7D9EEDE11E2926F9001BEAFB5 63168 ----a-w- C:\Windows\Sysnative\drivers\termdd.sys
2018-07-24 06:29:21 94FE5C648F51D093630AE1CD33284C23 77312 ----a-w- C:\Windows\Sysnative\drivers\mpsdrv.sys
2018-07-24 06:29:21 3C1D50EBDC6F531C0AA905D71956E106 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys
2018-07-24 06:29:21 2E19EB10185992AB08BC3688AACA4CE2 45056 ----a-w- C:\Windows\Sysnative\drivers\netbios.sys
2018-07-24 06:29:21 2DAA11557AD647010C2CC09202DD6C0B 291328 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys
2018-07-24 06:29:21 24512A8F8CA9BE62AAB8561484B1CF7F 33152 ----a-w- C:\Windows\Sysnative\drivers\hidparse.sys
2018-07-24 06:29:21 234F9E56606CE5D1549DE7D4CCA4DE0C 56320 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys
2018-07-24 06:29:21 1EA66940941514A151804663BB475CA7 129024 ----a-w- C:\Windows\Sysnative\drivers\videoprt.sys
2018-07-24 06:29:21 1E7D9762BBB89D879065F5EE7E0EC45C 76800 ----a-w- C:\Windows\Sysnative\drivers\hidclass.sys
2018-07-24 06:29:20 9DE8D00626F01DBD1879A6655D7A752D 467856 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
2018-07-24 06:29:20 94275393BB85D1E2B74BFEFEC386B4A0 367296 ----a-w- C:\Windows\Sysnative\drivers\msrpc.sys
2018-07-24 06:29:20 6EDFA237D25433C03F42FBFDB16BDD24 205312 ----a-w- C:\Windows\Sysnative\drivers\fastfat.sys
2018-07-24 06:29:18 85C5468BC395819AE2A0C747334BA14C 363752 ----a-w- C:\Windows\Sysnative\drivers\volmgrx.sys
2018-07-24 06:29:17 FB45727105E27756B3252572A138FA19 317440 ----a-w- C:\Windows\Sysnative\drivers\rdbss.sys
2018-07-24 06:29:17 C2B2F27629913C7DC1239E90F9A3D107 1893568 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2018-07-24 06:29:17 261F27367EB6EA6478B940811F0A6F03 948968 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys
2018-07-24 06:29:16 8422AFBD1C2D30FFC913309D7F1A366D 1681088 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys
2018-07-24 06:29:14 968F43D731E8FBC2E75BBA07EE0FC086 154816 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2018-07-11 10:58:58 E880D79F0EF4C349D734274AD8A7DFC0 68112 ----a-w- C:\Windows\Sysnative\drivers\nvvhci.sys
2018-07-11 10:58:57 DE3B81FBC9B8EBA4C22B13E530DBD8B9 17000808 ----a-w- C:\Windows\Sysnative\drivers\nvlddmkm.sys
2018-07-11 10:58:57 4FD4739B359C2923965FE99B03AFD090 227928 ----a-w- C:\Windows\Sysnative\drivers\nvhda64v.sys
2018-07-11 10:58:57 1DD1FEA987D9881C07581C10666B1240 67432 ----a-w- C:\Windows\Sysnative\drivers\nvvad64v.sys
====== C:\Windows\Tasks ======
2018-08-03 22:14:26 38E5906DDB4080D05DC282C99051695E 3650 ----a-w- C:\Windows\Sysnative\Tasks\{F173B0E5-C95D-4EE7-B6F1-5C759080AE8D}
2018-08-03 22:14:26 0C275428E6F8E51562538CB71A8821C4 3446 ----a-w- C:\Windows\Sysnative\Tasks\{D7713373-E515-8195-5CB1-9CFB584077E3}
2018-08-03 22:14:24 49B4DEDFEFE650F1E9BCD8807A7621DC 3754 ----a-w- C:\Windows\Sysnative\Tasks\{5BB89D1A-AF5F-C2B9-357F-2D3F6FC9184B}
2018-08-03 22:05:09 CD6A27417CB0EC06E7207C9648E12620 2872 ----a-w- C:\Windows\Sysnative\Tasks\vnKUActWDSalGNfrR2
2018-08-03 22:05:09 54565A070C19733FA85AF6C1795D60DF 2860 ----a-w- C:\Windows\Sysnative\Tasks\WAOtgPBGflHZLCaeTGs2
2018-08-03 22:05:08 12DA38377D8FE3C26C3214936368BBD1 2890 ----a-w- C:\Windows\Sysnative\Tasks\reQGtPgibmNDB2
2018-08-03 22:05:07 C7CA432159F08A06B0982B06C1CA188A 3058 ----a-w- C:\Windows\Sysnative\Tasks\zleDohIUJuBRcb
2018-07-23 10:36:02 FFDD51BB585CFCC49D77D181693652A6 3386 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2018-07-23 10:36:01 85463238B414876E1C088CC67B14F290 3258 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2018-07-11 11:00:44 6D942C9E07C810B68033EA5BFEF10C35 3798 ----a-w- C:\Windows\Sysnative\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:43 3C3D883E7E2DE4DC6D9767FE67509927 3790 ----a-w- C:\Windows\Sysnative\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:39 A43B2DA4F256429E764C57BB1335FB71 3940 ----a-w- C:\Windows\Sysnative\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:38 A26F0A46F668F5A333909A6CA9DD95E8 4146 ----a-w- C:\Windows\Sysnative\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:37 B4B387085707927B155D538CA6A4C6ED 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 FB2CFC9ABF487D16B8BC3AC399D76779 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 B72CB496BA791231D814C508E5DB2963 3738 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 8C70F48179F211F0163FB1D1491FD41B 3494 ----a-w- C:\Windows\Sysnative\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 4D656907EC768BDF92B5706DEE3CB6C4 3730 ----a-w- C:\Windows\Sysnative\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 151C5ABC1A1B569FD87DF8564C99E529 3738 ----a-w- C:\Windows\Sysnative\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-11 11:00:36 038BD22F4F4105D2078F07D38BBD95D4 3792 ----a-w- C:\Windows\Sysnative\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2018-08-04 12:52:29 -------- d-----w- C:\Program Files\Microsoft Silverlight
2018-08-04 09:59:11 -------- d-----w- C:\Program Files\trend micro
2018-07-30 23:08:02 -------- d-----w- C:\Program Files\Epic Games
2018-07-24 22:20:52 -------- d-----w- C:\Program Files\qBittorrent
2018-07-24 22:20:40 -------- d-----w- C:\Program Files\WinRAR
2018-07-11 10:57:42 -------- d-----w- C:\Program Files\NVIDIA Corporation
======= C:\Program Files (x86) =====
2018-08-04 12:52:29 -------- d-----w- C:\Program Files (x86)\Microsoft Silverlight
2018-07-31 10:12:36 -------- d-----w- C:\Program Files (x86)\Bunny-Wabbit
2018-07-30 23:03:41 -------- d-----w- C:\Program Files (x86)\Epic Games
2018-07-27 21:41:08 -------- d-----w- C:\Program Files (x86)\Grinding Gear Games
2018-07-23 12:02:18 -------- d-----w- C:\Program Files (x86)\EasyAntiCheat
2018-07-23 10:52:57 -------- d-----w- C:\Program Files (x86)\Steam
2018-07-23 10:42:52 -------- d-----w- C:\Program Files (x86)\Microsoft
2018-07-23 10:36:01 -------- d-----w- C:\Program Files (x86)\Google
2018-07-11 12:05:19 -------- d-----w- C:\Program Files (x86)\Common Files\BattlEye
2018-07-11 11:14:51 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2018-07-11 11:00:09 -------- d-----w- C:\Program Files (x86)\VulkanRT
2018-07-11 10:59:51 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
======= C: =====
====== C:\Users\Rybiz80\AppData\Roaming ======
2018-08-06 08:59:42 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\fltk.org
2018-08-04 11:00:59 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Diagnostics
2018-08-04 08:28:50 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs
2018-08-03 22:14:31 23B58DEF11B45727D3351702515F86AF 2 ----a-w- C:\Users\Rybiz80\AppData\Local\imw.ini
2018-08-01 20:30:31 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Sports Interactive
2018-08-01 20:30:26 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\REVOLT
2018-08-01 20:26:38 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\WinRAR
2018-07-30 23:16:54 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\qBittorrent
2018-07-30 23:16:53 -------- d-----w- C:\Users\Rybiz80\AppData\Local\qBittorrent
2018-07-30 23:04:28 -------- d-----w- C:\Users\Rybiz80\AppData\Local\UnrealEngineLauncher
2018-07-30 23:04:26 -------- d-----w- C:\Users\Rybiz80\AppData\Local\UnrealEngine
2018-07-30 23:04:26 -------- d-----w- C:\Users\Rybiz80\AppData\Local\EpicGamesLauncher
2018-07-25 07:02:02 -------- d-----w- C:\Users\Rybiz80\AppData\Local\NVIDIA
2018-07-24 22:20:41 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-07-23 12:21:35 -------- d-----w- C:\Users\Rybiz80\AppData\Locallow\Heroes and Generals
2018-07-23 12:21:32 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\HeroesAndGeneralsDesktop
2018-07-23 12:04:53 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\EasyAntiCheat
2018-07-23 12:03:40 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Enlisted
2018-07-23 12:02:20 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cuisine Royale
2018-07-23 11:10:56 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Gaijin
2018-07-23 11:10:40 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2018-07-23 11:04:38 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-07-23 10:53:33 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Steam
2018-07-23 10:53:33 -------- d-----w- C:\Users\Rybiz80\AppData\Local\CEF
2018-07-23 10:51:11 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-07-23 10:51:09 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\discord
2018-07-23 10:51:05 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Discord
2018-07-23 10:51:02 -------- d-----w- C:\Users\Rybiz80\AppData\Local\SquirrelTemp
2018-07-23 10:42:58 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Skype
2018-07-23 10:42:49 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Programs
2018-07-23 10:36:40 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Google
2018-07-23 10:35:57 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Google
2018-07-23 10:35:47 309C0BA4DFD8796EA4EB1EE82EBA4C9A 58128 ----a-w- C:\Users\Rybiz80\AppData\Local\GDIPFONTCACHEV1.DAT
2018-07-23 10:35:45 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Deployment
2018-07-23 10:35:45 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Apps
2018-07-23 10:24:15 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Conexant
2018-07-23 10:24:14 -------- d-s---w- C:\Users\Rybiz80\AppData\Locallow\Microsoft
2018-07-23 10:23:29 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Adobe
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2018-07-23 10:23:21 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Identities
2018-07-23 10:21:19 -------- d-----w- C:\Users\Rybiz80\AppData\Local\NVIDIA Corporation
2018-07-23 10:21:16 -------- d-----w- C:\Users\Rybiz80\AppData\Local\VirtualStore
2018-07-23 10:21:12 -------- d-s---w- C:\Users\Rybiz80\AppData\Roaming\Microsoft
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Roaming\Media Center Programs
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Temp
2018-07-23 10:21:12 -------- d-----w- C:\Users\Rybiz80\AppData\Local\Microsoft
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2018-07-23 10:19:52 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2018-07-23 10:19:45 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2018-07-12 09:03:51 -------- d-s---w- C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft
====== C:\Users\Rybiz80 ======
2018-08-06 17:02:46 9DF1469E76C21CFB43017D04847F6782 1663040 ----a-w- C:\Users\Rybiz80\Downloads\JRT.exe
2018-08-06 15:34:44 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2 (1).exe
2018-08-06 08:59:42 -------- d-----w- C:\ProgramData\fltk.org
2018-08-04 20:53:11 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2.exe
2018-08-04 12:53:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-08-04 11:01:10 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Desktop\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 10:50:19 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 09:58:52 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Rybiz80\Downloads\RSITx64.exe
2018-08-03 22:20:26 C4CF62EB084B27D2C4F5F054FA3A3AC1 270 --sha-r- C:\Users\Rybiz80\ntuser.pol
2018-08-03 22:05:08 -------- d-----w- C:\ProgramData\bzLvYYFFZmFknGVB
2018-08-03 22:04:42 962FAAAA70CB48E7F4FEF7E44BEAD98A 3552 --sha-r- C:\ProgramData\ntuser.pol
2018-08-01 20:45:44 -------- d-----w- C:\Users\Public\Documents\Steam
2018-08-01 20:30:31 -------- d-----w- C:\Users\Public\Documents\Sports Interactive
2018-07-31 10:12:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO Creator 1.0
2018-07-30 23:03:41 -------- d-----w- C:\ProgramData\Epic
2018-07-27 21:41:08 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2018-07-24 22:20:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2018-07-24 22:20:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-07-23 12:31:51 -------- d-----w- C:\Users\Rybiz80\ansel
2018-07-23 11:10:55 -------- d-----w- C:\ProgramData\Gaijin
2018-07-23 10:52:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-07-23 10:42:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-07-23 10:23:28 -------- d-----r- C:\Users\Rybiz80\Searches
2018-07-23 10:23:19 -------- d-----r- C:\Users\Rybiz80\Contacts
2018-07-23 10:21:12 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Rybiz80\ntuser.ini
2018-07-23 10:21:12 -------- d--h--w- C:\Users\Rybiz80\AppData
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Videos
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Saved Games
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Pictures
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Music
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Links
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Favorites
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Downloads
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Documents
2018-07-23 10:21:12 -------- d-----r- C:\Users\Rybiz80\Desktop
2018-07-11 11:00:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-07-11 10:59:58 -------- d-----w- C:\ProgramData\NVIDIA
2018-07-11 10:59:07 -------- d-----w- C:\ProgramData\Package Cache
2018-07-11 10:58:45 -------- d-----w- C:\ProgramData\NVIDIA Corporation

====== C: exe-files ==
2018-08-06 17:29:12 8377C99BF813BE986D07730F5C433382 68096 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\ZAScan.exe
2018-08-06 17:29:12 75375C22C72F1BEB76BEA39C22A1ED68 167936 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\unzip.exe
2018-08-06 17:29:12 1A3F82F420340222F13C5633AEB716D6 533851 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\sr.exe
2018-08-06 17:02:55 E40542C4CC75E658A4615BFEFB308570 1790024 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\JRT_NewerVersion\JRT.exe
2018-08-06 17:02:51 2F9C7FDA92C346CB5AA32091536AE0CB 43520 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\jrt\nfo\nircmdc.exe
2018-08-06 17:02:46 9DF1469E76C21CFB43017D04847F6782 1663040 ----a-w- C:\Users\Rybiz80\Downloads\JRT.exe
2018-08-06 15:34:44 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2 (1).exe
2018-08-06 15:25:37 E8CDD33860A7F4433B0077AC7D8DE402 1479632 ----a-w- C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe
2018-08-04 20:53:11 705A220C8C714D99D0074A59477D28AB 7417040 ----a-w- C:\Users\Rybiz80\Downloads\adwcleaner_7.2.2.exe
2018-08-04 11:29:19 3E20B169C4CD6855965BB39D4D125814 61700616 ----a-w- C:\Users\Rybiz80\AppData\Roaming\Microsoft\Skype for Desktop\Skype-Setup.exe
2018-08-04 11:01:10 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Desktop\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 10:50:19 F8BC2EAA6018DF2A07F46468F328E720 78657976 ----a-w- C:\Users\Rybiz80\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6183.exe
2018-08-04 09:59:12 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Rybiz80.exe
2018-08-04 09:58:52 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Rybiz80\Downloads\RSITx64.exe
2018-08-03 10:53:32 EA5A02E5C0894DAAFC82514D22352234 479728 ----a-w- C:\Users\Rybiz80\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
2018-08-03 10:53:32 62E83FCAD4B85A41B94D3885C774AD44 445424 ----a-w- C:\Users\Rybiz80\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2018-08-03 07:01:02 730F03EB048405A3027CFFD427F1B834 20091496 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\68.0.3440.84\68.0.3440.84_67.0.3396.99_chrome_updater.exe
2018-08-02 00:05:54 2E1960B3CD0A2E266C4FAB95BC6DF448 17467960 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\win64\enlisted.exe
2018-08-01 23:53:52 DEE05780A497F44458B88B3303E81333 7261240 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\win64\enlist.exe
2018-08-01 14:49:02 C79DED78B960F3AF11E464A503BE3691 489016 ----a-w- C:\Hry\WarThunder\win64\cefprocess.exe
2018-08-01 14:49:02 6F422380DCE9A3D4EF6E44C12C2C1107 35001400 ----a-w- C:\Hry\WarThunder\win64\aces.exe
2018-08-01 14:47:52 C839AE829D203ADE0E7072095FA893C5 27491896 ----a-w- C:\Hry\WarThunder\win32\aces.exe
2018-08-01 14:47:52 68F2160C821B158957B6D50707FAE590 357944 ----a-w- C:\Hry\WarThunder\win32\cefprocess.exe
2018-08-01 14:47:52 4B80143C592FBC91FAB3ECD19C1F571D 1888312 ----a-w- C:\Hry\WarThunder\win32\bpreport.exe
2018-07-31 12:39:57 2B48F69517044D82E1EE675B1690C08B 455576 ------w- C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
2018-07-31 12:39:10 1191BA2A9908EE79C0220221233E850A 455720 ----a-w- C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
2018-07-31 12:25:11 E40383A864B0D9B344A3A5ACEC6B885C 382504 ----a-w- C:\Hry\Watch Dogs 2\EasyAntiCheat\EasyAntiCheat_Setup.exe
2018-07-31 12:25:11 6C2F8C8187023E7226AE076548582DF4 516016 ----a-w- C:\Hry\Watch Dogs 2\bin\SplashScreen.exe
2018-07-31 12:25:11 5F6C9078D1D32CB5B20882F99A810547 537008 ----a-w- C:\Hry\Watch Dogs 2\bin\WatchDogs2.exe
2018-07-31 12:25:11 23CE2A387560F42350255BE4E741AE65 131112 ----a-w- C:\Hry\Watch Dogs 2\EAC.exe
2018-07-31 10:14:23 56D52C503ADF02184F19EEE4767EF60A 299864 ----a-w- C:\Hry\Watch Dogs 2\_Redist\dxwebsetup.exe
2018-07-31 10:14:23 4B1D5EC11B2B5DB046233A28DBA73B83 103424 ----a-w- C:\Hry\Watch Dogs 2\_Redist\QuickSFV.EXE
2018-07-31 10:14:22 7F52A19ECAF7DB3C163DD164BE3E592E 6554576 ----a-w- C:\Hry\Watch Dogs 2\_Redist\vcredist_x86_2012_x86.exe
2018-07-31 10:14:22 3C03562B5AF9ED347614053D459D7778 7186992 ----a-w- C:\Hry\Watch Dogs 2\_Redist\vcredist_x64_2012_x64.exe
2018-07-31 10:14:22 3249D8B9914125878C099F6B3608EC71 1515889 ----a-w- C:\Hry\Watch Dogs 2\unins000.exe
2018-07-31 08:56:45 ACD98BAAE65A7D42B3B6B607BC7B35DB 145808 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteLauncher.exe
2018-07-31 08:56:45 9DFDC503E332C886A64E828A8790D48A 753552 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping_BE.exe
2018-07-31 08:56:45 0122E828AE9E7F035FF92C2A4F4177D4 1158544 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping_EAC.exe
2018-07-31 08:56:44 B0BC2103B6F7E492B8368D32ACB3A0E5 94312336 ----a-w- C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping.exe
2018-07-31 08:56:43 4A0C61901CC0627ED97EC9597B981E18 18458000 ----a-w- C:\Program Files\Epic Games\Fortnite\Engine\Binaries\Win64\CrashReportClient.exe
2018-07-31 08:56:43 47BDE3A4730DFF012301586CEA47B650 3699600 ----a-w- C:\Program Files\Epic Games\Fortnite\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
=== C: other files ==
2018-08-07 03:52:02 978E340A8347DDA27477C55E00601B62 2630203 ----a-w- C:\Windows\{7CB0BBD3D374-4DEA-9751-2D08BC721AA7}\PkgMgr.iso.zip
2018-08-07 03:31:57 A5E456CD5A30B41D6B628BDB80F4FA7E 72816 ----a-w- C:\Windows\System32\drivers\ykgrjsmb.sys
2018-08-06 18:08:08 A2F7919FC6762EB8815E704C00A9AA11 2630211 ----a-w- C:\Windows\{7CB0BBD3D374-4DEA-9751-2D08BC721AA7}\_wow64.ocx.zip
2018-08-06 09:02:23 3EBB315F2B61CC212CBDC838A2E65830 2123 ----atw- C:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\.launcher_log\f46820ef-d6fb-4e21-a3c6-ae5712180806.zip
2018-08-04 13:28:10 4EB6B0ADD718268BF65A92A8C0919D92 2592066 ----a-w- C:\Users\Rybiz80\AppData\Local\Temp\{F4B8536D-9284-42DB-BDA2-FA6DA4E6B2A1}\_wow64.ocx.zip
2018-08-04 11:19:19 99E885018EE51F1BDDDC5228AADD873B 114920 ----a-w- C:\Windows\System32\drivers\farflt.sys
2018-08-04 11:19:05 8D93347D0E6A5EAB47F0423D6B9960D7 92792 ----a-w- C:\Windows\System32\drivers\mwac.sys
2018-08-04 11:11:30 E8F4540E13A62E1649824D4C5576EE29 48360 ----a-w- C:\Windows\System32\drivers\mbam.sys
2018-08-04 11:11:27 F6A196A0A107406D6BA54A1A7293C67A 191208 ----a-w- C:\Windows\System32\drivers\MbamChameleon.sys
2018-08-04 11:11:18 351BF8F77B0A15A7B5A2AE098C52A387 253664 ----a-w- C:\Windows\System32\drivers\mbamswissarmy.sys
2018-08-04 11:11:09 082F9D1ADB6DF9E5DB30EB52A34FCF0A 152688 ----a-w- C:\Windows\System32\drivers\mbae64.sys
2018-08-01 13:57:07 C40A5DF7FEC2B93A256C214AAAA10AE0 8533366 ----a-w- C:\Hry\WarThunder\win64\twitch64.zip
2018-08-01 13:57:05 5EE81215976D2C821B6E236DB4E576AD 6518100 ----a-w- C:\Hry\WarThunder\win32\twitch.zip
2018-08-01 13:56:35 0F7C46E25A58897A1350DD8C36FBC710 2535923 ----a-w- C:\Hry\WarThunder\cef_paks.zip
2018-08-01 13:50:28 831DCEC3C35D921DFDC74A305150A09F 47469571 ----a-w- C:\Hry\WarThunder\win64\cef64.zip
2018-08-01 13:50:21 849BE646199B67047ED9B628A81A7E6B 3402189 ----a-w- C:\Hry\WarThunder\win64\tools64.zip
2018-08-01 13:50:20 121609F35C3006712FB48315D6136302 18168418 ----a-w- C:\Hry\WarThunder\win64\pc64.zip
2018-08-01 13:50:17 D954409E2020CEEC3B62EA7AC018647F 13920138 ----a-w- C:\Hry\WarThunder\win32\pc.zip
2018-08-01 13:50:14 4C909D2578C5DF8294B909146493163D 3398214 ----a-w- C:\Hry\WarThunder\win32\tools.zip
2018-08-01 13:50:02 E417D063D1CB2D63D33CE025B9C95742 41363459 ----a-w- C:\Hry\WarThunder\win32\cef.zip
2018-07-31 12:24:59 9F12282FE80E889829BEA505262B4364 204 ----a-w- C:\Hry\Watch Dogs 2\Support\wd2disabledwmwin7.bat

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3959809308-3982947574-166100824-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

[HKEY_USERS\S-1-5-21-3959809308-3982947574-166100824-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201357\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Gaijin.Net Agent"="C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"EpicGamesLauncher"="C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cAudioFilterAgent"="C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe"
"SmartAudio"="C:\Program Files\CONEXANT\SAII\SACpl.exe /t"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe]
"C:\Windows\SysNative\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe]
"C:\Windows\SysNative\tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" ["C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"]
"C:\Windows\SysNative\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe]
"C:\Windows\SysNative\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe]
"C:\Windows\SysNative\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe]
"C:\Windows\SysNative\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" [C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe]
"C:\Windows\SysNative\tasks\reQGtPgibmNDB2" [C:\Windows\system32\wscript.exe "C:\ProgramData\bzLvYYFFZmFknGVB\WwPsQUz.wsf"]
"C:\Windows\SysNative\tasks\vnKUActWDSalGNfrR2" [rundll32 "C:\Program Files (x86)\ELCdlNcAzQmJaXxTcwR\pmnDmUr.dll",#1]
"C:\Windows\SysNative\tasks\WAOtgPBGflHZLCaeTGs2" [rundll32 "C:\Program Files (x86)\LDRIRJvSptwQC\vcmkrFR.dll",#1]
"C:\Windows\SysNative\tasks\zleDohIUJuBRcb" [rundll32 "C:\Program Files (x86)\xpZXRwYFlIWU2\SXvgwIdYNQqtm.dll",#1]
"C:\Windows\SysNative\tasks\{5BB89D1A-AF5F-C2B9-357F-2D3F6FC9184B}" ["C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"]
"C:\Windows\SysNative\tasks\{D7713373-E515-8195-5CB1-9CFB584077E3}" ["C:\Program Files (x86)\Common Files\YpyUeU.exe"]
"C:\Windows\SysNative\tasks\{F173B0E5-C95D-4EE7-B6F1-5C759080AE8D}" ["C:\Program Files (x86)\Common Files\YInoUyyO.exe"]

==== Chromium Look ======================

Google Chrome Version: 68.0.3440.84


Slides - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Docs - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Sheets - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Docs Offline - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Video DownloadHelper - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk
Chrome Web Store Payments - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Chrome Media Router - Rybiz80\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKCU\..\Run: [Gaijin.Net Agent] "C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
O4 - HKCU\..\Run: [EpicGamesLauncher] "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201139\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201248\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-21-3959809308-3982947574-166100824-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08072018053201357\..\Run: [Gaijin.Net Agent] "C:\Users\Rybiz80\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe" (User '?')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Heroes & Generals Steam Service (HnGSteamService) - Reto-Moto ApS - C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngservice.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on Łt 07.08.2018 at 5:36:28,59 ======================

[JaRon]

prehliadac v ktorom vyskakuju okna odinstaluj, vycisti PC s CCleanerom, vcetne registrov, restart a nainstaluj
prehliadac nanovo