Dobrý den,
měli jsem problém s počítačem který jsem vyřešil tím, že jsem ho zformátoval a přeinstaloval Windowsy spolu se všemi programy a ode dneška se v Chromu při otevření stránky občas otevře jiná stránka s reklamou (nějaký http://tot.employeesdirectorships.com/) a zároveň nějaká stránka na opravu windowsů. Nevíme jestli jsme omylem něco pochybného nenainstalovali, ale snad ne (nb je manželky). Každopádně Avast našel nějaký pochybný doplněk, který prý odstranil, ale stránky s reklamou se stejně otevírají.
Prosím pomozte!
Děkujeme!
Log z RSIT:
Logfile of random's system information tool 1.14 (written by random/random)
Run by Klára at 2017-02-05 17:42:52
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 216 GB (84%) free of 256 GB
Total RAM: 3540 MB (44% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:42:56, on 5.2.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18538)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Klára_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp- ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp- ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [Fastboot] C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HyperW7 Service (HyperW7Svc) - Lenovo Group Limited - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Platform Service (LPlatSvc) - Unknown owner - C:\Windows\system32\LPlatSvc.exe (file missing)
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 13350 bytes
======Enumerating Processes======
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe"
"C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 4415936
\??\C:\Windows\system32\conhost.exe "1104416890-12393346551186626724-2078460645-225564356-93901734120835384301258164593
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
C:\Windows\SysWOW64\rundll32.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\Windows\system32\taskhost.exe
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\taskeng.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe" /start
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Klára\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=55.0.2883.87 --handshake-handle=0xac
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=960 --on-initialized-event-handle=560 --parent-handle=568 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Default/InstanceID/Enabled/MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/StrictSecureCookies/Enabled/SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=6,14,16,17,18,21,37,54,65 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2656 --gpu-driver-date=2-17-2012 --service-request-channel-token=B59A709B264D7E6A62CCB28E60DD19CD --mojo-platform-channel-handle=1260 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Default/*InstanceID/Enabled/MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=76D37B8B8573BBC030C06238E34C972C --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=76D37B8B8573BBC030C06238E34C972C --mojo-platform-channel-handle=1976 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Default/*InstanceID/Enabled/MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=5A92E515358CD61E5710670270BD9BEA --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=5A92E515358CD61E5710670270BD9BEA --mojo-platform-channel-handle=2292 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=FF179E8E0D16E2CCCF67CA17BDA3049B --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=FF179E8E0D16E2CCCF67CA17BDA3049B --mojo-platform-channel-handle=5324 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=1EC90BD5B5EB1D7806555156A8308BB5 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=1EC90BD5B5EB1D7806555156A8308BB5 --mojo-platform-channel-handle=4840 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=E4C8FDAF55971AB79FEA16B82003924F --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=E4C8FDAF55971AB79FEA16B82003924F --mojo-platform-channel-handle=6576 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=B17603A051B4BF732B279B60814033AA --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=B17603A051B4BF732B279B60814033AA --mojo-platform-channel-handle=6024 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=7807C75786BDDD26FA2F1E5B4BB04CFA --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=7807C75786BDDD26FA2F1E5B4BB04CFA --mojo-platform-channel-handle=5068 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=8EB12AC1907F581CF4F78B2489A9E3A3 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=8EB12AC1907F581CF4F78B2489A9E3A3 --mojo-platform-channel-handle=7720 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=D50B7875810255FB861528BFC2C2EFC7 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=D50B7875810255FB861528BFC2C2EFC7 --mojo-platform-channel-handle=4196 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi-broker --lang=cs --device-scale-factor=1 --ppapi-antialiased-text-enabled=1 --ppapi-subpixel-rendering-setting=1 --service-request-channel-token=05B9063CFE8F672BB49C0839375A7838 --mojo-platform-channel-handle=8332 /prefetch:4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=EF5221675317D85E32ECA6274AE6DA20 --lang=cs --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=EF5221675317D85E32ECA6274AE6DA20 --mojo-platform-channel-handle=1556 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=72A50D4332CA68581ADC2D6B0137FC91 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=72A50D4332CA68581ADC2D6B0137FC91 --mojo-platform-channel-handle=4200 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=A29B1E7423EE78A239DE4BE02FBED5AD --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=A29B1E7423EE78A239DE4BE02FBED5AD --mojo-platform-channel-handle=7084 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Náhodné otevírání reklamních stránek v Chrome
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Náhodné otevírání reklamních stránek v Chrome
Co je malý to je hezký. A když to hezký není, tak je toho alespoň málo 
.
.Re: Náhodné otevírání reklamních stránek v Chrome
features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=2C48F32E4D826AC0B1CB7391CF11E684 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=2C48F32E4D826AC0B1CB7391CF11E684 --mojo-platform-channel-handle=4244 /prefetch:1
"C:\Users\Klára\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/*SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=2702BF175B3FC8335AC294FA2D2D852F --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=2702BF175B3FC8335AC294FA2D2D852F --mojo-platform-channel-handle=8936 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/*SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=76B5E45CB8DD8340E2BE9D56EC08C04B --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=76B5E45CB8DD8340E2BE9D56EC08C04B --mojo-platform-channel-handle=4264 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/*SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=582600141A5C3F3BBE25C6517B29A65E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=582600141A5C3F3BBE25C6517B29A65E --mojo-platform-channel-handle=6696 /prefetch:1
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
C:\Windows\system32\taskeng.exe
======Scheduled tasks folder======
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\avast! Emergency Update - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\Windows\system32\tasks\CreateHardwareScanTask - "C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe" WMI WMIController CreateFirstHWSchedule
C:\Windows\system32\tasks\DiskUpdate - C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\system32\tasks\PMTask - C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
C:\Windows\system32\tasks\Microsoft\Windows Defender\MpIdleTask - c:\program files\windows defender\MpCmdRun.exe -IdleTask -TaskName MpIdleTask
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\Lenovo\Lenovo Solution Center Launcher - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus
C:\Windows\system32\tasks\Lenovo\Message Center Plus Launcher - "%programfiles(x86)%\Lenovo\message center plus\mcplaunch.exe" /start
C:\Windows\system32\tasks\Lenovo\LSC\Lenovo Solution Center Notifications - C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
C:\Windows\system32\tasks\Lenovo\LSC\LSCHardwareScan - C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default
prefs.js - "browser.startup.homepage" - "https://www.google.com/?bcutc=sp-006"
prefs.js - "keyword.URL" - "https://www.google.com/search?bcutc=sp-006"
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\searchplugins\
google-avast.xml
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\addons.json
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\extensions.json
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\pluginreg.dat
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\browser\nppdf32.dll
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Windows Live Photo Gallery - 15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin - Silverlight Plug-In - 4.0.50401.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin - Java(TM) Platform SE 8 U121 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.1210.13 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npdeployJava1.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin - Picasa - 3.0.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
=========Google Chrome=========
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension legklhfpihknmgmlhiadachbaihccpho 1 Data generator 0.5
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.1
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension ombkllfdikmoepjdpmdaiinfbjpnkboa 2 Website Logon 2.0
Extension pbjikboenpfhbbejgkoklgkhjpfogcam 2 Amazon for Chrome 2.2.2012.272
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5516.1005.0.3
Homepage:
default_search_provider.search_url:
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 10,3,181,34 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\gcswf32.dll
Plugin 4.0.50401.0 Silverlight Plug-In c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin Chrome NaCl C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\ppGoogleNaClPluginChrome.dll
Plugin Chrome PDF Viewer C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\pdf.dll
Plugin 2012.1.0.30 Norton Confidential C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll
Plugin 1, 0, 0, 1 TrueSuite C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\ombkllfdikmoepjdpmdaiinfbjpnkboa\2.0_0\npwebsitelogon.dll
Plugin 1.3.32.7 Google Update C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin 15.4.3508.1109_ship.wlx.w4m4 (ship) Windows Live Photo Gallery C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin 1 Default Plug-in default_plugin
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam]
"Path"=C:\Program Files (x86)\Amazon\ABB\AmazonChrome-lenovo-abb.crx
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={6A1806CD-94D4-4689-BA73-E35EA1EA9990}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}]
"URL"=https://www.google.com/search?bcutc=sp- ... earchTerms}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll [2012-06-23 750064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-01-20 790552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 234560]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner.dll [2012-06-23 433648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-01-20 664848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-12-23 2868496]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-02-22 12452456]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-02-08 1158248]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-08 170264]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-08 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-08 440600]
"TpShocks"=TpShocks.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BLEServicesCtrl]
C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-02-17 177936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-02-22 11406608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-12-22 4701888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2011-12-05 291096]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2011-11-25 548864]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2011-06-01 506712]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2012-01-17 1091376]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2017-01-20 9080768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Users\Klára\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/*SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=2702BF175B3FC8335AC294FA2D2D852F --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=2702BF175B3FC8335AC294FA2D2D852F --mojo-platform-channel-handle=8936 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/*SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=76B5E45CB8DD8340E2BE9D56EC08C04B --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=76B5E45CB8DD8340E2BE9D56EC08C04B --mojo-platform-channel-handle=4264 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/*SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=582600141A5C3F3BBE25C6517B29A65E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=582600141A5C3F3BBE25C6517B29A65E --mojo-platform-channel-handle=6696 /prefetch:1
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
C:\Windows\system32\taskeng.exe
======Scheduled tasks folder======
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\avast! Emergency Update - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\Windows\system32\tasks\CreateHardwareScanTask - "C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe" WMI WMIController CreateFirstHWSchedule
C:\Windows\system32\tasks\DiskUpdate - C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\system32\tasks\PMTask - C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
C:\Windows\system32\tasks\Microsoft\Windows Defender\MpIdleTask - c:\program files\windows defender\MpCmdRun.exe -IdleTask -TaskName MpIdleTask
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\Lenovo\Lenovo Solution Center Launcher - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus
C:\Windows\system32\tasks\Lenovo\Message Center Plus Launcher - "%programfiles(x86)%\Lenovo\message center plus\mcplaunch.exe" /start
C:\Windows\system32\tasks\Lenovo\LSC\Lenovo Solution Center Notifications - C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
C:\Windows\system32\tasks\Lenovo\LSC\LSCHardwareScan - C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default
prefs.js - "browser.startup.homepage" - "https://www.google.com/?bcutc=sp-006"
prefs.js - "keyword.URL" - "https://www.google.com/search?bcutc=sp-006"
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\searchplugins\
google-avast.xml
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\addons.json
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\extensions.json
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\pluginreg.dat
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\browser\nppdf32.dll
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Windows Live Photo Gallery - 15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin - Silverlight Plug-In - 4.0.50401.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin - Java(TM) Platform SE 8 U121 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.1210.13 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npdeployJava1.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin - Picasa - 3.0.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
=========Google Chrome=========
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension legklhfpihknmgmlhiadachbaihccpho 1 Data generator 0.5
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.1
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension ombkllfdikmoepjdpmdaiinfbjpnkboa 2 Website Logon 2.0
Extension pbjikboenpfhbbejgkoklgkhjpfogcam 2 Amazon for Chrome 2.2.2012.272
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5516.1005.0.3
Homepage:
default_search_provider.search_url:
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 10,3,181,34 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\gcswf32.dll
Plugin 4.0.50401.0 Silverlight Plug-In c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin Chrome NaCl C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\ppGoogleNaClPluginChrome.dll
Plugin Chrome PDF Viewer C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\pdf.dll
Plugin 2012.1.0.30 Norton Confidential C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll
Plugin 1, 0, 0, 1 TrueSuite C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\ombkllfdikmoepjdpmdaiinfbjpnkboa\2.0_0\npwebsitelogon.dll
Plugin 1.3.32.7 Google Update C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin 15.4.3508.1109_ship.wlx.w4m4 (ship) Windows Live Photo Gallery C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin 1 Default Plug-in default_plugin
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam]
"Path"=C:\Program Files (x86)\Amazon\ABB\AmazonChrome-lenovo-abb.crx
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={6A1806CD-94D4-4689-BA73-E35EA1EA9990}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}]
"URL"=https://www.google.com/search?bcutc=sp- ... earchTerms}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll [2012-06-23 750064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-01-20 790552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 234560]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner.dll [2012-06-23 433648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-01-20 664848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-12-23 2868496]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-02-22 12452456]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-02-08 1158248]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-08 170264]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-08 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-08 440600]
"TpShocks"=TpShocks.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BLEServicesCtrl]
C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-02-17 177936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-02-22 11406608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-12-22 4701888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2011-12-05 291096]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2011-11-25 548864]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2011-06-01 506712]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2012-01-17 1091376]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2017-01-20 9080768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
Co je malý to je hezký. A když to hezký není, tak je toho alespoň málo .
.Re: Náhodné otevírání reklamních stránek v Chrome
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-02-05 17:42:52 ----D---- C:\rsit
2017-02-05 17:42:52 ----D---- C:\Program Files\trend micro
2017-02-05 17:00:57 ----SHD---- C:\Config.Msi
2017-01-25 15:32:04 ----D---- C:\Users\Klára\AppData\Roaming\WinRAR
2017-01-25 11:47:30 ----D---- C:\Users\Klára\AppData\Roaming\dvdcss
2017-01-22 23:10:42 ----D---- C:\Users\Klára\AppData\Roaming\LibreOffice
2017-01-22 23:08:57 ----D---- C:\Program Files\LibreOffice 5
2017-01-21 18:01:00 ----D---- C:\Users\Klára\AppData\Roaming\java
2017-01-21 18:00:57 ----D---- C:\Users\Klára\AppData\Roaming\.minecraft
2017-01-21 18:00:07 ----D---- C:\Program Files (x86)\Minecraft
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2017-01-21 17:54:19 ----D---- C:\Program Files (x86)\Microsoft XNA
2017-01-21 13:58:25 ----D---- C:\Users\Klára\AppData\Roaming\Lenovo
2017-01-21 13:05:43 ----D---- C:\Program Files (x86)\Microsoft Works
2017-01-21 13:05:36 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2017-01-21 13:04:20 ----D---- C:\Program Files\Microsoft Office
2017-01-21 13:04:02 ----D---- C:\Windows\SHELLNEW
2017-01-21 13:03:55 ----D---- C:\ProgramData\Microsoft Help
2017-01-21 13:03:55 ----D---- C:\Program Files (x86)\Microsoft Office
2017-01-21 13:03:44 ----RHD---- C:\MSOCache
2017-01-21 12:57:37 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2017-01-21 12:57:27 ----D---- C:\Users\Klára\AppData\Roaming\DAEMON Tools Lite
2017-01-21 12:57:27 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2017-01-21 12:57:23 ----D---- C:\Program Files\DAEMON Tools Lite
2017-01-21 12:56:56 ----D---- C:\ProgramData\DAEMON Tools Lite
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wucltux.dll
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuauclt.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuapp.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuaueng.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuapi.dll
2017-01-21 00:12:29 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups2.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-01-21 00:11:20 ----D---- C:\Users\Klára\AppData\Roaming\Mozilla
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbport.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbohci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbhub.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbehci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbd.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2017-01-21 00:02:53 ----A---- C:\Windows\system32\wksprt.exe
2017-01-21 00:02:53 ----A---- C:\Windows\system32\mstscax.dll
2017-01-21 00:02:52 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\rdvidcrl.dll
2017-01-21 00:02:50 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2017-01-21 00:02:50 ----A---- C:\Windows\system32\KBDTAT.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDYAK.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU1.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDBASH.DLL
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpudd.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpcorets.dll
2017-01-21 00:01:29 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2017-01-21 00:01:29 ----A---- C:\Windows\system32\d2d1.dll
2017-01-21 00:01:16 ----A---- C:\Windows\system32\TSWbPrxy.exe
2017-01-20 23:53:29 ----D---- C:\Users\Klára\AppData\Roaming\Skype
2017-01-20 22:47:37 ----D---- C:\Users\Klára\AppData\Roaming\vlc
2017-01-20 22:31:05 ----D---- C:\Users\Klára\AppData\Roaming\AVAST Software
2017-01-20 22:29:54 ----D---- C:\Program Files\Common Files\AV
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswvmm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswStm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsp.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2017-01-20 22:29:37 ----A---- C:\Windows\system32\aswBoot.exe
2017-01-20 22:29:31 ----A---- C:\Windows\avastSS.scr
2017-01-20 22:29:22 ----D---- C:\Program Files\AVAST Software
2017-01-20 22:29:06 ----D---- C:\ProgramData\AVAST Software
2017-01-20 22:26:38 ----A---- C:\Windows\system32\pdfcmon.dll
2017-01-20 22:26:16 ----D---- C:\Program Files\PDFCreator
2017-01-20 22:25:42 ----D---- C:\Program Files\GIMP 2
2017-01-20 22:19:54 ----RD---- C:\Program Files (x86)\Skype
2017-01-20 22:19:40 ----D---- C:\ProgramData\Skype
2017-01-20 22:19:29 ----D---- C:\Program Files\VideoLAN
2017-01-20 22:19:21 ----D---- C:\Users\Klára\AppData\Roaming\IrfanView
2017-01-20 22:19:20 ----D---- C:\Program Files (x86)\IrfanView
2017-01-20 22:19:13 ----D---- C:\Program Files\WinRAR
2017-01-20 22:19:12 ----D---- C:\Program Files (x86)\Steam
2017-01-20 22:18:47 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2017-01-20 22:18:11 ----D---- C:\Program Files\Java
2017-01-20 22:16:30 ----D---- C:\Users\Klára\AppData\Roaming\Sun
2017-01-20 22:16:13 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2017-01-20 22:14:51 ----D---- C:\Program Files (x86)\Java
2017-01-20 22:14:49 ----D---- C:\ProgramData\Oracle
2017-01-20 22:11:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-20 22:11:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-01-20 21:25:42 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-01-20 21:25:40 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-01-20 21:25:40 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2017-01-20 21:25:39 ----A---- C:\Windows\system32\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2017-01-20 21:24:13 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2017-01-20 21:24:13 ----A---- C:\Windows\system32\rdpendp_winip.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iertutil.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\inseng.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\ie4uinit.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\urlmon.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\occache.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\iedkcs32.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-01-20 21:17:44 ----A---- C:\Windows\system32\msfeeds.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\iesetup.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\ieapfltr.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\dxtrans.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\vbscript.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\jsproxy.dll
2017-01-20 21:17:42 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieUnatt.exe
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieui.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieframe.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\dxtmsft.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\webcheck.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmled.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript9diag.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\wininet.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\jscript9.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\msrating.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\mshtml.dll
2017-01-20 21:17:38 ----A---- C:\Windows\system32\FntCache.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\DWrite.dll
2017-01-20 21:14:22 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2017-01-20 21:14:22 ----A---- C:\Windows\system32\d3d10warp.dll
2017-01-20 21:14:20 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2017-01-20 21:14:20 ----A---- C:\Windows\system32\d3d10level9.dll
2017-01-20 21:14:19 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2017-01-20 21:14:18 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2017-01-20 21:14:10 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2017-01-20 21:14:10 ----A---- C:\Windows\system32\WindowsCodecs.dll
2017-01-20 21:14:08 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2017-01-20 21:14:08 ----A---- C:\Windows\system32\WMPhoto.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZE.DLL
2017-01-20 21:13:42 ----A---- C:\Windows\system32\icaapi.dll
2017-01-20 21:13:41 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2017-01-20 20:55:02 ----D---- C:\Windows\SYSWOW64\Wat
2017-01-20 20:55:02 ----D---- C:\Windows\system32\Wat
2017-01-20 19:33:30 ----SHD---- C:\System Volume Information
2017-01-20 19:33:30 ----ASH---- C:\pagefile.sys
2017-01-20 19:33:25 ----ASH---- C:\hiberfil.sys
2017-01-20 17:43:57 ----SD---- C:\Windows\system32\CompatTel
2017-01-20 17:43:57 ----D---- C:\Windows\system32\appraiser
2017-01-20 16:31:15 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:31:14 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:26:12 ----A---- C:\Windows\system32\IEUDINIT.EXE
2017-01-20 16:13:49 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\msls31.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2017-01-20 16:13:45 ----A---- C:\Windows\system32\elshyph.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\wextract.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\url.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\icardie.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshta.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2017-01-20 16:13:43 ----A---- C:\Windows\system32\jsIntl.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msls31.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\mshtmler.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedssync.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedsbs.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\iesysprep.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\ieapfltr.dat
2017-01-20 16:13:42 ----A---- C:\Windows\system32\IEAdvpack.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\wextract.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\url.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\pngfilt.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\licmgr10.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\iexpress.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\icardie.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\mshta.exe
2017-01-20 16:13:40 ----A---- C:\Windows\system32\imgutil.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\iepeers.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-01-20 16:05:05 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2017-01-20 16:05:05 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsPrint.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\dxgi.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10.dll
2017-01-20 16:05:03 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2017-01-20 15:24:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-01-20 15:20:39 ----D---- C:\Windows\Migration
2017-01-20 13:31:45 ----A---- C:\Windows\system32\WUDFSvc.dll
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFx.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFPlatform.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFHost.exe
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2017-01-20 13:26:40 ----D---- C:\Windows\system32\MRT
2017-01-20 13:26:33 ----AC---- C:\Windows\system32\MRT.exe
2017-01-20 13:12:41 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2017-01-20 13:12:40 ----A---- C:\Windows\SYSWOW64\wmi.dll
2017-01-20 13:12:40 ----A---- C:\Windows\system32\wmi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2017-01-20 12:55:11 ----A---- C:\Windows\system32\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\system32\icardagt.exe
2017-01-20 12:55:10 ----A---- C:\Windows\SYSWOW64\icardres.dll
2017-01-20 12:55:10 ----A---- C:\Windows\system32\icardres.dll
2017-01-20 12:55:06 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2017-01-20 12:55:06 ----A---- C:\Windows\system32\TsWpfWrp.exe
2017-01-20 12:54:08 ----A---- C:\Windows\SYSWOW64\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\powertracker.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\perftrack.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6.dll
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbcir.sys
2017-01-20 12:52:49 ----A---- C:\Windows\system32\OxpsConverter.exe
2017-01-20 12:52:45 ----A---- C:\Windows\SYSWOW64\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\system32\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\notepad.exe
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\system32\nlasvc.dll
2017-01-20 12:52:37 ----A---- C:\Windows\system32\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\SYSWOW64\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\win32k.sys
2017-01-20 12:52:36 ----A---- C:\Windows\system32\UtcResources.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-01-20 12:52:36 ----A---- C:\Windows\system32\diagtrack.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\MSVidCtl.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\drmv2clt.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\blackbox.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\msi.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\ntdll.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\msi.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\winload.exe
2017-01-20 12:52:33 ----A---- C:\Windows\system32\scavengeui.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\rpcrt4.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\oleaut32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\lsasrv.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\advapi32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\winresume.exe
2017-01-20 12:52:32 ----A---- C:\Windows\system32\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\schannel.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\KernelBase.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kerberos.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\audiosrv.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WsmWmiPl.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wow64win.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wintrust.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\usp10.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\user32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\srcore.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\msv1_0.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\system32\gdi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptui.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\clfs.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\ci.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\AudioEng.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\atmfd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\user32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\wow64.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\winsrv.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\rpchttp.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\pcasvc.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\ncrypt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\msiexec.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfps.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\EncDump.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\dfsc.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\cng.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\consent.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\conhost.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\certcli.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\bcdedit.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\adtschema.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wdigest.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\TSpkg.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\rstrui.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\bowser.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\appid.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\cryptsp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\bcryptprimitives.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\audiodg.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appinfo.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appidsvc.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\mfps.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\srclient.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\smss.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\pcadm.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msihnd.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\lsass.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-01-20 12:52:28 ----A---- C:\Windows\system32\csrsrv.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\credssp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidapi.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\user.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wow64cpu.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\sspisrv.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcawrk.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcalua.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcaevts.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msmmsp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\apisetschema.dll
2017-01-20 12:52:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-01-20 12:52:26 ----A---- C:\Windows\system32\tzres.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\EncDec.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\CPFilters.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2017-01-20 12:50:39 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2017-01-20 12:50:39 ----A---- C:\Windows\system32\poqexec.exe
2017-01-20 12:50:34 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-01-20 12:50:34 ----A---- C:\Windows\system32\ole32.dll
2017-01-20 12:50:12 ----A---- C:\Windows\SYSWOW64\tdh.dll
2017-01-20 12:50:12 ----A---- C:\Windows\system32\tdh.dll
2017-01-20 12:49:39 ----A---- C:\Windows\system32\sysmain.dll
2017-01-20 12:48:56 ----A---- C:\Windows\system32\aitstatic.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\invagent.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\generaltel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\devinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\CompatTelRunner.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\centel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\appraiser.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aepic.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aeinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\acmigration.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\system32\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\diskperf.exe
2017-01-20 12:48:01 ----A---- C:\Windows\system32\basesrv.dll
2017-01-20 12:47:39 ----A---- C:\Windows\system32\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2017-01-20 12:47:27 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samsrv.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samlib.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\gameux.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\gameux.dll
2017-01-20 12:46:16 ----A---- C:\Windows\system32\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\explorer.exe
2017-01-20 12:46:15 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\explorer.exe
2017-01-20 12:46:12 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2017-01-20 12:46:12 ----A---- C:\Windows\system32\cryptdlg.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3.dll
2017-01-20 12:45:21 ----A---- C:\Windows\system32\rpcss.dll
2017-01-20 12:45:19 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\tdx.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\afd.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\dpnet.dll
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\cdd.dll
2017-01-20 12:45:17 ----A---- C:\Windows\SYSWOW64\mfds.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\profsvc.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\mfds.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\dfshim.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\charmap.exe
2017-01-20 12:45:14 ----A---- C:\Windows\system32\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\system32\charmap.exe
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidparse.sys
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidclass.sys
2017-01-20 12:45:12 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2017-01-20 12:45:12 ----A---- C:\Windows\system32\cewmdm.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\adprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\system32\wincredprovider.dll
2017-01-20 12:44:49 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2017-01-20 12:44:49 ----A---- C:\Windows\system32\wpdshext.dll
2017-01-20 12:44:48 ----A---- C:\Windows\system32\drivers\disk.sys
2017-01-20 12:44:04 ----A---- C:\Windows\system32\winlogon.exe
2017-01-20 12:44:03 ----A---- C:\Windows\SYSWOW64\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdrmemptylst.exe
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpwsx.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpcorekmts.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2017-01-20 12:43:48 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2017-01-20 12:43:48 ----A---- C:\Windows\system32\comctl32.dll
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\secproc_isv.dll
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate.exe
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\msdrm.dll
2017-01-20 12:43:00 ----A---- C:\Windows\system32\termsrv.dll
2017-01-20 12:42:33 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2017-01-20 12:42:33 ----A---- C:\Windows\system32\pku2u.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\Wdfres.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2017-01-20 12:41:55 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2017-01-20 12:41:55 ----A---- C:\Windows\system32\d3d11.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcore6.dll
2017-01-20 12:41:44 ----A---- C:\Windows\SYSWOW64\rastls.dll
2017-01-20 12:41:44 ----A---- C:\Windows\system32\rastls.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\credui.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\credui.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\synceng.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\synceng.dll
2017-01-20 12:41:08 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2017-01-20 12:41:07 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\drivers\rmcast.sys
2017-01-20 12:40:12 ----A---- C:\Windows\system32\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\msmpeg2adec.dll
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMVSDECD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\msmpeg2adec.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\COLORCNV.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMVENCOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\mcmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\COLORCNV.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVENCOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\devenum.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\SysFxUI.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\drivers\portcls.sys
2017-01-20 12:40:09 ----A---- C:\Windows\system32\devenum.dll
2017-01-20 12:40:08 ----A---- C:\Windows\SYSWOW64\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmk.sys
2017-01-20 12:39:58 ----A---- C:\Windows\SYSWOW64\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapibase.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapi.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\drivers\tpm.sys
2017-01-20 12:39:51 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\aelupsvc.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\netio.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\nlaapi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\ncsi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\iphlpsvc.dll
2017-01-20 12:38:04 ----A---- C:\Windows\SYSWOW64\osk.exe
2017-01-20 12:38:04 ----A---- C:\Windows\system32\osk.exe
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\FwRemoteSvr.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\IPSECSVC.DLL
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpsvc.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2017-01-20 12:37:56 ----A---- C:\Windows\system32\drivers\ntfs.sys
2017-01-20 12:37:49 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2017-01-20 12:37:49 ----A---- C:\Windows\system32\shdocvw.dll
2017-01-20 12:37:44 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2017-01-20 12:37:44 ----A---- C:\Windows\system32\TSWorkspace.dll
2017-01-20 12:37:42 ----A---- C:\Windows\system32\schedsvc.dll
2017-01-20 12:37:28 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\wpnpinst.exe
2017-01-20 12:37:28 ----A---- C:\Windows\system32\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\localspl.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetppui.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetpp.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ntprint.exe
2017-01-20 12:37:22 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\storport.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\system32\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\drivers\netbt.sys
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\browcli.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browser.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browcli.dll
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\stream.sys
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2017-01-20 12:37:10 ----A---- C:\Windows\system32\drivers\partmgr.sys
2017-01-20 12:37:09 ----A---- C:\Windows\system32\drivers\http.sys
2017-01-20 12:37:08 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2017-01-20 12:37:08 ----A---- C:\Windows\system32\imagehlp.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\services.exe
2017-01-20 12:37:07 ----A---- C:\Windows\system32\seclogon.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\drivers\bthport.sys
2017-01-20 12:37:06 ----A---- C:\Windows\system32\drivers\usb8023.sys
2017-01-20 12:37:05 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2017-01-20 12:37:04 ----A---- C:\Windows\system32\catsrvut.dll
2017-01-20 12:36:47 ----A---- C:\Windows\SYSWOW64\qedit.dll
2017-01-20 12:36:47 ----A---- C:\Windows\system32\qedit.dll
2017-01-20 12:36:42 ----A---- C:\Windows\system32\taskhost.exe
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\fixmapi.exe
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\fixmapi.exe
2017-01-20 12:36:40 ----A---- C:\Windows\SYSWOW64\packager.dll
2017-01-20 12:36:40 ----A---- C:\Windows\system32\packager.dll
2017-01-20 12:36:22 ----A---- C:\Windows\system32\drivers\ataport.sys
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwansvc.dll
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwanprotdim.dll
2017-01-20 12:28:18 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2017-01-20 12:28:18 ----A---- C:\Windows\system32\scesrv.dll
2017-01-20 12:28:17 ----A---- C:\Windows\system32\drivers\ndis.sys
2017-01-20 12:28:16 ----A---- C:\Windows\system32\drivers\fvevol.sys
2017-01-20 12:28:15 ----A---- C:\Windows\SYSWOW64\webio.dll
2017-01-20 12:28:15 ----A---- C:\Windows\system32\webio.dll
2017-01-20 12:25:45 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-01-20 12:25:45 ----A---- C:\Windows\system32\cdosys.dll
2017-01-20 12:25:31 ----A---- C:\Windows\system32\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certenc.dll
2017-01-20 12:25:30 ----A---- C:\Windows\system32\certenc.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\cscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\system32\cscript.exe
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\system32\IKEEXT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2017-01-20 12:24:31 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2017-01-20 12:24:31 ----A---- C:\Windows\system32\InkEd.dll
2017-01-20 12:18:44 ----A---- C:\Windows\SYSWOW64\els.dll
2017-01-20 12:18:44 ----A---- C:\Windows\system32\els.dll
2017-01-20 12:18:13 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2017-01-20 12:18:13 ----A---- C:\Windows\system32\clfsw32.dll
2017-01-20 11:50:09 ----D---- C:\Users\Klára\AppData\Roaming\PwrMgr
2017-01-20 11:49:09 ----D---- C:\Users\Klára\AppData\Roaming\Adobe
2017-01-20 11:43:18 ----D---- C:\Users\Klára\AppData\Roaming\LSC
2017-01-20 11:43:13 ----D---- C:\Users\Klára\AppData\Roaming\Leadertech
2017-01-20 11:42:39 ----D---- C:\Users\Klára\AppData\Roaming\Identities
2017-01-20 11:40:59 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2017-01-20 11:40:52 ----D---- C:\Program Files (x86)\Amazon
2017-01-20 11:39:43 ----A---- C:\Windows\firstboot.dat
2017-01-20 11:39:06 ----D---- C:\Users\Klára\AppData\Roaming\Intel
2017-01-20 11:39:05 ----SD---- C:\Users\Klára\AppData\Roaming\Microsoft
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Media Center Programs
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Macromedia
======List of files/folders modified in the last 1 month======
2017-02-05 17:42:56 ----D---- C:\Windows\Prefetch
2017-02-05 17:42:52 ----RD---- C:\Program Files
2017-02-05 17:22:17 ----D---- C:\Windows\system32\config
2017-02-05 17:12:45 ----D---- C:\Windows\System32
2017-02-05 17:12:45 ----D---- C:\Windows\inf
2017-02-05 17:12:45 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-02-05 17:10:55 ----A---- C:\Windows\SYSWOW64\log.txt
2017-02-05 17:10:01 ----D---- C:\Windows\Temp
2017-02-05 17:01:44 ----SHD---- C:\Windows\Installer
2017-02-05 17:00:40 ----D---- C:\Windows\SysWOW64
2017-02-05 16:57:22 ----D---- C:\Windows\system32\drivers
2017-02-03 09:23:12 ----D---- C:\Program Files (x86)\Common Files
2017-01-28 17:54:00 ----HD---- C:\ProgramData
2017-01-24 20:41:49 ----D---- C:\Windows\system32\wdi
2017-01-24 11:30:28 ----D---- C:\ProgramData\Adobe
2017-01-22 23:10:04 ----RSD---- C:\Windows\assembly
2017-01-22 23:09:16 ----RSD---- C:\Windows\Fonts
2017-01-21 18:42:16 ----D---- C:\Windows\rescache
2017-01-21 18:00:07 ----RD---- C:\Program Files (x86)
2017-01-21 17:33:53 ----D---- C:\Windows\winsxs
2017-01-21 17:31:17 ----D---- C:\Windows\system32\catroot2
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\winrm
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\slmgr
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\migwiz
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\en
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Defender
2017-01-21 17:13:58 ----D---- C:\Program Files\DVD Maker
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Defender
2017-01-21 17:13:57 ----D---- C:\Windows\SYSWOW64\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\WCN
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\DriverStore
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Dism
2017-01-21 17:13:54 ----D---- C:\Windows\system32\winrm
2017-01-21 17:13:54 ----D---- C:\Windows\system32\slmgr
2017-01-21 17:13:54 ----D---- C:\Windows\system32\migwiz
2017-01-21 17:13:54 ----D---- C:\Windows\system32\en
2017-01-21 17:13:54 ----D---- C:\Windows\system32\drivers\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\system32\Boot
2017-01-21 17:13:54 ----D---- C:\Windows\en-US
2017-01-21 17:13:53 ----D---- C:\Windows\system32\en-US
2017-01-21 17:13:50 ----D---- C:\Windows\system32\WCN
2017-01-21 17:13:50 ----D---- C:\Windows\system32\Dism
2017-01-21 17:13:49 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2017-01-21 17:13:49 ----D---- C:\Windows\Speech
2017-01-21 17:07:18 ----D---- C:\Program Files (x86)\Lenovo
2017-01-21 17:01:13 ----D---- C:\ProgramData\Lenovo
2017-01-21 15:39:11 ----D---- C:\Windows\Logs
2017-01-21 15:02:33 ----D---- C:\Program Files (x86)\Lenovo Registration
2017-01-21 14:59:34 ----D---- C:\Program Files\Common Files
2017-01-21 14:46:37 ----D---- C:\Program Files\Lenovo
2017-01-21 14:46:37 ----D---- C:\Program Files (x86)\SugarSync
2017-01-21 14:41:03 ----D---- C:\Program Files\Common Files\Lenovo
2017-01-21 14:41:02 ----D---- C:\SWTOOLS
2017-01-21 14:40:09 ----D---- C:\Windows\Microsoft.NET
2017-01-21 14:24:46 ----D---- C:\Program Files (x86)\Windows Live
2017-01-21 14:13:19 ----D---- C:\Windows\system32\DriverStore
2017-01-21 14:00:58 ----D---- C:\Windows\Downloaded Installations
2017-01-21 13:05:27 ----SD---- C:\ProgramData\Microsoft
2017-01-21 13:05:27 ----D---- C:\Program Files (x86)\Microsoft.NET
2017-01-21 13:05:03 ----D---- C:\Program Files\Common Files\Microsoft Shared
2017-01-21 13:04:02 ----D---- C:\Windows
2017-01-21 11:56:49 ----D---- C:\Windows\AppCompat
2017-01-21 00:17:41 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-01-21 00:17:41 ----D---- C:\Windows\system32\cs-CZ
2017-01-21 00:17:40 ----D---- C:\Windows\system32\drivers\cs-CZ
2017-01-21 00:07:45 ----D---- C:\Program Files (x86)\Google
2017-01-20 23:52:46 ----D---- C:\ProgramData\Norton
2017-01-20 22:29:55 ----D---- C:\Windows\system32\Tasks
2017-01-20 22:06:56 ----D---- C:\Program Files (x86)\Adobe
2017-01-20 22:06:30 ----D---- C:\Program Files (x86)\Symantec
2017-01-20 22:00:13 ----D---- C:\Windows\PolicyDefinitions
2017-01-20 22:00:13 ----D---- C:\Program Files\Internet Explorer
2017-01-20 22:00:12 ----D---- C:\Program Files (x86)\Internet Explorer
2017-01-20 21:55:39 ----D---- C:\Program Files\Google
2017-01-20 21:54:12 ----D---- C:\Windows\SYSWOW64\wbem
2017-01-20 21:54:12 ----D---- C:\Windows\system32\wbem
2017-01-20 20:55:46 ----D---- C:\Windows\tracing
2017-01-20 17:44:26 ----D---- C:\Windows\ehome
2017-01-20 17:44:25 ----D---- C:\Program Files\Common Files\System
2017-01-20 17:44:22 ----D---- C:\Windows\SYSWOW64\migration
2017-01-20 17:44:20 ----D---- C:\Windows\system32\migration
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-TW
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-HK
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-CN
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\tr-TR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\sv-SE
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-PT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-BR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pl-PL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\nl-NL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ko-KR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ja-JP
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\it-IT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\hu-HU
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fr-FR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fi-FI
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\es-ES
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\el-GR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\de-DE
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\ru-RU
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\nb-NO
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\da-DK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\zh-HK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-PT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-BR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pl-PL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\nl-NL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\ko-KR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\it-IT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\hu-HU
2017-01-20 17:44:17 ----D---- C:\Windows\system32\fr-FR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\el-GR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-TW
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-CN
2017-01-20 17:44:16 ----D---- C:\Windows\system32\tr-TR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\sv-SE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ru-RU
2017-01-20 17:44:16 ----D---- C:\Windows\system32\nb-NO
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ja-JP
2017-01-20 17:44:16 ----D---- C:\Windows\system32\fi-FI
2017-01-20 17:44:16 ----D---- C:\Windows\system32\es-ES
2017-01-20 17:44:16 ----D---- C:\Windows\system32\de-DE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\da-DK
2017-01-20 17:44:00 ----D---- C:\Windows\system32\AdvancedInstallers
2017-01-20 17:43:57 ----D---- C:\Windows\AppPatch
2017-01-20 17:43:38 ----D---- C:\Windows\system32\CodeIntegrity
2017-01-20 16:57:03 ----D---- C:\Windows\system32\catroot
2017-01-20 13:26:40 ----D---- C:\Windows\debug
2017-01-20 12:56:28 ----D---- C:\Windows\SoftwareDistribution
2017-01-20 11:42:37 ----SHD---- C:\$Recycle.Bin
2017-01-20 11:41:00 ----D---- C:\Windows\Panther
2017-01-20 11:39:05 ----RD---- C:\Users
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2017-01-20 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2017-01-20 293352]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-11-30 568600]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2011-12-05 16152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-12-29 147784]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-12-29 25416]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-01-20 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-01-20 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-01-20 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-01-20 513632]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2012-01-31 33344]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2012-03-29 19784]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-01-20 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-01-20 163416]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2017-01-21 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2017-01-21 47672]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2016-11-01 82824]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-17 14692896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-02-29 4757608]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-05 331264]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2011-12-05 355096]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2011-12-05 785688]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2011-12-02 11417088]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-12-26 40248]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-11-24 648808]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-12-23 412432]
R3 TVTI2C;Lenovo SM bus driver; C:\Windows\system32\DRIVERS\Tvti2c.sys [2011-05-29 40248]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2012-02-29 952832]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2017-01-20 37656]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-12-08 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-11-30 94720]
S3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2011-11-30 747008]
S3 Fastboot;Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [2012-01-17 70416]
S3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2012-02-14 60928]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2012-01-31 340584]
S3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tvtvcamd;ThinkVantage Virtual Camera; C:\Windows\system32\DRIVERS\tvtvcamd.sys [2011-12-08 27432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-24 81088]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-01-20 197128]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-02-22 1014096]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-02-22 1104208]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2011-11-09 8447848]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-12-08 618256]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2012-01-17 169776]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2016-11-01 184408]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-12-07 2429544]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-03 628448]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-03-06 128280]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-06 163608]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-06 277784]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-12-08 148752]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2011-12-29 144960]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-06 363800]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2012-02-02 145472]
S2 LPlatSvc;Lenovo Platform Service; C:\Windows\system32\LPlatSvc.exe [2016-11-01 711256]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-01-16 317400]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-02-22 1304912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-08 276248]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-12-22 1471168]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2016-12-07 273544]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-09 172488]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-12-08 273168]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Partner Service;Partner Service; C:\ProgramData\Partner\Partner.exe [2012-06-23 332272]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2012-03-29 1662528]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2012-03-29 165440]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-01-19 1464096]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-12-29 49480]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-01-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-02-05 17:42:52 ----D---- C:\rsit
2017-02-05 17:42:52 ----D---- C:\Program Files\trend micro
2017-02-05 17:00:57 ----SHD---- C:\Config.Msi
2017-01-25 15:32:04 ----D---- C:\Users\Klára\AppData\Roaming\WinRAR
2017-01-25 11:47:30 ----D---- C:\Users\Klára\AppData\Roaming\dvdcss
2017-01-22 23:10:42 ----D---- C:\Users\Klára\AppData\Roaming\LibreOffice
2017-01-22 23:08:57 ----D---- C:\Program Files\LibreOffice 5
2017-01-21 18:01:00 ----D---- C:\Users\Klára\AppData\Roaming\java
2017-01-21 18:00:57 ----D---- C:\Users\Klára\AppData\Roaming\.minecraft
2017-01-21 18:00:07 ----D---- C:\Program Files (x86)\Minecraft
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2017-01-21 17:54:19 ----D---- C:\Program Files (x86)\Microsoft XNA
2017-01-21 13:58:25 ----D---- C:\Users\Klára\AppData\Roaming\Lenovo
2017-01-21 13:05:43 ----D---- C:\Program Files (x86)\Microsoft Works
2017-01-21 13:05:36 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2017-01-21 13:04:20 ----D---- C:\Program Files\Microsoft Office
2017-01-21 13:04:02 ----D---- C:\Windows\SHELLNEW
2017-01-21 13:03:55 ----D---- C:\ProgramData\Microsoft Help
2017-01-21 13:03:55 ----D---- C:\Program Files (x86)\Microsoft Office
2017-01-21 13:03:44 ----RHD---- C:\MSOCache
2017-01-21 12:57:37 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2017-01-21 12:57:27 ----D---- C:\Users\Klára\AppData\Roaming\DAEMON Tools Lite
2017-01-21 12:57:27 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2017-01-21 12:57:23 ----D---- C:\Program Files\DAEMON Tools Lite
2017-01-21 12:56:56 ----D---- C:\ProgramData\DAEMON Tools Lite
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wucltux.dll
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuauclt.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuapp.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuaueng.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuapi.dll
2017-01-21 00:12:29 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups2.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-01-21 00:11:20 ----D---- C:\Users\Klára\AppData\Roaming\Mozilla
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbport.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbohci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbhub.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbehci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbd.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2017-01-21 00:02:53 ----A---- C:\Windows\system32\wksprt.exe
2017-01-21 00:02:53 ----A---- C:\Windows\system32\mstscax.dll
2017-01-21 00:02:52 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\rdvidcrl.dll
2017-01-21 00:02:50 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2017-01-21 00:02:50 ----A---- C:\Windows\system32\KBDTAT.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDYAK.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU1.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDBASH.DLL
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpudd.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpcorets.dll
2017-01-21 00:01:29 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2017-01-21 00:01:29 ----A---- C:\Windows\system32\d2d1.dll
2017-01-21 00:01:16 ----A---- C:\Windows\system32\TSWbPrxy.exe
2017-01-20 23:53:29 ----D---- C:\Users\Klára\AppData\Roaming\Skype
2017-01-20 22:47:37 ----D---- C:\Users\Klára\AppData\Roaming\vlc
2017-01-20 22:31:05 ----D---- C:\Users\Klára\AppData\Roaming\AVAST Software
2017-01-20 22:29:54 ----D---- C:\Program Files\Common Files\AV
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswvmm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswStm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsp.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2017-01-20 22:29:37 ----A---- C:\Windows\system32\aswBoot.exe
2017-01-20 22:29:31 ----A---- C:\Windows\avastSS.scr
2017-01-20 22:29:22 ----D---- C:\Program Files\AVAST Software
2017-01-20 22:29:06 ----D---- C:\ProgramData\AVAST Software
2017-01-20 22:26:38 ----A---- C:\Windows\system32\pdfcmon.dll
2017-01-20 22:26:16 ----D---- C:\Program Files\PDFCreator
2017-01-20 22:25:42 ----D---- C:\Program Files\GIMP 2
2017-01-20 22:19:54 ----RD---- C:\Program Files (x86)\Skype
2017-01-20 22:19:40 ----D---- C:\ProgramData\Skype
2017-01-20 22:19:29 ----D---- C:\Program Files\VideoLAN
2017-01-20 22:19:21 ----D---- C:\Users\Klára\AppData\Roaming\IrfanView
2017-01-20 22:19:20 ----D---- C:\Program Files (x86)\IrfanView
2017-01-20 22:19:13 ----D---- C:\Program Files\WinRAR
2017-01-20 22:19:12 ----D---- C:\Program Files (x86)\Steam
2017-01-20 22:18:47 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2017-01-20 22:18:11 ----D---- C:\Program Files\Java
2017-01-20 22:16:30 ----D---- C:\Users\Klára\AppData\Roaming\Sun
2017-01-20 22:16:13 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2017-01-20 22:14:51 ----D---- C:\Program Files (x86)\Java
2017-01-20 22:14:49 ----D---- C:\ProgramData\Oracle
2017-01-20 22:11:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-20 22:11:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-01-20 21:25:42 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-01-20 21:25:40 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-01-20 21:25:40 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2017-01-20 21:25:39 ----A---- C:\Windows\system32\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2017-01-20 21:24:13 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2017-01-20 21:24:13 ----A---- C:\Windows\system32\rdpendp_winip.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iertutil.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\inseng.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\ie4uinit.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\urlmon.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\occache.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\iedkcs32.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-01-20 21:17:44 ----A---- C:\Windows\system32\msfeeds.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\iesetup.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\ieapfltr.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\dxtrans.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\vbscript.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\jsproxy.dll
2017-01-20 21:17:42 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieUnatt.exe
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieui.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieframe.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\dxtmsft.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\webcheck.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmled.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript9diag.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\wininet.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\jscript9.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\msrating.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\mshtml.dll
2017-01-20 21:17:38 ----A---- C:\Windows\system32\FntCache.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\DWrite.dll
2017-01-20 21:14:22 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2017-01-20 21:14:22 ----A---- C:\Windows\system32\d3d10warp.dll
2017-01-20 21:14:20 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2017-01-20 21:14:20 ----A---- C:\Windows\system32\d3d10level9.dll
2017-01-20 21:14:19 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2017-01-20 21:14:18 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2017-01-20 21:14:10 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2017-01-20 21:14:10 ----A---- C:\Windows\system32\WindowsCodecs.dll
2017-01-20 21:14:08 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2017-01-20 21:14:08 ----A---- C:\Windows\system32\WMPhoto.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZE.DLL
2017-01-20 21:13:42 ----A---- C:\Windows\system32\icaapi.dll
2017-01-20 21:13:41 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2017-01-20 20:55:02 ----D---- C:\Windows\SYSWOW64\Wat
2017-01-20 20:55:02 ----D---- C:\Windows\system32\Wat
2017-01-20 19:33:30 ----SHD---- C:\System Volume Information
2017-01-20 19:33:30 ----ASH---- C:\pagefile.sys
2017-01-20 19:33:25 ----ASH---- C:\hiberfil.sys
2017-01-20 17:43:57 ----SD---- C:\Windows\system32\CompatTel
2017-01-20 17:43:57 ----D---- C:\Windows\system32\appraiser
2017-01-20 16:31:15 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:31:14 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:26:12 ----A---- C:\Windows\system32\IEUDINIT.EXE
2017-01-20 16:13:49 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\msls31.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2017-01-20 16:13:45 ----A---- C:\Windows\system32\elshyph.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\wextract.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\url.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\icardie.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshta.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2017-01-20 16:13:43 ----A---- C:\Windows\system32\jsIntl.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msls31.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\mshtmler.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedssync.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedsbs.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\iesysprep.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\ieapfltr.dat
2017-01-20 16:13:42 ----A---- C:\Windows\system32\IEAdvpack.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\wextract.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\url.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\pngfilt.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\licmgr10.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\iexpress.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\icardie.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\mshta.exe
2017-01-20 16:13:40 ----A---- C:\Windows\system32\imgutil.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\iepeers.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-01-20 16:05:05 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2017-01-20 16:05:05 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsPrint.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\dxgi.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10.dll
2017-01-20 16:05:03 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2017-01-20 15:24:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-01-20 15:20:39 ----D---- C:\Windows\Migration
2017-01-20 13:31:45 ----A---- C:\Windows\system32\WUDFSvc.dll
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFx.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFPlatform.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFHost.exe
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2017-01-20 13:26:40 ----D---- C:\Windows\system32\MRT
2017-01-20 13:26:33 ----AC---- C:\Windows\system32\MRT.exe
2017-01-20 13:12:41 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2017-01-20 13:12:40 ----A---- C:\Windows\SYSWOW64\wmi.dll
2017-01-20 13:12:40 ----A---- C:\Windows\system32\wmi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2017-01-20 12:55:11 ----A---- C:\Windows\system32\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\system32\icardagt.exe
2017-01-20 12:55:10 ----A---- C:\Windows\SYSWOW64\icardres.dll
2017-01-20 12:55:10 ----A---- C:\Windows\system32\icardres.dll
2017-01-20 12:55:06 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2017-01-20 12:55:06 ----A---- C:\Windows\system32\TsWpfWrp.exe
2017-01-20 12:54:08 ----A---- C:\Windows\SYSWOW64\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\powertracker.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\perftrack.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6.dll
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbcir.sys
2017-01-20 12:52:49 ----A---- C:\Windows\system32\OxpsConverter.exe
2017-01-20 12:52:45 ----A---- C:\Windows\SYSWOW64\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\system32\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\notepad.exe
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\system32\nlasvc.dll
2017-01-20 12:52:37 ----A---- C:\Windows\system32\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\SYSWOW64\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\win32k.sys
2017-01-20 12:52:36 ----A---- C:\Windows\system32\UtcResources.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-01-20 12:52:36 ----A---- C:\Windows\system32\diagtrack.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\MSVidCtl.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\drmv2clt.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\blackbox.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\msi.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\ntdll.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\msi.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\winload.exe
2017-01-20 12:52:33 ----A---- C:\Windows\system32\scavengeui.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\rpcrt4.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\oleaut32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\lsasrv.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\advapi32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\winresume.exe
2017-01-20 12:52:32 ----A---- C:\Windows\system32\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\schannel.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\KernelBase.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kerberos.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\audiosrv.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WsmWmiPl.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wow64win.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wintrust.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\usp10.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\user32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\srcore.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\msv1_0.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\system32\gdi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptui.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\clfs.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\ci.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\AudioEng.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\atmfd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\user32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\wow64.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\winsrv.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\rpchttp.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\pcasvc.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\ncrypt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\msiexec.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfps.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\EncDump.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\dfsc.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\cng.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\consent.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\conhost.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\certcli.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\bcdedit.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\adtschema.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wdigest.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\TSpkg.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\rstrui.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\bowser.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\appid.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\cryptsp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\bcryptprimitives.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\audiodg.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appinfo.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appidsvc.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\mfps.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\srclient.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\smss.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\pcadm.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msihnd.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\lsass.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-01-20 12:52:28 ----A---- C:\Windows\system32\csrsrv.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\credssp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidapi.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\user.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wow64cpu.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\sspisrv.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcawrk.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcalua.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcaevts.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msmmsp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\apisetschema.dll
2017-01-20 12:52:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-01-20 12:52:26 ----A---- C:\Windows\system32\tzres.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\EncDec.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\CPFilters.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2017-01-20 12:50:39 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2017-01-20 12:50:39 ----A---- C:\Windows\system32\poqexec.exe
2017-01-20 12:50:34 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-01-20 12:50:34 ----A---- C:\Windows\system32\ole32.dll
2017-01-20 12:50:12 ----A---- C:\Windows\SYSWOW64\tdh.dll
2017-01-20 12:50:12 ----A---- C:\Windows\system32\tdh.dll
2017-01-20 12:49:39 ----A---- C:\Windows\system32\sysmain.dll
2017-01-20 12:48:56 ----A---- C:\Windows\system32\aitstatic.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\invagent.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\generaltel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\devinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\CompatTelRunner.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\centel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\appraiser.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aepic.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aeinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\acmigration.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\system32\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\diskperf.exe
2017-01-20 12:48:01 ----A---- C:\Windows\system32\basesrv.dll
2017-01-20 12:47:39 ----A---- C:\Windows\system32\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2017-01-20 12:47:27 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samsrv.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samlib.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\gameux.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\gameux.dll
2017-01-20 12:46:16 ----A---- C:\Windows\system32\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\explorer.exe
2017-01-20 12:46:15 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\explorer.exe
2017-01-20 12:46:12 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2017-01-20 12:46:12 ----A---- C:\Windows\system32\cryptdlg.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3.dll
2017-01-20 12:45:21 ----A---- C:\Windows\system32\rpcss.dll
2017-01-20 12:45:19 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\tdx.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\afd.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\dpnet.dll
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\cdd.dll
2017-01-20 12:45:17 ----A---- C:\Windows\SYSWOW64\mfds.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\profsvc.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\mfds.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\dfshim.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\charmap.exe
2017-01-20 12:45:14 ----A---- C:\Windows\system32\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\system32\charmap.exe
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidparse.sys
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidclass.sys
2017-01-20 12:45:12 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2017-01-20 12:45:12 ----A---- C:\Windows\system32\cewmdm.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\adprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\system32\wincredprovider.dll
2017-01-20 12:44:49 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2017-01-20 12:44:49 ----A---- C:\Windows\system32\wpdshext.dll
2017-01-20 12:44:48 ----A---- C:\Windows\system32\drivers\disk.sys
2017-01-20 12:44:04 ----A---- C:\Windows\system32\winlogon.exe
2017-01-20 12:44:03 ----A---- C:\Windows\SYSWOW64\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdrmemptylst.exe
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpwsx.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpcorekmts.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2017-01-20 12:43:48 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2017-01-20 12:43:48 ----A---- C:\Windows\system32\comctl32.dll
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\secproc_isv.dll
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate.exe
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\msdrm.dll
2017-01-20 12:43:00 ----A---- C:\Windows\system32\termsrv.dll
2017-01-20 12:42:33 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2017-01-20 12:42:33 ----A---- C:\Windows\system32\pku2u.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\Wdfres.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2017-01-20 12:41:55 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2017-01-20 12:41:55 ----A---- C:\Windows\system32\d3d11.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcore6.dll
2017-01-20 12:41:44 ----A---- C:\Windows\SYSWOW64\rastls.dll
2017-01-20 12:41:44 ----A---- C:\Windows\system32\rastls.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\credui.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\credui.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\synceng.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\synceng.dll
2017-01-20 12:41:08 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2017-01-20 12:41:07 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\drivers\rmcast.sys
2017-01-20 12:40:12 ----A---- C:\Windows\system32\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\msmpeg2adec.dll
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMVSDECD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\msmpeg2adec.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\COLORCNV.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMVENCOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\mcmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\COLORCNV.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVENCOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\devenum.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\SysFxUI.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\drivers\portcls.sys
2017-01-20 12:40:09 ----A---- C:\Windows\system32\devenum.dll
2017-01-20 12:40:08 ----A---- C:\Windows\SYSWOW64\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmk.sys
2017-01-20 12:39:58 ----A---- C:\Windows\SYSWOW64\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapibase.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapi.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\drivers\tpm.sys
2017-01-20 12:39:51 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\aelupsvc.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\netio.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\nlaapi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\ncsi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\iphlpsvc.dll
2017-01-20 12:38:04 ----A---- C:\Windows\SYSWOW64\osk.exe
2017-01-20 12:38:04 ----A---- C:\Windows\system32\osk.exe
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\FwRemoteSvr.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\IPSECSVC.DLL
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpsvc.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2017-01-20 12:37:56 ----A---- C:\Windows\system32\drivers\ntfs.sys
2017-01-20 12:37:49 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2017-01-20 12:37:49 ----A---- C:\Windows\system32\shdocvw.dll
2017-01-20 12:37:44 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2017-01-20 12:37:44 ----A---- C:\Windows\system32\TSWorkspace.dll
2017-01-20 12:37:42 ----A---- C:\Windows\system32\schedsvc.dll
2017-01-20 12:37:28 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\wpnpinst.exe
2017-01-20 12:37:28 ----A---- C:\Windows\system32\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\localspl.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetppui.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetpp.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ntprint.exe
2017-01-20 12:37:22 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\storport.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\system32\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\drivers\netbt.sys
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\browcli.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browser.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browcli.dll
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\stream.sys
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2017-01-20 12:37:10 ----A---- C:\Windows\system32\drivers\partmgr.sys
2017-01-20 12:37:09 ----A---- C:\Windows\system32\drivers\http.sys
2017-01-20 12:37:08 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2017-01-20 12:37:08 ----A---- C:\Windows\system32\imagehlp.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\services.exe
2017-01-20 12:37:07 ----A---- C:\Windows\system32\seclogon.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\drivers\bthport.sys
2017-01-20 12:37:06 ----A---- C:\Windows\system32\drivers\usb8023.sys
2017-01-20 12:37:05 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2017-01-20 12:37:04 ----A---- C:\Windows\system32\catsrvut.dll
2017-01-20 12:36:47 ----A---- C:\Windows\SYSWOW64\qedit.dll
2017-01-20 12:36:47 ----A---- C:\Windows\system32\qedit.dll
2017-01-20 12:36:42 ----A---- C:\Windows\system32\taskhost.exe
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\fixmapi.exe
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\fixmapi.exe
2017-01-20 12:36:40 ----A---- C:\Windows\SYSWOW64\packager.dll
2017-01-20 12:36:40 ----A---- C:\Windows\system32\packager.dll
2017-01-20 12:36:22 ----A---- C:\Windows\system32\drivers\ataport.sys
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwansvc.dll
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwanprotdim.dll
2017-01-20 12:28:18 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2017-01-20 12:28:18 ----A---- C:\Windows\system32\scesrv.dll
2017-01-20 12:28:17 ----A---- C:\Windows\system32\drivers\ndis.sys
2017-01-20 12:28:16 ----A---- C:\Windows\system32\drivers\fvevol.sys
2017-01-20 12:28:15 ----A---- C:\Windows\SYSWOW64\webio.dll
2017-01-20 12:28:15 ----A---- C:\Windows\system32\webio.dll
2017-01-20 12:25:45 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-01-20 12:25:45 ----A---- C:\Windows\system32\cdosys.dll
2017-01-20 12:25:31 ----A---- C:\Windows\system32\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certenc.dll
2017-01-20 12:25:30 ----A---- C:\Windows\system32\certenc.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\cscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\system32\cscript.exe
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\system32\IKEEXT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2017-01-20 12:24:31 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2017-01-20 12:24:31 ----A---- C:\Windows\system32\InkEd.dll
2017-01-20 12:18:44 ----A---- C:\Windows\SYSWOW64\els.dll
2017-01-20 12:18:44 ----A---- C:\Windows\system32\els.dll
2017-01-20 12:18:13 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2017-01-20 12:18:13 ----A---- C:\Windows\system32\clfsw32.dll
2017-01-20 11:50:09 ----D---- C:\Users\Klára\AppData\Roaming\PwrMgr
2017-01-20 11:49:09 ----D---- C:\Users\Klára\AppData\Roaming\Adobe
2017-01-20 11:43:18 ----D---- C:\Users\Klára\AppData\Roaming\LSC
2017-01-20 11:43:13 ----D---- C:\Users\Klára\AppData\Roaming\Leadertech
2017-01-20 11:42:39 ----D---- C:\Users\Klára\AppData\Roaming\Identities
2017-01-20 11:40:59 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2017-01-20 11:40:52 ----D---- C:\Program Files (x86)\Amazon
2017-01-20 11:39:43 ----A---- C:\Windows\firstboot.dat
2017-01-20 11:39:06 ----D---- C:\Users\Klára\AppData\Roaming\Intel
2017-01-20 11:39:05 ----SD---- C:\Users\Klára\AppData\Roaming\Microsoft
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Media Center Programs
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Macromedia
======List of files/folders modified in the last 1 month======
2017-02-05 17:42:56 ----D---- C:\Windows\Prefetch
2017-02-05 17:42:52 ----RD---- C:\Program Files
2017-02-05 17:22:17 ----D---- C:\Windows\system32\config
2017-02-05 17:12:45 ----D---- C:\Windows\System32
2017-02-05 17:12:45 ----D---- C:\Windows\inf
2017-02-05 17:12:45 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-02-05 17:10:55 ----A---- C:\Windows\SYSWOW64\log.txt
2017-02-05 17:10:01 ----D---- C:\Windows\Temp
2017-02-05 17:01:44 ----SHD---- C:\Windows\Installer
2017-02-05 17:00:40 ----D---- C:\Windows\SysWOW64
2017-02-05 16:57:22 ----D---- C:\Windows\system32\drivers
2017-02-03 09:23:12 ----D---- C:\Program Files (x86)\Common Files
2017-01-28 17:54:00 ----HD---- C:\ProgramData
2017-01-24 20:41:49 ----D---- C:\Windows\system32\wdi
2017-01-24 11:30:28 ----D---- C:\ProgramData\Adobe
2017-01-22 23:10:04 ----RSD---- C:\Windows\assembly
2017-01-22 23:09:16 ----RSD---- C:\Windows\Fonts
2017-01-21 18:42:16 ----D---- C:\Windows\rescache
2017-01-21 18:00:07 ----RD---- C:\Program Files (x86)
2017-01-21 17:33:53 ----D---- C:\Windows\winsxs
2017-01-21 17:31:17 ----D---- C:\Windows\system32\catroot2
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\winrm
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\slmgr
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\migwiz
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\en
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Defender
2017-01-21 17:13:58 ----D---- C:\Program Files\DVD Maker
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Defender
2017-01-21 17:13:57 ----D---- C:\Windows\SYSWOW64\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\WCN
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\DriverStore
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Dism
2017-01-21 17:13:54 ----D---- C:\Windows\system32\winrm
2017-01-21 17:13:54 ----D---- C:\Windows\system32\slmgr
2017-01-21 17:13:54 ----D---- C:\Windows\system32\migwiz
2017-01-21 17:13:54 ----D---- C:\Windows\system32\en
2017-01-21 17:13:54 ----D---- C:\Windows\system32\drivers\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\system32\Boot
2017-01-21 17:13:54 ----D---- C:\Windows\en-US
2017-01-21 17:13:53 ----D---- C:\Windows\system32\en-US
2017-01-21 17:13:50 ----D---- C:\Windows\system32\WCN
2017-01-21 17:13:50 ----D---- C:\Windows\system32\Dism
2017-01-21 17:13:49 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2017-01-21 17:13:49 ----D---- C:\Windows\Speech
2017-01-21 17:07:18 ----D---- C:\Program Files (x86)\Lenovo
2017-01-21 17:01:13 ----D---- C:\ProgramData\Lenovo
2017-01-21 15:39:11 ----D---- C:\Windows\Logs
2017-01-21 15:02:33 ----D---- C:\Program Files (x86)\Lenovo Registration
2017-01-21 14:59:34 ----D---- C:\Program Files\Common Files
2017-01-21 14:46:37 ----D---- C:\Program Files\Lenovo
2017-01-21 14:46:37 ----D---- C:\Program Files (x86)\SugarSync
2017-01-21 14:41:03 ----D---- C:\Program Files\Common Files\Lenovo
2017-01-21 14:41:02 ----D---- C:\SWTOOLS
2017-01-21 14:40:09 ----D---- C:\Windows\Microsoft.NET
2017-01-21 14:24:46 ----D---- C:\Program Files (x86)\Windows Live
2017-01-21 14:13:19 ----D---- C:\Windows\system32\DriverStore
2017-01-21 14:00:58 ----D---- C:\Windows\Downloaded Installations
2017-01-21 13:05:27 ----SD---- C:\ProgramData\Microsoft
2017-01-21 13:05:27 ----D---- C:\Program Files (x86)\Microsoft.NET
2017-01-21 13:05:03 ----D---- C:\Program Files\Common Files\Microsoft Shared
2017-01-21 13:04:02 ----D---- C:\Windows
2017-01-21 11:56:49 ----D---- C:\Windows\AppCompat
2017-01-21 00:17:41 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-01-21 00:17:41 ----D---- C:\Windows\system32\cs-CZ
2017-01-21 00:17:40 ----D---- C:\Windows\system32\drivers\cs-CZ
2017-01-21 00:07:45 ----D---- C:\Program Files (x86)\Google
2017-01-20 23:52:46 ----D---- C:\ProgramData\Norton
2017-01-20 22:29:55 ----D---- C:\Windows\system32\Tasks
2017-01-20 22:06:56 ----D---- C:\Program Files (x86)\Adobe
2017-01-20 22:06:30 ----D---- C:\Program Files (x86)\Symantec
2017-01-20 22:00:13 ----D---- C:\Windows\PolicyDefinitions
2017-01-20 22:00:13 ----D---- C:\Program Files\Internet Explorer
2017-01-20 22:00:12 ----D---- C:\Program Files (x86)\Internet Explorer
2017-01-20 21:55:39 ----D---- C:\Program Files\Google
2017-01-20 21:54:12 ----D---- C:\Windows\SYSWOW64\wbem
2017-01-20 21:54:12 ----D---- C:\Windows\system32\wbem
2017-01-20 20:55:46 ----D---- C:\Windows\tracing
2017-01-20 17:44:26 ----D---- C:\Windows\ehome
2017-01-20 17:44:25 ----D---- C:\Program Files\Common Files\System
2017-01-20 17:44:22 ----D---- C:\Windows\SYSWOW64\migration
2017-01-20 17:44:20 ----D---- C:\Windows\system32\migration
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-TW
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-HK
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-CN
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\tr-TR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\sv-SE
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-PT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-BR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pl-PL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\nl-NL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ko-KR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ja-JP
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\it-IT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\hu-HU
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fr-FR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fi-FI
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\es-ES
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\el-GR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\de-DE
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\ru-RU
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\nb-NO
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\da-DK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\zh-HK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-PT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-BR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pl-PL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\nl-NL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\ko-KR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\it-IT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\hu-HU
2017-01-20 17:44:17 ----D---- C:\Windows\system32\fr-FR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\el-GR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-TW
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-CN
2017-01-20 17:44:16 ----D---- C:\Windows\system32\tr-TR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\sv-SE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ru-RU
2017-01-20 17:44:16 ----D---- C:\Windows\system32\nb-NO
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ja-JP
2017-01-20 17:44:16 ----D---- C:\Windows\system32\fi-FI
2017-01-20 17:44:16 ----D---- C:\Windows\system32\es-ES
2017-01-20 17:44:16 ----D---- C:\Windows\system32\de-DE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\da-DK
2017-01-20 17:44:00 ----D---- C:\Windows\system32\AdvancedInstallers
2017-01-20 17:43:57 ----D---- C:\Windows\AppPatch
2017-01-20 17:43:38 ----D---- C:\Windows\system32\CodeIntegrity
2017-01-20 16:57:03 ----D---- C:\Windows\system32\catroot
2017-01-20 13:26:40 ----D---- C:\Windows\debug
2017-01-20 12:56:28 ----D---- C:\Windows\SoftwareDistribution
2017-01-20 11:42:37 ----SHD---- C:\$Recycle.Bin
2017-01-20 11:41:00 ----D---- C:\Windows\Panther
2017-01-20 11:39:05 ----RD---- C:\Users
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2017-01-20 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2017-01-20 293352]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-11-30 568600]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2011-12-05 16152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-12-29 147784]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-12-29 25416]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-01-20 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-01-20 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-01-20 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-01-20 513632]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2012-01-31 33344]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2012-03-29 19784]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-01-20 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-01-20 163416]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2017-01-21 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2017-01-21 47672]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2016-11-01 82824]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-17 14692896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-02-29 4757608]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-05 331264]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2011-12-05 355096]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2011-12-05 785688]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2011-12-02 11417088]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-12-26 40248]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-11-24 648808]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-12-23 412432]
R3 TVTI2C;Lenovo SM bus driver; C:\Windows\system32\DRIVERS\Tvti2c.sys [2011-05-29 40248]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2012-02-29 952832]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2017-01-20 37656]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-12-08 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-11-30 94720]
S3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2011-11-30 747008]
S3 Fastboot;Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [2012-01-17 70416]
S3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2012-02-14 60928]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2012-01-31 340584]
S3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tvtvcamd;ThinkVantage Virtual Camera; C:\Windows\system32\DRIVERS\tvtvcamd.sys [2011-12-08 27432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-24 81088]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-01-20 197128]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-02-22 1014096]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-02-22 1104208]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2011-11-09 8447848]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-12-08 618256]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2012-01-17 169776]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2016-11-01 184408]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-12-07 2429544]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-03 628448]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-03-06 128280]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-06 163608]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-06 277784]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-12-08 148752]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2011-12-29 144960]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-06 363800]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2012-02-02 145472]
S2 LPlatSvc;Lenovo Platform Service; C:\Windows\system32\LPlatSvc.exe [2016-11-01 711256]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-01-16 317400]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-02-22 1304912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-08 276248]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-12-22 1471168]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2016-12-07 273544]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-09 172488]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-12-08 273168]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Partner Service;Partner Service; C:\ProgramData\Partner\Partner.exe [2012-06-23 332272]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2012-03-29 1662528]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2012-03-29 165440]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-01-19 1464096]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-12-29 49480]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-01-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
Co je malý to je hezký. A když to hezký není, tak je toho alespoň málo .
.-
Rudy
- Site Admin
- Příspěvky: 119659
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Náhodné otevírání reklamních stránek v Chrome
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Náhodné otevírání reklamních stránek v Chrome
Děkuji! 24 hrozeb :/ . Log zde:
# AdwCleaner v6.043 - Log vytvořen 05/02/2017 v 20:23:22
# Aktualizováno dne 27/01/2017 z Malwarebytes
# Databáze : 2017-02-03.2 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Klára - KLARA-THINK
# Spuštěno z : C:\Users\Klára\Desktop\adwcleaner_6.043.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
[-] Služba smazána: Partner Service
***** [ Složky ] *****
[-] Složka smazána: C:\ProgramData\Partner
[#] Složka smazána po restartu: C:\ProgramData\Application Data\Partner
[-] Složka smazána: C:\Program Files (x86)\Amazon\ABB
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SOFTWARE\Classes\kt_bho.KettleBho
[-] Klíč smazán: HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[-] Klíč smazán: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\kt_bho.KettleBho
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] Klíč smazán: HKU\S-1-5-21-3600440682-1586874945-3464646807-1000\Software\Alexa Internet
[#] Klíč smazán po restartu: HKCU\Software\Alexa Internet
[#] Klíč smazán po restartu: [x64] HKCU\Software\Alexa Internet
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
***** [ Prohlížeče ] *****
[-] [C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: pbjikboenpfhbbejgkoklgkhjpfogcam
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [2764 Bajty] - [05/02/2017 20:23:22]
C:\AdwCleaner\AdwCleaner[S0].txt - [2987 Bajty] - [05/02/2017 20:23:01]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2910 Bajty] ##########
# AdwCleaner v6.043 - Log vytvořen 05/02/2017 v 20:23:22
# Aktualizováno dne 27/01/2017 z Malwarebytes
# Databáze : 2017-02-03.2 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Klára - KLARA-THINK
# Spuštěno z : C:\Users\Klára\Desktop\adwcleaner_6.043.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
[-] Služba smazána: Partner Service
***** [ Složky ] *****
[-] Složka smazána: C:\ProgramData\Partner
[#] Složka smazána po restartu: C:\ProgramData\Application Data\Partner
[-] Složka smazána: C:\Program Files (x86)\Amazon\ABB
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SOFTWARE\Classes\kt_bho.KettleBho
[-] Klíč smazán: HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[-] Klíč smazán: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\kt_bho.KettleBho
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] Klíč smazán: HKU\S-1-5-21-3600440682-1586874945-3464646807-1000\Software\Alexa Internet
[#] Klíč smazán po restartu: HKCU\Software\Alexa Internet
[#] Klíč smazán po restartu: [x64] HKCU\Software\Alexa Internet
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
***** [ Prohlížeče ] *****
[-] [C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: pbjikboenpfhbbejgkoklgkhjpfogcam
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [2764 Bajty] - [05/02/2017 20:23:22]
C:\AdwCleaner\AdwCleaner[S0].txt - [2987 Bajty] - [05/02/2017 20:23:01]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2910 Bajty] ##########
Co je malý to je hezký. A když to hezký není, tak je toho alespoň málo .
.-
Rudy
- Site Admin
- Příspěvky: 119659
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Náhodné otevírání reklamních stránek v Chrome
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Náhodné otevírání reklamních stránek v Chrome
Problém stále přetrvává 
...
...nový log zde:
Logfile of random's system information tool 1.14 (written by random/random)
Run by Klára at 2017-02-05 20:53:01
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 216 GB (84%) free of 256 GB
Total RAM: 3540 MB (51% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:53:03, on 5.2.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18538)
Boot mode: Normal
Running processes:
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Klára_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp- ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp- ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [Fastboot] C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HyperW7 Service (HyperW7Svc) - Lenovo Group Limited - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Platform Service (LPlatSvc) - Unknown owner - C:\Windows\system32\LPlatSvc.exe (file missing)
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 13099 bytes
======Enumerating Processes======
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe"
"C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 2842944
\??\C:\Windows\system32\conhost.exe "1039911970-181773070014080507991059254409-2050344074-179899094-14753442072120324384
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\Windows\system32\taskhost.exe
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\TpShocks.exe"
"C:\Windows\system32\NOTEPAD.EXE" C:\AdwCleaner\AdwCleaner[C0].txt
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
C:\Windows\SysWOW64\rundll32.exe
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Klára\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=55.0.2883.87 --handshake-handle=0xac
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=1212 --on-initialized-event-handle=564 --parent-handle=568 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Default/InstanceID/Enabled/MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/StrictSecureCookies/Enabled/SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=6,14,16,17,18,21,37,54,65 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2656 --gpu-driver-date=2-17-2012 --service-request-channel-token=C647BB68146BE5DB22521BDE9E2897E8 --mojo-platform-channel-handle=1200 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Default/*InstanceID/Enabled/MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=210AB6F1EE460D66382A30B2700FDC4E --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=210AB6F1EE460D66382A30B2700FDC4E --mojo-platform-channel-handle=2828 /prefetch:1
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=04AED5D26995C25B2D9F3BEDE3ABCE6B --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=04AED5D26995C25B2D9F3BEDE3ABCE6B --mojo-platform-channel-handle=4640 /prefetch:1
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=178616EE94E69988EC25BF6FA8B2E972 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=178616EE94E69988EC25BF6FA8B2E972 --mojo-platform-channel-handle=2416 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=A34BF4D06C550EC52AE773E98F58713E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=A34BF4D06C550EC52AE773E98F58713E --mojo-platform-channel-handle=5464 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=2CBD04D7AB46E8BEB648A7A7048A3257 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=2CBD04D7AB46E8BEB648A7A7048A3257 --mojo-platform-channel-handle=2312 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=78BCAE1DD71CBDC7B0C5288113647C03 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=78BCAE1DD71CBDC7B0C5288113647C03 --mojo-platform-channel-handle=5788 /prefetch:1
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=BE7821AAE462F5B4D693CA9F3F8A7528 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=BE7821AAE462F5B4D693CA9F3F8A7528 --mojo-platform-channel-handle=6732 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=6A20AEEA28AE819785E7B86AA85E2278 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=6A20AEEA28AE819785E7B86AA85E2278 --mojo-platform-channel-handle=7864 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=8DFF705DE112E87D6D059A7E90D29E37 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=8DFF705DE112E87D6D059A7E90D29E37 --mojo-platform-channel-handle=8608 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=6406F7C5CF843652988FF4FCFD0966DD --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=6406F7C5CF843652988FF4FCFD0966DD --mojo-platform-channel-handle=7044 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=BC7089E686D3077C8F39F58C50ABC96E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=BC7089E686D3077C8F39F58C50ABC96E --mojo-platform-channel-handle=8784 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=B4DBEEF809BC39866AEDC210D3F718C6 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=B4DBEEF809BC39866AEDC210D3F718C6 --mojo-platform-channel-handle=9544 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=0CFDDC811B94F78F7B57143DB5A1D927 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=0CFDDC811B94F78F7B57143DB5A1D927 --mojo-platform-channel-handle=9708 /prefetch:1
......nový log zde:
Logfile of random's system information tool 1.14 (written by random/random)
Run by Klára at 2017-02-05 20:53:01
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 216 GB (84%) free of 256 GB
Total RAM: 3540 MB (51% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:53:03, on 5.2.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18538)
Boot mode: Normal
Running processes:
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Klára_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp- ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp- ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [Fastboot] C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HyperW7 Service (HyperW7Svc) - Lenovo Group Limited - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Platform Service (LPlatSvc) - Unknown owner - C:\Windows\system32\LPlatSvc.exe (file missing)
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 13099 bytes
======Enumerating Processes======
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe"
"C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 2842944
\??\C:\Windows\system32\conhost.exe "1039911970-181773070014080507991059254409-2050344074-179899094-14753442072120324384
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\Windows\system32\taskhost.exe
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\TpShocks.exe"
"C:\Windows\system32\NOTEPAD.EXE" C:\AdwCleaner\AdwCleaner[C0].txt
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
C:\Windows\SysWOW64\rundll32.exe
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Klára\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=55.0.2883.87 --handshake-handle=0xac
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=1212 --on-initialized-event-handle=564 --parent-handle=568 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Default/InstanceID/Enabled/MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/StrictSecureCookies/Enabled/SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=6,14,16,17,18,21,37,54,65 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2656 --gpu-driver-date=2-17-2012 --service-request-channel-token=C647BB68146BE5DB22521BDE9E2897E8 --mojo-platform-channel-handle=1200 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Default/*InstanceID/Enabled/MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=210AB6F1EE460D66382A30B2700FDC4E --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=210AB6F1EE460D66382A30B2700FDC4E --mojo-platform-channel-handle=2828 /prefetch:1
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=04AED5D26995C25B2D9F3BEDE3ABCE6B --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=04AED5D26995C25B2D9F3BEDE3ABCE6B --mojo-platform-channel-handle=4640 /prefetch:1
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=178616EE94E69988EC25BF6FA8B2E972 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=178616EE94E69988EC25BF6FA8B2E972 --mojo-platform-channel-handle=2416 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=A34BF4D06C550EC52AE773E98F58713E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=A34BF4D06C550EC52AE773E98F58713E --mojo-platform-channel-handle=5464 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=2CBD04D7AB46E8BEB648A7A7048A3257 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=2CBD04D7AB46E8BEB648A7A7048A3257 --mojo-platform-channel-handle=2312 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=78BCAE1DD71CBDC7B0C5288113647C03 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=78BCAE1DD71CBDC7B0C5288113647C03 --mojo-platform-channel-handle=5788 /prefetch:1
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=BE7821AAE462F5B4D693CA9F3F8A7528 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=BE7821AAE462F5B4D693CA9F3F8A7528 --mojo-platform-channel-handle=6732 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=6A20AEEA28AE819785E7B86AA85E2278 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=6A20AEEA28AE819785E7B86AA85E2278 --mojo-platform-channel-handle=7864 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=8DFF705DE112E87D6D059A7E90D29E37 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=8DFF705DE112E87D6D059A7E90D29E37 --mojo-platform-channel-handle=8608 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=6406F7C5CF843652988FF4FCFD0966DD --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=6406F7C5CF843652988FF4FCFD0966DD --mojo-platform-channel-handle=7044 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=BC7089E686D3077C8F39F58C50ABC96E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=BC7089E686D3077C8F39F58C50ABC96E --mojo-platform-channel-handle=8784 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=B4DBEEF809BC39866AEDC210D3F718C6 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=B4DBEEF809BC39866AEDC210D3F718C6 --mojo-platform-channel-handle=9544 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=0CFDDC811B94F78F7B57143DB5A1D927 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=0CFDDC811B94F78F7B57143DB5A1D927 --mojo-platform-channel-handle=9708 /prefetch:1
Co je malý to je hezký. A když to hezký není, tak je toho alespoň málo .
.Re: Náhodné otevírání reklamních stránek v Chrome
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=278C8914A91FB6E458061C6ABF16D946 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=278C8914A91FB6E458061C6ABF16D946 --mojo-platform-channel-handle=11360 /prefetch:1
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi-broker --lang=cs --device-scale-factor=1 --ppapi-antialiased-text-enabled=1 --ppapi-subpixel-rendering-setting=1 --service-request-channel-token=FF2450B1308513FDCAD2EAAD0DE7143B --mojo-platform-channel-handle=12160 /prefetch:4
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe" /start
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=8FB46D8FF3C6985ECBD8CEB5609469DD --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=8FB46D8FF3C6985ECBD8CEB5609469DD --mojo-platform-channel-handle=2064 /prefetch:1
"C:\Users\Klára\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\avast! Emergency Update - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\Windows\system32\tasks\CreateHardwareScanTask - "C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe" WMI WMIController CreateFirstHWSchedule
C:\Windows\system32\tasks\DiskUpdate - C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\system32\tasks\PMTask - C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
C:\Windows\system32\tasks\Microsoft\Windows Defender\MpIdleTask - c:\program files\windows defender\MpCmdRun.exe -IdleTask -TaskName MpIdleTask
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\Lenovo\Lenovo Solution Center Launcher - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus
C:\Windows\system32\tasks\Lenovo\Message Center Plus Launcher - "%programfiles(x86)%\Lenovo\message center plus\mcplaunch.exe" /start
C:\Windows\system32\tasks\Lenovo\LSC\Lenovo Solution Center Notifications - C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
C:\Windows\system32\tasks\Lenovo\LSC\LSCHardwareScan - C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default
prefs.js - "browser.startup.homepage" - "https://www.google.com/?bcutc=sp-006"
prefs.js - "keyword.URL" - "https://www.google.com/search?bcutc=sp-006"
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\searchplugins\
google-avast.xml
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\addons.json
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\extensions.json
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\pluginreg.dat
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\browser\nppdf32.dll
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Windows Live Photo Gallery - 15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin - Silverlight Plug-In - 4.0.50401.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin - Java(TM) Platform SE 8 U121 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.1210.13 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npdeployJava1.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin - Picasa - 3.0.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
=========Google Chrome=========
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension legklhfpihknmgmlhiadachbaihccpho 1 Data generator 0.5
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.1
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension ombkllfdikmoepjdpmdaiinfbjpnkboa 2 Website Logon 2.0
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5516.1005.0.3
Homepage:
default_search_provider.search_url:
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 10,3,181,34 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\gcswf32.dll
Plugin 4.0.50401.0 Silverlight Plug-In c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin Chrome NaCl C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\ppGoogleNaClPluginChrome.dll
Plugin Chrome PDF Viewer C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\pdf.dll
Plugin 2012.1.0.30 Norton Confidential C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll
Plugin 1, 0, 0, 1 TrueSuite C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\ombkllfdikmoepjdpmdaiinfbjpnkboa\2.0_0\npwebsitelogon.dll
Plugin 1.3.32.7 Google Update C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin 15.4.3508.1109_ship.wlx.w4m4 (ship) Windows Live Photo Gallery C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin 1 Default Plug-in default_plugin
Homepage:
default_search_provider.search_url:
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={6A1806CD-94D4-4689-BA73-E35EA1EA9990}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}]
"URL"=https://www.google.com/search?bcutc=sp- ... earchTerms}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-01-20 790552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 234560]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-01-20 664848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-12-23 2868496]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-02-22 12452456]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-02-08 1158248]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-08 170264]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-08 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-08 440600]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2012-02-25 382528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BLEServicesCtrl]
C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-02-17 177936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-02-22 11406608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-12-22 4701888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2011-12-05 291096]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2011-11-25 548864]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2011-06-01 506712]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2012-01-17 1091376]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2017-01-20 9080768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-17 430080]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-02-05 20:21:33 ----D---- C:\AdwCleaner
2017-02-05 17:42:52 ----D---- C:\rsit
2017-02-05 17:42:52 ----D---- C:\Program Files\trend micro
2017-02-05 17:00:57 ----SHD---- C:\Config.Msi
2017-01-25 15:32:04 ----D---- C:\Users\Klára\AppData\Roaming\WinRAR
2017-01-25 11:47:30 ----D---- C:\Users\Klára\AppData\Roaming\dvdcss
2017-01-22 23:10:42 ----D---- C:\Users\Klára\AppData\Roaming\LibreOffice
2017-01-22 23:08:57 ----D---- C:\Program Files\LibreOffice 5
2017-01-21 18:01:00 ----D---- C:\Users\Klára\AppData\Roaming\java
2017-01-21 18:00:57 ----D---- C:\Users\Klára\AppData\Roaming\.minecraft
2017-01-21 18:00:07 ----D---- C:\Program Files (x86)\Minecraft
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2017-01-21 17:54:19 ----D---- C:\Program Files (x86)\Microsoft XNA
2017-01-21 13:58:25 ----D---- C:\Users\Klára\AppData\Roaming\Lenovo
2017-01-21 13:05:43 ----D---- C:\Program Files (x86)\Microsoft Works
2017-01-21 13:05:36 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2017-01-21 13:04:20 ----D---- C:\Program Files\Microsoft Office
2017-01-21 13:04:02 ----D---- C:\Windows\SHELLNEW
2017-01-21 13:03:55 ----D---- C:\ProgramData\Microsoft Help
2017-01-21 13:03:55 ----D---- C:\Program Files (x86)\Microsoft Office
2017-01-21 13:03:44 ----RHD---- C:\MSOCache
2017-01-21 12:57:37 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2017-01-21 12:57:27 ----D---- C:\Users\Klára\AppData\Roaming\DAEMON Tools Lite
2017-01-21 12:57:27 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2017-01-21 12:57:23 ----D---- C:\Program Files\DAEMON Tools Lite
2017-01-21 12:56:56 ----D---- C:\ProgramData\DAEMON Tools Lite
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wucltux.dll
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuauclt.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuapp.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuaueng.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuapi.dll
2017-01-21 00:12:29 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups2.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-01-21 00:11:20 ----D---- C:\Users\Klára\AppData\Roaming\Mozilla
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbport.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbohci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbhub.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbehci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbd.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2017-01-21 00:02:53 ----A---- C:\Windows\system32\wksprt.exe
2017-01-21 00:02:53 ----A---- C:\Windows\system32\mstscax.dll
2017-01-21 00:02:52 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\rdvidcrl.dll
2017-01-21 00:02:50 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2017-01-21 00:02:50 ----A---- C:\Windows\system32\KBDTAT.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDYAK.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU1.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDBASH.DLL
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpudd.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpcorets.dll
2017-01-21 00:01:29 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2017-01-21 00:01:29 ----A---- C:\Windows\system32\d2d1.dll
2017-01-21 00:01:16 ----A---- C:\Windows\system32\TSWbPrxy.exe
2017-01-20 23:53:29 ----D---- C:\Users\Klára\AppData\Roaming\Skype
2017-01-20 22:47:37 ----D---- C:\Users\Klára\AppData\Roaming\vlc
2017-01-20 22:31:05 ----D---- C:\Users\Klára\AppData\Roaming\AVAST Software
2017-01-20 22:29:54 ----D---- C:\Program Files\Common Files\AV
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswvmm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswStm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsp.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2017-01-20 22:29:37 ----A---- C:\Windows\system32\aswBoot.exe
2017-01-20 22:29:31 ----A---- C:\Windows\avastSS.scr
2017-01-20 22:29:22 ----D---- C:\Program Files\AVAST Software
2017-01-20 22:29:06 ----D---- C:\ProgramData\AVAST Software
2017-01-20 22:26:38 ----A---- C:\Windows\system32\pdfcmon.dll
2017-01-20 22:26:16 ----D---- C:\Program Files\PDFCreator
2017-01-20 22:25:42 ----D---- C:\Program Files\GIMP 2
2017-01-20 22:19:54 ----RD---- C:\Program Files (x86)\Skype
2017-01-20 22:19:40 ----D---- C:\ProgramData\Skype
2017-01-20 22:19:29 ----D---- C:\Program Files\VideoLAN
2017-01-20 22:19:21 ----D---- C:\Users\Klára\AppData\Roaming\IrfanView
2017-01-20 22:19:20 ----D---- C:\Program Files (x86)\IrfanView
2017-01-20 22:19:13 ----D---- C:\Program Files\WinRAR
2017-01-20 22:19:12 ----D---- C:\Program Files (x86)\Steam
2017-01-20 22:18:47 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2017-01-20 22:18:11 ----D---- C:\Program Files\Java
2017-01-20 22:16:30 ----D---- C:\Users\Klára\AppData\Roaming\Sun
2017-01-20 22:16:13 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2017-01-20 22:14:51 ----D---- C:\Program Files (x86)\Java
2017-01-20 22:14:49 ----D---- C:\ProgramData\Oracle
2017-01-20 22:11:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-20 22:11:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-01-20 21:25:42 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-01-20 21:25:40 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-01-20 21:25:40 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2017-01-20 21:25:39 ----A---- C:\Windows\system32\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2017-01-20 21:24:13 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2017-01-20 21:24:13 ----A---- C:\Windows\system32\rdpendp_winip.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iertutil.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\inseng.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\ie4uinit.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\urlmon.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\occache.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\iedkcs32.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-01-20 21:17:44 ----A---- C:\Windows\system32\msfeeds.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\iesetup.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\ieapfltr.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\dxtrans.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\vbscript.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\jsproxy.dll
2017-01-20 21:17:42 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieUnatt.exe
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieui.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieframe.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\dxtmsft.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\webcheck.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmled.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript9diag.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\wininet.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\jscript9.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\msrating.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\mshtml.dll
2017-01-20 21:17:38 ----A---- C:\Windows\system32\FntCache.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\DWrite.dll
2017-01-20 21:14:22 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2017-01-20 21:14:22 ----A---- C:\Windows\system32\d3d10warp.dll
2017-01-20 21:14:20 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2017-01-20 21:14:20 ----A---- C:\Windows\system32\d3d10level9.dll
2017-01-20 21:14:19 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2017-01-20 21:14:18 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2017-01-20 21:14:10 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2017-01-20 21:14:10 ----A---- C:\Windows\system32\WindowsCodecs.dll
2017-01-20 21:14:08 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2017-01-20 21:14:08 ----A---- C:\Windows\system32\WMPhoto.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZE.DLL
2017-01-20 21:13:42 ----A---- C:\Windows\system32\icaapi.dll
2017-01-20 21:13:41 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2017-01-20 20:55:02 ----D---- C:\Windows\SYSWOW64\Wat
2017-01-20 20:55:02 ----D---- C:\Windows\system32\Wat
2017-01-20 19:33:30 ----SHD---- C:\System Volume Information
2017-01-20 19:33:30 ----ASH---- C:\pagefile.sys
2017-01-20 19:33:25 ----ASH---- C:\hiberfil.sys
2017-01-20 17:43:57 ----SD---- C:\Windows\system32\CompatTel
2017-01-20 17:43:57 ----D---- C:\Windows\system32\appraiser
2017-01-20 16:31:15 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:31:14 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:26:12 ----A---- C:\Windows\system32\IEUDINIT.EXE
2017-01-20 16:13:49 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\msls31.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2017-01-20 16:13:45 ----A---- C:\Windows\system32\elshyph.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\wextract.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\url.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\icardie.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshta.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2017-01-20 16:13:43 ----A---- C:\Windows\system32\jsIntl.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msls31.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\mshtmler.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedssync.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedsbs.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\iesysprep.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\ieapfltr.dat
2017-01-20 16:13:42 ----A---- C:\Windows\system32\IEAdvpack.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\wextract.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\url.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\pngfilt.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\licmgr10.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\iexpress.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\icardie.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\mshta.exe
2017-01-20 16:13:40 ----A---- C:\Windows\system32\imgutil.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\iepeers.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi-broker --lang=cs --device-scale-factor=1 --ppapi-antialiased-text-enabled=1 --ppapi-subpixel-rendering-setting=1 --service-request-channel-token=FF2450B1308513FDCAD2EAAD0DE7143B --mojo-platform-channel-handle=12160 /prefetch:4
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe" /start
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=8FB46D8FF3C6985ECBD8CEB5609469DD --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=8FB46D8FF3C6985ECBD8CEB5609469DD --mojo-platform-channel-handle=2064 /prefetch:1
"C:\Users\Klára\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\avast! Emergency Update - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\Windows\system32\tasks\CreateHardwareScanTask - "C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe" WMI WMIController CreateFirstHWSchedule
C:\Windows\system32\tasks\DiskUpdate - C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\system32\tasks\PMTask - C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
C:\Windows\system32\tasks\Microsoft\Windows Defender\MpIdleTask - c:\program files\windows defender\MpCmdRun.exe -IdleTask -TaskName MpIdleTask
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\Lenovo\Lenovo Solution Center Launcher - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus
C:\Windows\system32\tasks\Lenovo\Message Center Plus Launcher - "%programfiles(x86)%\Lenovo\message center plus\mcplaunch.exe" /start
C:\Windows\system32\tasks\Lenovo\LSC\Lenovo Solution Center Notifications - C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
C:\Windows\system32\tasks\Lenovo\LSC\LSCHardwareScan - C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default
prefs.js - "browser.startup.homepage" - "https://www.google.com/?bcutc=sp-006"
prefs.js - "keyword.URL" - "https://www.google.com/search?bcutc=sp-006"
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\searchplugins\
google-avast.xml
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\addons.json
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\extensions.json
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\pluginreg.dat
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\browser\nppdf32.dll
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Windows Live Photo Gallery - 15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin - Silverlight Plug-In - 4.0.50401.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin - Java(TM) Platform SE 8 U121 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.1210.13 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npdeployJava1.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin - Picasa - 3.0.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
=========Google Chrome=========
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension legklhfpihknmgmlhiadachbaihccpho 1 Data generator 0.5
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.1
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension ombkllfdikmoepjdpmdaiinfbjpnkboa 2 Website Logon 2.0
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5516.1005.0.3
Homepage:
default_search_provider.search_url:
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 10,3,181,34 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\gcswf32.dll
Plugin 4.0.50401.0 Silverlight Plug-In c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin Chrome NaCl C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\ppGoogleNaClPluginChrome.dll
Plugin Chrome PDF Viewer C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\pdf.dll
Plugin 2012.1.0.30 Norton Confidential C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll
Plugin 1, 0, 0, 1 TrueSuite C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\ombkllfdikmoepjdpmdaiinfbjpnkboa\2.0_0\npwebsitelogon.dll
Plugin 1.3.32.7 Google Update C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin 15.4.3508.1109_ship.wlx.w4m4 (ship) Windows Live Photo Gallery C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin 1 Default Plug-in default_plugin
Homepage:
default_search_provider.search_url:
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={6A1806CD-94D4-4689-BA73-E35EA1EA9990}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}]
"URL"=https://www.google.com/search?bcutc=sp- ... earchTerms}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-01-20 790552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 234560]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-01-20 664848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-12-23 2868496]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-02-22 12452456]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-02-08 1158248]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-08 170264]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-08 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-08 440600]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2012-02-25 382528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BLEServicesCtrl]
C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-02-17 177936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-02-22 11406608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-12-22 4701888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2011-12-05 291096]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2011-11-25 548864]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2011-06-01 506712]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2012-01-17 1091376]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2017-01-20 9080768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-17 430080]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-02-05 20:21:33 ----D---- C:\AdwCleaner
2017-02-05 17:42:52 ----D---- C:\rsit
2017-02-05 17:42:52 ----D---- C:\Program Files\trend micro
2017-02-05 17:00:57 ----SHD---- C:\Config.Msi
2017-01-25 15:32:04 ----D---- C:\Users\Klára\AppData\Roaming\WinRAR
2017-01-25 11:47:30 ----D---- C:\Users\Klára\AppData\Roaming\dvdcss
2017-01-22 23:10:42 ----D---- C:\Users\Klára\AppData\Roaming\LibreOffice
2017-01-22 23:08:57 ----D---- C:\Program Files\LibreOffice 5
2017-01-21 18:01:00 ----D---- C:\Users\Klára\AppData\Roaming\java
2017-01-21 18:00:57 ----D---- C:\Users\Klára\AppData\Roaming\.minecraft
2017-01-21 18:00:07 ----D---- C:\Program Files (x86)\Minecraft
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2017-01-21 17:54:19 ----D---- C:\Program Files (x86)\Microsoft XNA
2017-01-21 13:58:25 ----D---- C:\Users\Klára\AppData\Roaming\Lenovo
2017-01-21 13:05:43 ----D---- C:\Program Files (x86)\Microsoft Works
2017-01-21 13:05:36 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2017-01-21 13:04:20 ----D---- C:\Program Files\Microsoft Office
2017-01-21 13:04:02 ----D---- C:\Windows\SHELLNEW
2017-01-21 13:03:55 ----D---- C:\ProgramData\Microsoft Help
2017-01-21 13:03:55 ----D---- C:\Program Files (x86)\Microsoft Office
2017-01-21 13:03:44 ----RHD---- C:\MSOCache
2017-01-21 12:57:37 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2017-01-21 12:57:27 ----D---- C:\Users\Klára\AppData\Roaming\DAEMON Tools Lite
2017-01-21 12:57:27 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2017-01-21 12:57:23 ----D---- C:\Program Files\DAEMON Tools Lite
2017-01-21 12:56:56 ----D---- C:\ProgramData\DAEMON Tools Lite
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wucltux.dll
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuauclt.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuapp.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuaueng.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuapi.dll
2017-01-21 00:12:29 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups2.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-01-21 00:11:20 ----D---- C:\Users\Klára\AppData\Roaming\Mozilla
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbport.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbohci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbhub.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbehci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbd.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2017-01-21 00:02:53 ----A---- C:\Windows\system32\wksprt.exe
2017-01-21 00:02:53 ----A---- C:\Windows\system32\mstscax.dll
2017-01-21 00:02:52 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\rdvidcrl.dll
2017-01-21 00:02:50 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2017-01-21 00:02:50 ----A---- C:\Windows\system32\KBDTAT.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDYAK.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU1.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDBASH.DLL
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpudd.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpcorets.dll
2017-01-21 00:01:29 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2017-01-21 00:01:29 ----A---- C:\Windows\system32\d2d1.dll
2017-01-21 00:01:16 ----A---- C:\Windows\system32\TSWbPrxy.exe
2017-01-20 23:53:29 ----D---- C:\Users\Klára\AppData\Roaming\Skype
2017-01-20 22:47:37 ----D---- C:\Users\Klára\AppData\Roaming\vlc
2017-01-20 22:31:05 ----D---- C:\Users\Klára\AppData\Roaming\AVAST Software
2017-01-20 22:29:54 ----D---- C:\Program Files\Common Files\AV
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswvmm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswStm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsp.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2017-01-20 22:29:37 ----A---- C:\Windows\system32\aswBoot.exe
2017-01-20 22:29:31 ----A---- C:\Windows\avastSS.scr
2017-01-20 22:29:22 ----D---- C:\Program Files\AVAST Software
2017-01-20 22:29:06 ----D---- C:\ProgramData\AVAST Software
2017-01-20 22:26:38 ----A---- C:\Windows\system32\pdfcmon.dll
2017-01-20 22:26:16 ----D---- C:\Program Files\PDFCreator
2017-01-20 22:25:42 ----D---- C:\Program Files\GIMP 2
2017-01-20 22:19:54 ----RD---- C:\Program Files (x86)\Skype
2017-01-20 22:19:40 ----D---- C:\ProgramData\Skype
2017-01-20 22:19:29 ----D---- C:\Program Files\VideoLAN
2017-01-20 22:19:21 ----D---- C:\Users\Klára\AppData\Roaming\IrfanView
2017-01-20 22:19:20 ----D---- C:\Program Files (x86)\IrfanView
2017-01-20 22:19:13 ----D---- C:\Program Files\WinRAR
2017-01-20 22:19:12 ----D---- C:\Program Files (x86)\Steam
2017-01-20 22:18:47 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2017-01-20 22:18:11 ----D---- C:\Program Files\Java
2017-01-20 22:16:30 ----D---- C:\Users\Klára\AppData\Roaming\Sun
2017-01-20 22:16:13 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2017-01-20 22:14:51 ----D---- C:\Program Files (x86)\Java
2017-01-20 22:14:49 ----D---- C:\ProgramData\Oracle
2017-01-20 22:11:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-20 22:11:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-01-20 21:25:42 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-01-20 21:25:40 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-01-20 21:25:40 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2017-01-20 21:25:39 ----A---- C:\Windows\system32\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2017-01-20 21:24:13 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2017-01-20 21:24:13 ----A---- C:\Windows\system32\rdpendp_winip.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iertutil.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\inseng.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\ie4uinit.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\urlmon.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\occache.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\iedkcs32.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-01-20 21:17:44 ----A---- C:\Windows\system32\msfeeds.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\iesetup.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\ieapfltr.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\dxtrans.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\vbscript.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\jsproxy.dll
2017-01-20 21:17:42 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieUnatt.exe
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieui.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieframe.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\dxtmsft.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\webcheck.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmled.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript9diag.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\wininet.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\jscript9.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\msrating.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\mshtml.dll
2017-01-20 21:17:38 ----A---- C:\Windows\system32\FntCache.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\DWrite.dll
2017-01-20 21:14:22 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2017-01-20 21:14:22 ----A---- C:\Windows\system32\d3d10warp.dll
2017-01-20 21:14:20 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2017-01-20 21:14:20 ----A---- C:\Windows\system32\d3d10level9.dll
2017-01-20 21:14:19 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2017-01-20 21:14:18 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2017-01-20 21:14:10 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2017-01-20 21:14:10 ----A---- C:\Windows\system32\WindowsCodecs.dll
2017-01-20 21:14:08 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2017-01-20 21:14:08 ----A---- C:\Windows\system32\WMPhoto.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZE.DLL
2017-01-20 21:13:42 ----A---- C:\Windows\system32\icaapi.dll
2017-01-20 21:13:41 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2017-01-20 20:55:02 ----D---- C:\Windows\SYSWOW64\Wat
2017-01-20 20:55:02 ----D---- C:\Windows\system32\Wat
2017-01-20 19:33:30 ----SHD---- C:\System Volume Information
2017-01-20 19:33:30 ----ASH---- C:\pagefile.sys
2017-01-20 19:33:25 ----ASH---- C:\hiberfil.sys
2017-01-20 17:43:57 ----SD---- C:\Windows\system32\CompatTel
2017-01-20 17:43:57 ----D---- C:\Windows\system32\appraiser
2017-01-20 16:31:15 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:31:14 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:26:12 ----A---- C:\Windows\system32\IEUDINIT.EXE
2017-01-20 16:13:49 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\msls31.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2017-01-20 16:13:45 ----A---- C:\Windows\system32\elshyph.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\wextract.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\url.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\icardie.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshta.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2017-01-20 16:13:43 ----A---- C:\Windows\system32\jsIntl.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msls31.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\mshtmler.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedssync.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedsbs.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\iesysprep.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\ieapfltr.dat
2017-01-20 16:13:42 ----A---- C:\Windows\system32\IEAdvpack.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\wextract.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\url.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\pngfilt.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\licmgr10.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\iexpress.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\icardie.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\mshta.exe
2017-01-20 16:13:40 ----A---- C:\Windows\system32\imgutil.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\iepeers.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
Co je malý to je hezký. A když to hezký není, tak je toho alespoň málo .
.Re: Náhodné otevírání reklamních stránek v Chrome
2017-01-20 16:05:05 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2017-01-20 16:05:05 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsPrint.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\dxgi.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10.dll
2017-01-20 16:05:03 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2017-01-20 15:24:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-01-20 15:20:39 ----D---- C:\Windows\Migration
2017-01-20 13:31:45 ----A---- C:\Windows\system32\WUDFSvc.dll
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFx.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFPlatform.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFHost.exe
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2017-01-20 13:26:40 ----D---- C:\Windows\system32\MRT
2017-01-20 13:26:33 ----AC---- C:\Windows\system32\MRT.exe
2017-01-20 13:12:41 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2017-01-20 13:12:40 ----A---- C:\Windows\SYSWOW64\wmi.dll
2017-01-20 13:12:40 ----A---- C:\Windows\system32\wmi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2017-01-20 12:55:11 ----A---- C:\Windows\system32\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\system32\icardagt.exe
2017-01-20 12:55:10 ----A---- C:\Windows\SYSWOW64\icardres.dll
2017-01-20 12:55:10 ----A---- C:\Windows\system32\icardres.dll
2017-01-20 12:55:06 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2017-01-20 12:55:06 ----A---- C:\Windows\system32\TsWpfWrp.exe
2017-01-20 12:54:08 ----A---- C:\Windows\SYSWOW64\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\powertracker.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\perftrack.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6.dll
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbcir.sys
2017-01-20 12:52:49 ----A---- C:\Windows\system32\OxpsConverter.exe
2017-01-20 12:52:45 ----A---- C:\Windows\SYSWOW64\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\system32\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\notepad.exe
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\system32\nlasvc.dll
2017-01-20 12:52:37 ----A---- C:\Windows\system32\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\SYSWOW64\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\win32k.sys
2017-01-20 12:52:36 ----A---- C:\Windows\system32\UtcResources.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-01-20 12:52:36 ----A---- C:\Windows\system32\diagtrack.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\MSVidCtl.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\drmv2clt.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\blackbox.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\msi.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\ntdll.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\msi.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\winload.exe
2017-01-20 12:52:33 ----A---- C:\Windows\system32\scavengeui.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\rpcrt4.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\oleaut32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\lsasrv.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\advapi32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\winresume.exe
2017-01-20 12:52:32 ----A---- C:\Windows\system32\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\schannel.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\KernelBase.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kerberos.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\audiosrv.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WsmWmiPl.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wow64win.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wintrust.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\usp10.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\user32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\srcore.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\msv1_0.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\system32\gdi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptui.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\clfs.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\ci.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\AudioEng.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\atmfd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\user32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\wow64.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\winsrv.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\rpchttp.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\pcasvc.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\ncrypt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\msiexec.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfps.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\EncDump.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\dfsc.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\cng.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\consent.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\conhost.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\certcli.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\bcdedit.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\adtschema.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wdigest.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\TSpkg.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\rstrui.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\bowser.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\appid.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\cryptsp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\bcryptprimitives.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\audiodg.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appinfo.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appidsvc.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\mfps.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\srclient.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\smss.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\pcadm.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msihnd.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\lsass.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-01-20 12:52:28 ----A---- C:\Windows\system32\csrsrv.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\credssp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidapi.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\user.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wow64cpu.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\sspisrv.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcawrk.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcalua.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcaevts.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msmmsp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\apisetschema.dll
2017-01-20 12:52:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-01-20 12:52:26 ----A---- C:\Windows\system32\tzres.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\EncDec.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\CPFilters.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2017-01-20 12:50:39 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2017-01-20 12:50:39 ----A---- C:\Windows\system32\poqexec.exe
2017-01-20 12:50:34 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-01-20 12:50:34 ----A---- C:\Windows\system32\ole32.dll
2017-01-20 12:50:12 ----A---- C:\Windows\SYSWOW64\tdh.dll
2017-01-20 12:50:12 ----A---- C:\Windows\system32\tdh.dll
2017-01-20 12:49:39 ----A---- C:\Windows\system32\sysmain.dll
2017-01-20 12:48:56 ----A---- C:\Windows\system32\aitstatic.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\invagent.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\generaltel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\devinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\CompatTelRunner.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\centel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\appraiser.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aepic.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aeinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\acmigration.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\system32\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\diskperf.exe
2017-01-20 12:48:01 ----A---- C:\Windows\system32\basesrv.dll
2017-01-20 12:47:39 ----A---- C:\Windows\system32\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2017-01-20 12:47:27 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samsrv.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samlib.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\gameux.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\gameux.dll
2017-01-20 12:46:16 ----A---- C:\Windows\system32\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\explorer.exe
2017-01-20 12:46:15 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\explorer.exe
2017-01-20 12:46:12 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2017-01-20 12:46:12 ----A---- C:\Windows\system32\cryptdlg.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3.dll
2017-01-20 12:45:21 ----A---- C:\Windows\system32\rpcss.dll
2017-01-20 12:45:19 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\tdx.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\afd.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\dpnet.dll
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\cdd.dll
2017-01-20 12:45:17 ----A---- C:\Windows\SYSWOW64\mfds.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\profsvc.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\mfds.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\dfshim.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\charmap.exe
2017-01-20 12:45:14 ----A---- C:\Windows\system32\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\system32\charmap.exe
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidparse.sys
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidclass.sys
2017-01-20 12:45:12 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2017-01-20 12:45:12 ----A---- C:\Windows\system32\cewmdm.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\adprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\system32\wincredprovider.dll
2017-01-20 12:44:49 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2017-01-20 12:44:49 ----A---- C:\Windows\system32\wpdshext.dll
2017-01-20 12:44:48 ----A---- C:\Windows\system32\drivers\disk.sys
2017-01-20 12:44:04 ----A---- C:\Windows\system32\winlogon.exe
2017-01-20 12:44:03 ----A---- C:\Windows\SYSWOW64\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdrmemptylst.exe
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpwsx.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpcorekmts.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2017-01-20 12:43:48 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2017-01-20 12:43:48 ----A---- C:\Windows\system32\comctl32.dll
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\secproc_isv.dll
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate.exe
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\msdrm.dll
2017-01-20 12:43:00 ----A---- C:\Windows\system32\termsrv.dll
2017-01-20 12:42:33 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2017-01-20 12:42:33 ----A---- C:\Windows\system32\pku2u.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\Wdfres.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2017-01-20 12:41:55 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2017-01-20 12:41:55 ----A---- C:\Windows\system32\d3d11.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcore6.dll
2017-01-20 12:41:44 ----A---- C:\Windows\SYSWOW64\rastls.dll
2017-01-20 12:41:44 ----A---- C:\Windows\system32\rastls.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\credui.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\credui.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\synceng.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\synceng.dll
2017-01-20 12:41:08 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2017-01-20 12:41:07 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\drivers\rmcast.sys
2017-01-20 12:40:12 ----A---- C:\Windows\system32\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\msmpeg2adec.dll
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMVSDECD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\msmpeg2adec.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\COLORCNV.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMVENCOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\mcmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\COLORCNV.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVENCOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\devenum.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\SysFxUI.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\drivers\portcls.sys
2017-01-20 12:40:09 ----A---- C:\Windows\system32\devenum.dll
2017-01-20 12:40:08 ----A---- C:\Windows\SYSWOW64\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmk.sys
2017-01-20 12:39:58 ----A---- C:\Windows\SYSWOW64\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapibase.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapi.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\drivers\tpm.sys
2017-01-20 12:39:51 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\aelupsvc.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\netio.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\nlaapi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\ncsi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\iphlpsvc.dll
2017-01-20 12:38:04 ----A---- C:\Windows\SYSWOW64\osk.exe
2017-01-20 12:38:04 ----A---- C:\Windows\system32\osk.exe
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\FwRemoteSvr.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\IPSECSVC.DLL
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpsvc.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2017-01-20 12:37:56 ----A---- C:\Windows\system32\drivers\ntfs.sys
2017-01-20 12:37:49 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2017-01-20 12:37:49 ----A---- C:\Windows\system32\shdocvw.dll
2017-01-20 12:37:44 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2017-01-20 12:37:44 ----A---- C:\Windows\system32\TSWorkspace.dll
2017-01-20 12:37:42 ----A---- C:\Windows\system32\schedsvc.dll
2017-01-20 12:37:28 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\wpnpinst.exe
2017-01-20 12:37:28 ----A---- C:\Windows\system32\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\localspl.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetppui.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetpp.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ntprint.exe
2017-01-20 12:37:22 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\storport.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\system32\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\drivers\netbt.sys
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\browcli.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browser.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browcli.dll
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\stream.sys
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2017-01-20 12:37:10 ----A---- C:\Windows\system32\drivers\partmgr.sys
2017-01-20 12:37:09 ----A---- C:\Windows\system32\drivers\http.sys
2017-01-20 12:37:08 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2017-01-20 12:37:08 ----A---- C:\Windows\system32\imagehlp.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\services.exe
2017-01-20 12:37:07 ----A---- C:\Windows\system32\seclogon.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\drivers\bthport.sys
2017-01-20 12:37:06 ----A---- C:\Windows\system32\drivers\usb8023.sys
2017-01-20 12:37:05 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2017-01-20 12:37:04 ----A---- C:\Windows\system32\catsrvut.dll
2017-01-20 12:36:47 ----A---- C:\Windows\SYSWOW64\qedit.dll
2017-01-20 12:36:47 ----A---- C:\Windows\system32\qedit.dll
2017-01-20 12:36:42 ----A---- C:\Windows\system32\taskhost.exe
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\fixmapi.exe
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\fixmapi.exe
2017-01-20 12:36:40 ----A---- C:\Windows\SYSWOW64\packager.dll
2017-01-20 12:36:40 ----A---- C:\Windows\system32\packager.dll
2017-01-20 12:36:22 ----A---- C:\Windows\system32\drivers\ataport.sys
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwansvc.dll
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwanprotdim.dll
2017-01-20 12:28:18 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2017-01-20 12:28:18 ----A---- C:\Windows\system32\scesrv.dll
2017-01-20 12:28:17 ----A---- C:\Windows\system32\drivers\ndis.sys
2017-01-20 12:28:16 ----A---- C:\Windows\system32\drivers\fvevol.sys
2017-01-20 12:28:15 ----A---- C:\Windows\SYSWOW64\webio.dll
2017-01-20 12:28:15 ----A---- C:\Windows\system32\webio.dll
2017-01-20 12:25:45 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-01-20 12:25:45 ----A---- C:\Windows\system32\cdosys.dll
2017-01-20 12:25:31 ----A---- C:\Windows\system32\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certenc.dll
2017-01-20 12:25:30 ----A---- C:\Windows\system32\certenc.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\cscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\system32\cscript.exe
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\system32\IKEEXT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2017-01-20 12:24:31 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2017-01-20 12:24:31 ----A---- C:\Windows\system32\InkEd.dll
2017-01-20 12:18:44 ----A---- C:\Windows\SYSWOW64\els.dll
2017-01-20 12:18:44 ----A---- C:\Windows\system32\els.dll
2017-01-20 12:18:13 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2017-01-20 12:18:13 ----A---- C:\Windows\system32\clfsw32.dll
2017-01-20 11:50:09 ----D---- C:\Users\Klára\AppData\Roaming\PwrMgr
2017-01-20 11:49:09 ----D---- C:\Users\Klára\AppData\Roaming\Adobe
2017-01-20 11:43:18 ----D---- C:\Users\Klára\AppData\Roaming\LSC
2017-01-20 11:43:13 ----D---- C:\Users\Klára\AppData\Roaming\Leadertech
2017-01-20 11:42:39 ----D---- C:\Users\Klára\AppData\Roaming\Identities
2017-01-20 11:40:59 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2017-01-20 11:40:52 ----D---- C:\Program Files (x86)\Amazon
2017-01-20 11:39:43 ----A---- C:\Windows\firstboot.dat
2017-01-20 11:39:06 ----D---- C:\Users\Klára\AppData\Roaming\Intel
2017-01-20 11:39:05 ----SD---- C:\Users\Klára\AppData\Roaming\Microsoft
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Media Center Programs
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Macromedia
======List of files/folders modified in the last 1 month======
2017-02-05 20:38:12 ----D---- C:\Windows\system32\config
2017-02-05 20:28:38 ----D---- C:\Windows\System32
2017-02-05 20:28:38 ----D---- C:\Windows\inf
2017-02-05 20:28:38 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-02-05 20:27:50 ----D---- C:\Windows\Prefetch
2017-02-05 20:26:54 ----A---- C:\Windows\SYSWOW64\log.txt
2017-02-05 20:25:33 ----D---- C:\Windows\Temp
2017-02-05 20:23:18 ----HD---- C:\ProgramData
2017-02-05 17:42:52 ----RD---- C:\Program Files
2017-02-05 17:01:44 ----SHD---- C:\Windows\Installer
2017-02-05 17:00:40 ----D---- C:\Windows\SysWOW64
2017-02-05 16:57:22 ----D---- C:\Windows\system32\drivers
2017-02-03 09:23:12 ----D---- C:\Program Files (x86)\Common Files
2017-01-24 20:41:49 ----D---- C:\Windows\system32\wdi
2017-01-24 11:30:28 ----D---- C:\ProgramData\Adobe
2017-01-22 23:10:04 ----RSD---- C:\Windows\assembly
2017-01-22 23:09:16 ----RSD---- C:\Windows\Fonts
2017-01-21 18:42:16 ----D---- C:\Windows\rescache
2017-01-21 18:00:07 ----RD---- C:\Program Files (x86)
2017-01-21 17:33:53 ----D---- C:\Windows\winsxs
2017-01-21 17:31:17 ----D---- C:\Windows\system32\catroot2
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\winrm
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\slmgr
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\migwiz
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\en
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Defender
2017-01-21 17:13:58 ----D---- C:\Program Files\DVD Maker
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Defender
2017-01-21 17:13:57 ----D---- C:\Windows\SYSWOW64\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\WCN
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\DriverStore
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Dism
2017-01-21 17:13:54 ----D---- C:\Windows\system32\winrm
2017-01-21 17:13:54 ----D---- C:\Windows\system32\slmgr
2017-01-21 17:13:54 ----D---- C:\Windows\system32\migwiz
2017-01-21 17:13:54 ----D---- C:\Windows\system32\en
2017-01-21 17:13:54 ----D---- C:\Windows\system32\drivers\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\system32\Boot
2017-01-21 17:13:54 ----D---- C:\Windows\en-US
2017-01-21 17:13:53 ----D---- C:\Windows\system32\en-US
2017-01-21 17:13:50 ----D---- C:\Windows\system32\WCN
2017-01-21 17:13:50 ----D---- C:\Windows\system32\Dism
2017-01-21 17:13:49 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2017-01-21 17:13:49 ----D---- C:\Windows\Speech
2017-01-21 17:07:18 ----D---- C:\Program Files (x86)\Lenovo
2017-01-21 17:01:13 ----D---- C:\ProgramData\Lenovo
2017-01-21 15:39:11 ----D---- C:\Windows\Logs
2017-01-21 15:02:33 ----D---- C:\Program Files (x86)\Lenovo Registration
2017-01-21 14:59:34 ----D---- C:\Program Files\Common Files
2017-01-21 14:46:37 ----D---- C:\Program Files\Lenovo
2017-01-21 14:46:37 ----D---- C:\Program Files (x86)\SugarSync
2017-01-21 14:41:03 ----D---- C:\Program Files\Common Files\Lenovo
2017-01-21 14:41:02 ----D---- C:\SWTOOLS
2017-01-21 14:40:09 ----D---- C:\Windows\Microsoft.NET
2017-01-21 14:24:46 ----D---- C:\Program Files (x86)\Windows Live
2017-01-21 14:13:19 ----D---- C:\Windows\system32\DriverStore
2017-01-21 14:00:58 ----D---- C:\Windows\Downloaded Installations
2017-01-21 13:05:27 ----SD---- C:\ProgramData\Microsoft
2017-01-21 13:05:27 ----D---- C:\Program Files (x86)\Microsoft.NET
2017-01-21 13:05:03 ----D---- C:\Program Files\Common Files\Microsoft Shared
2017-01-21 13:04:02 ----D---- C:\Windows
2017-01-21 11:56:49 ----D---- C:\Windows\AppCompat
2017-01-21 00:17:41 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-01-21 00:17:41 ----D---- C:\Windows\system32\cs-CZ
2017-01-21 00:17:40 ----D---- C:\Windows\system32\drivers\cs-CZ
2017-01-21 00:07:45 ----D---- C:\Program Files (x86)\Google
2017-01-20 23:52:46 ----D---- C:\ProgramData\Norton
2017-01-20 22:29:55 ----D---- C:\Windows\system32\Tasks
2017-01-20 22:06:56 ----D---- C:\Program Files (x86)\Adobe
2017-01-20 22:06:30 ----D---- C:\Program Files (x86)\Symantec
2017-01-20 22:00:13 ----D---- C:\Windows\PolicyDefinitions
2017-01-20 22:00:13 ----D---- C:\Program Files\Internet Explorer
2017-01-20 22:00:12 ----D---- C:\Program Files (x86)\Internet Explorer
2017-01-20 21:55:39 ----D---- C:\Program Files\Google
2017-01-20 21:54:12 ----D---- C:\Windows\SYSWOW64\wbem
2017-01-20 21:54:12 ----D---- C:\Windows\system32\wbem
2017-01-20 20:55:46 ----D---- C:\Windows\tracing
2017-01-20 17:44:26 ----D---- C:\Windows\ehome
2017-01-20 17:44:25 ----D---- C:\Program Files\Common Files\System
2017-01-20 17:44:22 ----D---- C:\Windows\SYSWOW64\migration
2017-01-20 17:44:20 ----D---- C:\Windows\system32\migration
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-TW
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-HK
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-CN
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\tr-TR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\sv-SE
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-PT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-BR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pl-PL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\nl-NL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ko-KR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ja-JP
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\it-IT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\hu-HU
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fr-FR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fi-FI
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\es-ES
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\el-GR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\de-DE
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\ru-RU
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\nb-NO
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\da-DK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\zh-HK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-PT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-BR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pl-PL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\nl-NL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\ko-KR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\it-IT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\hu-HU
2017-01-20 17:44:17 ----D---- C:\Windows\system32\fr-FR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\el-GR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-TW
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-CN
2017-01-20 17:44:16 ----D---- C:\Windows\system32\tr-TR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\sv-SE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ru-RU
2017-01-20 17:44:16 ----D---- C:\Windows\system32\nb-NO
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ja-JP
2017-01-20 17:44:16 ----D---- C:\Windows\system32\fi-FI
2017-01-20 17:44:16 ----D---- C:\Windows\system32\es-ES
2017-01-20 17:44:16 ----D---- C:\Windows\system32\de-DE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\da-DK
2017-01-20 17:44:00 ----D---- C:\Windows\system32\AdvancedInstallers
2017-01-20 17:43:57 ----D---- C:\Windows\AppPatch
2017-01-20 17:43:38 ----D---- C:\Windows\system32\CodeIntegrity
2017-01-20 16:57:03 ----D---- C:\Windows\system32\catroot
2017-01-20 13:26:40 ----D---- C:\Windows\debug
2017-01-20 12:56:28 ----D---- C:\Windows\SoftwareDistribution
2017-01-20 11:42:37 ----SHD---- C:\$Recycle.Bin
2017-01-20 11:41:00 ----D---- C:\Windows\Panther
2017-01-20 11:39:05 ----RD---- C:\Users
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2017-01-20 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2017-01-20 293352]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-11-30 568600]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2011-12-05 16152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-12-29 147784]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-12-29 25416]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-01-20 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-01-20 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-01-20 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-01-20 513632]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2012-01-31 33344]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2012-03-29 19784]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-01-20 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-01-20 163416]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2017-01-21 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2017-01-21 47672]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2016-11-01 82824]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-17 14692896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-02-29 4757608]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-05 331264]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2011-12-05 355096]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2011-12-05 785688]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2011-12-02 11417088]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-12-26 40248]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-11-24 648808]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-12-23 412432]
R3 TVTI2C;Lenovo SM bus driver; C:\Windows\system32\DRIVERS\Tvti2c.sys [2011-05-29 40248]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2012-02-29 952832]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2017-01-20 37656]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-12-08 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-11-30 94720]
S3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2011-11-30 747008]
S3 Fastboot;Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [2012-01-17 70416]
S3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2012-02-14 60928]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2012-01-31 340584]
S3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tvtvcamd;ThinkVantage Virtual Camera; C:\Windows\system32\DRIVERS\tvtvcamd.sys [2011-12-08 27432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-24 81088]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-01-20 197128]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-02-22 1014096]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-02-22 1104208]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2011-11-09 8447848]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-12-08 618256]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2012-01-17 169776]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2016-11-01 184408]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-12-07 2429544]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-03 628448]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-03-06 128280]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-06 163608]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-06 277784]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-12-08 148752]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2011-12-29 144960]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-06 363800]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2012-02-02 145472]
S2 LPlatSvc;Lenovo Platform Service; C:\Windows\system32\LPlatSvc.exe [2016-11-01 711256]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-01-16 317400]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-02-22 1304912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-08 276248]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-12-22 1471168]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2016-12-07 273544]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-09 172488]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-12-08 273168]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2012-03-29 1662528]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2012-03-29 165440]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-01-19 1464096]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-12-29 49480]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-01-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
2017-01-20 16:05:05 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsPrint.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\dxgi.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10.dll
2017-01-20 16:05:03 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2017-01-20 15:24:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-01-20 15:20:39 ----D---- C:\Windows\Migration
2017-01-20 13:31:45 ----A---- C:\Windows\system32\WUDFSvc.dll
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFx.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFPlatform.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFHost.exe
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2017-01-20 13:26:40 ----D---- C:\Windows\system32\MRT
2017-01-20 13:26:33 ----AC---- C:\Windows\system32\MRT.exe
2017-01-20 13:12:41 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2017-01-20 13:12:40 ----A---- C:\Windows\SYSWOW64\wmi.dll
2017-01-20 13:12:40 ----A---- C:\Windows\system32\wmi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2017-01-20 12:55:11 ----A---- C:\Windows\system32\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\system32\icardagt.exe
2017-01-20 12:55:10 ----A---- C:\Windows\SYSWOW64\icardres.dll
2017-01-20 12:55:10 ----A---- C:\Windows\system32\icardres.dll
2017-01-20 12:55:06 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2017-01-20 12:55:06 ----A---- C:\Windows\system32\TsWpfWrp.exe
2017-01-20 12:54:08 ----A---- C:\Windows\SYSWOW64\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\powertracker.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\perftrack.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6.dll
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbcir.sys
2017-01-20 12:52:49 ----A---- C:\Windows\system32\OxpsConverter.exe
2017-01-20 12:52:45 ----A---- C:\Windows\SYSWOW64\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\system32\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\notepad.exe
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\system32\nlasvc.dll
2017-01-20 12:52:37 ----A---- C:\Windows\system32\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\SYSWOW64\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\win32k.sys
2017-01-20 12:52:36 ----A---- C:\Windows\system32\UtcResources.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-01-20 12:52:36 ----A---- C:\Windows\system32\diagtrack.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\MSVidCtl.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\drmv2clt.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\blackbox.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\msi.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\ntdll.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\msi.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\winload.exe
2017-01-20 12:52:33 ----A---- C:\Windows\system32\scavengeui.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\rpcrt4.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\oleaut32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\lsasrv.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\advapi32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\winresume.exe
2017-01-20 12:52:32 ----A---- C:\Windows\system32\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\schannel.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\KernelBase.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kerberos.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\audiosrv.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WsmWmiPl.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wow64win.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wintrust.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\usp10.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\user32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\srcore.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\msv1_0.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\system32\gdi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptui.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\clfs.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\ci.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\AudioEng.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\atmfd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\user32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\wow64.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\winsrv.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\rpchttp.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\pcasvc.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\ncrypt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\msiexec.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfps.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\EncDump.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\dfsc.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\cng.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\consent.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\conhost.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\certcli.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\bcdedit.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\adtschema.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wdigest.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\TSpkg.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\rstrui.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\bowser.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\appid.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\cryptsp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\bcryptprimitives.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\audiodg.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appinfo.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appidsvc.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\mfps.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\srclient.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\smss.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\pcadm.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msihnd.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\lsass.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-01-20 12:52:28 ----A---- C:\Windows\system32\csrsrv.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\credssp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidapi.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\user.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wow64cpu.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\sspisrv.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcawrk.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcalua.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcaevts.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msmmsp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\apisetschema.dll
2017-01-20 12:52:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-01-20 12:52:26 ----A---- C:\Windows\system32\tzres.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\EncDec.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\CPFilters.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2017-01-20 12:50:39 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2017-01-20 12:50:39 ----A---- C:\Windows\system32\poqexec.exe
2017-01-20 12:50:34 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-01-20 12:50:34 ----A---- C:\Windows\system32\ole32.dll
2017-01-20 12:50:12 ----A---- C:\Windows\SYSWOW64\tdh.dll
2017-01-20 12:50:12 ----A---- C:\Windows\system32\tdh.dll
2017-01-20 12:49:39 ----A---- C:\Windows\system32\sysmain.dll
2017-01-20 12:48:56 ----A---- C:\Windows\system32\aitstatic.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\invagent.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\generaltel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\devinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\CompatTelRunner.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\centel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\appraiser.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aepic.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aeinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\acmigration.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\system32\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\diskperf.exe
2017-01-20 12:48:01 ----A---- C:\Windows\system32\basesrv.dll
2017-01-20 12:47:39 ----A---- C:\Windows\system32\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2017-01-20 12:47:27 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samsrv.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samlib.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\gameux.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\gameux.dll
2017-01-20 12:46:16 ----A---- C:\Windows\system32\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\explorer.exe
2017-01-20 12:46:15 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\explorer.exe
2017-01-20 12:46:12 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2017-01-20 12:46:12 ----A---- C:\Windows\system32\cryptdlg.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3.dll
2017-01-20 12:45:21 ----A---- C:\Windows\system32\rpcss.dll
2017-01-20 12:45:19 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\tdx.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\afd.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\dpnet.dll
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\cdd.dll
2017-01-20 12:45:17 ----A---- C:\Windows\SYSWOW64\mfds.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\profsvc.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\mfds.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\dfshim.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\charmap.exe
2017-01-20 12:45:14 ----A---- C:\Windows\system32\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\system32\charmap.exe
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidparse.sys
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidclass.sys
2017-01-20 12:45:12 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2017-01-20 12:45:12 ----A---- C:\Windows\system32\cewmdm.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\adprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\system32\wincredprovider.dll
2017-01-20 12:44:49 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2017-01-20 12:44:49 ----A---- C:\Windows\system32\wpdshext.dll
2017-01-20 12:44:48 ----A---- C:\Windows\system32\drivers\disk.sys
2017-01-20 12:44:04 ----A---- C:\Windows\system32\winlogon.exe
2017-01-20 12:44:03 ----A---- C:\Windows\SYSWOW64\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdrmemptylst.exe
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpwsx.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpcorekmts.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2017-01-20 12:43:48 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2017-01-20 12:43:48 ----A---- C:\Windows\system32\comctl32.dll
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\secproc_isv.dll
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate.exe
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\msdrm.dll
2017-01-20 12:43:00 ----A---- C:\Windows\system32\termsrv.dll
2017-01-20 12:42:33 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2017-01-20 12:42:33 ----A---- C:\Windows\system32\pku2u.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\Wdfres.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2017-01-20 12:41:55 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2017-01-20 12:41:55 ----A---- C:\Windows\system32\d3d11.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcore6.dll
2017-01-20 12:41:44 ----A---- C:\Windows\SYSWOW64\rastls.dll
2017-01-20 12:41:44 ----A---- C:\Windows\system32\rastls.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\credui.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\credui.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\synceng.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\synceng.dll
2017-01-20 12:41:08 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2017-01-20 12:41:07 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\drivers\rmcast.sys
2017-01-20 12:40:12 ----A---- C:\Windows\system32\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\msmpeg2adec.dll
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMVSDECD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\msmpeg2adec.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\COLORCNV.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMVENCOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\mcmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\COLORCNV.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVENCOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\devenum.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\SysFxUI.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\drivers\portcls.sys
2017-01-20 12:40:09 ----A---- C:\Windows\system32\devenum.dll
2017-01-20 12:40:08 ----A---- C:\Windows\SYSWOW64\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmk.sys
2017-01-20 12:39:58 ----A---- C:\Windows\SYSWOW64\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapibase.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapi.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\drivers\tpm.sys
2017-01-20 12:39:51 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\aelupsvc.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\netio.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\nlaapi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\ncsi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\iphlpsvc.dll
2017-01-20 12:38:04 ----A---- C:\Windows\SYSWOW64\osk.exe
2017-01-20 12:38:04 ----A---- C:\Windows\system32\osk.exe
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\FwRemoteSvr.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\IPSECSVC.DLL
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpsvc.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2017-01-20 12:37:56 ----A---- C:\Windows\system32\drivers\ntfs.sys
2017-01-20 12:37:49 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2017-01-20 12:37:49 ----A---- C:\Windows\system32\shdocvw.dll
2017-01-20 12:37:44 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2017-01-20 12:37:44 ----A---- C:\Windows\system32\TSWorkspace.dll
2017-01-20 12:37:42 ----A---- C:\Windows\system32\schedsvc.dll
2017-01-20 12:37:28 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\wpnpinst.exe
2017-01-20 12:37:28 ----A---- C:\Windows\system32\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\localspl.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetppui.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetpp.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ntprint.exe
2017-01-20 12:37:22 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\storport.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\system32\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\drivers\netbt.sys
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\browcli.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browser.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browcli.dll
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\stream.sys
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2017-01-20 12:37:10 ----A---- C:\Windows\system32\drivers\partmgr.sys
2017-01-20 12:37:09 ----A---- C:\Windows\system32\drivers\http.sys
2017-01-20 12:37:08 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2017-01-20 12:37:08 ----A---- C:\Windows\system32\imagehlp.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\services.exe
2017-01-20 12:37:07 ----A---- C:\Windows\system32\seclogon.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\drivers\bthport.sys
2017-01-20 12:37:06 ----A---- C:\Windows\system32\drivers\usb8023.sys
2017-01-20 12:37:05 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2017-01-20 12:37:04 ----A---- C:\Windows\system32\catsrvut.dll
2017-01-20 12:36:47 ----A---- C:\Windows\SYSWOW64\qedit.dll
2017-01-20 12:36:47 ----A---- C:\Windows\system32\qedit.dll
2017-01-20 12:36:42 ----A---- C:\Windows\system32\taskhost.exe
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\fixmapi.exe
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\fixmapi.exe
2017-01-20 12:36:40 ----A---- C:\Windows\SYSWOW64\packager.dll
2017-01-20 12:36:40 ----A---- C:\Windows\system32\packager.dll
2017-01-20 12:36:22 ----A---- C:\Windows\system32\drivers\ataport.sys
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwansvc.dll
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwanprotdim.dll
2017-01-20 12:28:18 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2017-01-20 12:28:18 ----A---- C:\Windows\system32\scesrv.dll
2017-01-20 12:28:17 ----A---- C:\Windows\system32\drivers\ndis.sys
2017-01-20 12:28:16 ----A---- C:\Windows\system32\drivers\fvevol.sys
2017-01-20 12:28:15 ----A---- C:\Windows\SYSWOW64\webio.dll
2017-01-20 12:28:15 ----A---- C:\Windows\system32\webio.dll
2017-01-20 12:25:45 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-01-20 12:25:45 ----A---- C:\Windows\system32\cdosys.dll
2017-01-20 12:25:31 ----A---- C:\Windows\system32\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certenc.dll
2017-01-20 12:25:30 ----A---- C:\Windows\system32\certenc.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\cscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\system32\cscript.exe
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\system32\IKEEXT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2017-01-20 12:24:31 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2017-01-20 12:24:31 ----A---- C:\Windows\system32\InkEd.dll
2017-01-20 12:18:44 ----A---- C:\Windows\SYSWOW64\els.dll
2017-01-20 12:18:44 ----A---- C:\Windows\system32\els.dll
2017-01-20 12:18:13 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2017-01-20 12:18:13 ----A---- C:\Windows\system32\clfsw32.dll
2017-01-20 11:50:09 ----D---- C:\Users\Klára\AppData\Roaming\PwrMgr
2017-01-20 11:49:09 ----D---- C:\Users\Klára\AppData\Roaming\Adobe
2017-01-20 11:43:18 ----D---- C:\Users\Klára\AppData\Roaming\LSC
2017-01-20 11:43:13 ----D---- C:\Users\Klára\AppData\Roaming\Leadertech
2017-01-20 11:42:39 ----D---- C:\Users\Klára\AppData\Roaming\Identities
2017-01-20 11:40:59 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2017-01-20 11:40:52 ----D---- C:\Program Files (x86)\Amazon
2017-01-20 11:39:43 ----A---- C:\Windows\firstboot.dat
2017-01-20 11:39:06 ----D---- C:\Users\Klára\AppData\Roaming\Intel
2017-01-20 11:39:05 ----SD---- C:\Users\Klára\AppData\Roaming\Microsoft
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Media Center Programs
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Macromedia
======List of files/folders modified in the last 1 month======
2017-02-05 20:38:12 ----D---- C:\Windows\system32\config
2017-02-05 20:28:38 ----D---- C:\Windows\System32
2017-02-05 20:28:38 ----D---- C:\Windows\inf
2017-02-05 20:28:38 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-02-05 20:27:50 ----D---- C:\Windows\Prefetch
2017-02-05 20:26:54 ----A---- C:\Windows\SYSWOW64\log.txt
2017-02-05 20:25:33 ----D---- C:\Windows\Temp
2017-02-05 20:23:18 ----HD---- C:\ProgramData
2017-02-05 17:42:52 ----RD---- C:\Program Files
2017-02-05 17:01:44 ----SHD---- C:\Windows\Installer
2017-02-05 17:00:40 ----D---- C:\Windows\SysWOW64
2017-02-05 16:57:22 ----D---- C:\Windows\system32\drivers
2017-02-03 09:23:12 ----D---- C:\Program Files (x86)\Common Files
2017-01-24 20:41:49 ----D---- C:\Windows\system32\wdi
2017-01-24 11:30:28 ----D---- C:\ProgramData\Adobe
2017-01-22 23:10:04 ----RSD---- C:\Windows\assembly
2017-01-22 23:09:16 ----RSD---- C:\Windows\Fonts
2017-01-21 18:42:16 ----D---- C:\Windows\rescache
2017-01-21 18:00:07 ----RD---- C:\Program Files (x86)
2017-01-21 17:33:53 ----D---- C:\Windows\winsxs
2017-01-21 17:31:17 ----D---- C:\Windows\system32\catroot2
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\winrm
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\slmgr
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\migwiz
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\en
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Defender
2017-01-21 17:13:58 ----D---- C:\Program Files\DVD Maker
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Defender
2017-01-21 17:13:57 ----D---- C:\Windows\SYSWOW64\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\WCN
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\DriverStore
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Dism
2017-01-21 17:13:54 ----D---- C:\Windows\system32\winrm
2017-01-21 17:13:54 ----D---- C:\Windows\system32\slmgr
2017-01-21 17:13:54 ----D---- C:\Windows\system32\migwiz
2017-01-21 17:13:54 ----D---- C:\Windows\system32\en
2017-01-21 17:13:54 ----D---- C:\Windows\system32\drivers\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\system32\Boot
2017-01-21 17:13:54 ----D---- C:\Windows\en-US
2017-01-21 17:13:53 ----D---- C:\Windows\system32\en-US
2017-01-21 17:13:50 ----D---- C:\Windows\system32\WCN
2017-01-21 17:13:50 ----D---- C:\Windows\system32\Dism
2017-01-21 17:13:49 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2017-01-21 17:13:49 ----D---- C:\Windows\Speech
2017-01-21 17:07:18 ----D---- C:\Program Files (x86)\Lenovo
2017-01-21 17:01:13 ----D---- C:\ProgramData\Lenovo
2017-01-21 15:39:11 ----D---- C:\Windows\Logs
2017-01-21 15:02:33 ----D---- C:\Program Files (x86)\Lenovo Registration
2017-01-21 14:59:34 ----D---- C:\Program Files\Common Files
2017-01-21 14:46:37 ----D---- C:\Program Files\Lenovo
2017-01-21 14:46:37 ----D---- C:\Program Files (x86)\SugarSync
2017-01-21 14:41:03 ----D---- C:\Program Files\Common Files\Lenovo
2017-01-21 14:41:02 ----D---- C:\SWTOOLS
2017-01-21 14:40:09 ----D---- C:\Windows\Microsoft.NET
2017-01-21 14:24:46 ----D---- C:\Program Files (x86)\Windows Live
2017-01-21 14:13:19 ----D---- C:\Windows\system32\DriverStore
2017-01-21 14:00:58 ----D---- C:\Windows\Downloaded Installations
2017-01-21 13:05:27 ----SD---- C:\ProgramData\Microsoft
2017-01-21 13:05:27 ----D---- C:\Program Files (x86)\Microsoft.NET
2017-01-21 13:05:03 ----D---- C:\Program Files\Common Files\Microsoft Shared
2017-01-21 13:04:02 ----D---- C:\Windows
2017-01-21 11:56:49 ----D---- C:\Windows\AppCompat
2017-01-21 00:17:41 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-01-21 00:17:41 ----D---- C:\Windows\system32\cs-CZ
2017-01-21 00:17:40 ----D---- C:\Windows\system32\drivers\cs-CZ
2017-01-21 00:07:45 ----D---- C:\Program Files (x86)\Google
2017-01-20 23:52:46 ----D---- C:\ProgramData\Norton
2017-01-20 22:29:55 ----D---- C:\Windows\system32\Tasks
2017-01-20 22:06:56 ----D---- C:\Program Files (x86)\Adobe
2017-01-20 22:06:30 ----D---- C:\Program Files (x86)\Symantec
2017-01-20 22:00:13 ----D---- C:\Windows\PolicyDefinitions
2017-01-20 22:00:13 ----D---- C:\Program Files\Internet Explorer
2017-01-20 22:00:12 ----D---- C:\Program Files (x86)\Internet Explorer
2017-01-20 21:55:39 ----D---- C:\Program Files\Google
2017-01-20 21:54:12 ----D---- C:\Windows\SYSWOW64\wbem
2017-01-20 21:54:12 ----D---- C:\Windows\system32\wbem
2017-01-20 20:55:46 ----D---- C:\Windows\tracing
2017-01-20 17:44:26 ----D---- C:\Windows\ehome
2017-01-20 17:44:25 ----D---- C:\Program Files\Common Files\System
2017-01-20 17:44:22 ----D---- C:\Windows\SYSWOW64\migration
2017-01-20 17:44:20 ----D---- C:\Windows\system32\migration
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-TW
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-HK
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-CN
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\tr-TR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\sv-SE
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-PT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-BR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pl-PL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\nl-NL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ko-KR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ja-JP
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\it-IT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\hu-HU
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fr-FR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fi-FI
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\es-ES
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\el-GR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\de-DE
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\ru-RU
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\nb-NO
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\da-DK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\zh-HK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-PT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-BR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pl-PL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\nl-NL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\ko-KR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\it-IT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\hu-HU
2017-01-20 17:44:17 ----D---- C:\Windows\system32\fr-FR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\el-GR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-TW
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-CN
2017-01-20 17:44:16 ----D---- C:\Windows\system32\tr-TR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\sv-SE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ru-RU
2017-01-20 17:44:16 ----D---- C:\Windows\system32\nb-NO
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ja-JP
2017-01-20 17:44:16 ----D---- C:\Windows\system32\fi-FI
2017-01-20 17:44:16 ----D---- C:\Windows\system32\es-ES
2017-01-20 17:44:16 ----D---- C:\Windows\system32\de-DE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\da-DK
2017-01-20 17:44:00 ----D---- C:\Windows\system32\AdvancedInstallers
2017-01-20 17:43:57 ----D---- C:\Windows\AppPatch
2017-01-20 17:43:38 ----D---- C:\Windows\system32\CodeIntegrity
2017-01-20 16:57:03 ----D---- C:\Windows\system32\catroot
2017-01-20 13:26:40 ----D---- C:\Windows\debug
2017-01-20 12:56:28 ----D---- C:\Windows\SoftwareDistribution
2017-01-20 11:42:37 ----SHD---- C:\$Recycle.Bin
2017-01-20 11:41:00 ----D---- C:\Windows\Panther
2017-01-20 11:39:05 ----RD---- C:\Users
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2017-01-20 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2017-01-20 293352]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-11-30 568600]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2011-12-05 16152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-12-29 147784]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-12-29 25416]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-01-20 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-01-20 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-01-20 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-01-20 513632]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2012-01-31 33344]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2012-03-29 19784]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-01-20 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-01-20 163416]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2017-01-21 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2017-01-21 47672]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2016-11-01 82824]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-17 14692896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-02-29 4757608]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-05 331264]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2011-12-05 355096]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2011-12-05 785688]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2011-12-02 11417088]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-12-26 40248]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-11-24 648808]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-12-23 412432]
R3 TVTI2C;Lenovo SM bus driver; C:\Windows\system32\DRIVERS\Tvti2c.sys [2011-05-29 40248]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2012-02-29 952832]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2017-01-20 37656]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-12-08 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-11-30 94720]
S3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2011-11-30 747008]
S3 Fastboot;Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [2012-01-17 70416]
S3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2012-02-14 60928]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2012-01-31 340584]
S3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tvtvcamd;ThinkVantage Virtual Camera; C:\Windows\system32\DRIVERS\tvtvcamd.sys [2011-12-08 27432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-24 81088]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-01-20 197128]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-02-22 1014096]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-02-22 1104208]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2011-11-09 8447848]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-12-08 618256]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2012-01-17 169776]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2016-11-01 184408]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-12-07 2429544]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-03 628448]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-03-06 128280]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-06 163608]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-06 277784]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-12-08 148752]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2011-12-29 144960]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-06 363800]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2012-02-02 145472]
S2 LPlatSvc;Lenovo Platform Service; C:\Windows\system32\LPlatSvc.exe [2016-11-01 711256]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-01-16 317400]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-02-22 1304912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-08 276248]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-12-22 1471168]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2016-12-07 273544]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-09 172488]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-12-08 273168]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2012-03-29 1662528]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2012-03-29 165440]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-01-19 1464096]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-12-29 49480]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-01-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
Co je malý to je hezký. A když to hezký není, tak je toho alespoň málo .
.-
Rudy
- Site Admin
- Příspěvky: 119659
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Náhodné otevírání reklamních stránek v Chrome
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]/64
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Náhodné otevírání reklamních stránek v Chrome
Log z OTM:
All processes killed
========== FILES ==========
File/Folder C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore not found.
File/Folder C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA not found.
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 314760 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Klára
->Temp folder emptied: 545643106 bytes
->Temporary Internet Files folder emptied: 203790800 bytes
->FireFox cache emptied: 27968108 bytes
->Google Chrome cache emptied: 442240288 bytes
->Flash cache emptied: 57052 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 218359391 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33298 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 736 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33298 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 1166 bytes
RecycleBin emptied: 26391191 bytes
Total Files Cleaned = 1 397,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Klára
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 02052017_233839
Files moved on Reboot...
C:\Users\Klára\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Klára\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. C:\Windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Log z RSIT:
Logfile of random's system information tool 1.14 (written by random/random)
Run by Klára at 2017-02-05 23:44:13
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 217 GB (85%) free of 256 GB
Total RAM: 3540 MB (50% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:44:15, on 5.2.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18538)
Boot mode: Normal
Running processes:
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files\trend micro\Klára_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp- ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp- ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [Fastboot] C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HyperW7 Service (HyperW7Svc) - Lenovo Group Limited - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Platform Service (LPlatSvc) - Unknown owner - C:\Windows\system32\LPlatSvc.exe (file missing)
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 12404 bytes
======Enumerating Processes======
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\winlogon.exe
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 4753696
\??\C:\Windows\system32\conhost.exe "-101478340-1714740363-21449927641582600829-1950324494-956677524884269601-689259963
C:\Windows\system32\taskeng.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\Windows\system32\taskhost.exe
"C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5e14e89a-7cab-4acc-95f6-09bd47a774da -SystemEventPortName:HostProcess-6fca9d25-f97b-44ce-85ce-56fb6ba6c1ea -IoCancelEventPortName:HostProcess-ae2dac4d-63b7-4306-821b-ab0b76977a92 -NonStateChangingEventPortName:HostProcess-14828ee9-c2e7-4f75-8c5b-f602afdc976f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bf7e66f7-7b6e-4a3f-914d-18a69ce78bd2 -DeviceGroupId:WpdFsGroup
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\02052017_233839.log
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
C:\Windows\SysWOW64\rundll32.exe
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Klára\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=55.0.2883.87 --handshake-handle=0xac
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=6136 --on-initialized-event-handle=564 --parent-handle=568 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Default/InstanceID/Enabled/MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/StrictSecureCookies/Enabled/SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=6,14,16,17,18,21,37,54,65 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2656 --gpu-driver-date=2-17-2012 --service-request-channel-token=9592B3F632912813FD6312392E975B86 --mojo-platform-channel-handle=1192 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Default/*InstanceID/Enabled/MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=D56066F708B8685A5D0F68EE1D12AC9C --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=D56066F708B8685A5D0F68EE1D12AC9C --mojo-platform-channel-handle=3892 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=882A027A4B53D90323A2C3ABA3101241 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=882A027A4B53D90323A2C3ABA3101241 --mojo-platform-channel-handle=2716 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=FBFE96F7811A0CD4BAD93D551F46065D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=FBFE96F7811A0CD4BAD93D551F46065D --mojo-platform-channel-handle=2936 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=BD9982095BA9DC30EBD382A7BA462BFD --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=BD9982095BA9DC30EBD382A7BA462BFD --mojo-platform-channel-handle=6240 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=C8FA9127889E3AD8DD8580E631968186 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=C8FA9127889E3AD8DD8580E631968186 --mojo-platform-channel-handle=2824 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=95E239C0B64C368090E400684B9E0057 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=95E239C0B64C368090E400684B9E0057 --mojo-platform-channel-handle=2192 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe" /start
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Klára\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\avast! Emergency Update - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\Windows\system32\tasks\CreateHardwareScanTask - "C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe" WMI WMIController CreateFirstHWSchedule
C:\Windows\system32\tasks\DiskUpdate - C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\system32\tasks\PMTask - C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
C:\Windows\system32\tasks\Microsoft\Windows Defender\MpIdleTask - c:\program files\windows defender\MpCmdRun.exe -IdleTask -TaskName MpIdleTask
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\Lenovo\Lenovo Solution Center Launcher - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus
C:\Windows\system32\tasks\Lenovo\Message Center Plus Launcher - "%programfiles(x86)%\Lenovo\message center plus\mcplaunch.exe" /start
C:\Windows\system32\tasks\Lenovo\LSC\Lenovo Solution Center Notifications - C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
C:\Windows\system32\tasks\Lenovo\LSC\LSCHardwareScan - C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default
prefs.js - "browser.startup.homepage" - "https://www.google.com/?bcutc=sp-006"
prefs.js - "keyword.URL" - "https://www.google.com/search?bcutc=sp-006"
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\searchplugins\
google-avast.xml
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\addons.json
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\extensions.json
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\pluginreg.dat
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\browser\nppdf32.dll
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Windows Live Photo Gallery - 15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin - Silverlight Plug-In - 4.0.50401.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin - Java(TM) Platform SE 8 U121 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.1210.13 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npdeployJava1.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin - Picasa - 3.0.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
=========Google Chrome=========
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension legklhfpihknmgmlhiadachbaihccpho 1 Data generator 0.5
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.1
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension ombkllfdikmoepjdpmdaiinfbjpnkboa 2 Website Logon 2.0
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5516.1005.0.3
Homepage:
default_search_provider.search_url:
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 10,3,181,34 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\gcswf32.dll
Plugin 4.0.50401.0 Silverlight Plug-In c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin Chrome NaCl C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\ppGoogleNaClPluginChrome.dll
Plugin Chrome PDF Viewer C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\pdf.dll
Plugin 2012.1.0.30 Norton Confidential C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll
Plugin 1, 0, 0, 1 TrueSuite C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\ombkllfdikmoepjdpmdaiinfbjpnkboa\2.0_0\npwebsitelogon.dll
Plugin 1.3.32.7 Google Update C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin 15.4.3508.1109_ship.wlx.w4m4 (ship) Windows Live Photo Gallery C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin 1 Default Plug-in default_plugin
Homepage:
default_search_provider.search_url:
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={6A1806CD-94D4-4689-BA73-E35EA1EA9990}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}]
"URL"=https://www.google.com/search?bcutc=sp- ... earchTerms}
All processes killed
========== FILES ==========
File/Folder C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore not found.
File/Folder C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA not found.
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 314760 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Klára
->Temp folder emptied: 545643106 bytes
->Temporary Internet Files folder emptied: 203790800 bytes
->FireFox cache emptied: 27968108 bytes
->Google Chrome cache emptied: 442240288 bytes
->Flash cache emptied: 57052 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 218359391 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33298 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 736 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33298 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 1166 bytes
RecycleBin emptied: 26391191 bytes
Total Files Cleaned = 1 397,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Klára
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 02052017_233839
Files moved on Reboot...
C:\Users\Klára\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Klára\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. C:\Windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Log z RSIT:
Logfile of random's system information tool 1.14 (written by random/random)
Run by Klára at 2017-02-05 23:44:13
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 217 GB (85%) free of 256 GB
Total RAM: 3540 MB (50% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:44:15, on 5.2.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18538)
Boot mode: Normal
Running processes:
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files\trend micro\Klára_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp- ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp- ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [Fastboot] C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HyperW7 Service (HyperW7Svc) - Lenovo Group Limited - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Platform Service (LPlatSvc) - Unknown owner - C:\Windows\system32\LPlatSvc.exe (file missing)
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 12404 bytes
======Enumerating Processes======
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\winlogon.exe
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 4753696
\??\C:\Windows\system32\conhost.exe "-101478340-1714740363-21449927641582600829-1950324494-956677524884269601-689259963
C:\Windows\system32\taskeng.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\Windows\system32\taskhost.exe
"C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5e14e89a-7cab-4acc-95f6-09bd47a774da -SystemEventPortName:HostProcess-6fca9d25-f97b-44ce-85ce-56fb6ba6c1ea -IoCancelEventPortName:HostProcess-ae2dac4d-63b7-4306-821b-ab0b76977a92 -NonStateChangingEventPortName:HostProcess-14828ee9-c2e7-4f75-8c5b-f602afdc976f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bf7e66f7-7b6e-4a3f-914d-18a69ce78bd2 -DeviceGroupId:WpdFsGroup
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\02052017_233839.log
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
C:\Windows\SysWOW64\rundll32.exe
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Klára\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=55.0.2883.87 --handshake-handle=0xac
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=6136 --on-initialized-event-handle=564 --parent-handle=568 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Default/InstanceID/Enabled/MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/StrictSecureCookies/Enabled/SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=6,14,16,17,18,21,37,54,65 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2656 --gpu-driver-date=2-17-2012 --service-request-channel-token=9592B3F632912813FD6312392E975B86 --mojo-platform-channel-handle=1192 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Default/*InstanceID/Enabled/MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=D56066F708B8685A5D0F68EE1D12AC9C --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=D56066F708B8685A5D0F68EE1D12AC9C --mojo-platform-channel-handle=3892 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=882A027A4B53D90323A2C3ABA3101241 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=882A027A4B53D90323A2C3ABA3101241 --mojo-platform-channel-handle=2716 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=FBFE96F7811A0CD4BAD93D551F46065D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=FBFE96F7811A0CD4BAD93D551F46065D --mojo-platform-channel-handle=2936 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=BD9982095BA9DC30EBD382A7BA462BFD --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=BD9982095BA9DC30EBD382A7BA462BFD --mojo-platform-channel-handle=6240 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=C8FA9127889E3AD8DD8580E631968186 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=C8FA9127889E3AD8DD8580E631968186 --mojo-platform-channel-handle=2824 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,MetricsReporting<MetricsAndCrashSampling,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/InReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNonBlockingIoJanuary/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=95E239C0B64C368090E400684B9E0057 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --service-request-channel-token=95E239C0B64C368090E400684B9E0057 --mojo-platform-channel-handle=2192 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe" /start
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Klára\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\avast! Emergency Update - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\Windows\system32\tasks\CreateHardwareScanTask - "C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe" WMI WMIController CreateFirstHWSchedule
C:\Windows\system32\tasks\DiskUpdate - C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate
C:\Windows\system32\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate
C:\Windows\system32\tasks\PMTask - C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
C:\Windows\system32\tasks\Microsoft\Windows Defender\MpIdleTask - c:\program files\windows defender\MpCmdRun.exe -IdleTask -TaskName MpIdleTask
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\Lenovo\Lenovo Solution Center Launcher - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus
C:\Windows\system32\tasks\Lenovo\Message Center Plus Launcher - "%programfiles(x86)%\Lenovo\message center plus\mcplaunch.exe" /start
C:\Windows\system32\tasks\Lenovo\LSC\Lenovo Solution Center Notifications - C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
C:\Windows\system32\tasks\Lenovo\LSC\LSCHardwareScan - C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default
prefs.js - "browser.startup.homepage" - "https://www.google.com/?bcutc=sp-006"
prefs.js - "keyword.URL" - "https://www.google.com/search?bcutc=sp-006"
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\searchplugins\
google-avast.xml
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\addons.json
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\extensions.json
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
C:\Users\Klára\AppData\Roaming\Mozilla\Firefox\Profiles\zmadb3to.default\pluginreg.dat
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\browser\nppdf32.dll
Plugin - Adobe Acrobat - 10.1.16.13 - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Windows Live Photo Gallery - 15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin - Silverlight Plug-In - 4.0.50401.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin - Java(TM) Platform SE 8 U121 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.1210.13 - 11.121.2.13 - C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npdeployJava1.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin - Intel® Identity Protection Technology - 2.0.59.0 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin - Picasa - 3.0.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
=========Google Chrome=========
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension legklhfpihknmgmlhiadachbaihccpho 1 Data generator 0.5
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.1
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension ombkllfdikmoepjdpmdaiinfbjpnkboa 2 Website Logon 2.0
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5516.1005.0.3
Homepage:
default_search_provider.search_url:
C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 10,3,181,34 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\gcswf32.dll
Plugin 4.0.50401.0 Silverlight Plug-In c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
Plugin Chrome NaCl C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\ppGoogleNaClPluginChrome.dll
Plugin Chrome PDF Viewer C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\pdf.dll
Plugin 2012.1.0.30 Norton Confidential C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll
Plugin 1, 0, 0, 1 TrueSuite C:\Users\Klára\AppData\Local\Google\Chrome\User Data\Default\Extensions\ombkllfdikmoepjdpmdaiinfbjpnkboa\2.0_0\npwebsitelogon.dll
Plugin 1.3.32.7 Google Update C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin 2.0.59.0 Intel® Identity Protection Technology C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin 15.4.3508.1109_ship.wlx.w4m4 (ship) Windows Live Photo Gallery C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Plugin 1 Default Plug-in default_plugin
Homepage:
default_search_provider.search_url:
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={6A1806CD-94D4-4689-BA73-E35EA1EA9990}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}]
"URL"=https://www.google.com/search?bcutc=sp- ... earchTerms}
Co je malý to je hezký. A když to hezký není, tak je toho alespoň málo .
.Re: Náhodné otevírání reklamních stránek v Chrome
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-01-20 790552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 234560]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-01-20 664848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-12-23 2868496]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-02-22 12452456]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-02-08 1158248]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-08 170264]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-08 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-08 440600]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2012-02-25 382528]
"Malwarebytes TrayApp"=C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2017-01-20 2780112]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BLEServicesCtrl]
C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-02-17 177936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-02-22 11406608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-12-22 4701888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2011-12-05 291096]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2011-11-25 548864]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2011-06-01 506712]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2012-01-17 1091376]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2017-01-20 9080768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-17 430080]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-02-05 23:38:39 ----D---- C:\_OTM
2017-02-05 21:36:51 ----A---- C:\Windows\system32\drivers\MBAMChameleon.sys
2017-02-05 21:34:40 ----A---- C:\Windows\system32\drivers\farflt.sys
2017-02-05 21:34:39 ----A---- C:\Windows\system32\drivers\mwac.sys
2017-02-05 21:34:34 ----A---- C:\Windows\system32\drivers\mbam.sys
2017-02-05 21:34:30 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2017-02-05 21:34:20 ----A---- C:\Windows\system32\drivers\mbae64.sys
2017-02-05 21:34:15 ----D---- C:\ProgramData\Malwarebytes
2017-02-05 21:34:15 ----D---- C:\Program Files\Malwarebytes
2017-02-05 20:21:33 ----D---- C:\AdwCleaner
2017-02-05 17:42:52 ----D---- C:\rsit
2017-02-05 17:42:52 ----D---- C:\Program Files\trend micro
2017-02-05 17:00:57 ----SHD---- C:\Config.Msi
2017-01-25 15:32:04 ----D---- C:\Users\Klára\AppData\Roaming\WinRAR
2017-01-25 11:47:30 ----D---- C:\Users\Klára\AppData\Roaming\dvdcss
2017-01-22 23:10:42 ----D---- C:\Users\Klára\AppData\Roaming\LibreOffice
2017-01-22 23:08:57 ----D---- C:\Program Files\LibreOffice 5
2017-01-21 18:01:00 ----D---- C:\Users\Klára\AppData\Roaming\java
2017-01-21 18:00:57 ----D---- C:\Users\Klára\AppData\Roaming\.minecraft
2017-01-21 18:00:07 ----D---- C:\Program Files (x86)\Minecraft
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2017-01-21 17:54:19 ----D---- C:\Program Files (x86)\Microsoft XNA
2017-01-21 13:58:25 ----D---- C:\Users\Klára\AppData\Roaming\Lenovo
2017-01-21 13:05:43 ----D---- C:\Program Files (x86)\Microsoft Works
2017-01-21 13:05:36 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2017-01-21 13:04:20 ----D---- C:\Program Files\Microsoft Office
2017-01-21 13:04:02 ----D---- C:\Windows\SHELLNEW
2017-01-21 13:03:55 ----D---- C:\ProgramData\Microsoft Help
2017-01-21 13:03:55 ----D---- C:\Program Files (x86)\Microsoft Office
2017-01-21 13:03:44 ----RHD---- C:\MSOCache
2017-01-21 12:57:37 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2017-01-21 12:57:27 ----D---- C:\Users\Klára\AppData\Roaming\DAEMON Tools Lite
2017-01-21 12:57:27 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2017-01-21 12:57:23 ----D---- C:\Program Files\DAEMON Tools Lite
2017-01-21 12:56:56 ----D---- C:\ProgramData\DAEMON Tools Lite
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wucltux.dll
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuauclt.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuapp.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuaueng.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuapi.dll
2017-01-21 00:12:29 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups2.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-01-21 00:11:20 ----D---- C:\Users\Klára\AppData\Roaming\Mozilla
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbport.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbohci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbhub.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbehci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbd.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2017-01-21 00:02:53 ----A---- C:\Windows\system32\wksprt.exe
2017-01-21 00:02:53 ----A---- C:\Windows\system32\mstscax.dll
2017-01-21 00:02:52 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\rdvidcrl.dll
2017-01-21 00:02:50 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2017-01-21 00:02:50 ----A---- C:\Windows\system32\KBDTAT.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDYAK.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU1.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDBASH.DLL
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpudd.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpcorets.dll
2017-01-21 00:01:29 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2017-01-21 00:01:29 ----A---- C:\Windows\system32\d2d1.dll
2017-01-21 00:01:16 ----A---- C:\Windows\system32\TSWbPrxy.exe
2017-01-20 23:53:29 ----D---- C:\Users\Klára\AppData\Roaming\Skype
2017-01-20 22:47:37 ----D---- C:\Users\Klára\AppData\Roaming\vlc
2017-01-20 22:31:05 ----D---- C:\Users\Klára\AppData\Roaming\AVAST Software
2017-01-20 22:29:54 ----D---- C:\Program Files\Common Files\AV
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswvmm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswStm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsp.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2017-01-20 22:29:37 ----A---- C:\Windows\system32\aswBoot.exe
2017-01-20 22:29:31 ----A---- C:\Windows\avastSS.scr
2017-01-20 22:29:22 ----D---- C:\Program Files\AVAST Software
2017-01-20 22:29:06 ----D---- C:\ProgramData\AVAST Software
2017-01-20 22:26:38 ----A---- C:\Windows\system32\pdfcmon.dll
2017-01-20 22:26:16 ----D---- C:\Program Files\PDFCreator
2017-01-20 22:25:42 ----D---- C:\Program Files\GIMP 2
2017-01-20 22:19:54 ----RD---- C:\Program Files (x86)\Skype
2017-01-20 22:19:40 ----D---- C:\ProgramData\Skype
2017-01-20 22:19:29 ----D---- C:\Program Files\VideoLAN
2017-01-20 22:19:21 ----D---- C:\Users\Klára\AppData\Roaming\IrfanView
2017-01-20 22:19:20 ----D---- C:\Program Files (x86)\IrfanView
2017-01-20 22:19:13 ----D---- C:\Program Files\WinRAR
2017-01-20 22:19:12 ----D---- C:\Program Files (x86)\Steam
2017-01-20 22:18:47 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2017-01-20 22:18:11 ----D---- C:\Program Files\Java
2017-01-20 22:16:30 ----D---- C:\Users\Klára\AppData\Roaming\Sun
2017-01-20 22:16:13 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2017-01-20 22:14:51 ----D---- C:\Program Files (x86)\Java
2017-01-20 22:14:49 ----D---- C:\ProgramData\Oracle
2017-01-20 22:11:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-20 22:11:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-01-20 21:25:42 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-01-20 21:25:40 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-01-20 21:25:40 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2017-01-20 21:25:39 ----A---- C:\Windows\system32\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2017-01-20 21:24:13 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2017-01-20 21:24:13 ----A---- C:\Windows\system32\rdpendp_winip.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iertutil.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\inseng.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\ie4uinit.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\urlmon.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\occache.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\iedkcs32.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-01-20 21:17:44 ----A---- C:\Windows\system32\msfeeds.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\iesetup.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\ieapfltr.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\dxtrans.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\vbscript.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\jsproxy.dll
2017-01-20 21:17:42 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieUnatt.exe
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieui.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieframe.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\dxtmsft.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\webcheck.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmled.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript9diag.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\wininet.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\jscript9.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\msrating.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\mshtml.dll
2017-01-20 21:17:38 ----A---- C:\Windows\system32\FntCache.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\DWrite.dll
2017-01-20 21:14:22 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2017-01-20 21:14:22 ----A---- C:\Windows\system32\d3d10warp.dll
2017-01-20 21:14:20 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2017-01-20 21:14:20 ----A---- C:\Windows\system32\d3d10level9.dll
2017-01-20 21:14:19 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2017-01-20 21:14:18 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2017-01-20 21:14:10 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2017-01-20 21:14:10 ----A---- C:\Windows\system32\WindowsCodecs.dll
2017-01-20 21:14:08 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2017-01-20 21:14:08 ----A---- C:\Windows\system32\WMPhoto.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZE.DLL
2017-01-20 21:13:42 ----A---- C:\Windows\system32\icaapi.dll
2017-01-20 21:13:41 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2017-01-20 20:55:02 ----D---- C:\Windows\SYSWOW64\Wat
2017-01-20 20:55:02 ----D---- C:\Windows\system32\Wat
2017-01-20 19:33:30 ----SHD---- C:\System Volume Information
2017-01-20 19:33:30 ----ASH---- C:\pagefile.sys
2017-01-20 19:33:25 ----ASH---- C:\hiberfil.sys
2017-01-20 17:43:57 ----SD---- C:\Windows\system32\CompatTel
2017-01-20 17:43:57 ----D---- C:\Windows\system32\appraiser
2017-01-20 16:31:15 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:31:14 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:26:12 ----A---- C:\Windows\system32\IEUDINIT.EXE
2017-01-20 16:13:49 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\msls31.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2017-01-20 16:13:45 ----A---- C:\Windows\system32\elshyph.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\wextract.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\url.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\icardie.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshta.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2017-01-20 16:13:43 ----A---- C:\Windows\system32\jsIntl.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msls31.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\mshtmler.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedssync.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedsbs.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\iesysprep.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\ieapfltr.dat
2017-01-20 16:13:42 ----A---- C:\Windows\system32\IEAdvpack.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\wextract.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\url.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\pngfilt.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\licmgr10.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\iexpress.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\icardie.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\mshta.exe
2017-01-20 16:13:40 ----A---- C:\Windows\system32\imgutil.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\iepeers.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-01-20 16:05:05 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2017-01-20 16:05:05 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsPrint.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\dxgi.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10.dll
2017-01-20 16:05:03 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2017-01-20 15:24:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-01-20 15:20:39 ----D---- C:\Windows\Migration
2017-01-20 13:31:45 ----A---- C:\Windows\system32\WUDFSvc.dll
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFx.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFPlatform.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFHost.exe
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2017-01-20 13:26:40 ----D---- C:\Windows\system32\MRT
2017-01-20 13:26:33 ----AC---- C:\Windows\system32\MRT.exe
2017-01-20 13:12:41 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2017-01-20 13:12:40 ----A---- C:\Windows\SYSWOW64\wmi.dll
2017-01-20 13:12:40 ----A---- C:\Windows\system32\wmi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2017-01-20 12:55:11 ----A---- C:\Windows\system32\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\system32\icardagt.exe
2017-01-20 12:55:10 ----A---- C:\Windows\SYSWOW64\icardres.dll
2017-01-20 12:55:10 ----A---- C:\Windows\system32\icardres.dll
2017-01-20 12:55:06 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2017-01-20 12:55:06 ----A---- C:\Windows\system32\TsWpfWrp.exe
2017-01-20 12:54:08 ----A---- C:\Windows\SYSWOW64\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\powertracker.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\perftrack.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6.dll
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbcir.sys
2017-01-20 12:52:49 ----A---- C:\Windows\system32\OxpsConverter.exe
2017-01-20 12:52:45 ----A---- C:\Windows\SYSWOW64\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\system32\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\notepad.exe
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\system32\nlasvc.dll
2017-01-20 12:52:37 ----A---- C:\Windows\system32\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\SYSWOW64\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\win32k.sys
2017-01-20 12:52:36 ----A---- C:\Windows\system32\UtcResources.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-01-20 12:52:36 ----A---- C:\Windows\system32\diagtrack.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\MSVidCtl.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\drmv2clt.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\blackbox.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\msi.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\ntdll.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\msi.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\winload.exe
2017-01-20 12:52:33 ----A---- C:\Windows\system32\scavengeui.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\rpcrt4.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\oleaut32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\lsasrv.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\advapi32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\winresume.exe
2017-01-20 12:52:32 ----A---- C:\Windows\system32\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\schannel.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\KernelBase.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kerberos.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\audiosrv.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WsmWmiPl.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wow64win.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wintrust.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\usp10.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\user32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\srcore.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\msv1_0.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\system32\gdi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptui.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\clfs.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\ci.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\AudioEng.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\atmfd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\user32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\wow64.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\winsrv.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\rpchttp.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\pcasvc.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\ncrypt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\msiexec.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfps.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\EncDump.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\dfsc.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\cng.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\consent.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\conhost.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\certcli.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\bcdedit.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\adtschema.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wdigest.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\TSpkg.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\rstrui.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\bowser.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\appid.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\cryptsp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\bcryptprimitives.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\audiodg.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appinfo.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appidsvc.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\mfps.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\srclient.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\smss.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\pcadm.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msihnd.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\lsass.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-01-20 12:52:28 ----A---- C:\Windows\system32\csrsrv.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\credssp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidapi.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\user.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wow64cpu.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\sspisrv.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcawrk.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcalua.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcaevts.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msmmsp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\apisetschema.dll
2017-01-20 12:52:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-01-20 12:52:26 ----A---- C:\Windows\system32\tzres.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\EncDec.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\CPFilters.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2017-01-20 12:50:39 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2017-01-20 12:50:39 ----A---- C:\Windows\system32\poqexec.exe
2017-01-20 12:50:34 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-01-20 12:50:34 ----A---- C:\Windows\system32\ole32.dll
2017-01-20 12:50:12 ----A---- C:\Windows\SYSWOW64\tdh.dll
2017-01-20 12:50:12 ----A---- C:\Windows\system32\tdh.dll
2017-01-20 12:49:39 ----A---- C:\Windows\system32\sysmain.dll
2017-01-20 12:48:56 ----A---- C:\Windows\system32\aitstatic.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\invagent.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\generaltel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\devinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\CompatTelRunner.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\centel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\appraiser.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aepic.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aeinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\acmigration.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\system32\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\diskperf.exe
2017-01-20 12:48:01 ----A---- C:\Windows\system32\basesrv.dll
2017-01-20 12:47:39 ----A---- C:\Windows\system32\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2017-01-20 12:47:27 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samsrv.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samlib.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\gameux.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\gameux.dll
2017-01-20 12:46:16 ----A---- C:\Windows\system32\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\explorer.exe
2017-01-20 12:46:15 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\explorer.exe
2017-01-20 12:46:12 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2017-01-20 12:46:12 ----A---- C:\Windows\system32\cryptdlg.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3.dll
2017-01-20 12:45:21 ----A---- C:\Windows\system32\rpcss.dll
2017-01-20 12:45:19 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\tdx.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\afd.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\dpnet.dll
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\cdd.dll
2017-01-20 12:45:17 ----A---- C:\Windows\SYSWOW64\mfds.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\profsvc.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\mfds.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\dfshim.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\charmap.exe
2017-01-20 12:45:14 ----A---- C:\Windows\system32\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\system32\charmap.exe
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidparse.sys
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidclass.sys
2017-01-20 12:45:12 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2017-01-20 12:45:12 ----A---- C:\Windows\system32\cewmdm.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\adprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\system32\wincredprovider.dll
2017-01-20 12:44:49 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2017-01-20 12:44:49 ----A---- C:\Windows\system32\wpdshext.dll
2017-01-20 12:44:48 ----A---- C:\Windows\system32\drivers\disk.sys
2017-01-20 12:44:04 ----A---- C:\Windows\system32\winlogon.exe
2017-01-20 12:44:03 ----A---- C:\Windows\SYSWOW64\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdrmemptylst.exe
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpwsx.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpcorekmts.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2017-01-20 12:43:48 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2017-01-20 12:43:48 ----A---- C:\Windows\system32\comctl32.dll
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\secproc_isv.dll
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate.exe
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\msdrm.dll
2017-01-20 12:43:00 ----A---- C:\Windows\system32\termsrv.dll
2017-01-20 12:42:33 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2017-01-20 12:42:33 ----A---- C:\Windows\system32\pku2u.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\Wdfres.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2017-01-20 12:41:55 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2017-01-20 12:41:55 ----A---- C:\Windows\system32\d3d11.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcore6.dll
2017-01-20 12:41:44 ----A---- C:\Windows\SYSWOW64\rastls.dll
2017-01-20 12:41:44 ----A---- C:\Windows\system32\rastls.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\credui.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\credui.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\synceng.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\synceng.dll
2017-01-20 12:41:08 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2017-01-20 12:41:07 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\drivers\rmcast.sys
2017-01-20 12:40:12 ----A---- C:\Windows\system32\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\msmpeg2adec.dll
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMVSDECD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\msmpeg2adec.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\COLORCNV.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMVENCOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\mcmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\COLORCNV.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVENCOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\devenum.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\SysFxUI.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\drivers\portcls.sys
2017-01-20 12:40:09 ----A---- C:\Windows\system32\devenum.dll
2017-01-20 12:40:08 ----A---- C:\Windows\SYSWOW64\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmk.sys
2017-01-20 12:39:58 ----A---- C:\Windows\SYSWOW64\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapibase.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapi.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\drivers\tpm.sys
2017-01-20 12:39:51 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\aelupsvc.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\netio.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\nlaapi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\ncsi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\iphlpsvc.dll
2017-01-20 12:38:04 ----A---- C:\Windows\SYSWOW64\osk.exe
2017-01-20 12:38:04 ----A---- C:\Windows\system32\osk.exe
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\FwRemoteSvr.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\IPSECSVC.DLL
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpsvc.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2017-01-20 12:37:56 ----A---- C:\Windows\system32\drivers\ntfs.sys
2017-01-20 12:37:49 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2017-01-20 12:37:49 ----A---- C:\Windows\system32\shdocvw.dll
2017-01-20 12:37:44 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2017-01-20 12:37:44 ----A---- C:\Windows\system32\TSWorkspace.dll
2017-01-20 12:37:42 ----A---- C:\Windows\system32\schedsvc.dll
2017-01-20 12:37:28 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\wpnpinst.exe
2017-01-20 12:37:28 ----A---- C:\Windows\system32\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\localspl.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetppui.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetpp.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ntprint.exe
2017-01-20 12:37:22 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\storport.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\system32\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\drivers\netbt.sys
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\browcli.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browser.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browcli.dll
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\stream.sys
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2017-01-20 12:37:10 ----A---- C:\Windows\system32\drivers\partmgr.sys
2017-01-20 12:37:09 ----A---- C:\Windows\system32\drivers\http.sys
2017-01-20 12:37:08 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2017-01-20 12:37:08 ----A---- C:\Windows\system32\imagehlp.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\services.exe
2017-01-20 12:37:07 ----A---- C:\Windows\system32\seclogon.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\drivers\bthport.sys
2017-01-20 12:37:06 ----A---- C:\Windows\system32\drivers\usb8023.sys
2017-01-20 12:37:05 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2017-01-20 12:37:04 ----A---- C:\Windows\system32\catsrvut.dll
2017-01-20 12:36:47 ----A---- C:\Windows\SYSWOW64\qedit.dll
2017-01-20 12:36:47 ----A---- C:\Windows\system32\qedit.dll
2017-01-20 12:36:42 ----A---- C:\Windows\system32\taskhost.exe
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\fixmapi.exe
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\fixmapi.exe
2017-01-20 12:36:40 ----A---- C:\Windows\SYSWOW64\packager.dll
2017-01-20 12:36:40 ----A---- C:\Windows\system32\packager.dll
2017-01-20 12:36:22 ----A---- C:\Windows\system32\drivers\ataport.sys
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwansvc.dll
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwanprotdim.dll
2017-01-20 12:28:18 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2017-01-20 12:28:18 ----A---- C:\Windows\system32\scesrv.dll
2017-01-20 12:28:17 ----A---- C:\Windows\system32\drivers\ndis.sys
2017-01-20 12:28:16 ----A---- C:\Windows\system32\drivers\fvevol.sys
2017-01-20 12:28:15 ----A---- C:\Windows\SYSWOW64\webio.dll
2017-01-20 12:28:15 ----A---- C:\Windows\system32\webio.dll
2017-01-20 12:25:45 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-01-20 12:25:45 ----A---- C:\Windows\system32\cdosys.dll
2017-01-20 12:25:31 ----A---- C:\Windows\system32\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certenc.dll
2017-01-20 12:25:30 ----A---- C:\Windows\system32\certenc.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\cscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\system32\cscript.exe
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\system32\IKEEXT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2017-01-20 12:24:31 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2017-01-20 12:24:31 ----A---- C:\Windows\system32\InkEd.dll
2017-01-20 12:18:44 ----A---- C:\Windows\SYSWOW64\els.dll
2017-01-20 12:18:44 ----A---- C:\Windows\system32\els.dll
2017-01-20 12:18:13 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2017-01-20 12:18:13 ----A---- C:\Windows\system32\clfsw32.dll
2017-01-20 11:50:09 ----D---- C:\Users\Klára\AppData\Roaming\PwrMgr
2017-01-20 11:49:09 ----D---- C:\Users\Klára\AppData\Roaming\Adobe
2017-01-20 11:43:18 ----D---- C:\Users\Klára\AppData\Roaming\LSC
2017-01-20 11:43:13 ----D---- C:\Users\Klára\AppData\Roaming\Leadertech
2017-01-20 11:42:39 ----D---- C:\Users\Klára\AppData\Roaming\Identities
2017-01-20 11:40:59 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2017-01-20 11:40:52 ----D---- C:\Program Files (x86)\Amazon
2017-01-20 11:39:43 ----A---- C:\Windows\firstboot.dat
2017-01-20 11:39:06 ----D---- C:\Users\Klára\AppData\Roaming\Intel
2017-01-20 11:39:05 ----SD---- C:\Users\Klára\AppData\Roaming\Microsoft
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Media Center Programs
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Macromedia
======List of files/folders modified in the last 1 month======
2017-02-05 23:44:15 ----D---- C:\Windows\Prefetch
2017-02-05 23:43:36 ----A---- C:\Windows\SYSWOW64\log.txt
2017-02-05 23:43:00 ----D---- C:\Windows\Temp
2017-02-05 23:41:37 ----D---- C:\Windows\system32\config
2017-02-05 23:07:15 ----D---- C:\Windows\System32
2017-02-05 23:07:15 ----D---- C:\Windows\inf
2017-02-05 23:07:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-02-05 21:36:51 ----D---- C:\Windows\system32\drivers
2017-02-05 21:34:15 ----RD---- C:\Program Files
2017-02-05 21:34:15 ----HD---- C:\ProgramData
2017-02-05 17:01:44 ----SHD---- C:\Windows\Installer
2017-02-05 17:00:40 ----D---- C:\Windows\SysWOW64
2017-02-03 09:23:12 ----D---- C:\Program Files (x86)\Common Files
2017-01-24 20:41:49 ----D---- C:\Windows\system32\wdi
2017-01-24 11:30:28 ----D---- C:\ProgramData\Adobe
2017-01-22 23:10:04 ----RSD---- C:\Windows\assembly
2017-01-22 23:09:16 ----RSD---- C:\Windows\Fonts
2017-01-21 18:42:16 ----D---- C:\Windows\rescache
2017-01-21 18:00:07 ----RD---- C:\Program Files (x86)
2017-01-21 17:33:53 ----D---- C:\Windows\winsxs
2017-01-21 17:31:17 ----D---- C:\Windows\system32\catroot2
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\winrm
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\slmgr
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\migwiz
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\en
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Defender
2017-01-21 17:13:58 ----D---- C:\Program Files\DVD Maker
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Defender
2017-01-21 17:13:57 ----D---- C:\Windows\SYSWOW64\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\WCN
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\DriverStore
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Dism
2017-01-21 17:13:54 ----D---- C:\Windows\system32\winrm
2017-01-21 17:13:54 ----D---- C:\Windows\system32\slmgr
2017-01-21 17:13:54 ----D---- C:\Windows\system32\migwiz
2017-01-21 17:13:54 ----D---- C:\Windows\system32\en
2017-01-21 17:13:54 ----D---- C:\Windows\system32\drivers\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\system32\Boot
2017-01-21 17:13:54 ----D---- C:\Windows\en-US
2017-01-21 17:13:53 ----D---- C:\Windows\system32\en-US
2017-01-21 17:13:50 ----D---- C:\Windows\system32\WCN
2017-01-21 17:13:50 ----D---- C:\Windows\system32\Dism
2017-01-21 17:13:49 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2017-01-21 17:13:49 ----D---- C:\Windows\Speech
2017-01-21 17:07:18 ----D---- C:\Program Files (x86)\Lenovo
2017-01-21 17:01:13 ----D---- C:\ProgramData\Lenovo
2017-01-21 15:39:11 ----D---- C:\Windows\Logs
2017-01-21 15:02:33 ----D---- C:\Program Files (x86)\Lenovo Registration
2017-01-21 14:59:34 ----D---- C:\Program Files\Common Files
2017-01-21 14:46:37 ----D---- C:\Program Files\Lenovo
2017-01-21 14:46:37 ----D---- C:\Program Files (x86)\SugarSync
2017-01-21 14:41:03 ----D---- C:\Program Files\Common Files\Lenovo
2017-01-21 14:41:02 ----D---- C:\SWTOOLS
2017-01-21 14:40:09 ----D---- C:\Windows\Microsoft.NET
2017-01-21 14:24:46 ----D---- C:\Program Files (x86)\Windows Live
2017-01-21 14:13:19 ----D---- C:\Windows\system32\DriverStore
2017-01-21 14:00:58 ----D---- C:\Windows\Downloaded Installations
2017-01-21 13:05:27 ----SD---- C:\ProgramData\Microsoft
2017-01-21 13:05:27 ----D---- C:\Program Files (x86)\Microsoft.NET
2017-01-21 13:05:03 ----D---- C:\Program Files\Common Files\Microsoft Shared
2017-01-21 13:04:02 ----D---- C:\Windows
2017-01-21 11:56:49 ----D---- C:\Windows\AppCompat
2017-01-21 00:17:41 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-01-21 00:17:41 ----D---- C:\Windows\system32\cs-CZ
2017-01-21 00:17:40 ----D---- C:\Windows\system32\drivers\cs-CZ
2017-01-21 00:07:45 ----D---- C:\Program Files (x86)\Google
2017-01-20 23:52:46 ----D---- C:\ProgramData\Norton
2017-01-20 22:29:55 ----D---- C:\Windows\system32\Tasks
2017-01-20 22:06:56 ----D---- C:\Program Files (x86)\Adobe
2017-01-20 22:06:30 ----D---- C:\Program Files (x86)\Symantec
2017-01-20 22:00:13 ----D---- C:\Windows\PolicyDefinitions
2017-01-20 22:00:13 ----D---- C:\Program Files\Internet Explorer
2017-01-20 22:00:12 ----D---- C:\Program Files (x86)\Internet Explorer
2017-01-20 21:55:39 ----D---- C:\Program Files\Google
2017-01-20 21:54:12 ----D---- C:\Windows\SYSWOW64\wbem
2017-01-20 21:54:12 ----D---- C:\Windows\system32\wbem
2017-01-20 20:55:46 ----D---- C:\Windows\tracing
2017-01-20 17:44:26 ----D---- C:\Windows\ehome
2017-01-20 17:44:25 ----D---- C:\Program Files\Common Files\System
2017-01-20 17:44:22 ----D---- C:\Windows\SYSWOW64\migration
2017-01-20 17:44:20 ----D---- C:\Windows\system32\migration
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-TW
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-HK
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-CN
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\tr-TR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\sv-SE
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-PT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-BR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pl-PL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\nl-NL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ko-KR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ja-JP
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\it-IT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\hu-HU
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fr-FR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fi-FI
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\es-ES
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\el-GR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\de-DE
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\ru-RU
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\nb-NO
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\da-DK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\zh-HK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-PT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-BR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pl-PL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\nl-NL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\ko-KR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\it-IT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\hu-HU
2017-01-20 17:44:17 ----D---- C:\Windows\system32\fr-FR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\el-GR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-TW
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-CN
2017-01-20 17:44:16 ----D---- C:\Windows\system32\tr-TR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\sv-SE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ru-RU
2017-01-20 17:44:16 ----D---- C:\Windows\system32\nb-NO
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ja-JP
2017-01-20 17:44:16 ----D---- C:\Windows\system32\fi-FI
2017-01-20 17:44:16 ----D---- C:\Windows\system32\es-ES
2017-01-20 17:44:16 ----D---- C:\Windows\system32\de-DE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\da-DK
2017-01-20 17:44:00 ----D---- C:\Windows\system32\AdvancedInstallers
2017-01-20 17:43:57 ----D---- C:\Windows\AppPatch
2017-01-20 17:43:38 ----D---- C:\Windows\system32\CodeIntegrity
2017-01-20 16:57:03 ----D---- C:\Windows\system32\catroot
2017-01-20 13:26:40 ----D---- C:\Windows\debug
2017-01-20 12:56:28 ----D---- C:\Windows\SoftwareDistribution
2017-01-20 11:42:37 ----SHD---- C:\$Recycle.Bin
2017-01-20 11:41:00 ----D---- C:\Windows\Panther
2017-01-20 11:39:05 ----RD---- C:\Users
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2017-01-20 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2017-01-20 293352]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-11-30 568600]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2011-12-05 16152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-12-29 147784]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-12-29 25416]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-01-20 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-01-20 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-01-20 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-01-20 513632]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\Windows\system32\drivers\mbae64.sys [2017-01-20 77416]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2012-01-31 33344]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2012-03-29 19784]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-01-20 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-01-20 163416]
R2 MBAMChameleon;MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [2017-02-05 176584]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2017-01-21 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2017-01-21 47672]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2016-11-01 82824]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-17 14692896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-02-29 4757608]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-05 331264]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2011-12-05 355096]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2011-12-05 785688]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2011-12-02 11417088]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-12-26 40248]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-11-24 648808]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-12-23 412432]
R3 TVTI2C;Lenovo SM bus driver; C:\Windows\system32\DRIVERS\Tvti2c.sys [2011-05-29 40248]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2012-02-29 952832]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2017-01-20 37656]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-12-08 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-11-30 94720]
S3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2011-11-30 747008]
S3 Fastboot;Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [2012-01-17 70416]
S3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2012-02-14 60928]
S3 MBAMFarflt;MBAMFarflt; \??\C:\Windows\system32\drivers\farflt.sys [2017-02-05 110536]
S3 MBAMProtection;MBAMProtection; \??\C:\Windows\system32\drivers\mbam.sys [2017-02-05 43968]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2017-02-05 251848]
S3 MBAMWebProtection;MBAMWebProtection; \??\C:\Windows\system32\drivers\mwac.sys [2017-02-05 81696]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2012-01-31 340584]
S3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tvtvcamd;ThinkVantage Virtual Camera; C:\Windows\system32\DRIVERS\tvtvcamd.sys [2011-12-08 27432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-24 81088]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-01-20 197128]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-02-22 1014096]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-02-22 1104208]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2011-11-09 8447848]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-12-08 618256]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2012-01-17 169776]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2016-11-01 184408]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-12-07 2429544]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-03 628448]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-03-06 128280]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-06 163608]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-06 277784]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-12-08 148752]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2011-12-29 144960]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-06 363800]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2012-02-02 145472]
S2 LPlatSvc;Lenovo Platform Service; C:\Windows\system32\LPlatSvc.exe [2016-11-01 711256]
S2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-01-20 4355024]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-01-16 317400]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-02-22 1304912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-08 276248]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-12-22 1471168]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2016-12-07 273544]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-09 172488]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-12-08 273168]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2012-03-29 1662528]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2012-03-29 165440]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-01-19 1464096]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-12-29 49480]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-01-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
FYI: Problém stále přetrvává.
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-01-20 790552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 234560]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-20 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-01-20 664848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-20 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-12-23 2868496]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-02-22 12452456]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-02-08 1158248]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-08 170264]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-08 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-08 440600]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2012-02-25 382528]
"Malwarebytes TrayApp"=C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2017-01-20 2780112]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BLEServicesCtrl]
C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-02-17 177936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-02-22 11406608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-12-22 4701888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2011-12-05 291096]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2011-11-25 548864]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2011-06-01 506712]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2012-01-17 1091376]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2017-01-20 9080768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-17 430080]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-02-05 23:38:39 ----D---- C:\_OTM
2017-02-05 21:36:51 ----A---- C:\Windows\system32\drivers\MBAMChameleon.sys
2017-02-05 21:34:40 ----A---- C:\Windows\system32\drivers\farflt.sys
2017-02-05 21:34:39 ----A---- C:\Windows\system32\drivers\mwac.sys
2017-02-05 21:34:34 ----A---- C:\Windows\system32\drivers\mbam.sys
2017-02-05 21:34:30 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2017-02-05 21:34:20 ----A---- C:\Windows\system32\drivers\mbae64.sys
2017-02-05 21:34:15 ----D---- C:\ProgramData\Malwarebytes
2017-02-05 21:34:15 ----D---- C:\Program Files\Malwarebytes
2017-02-05 20:21:33 ----D---- C:\AdwCleaner
2017-02-05 17:42:52 ----D---- C:\rsit
2017-02-05 17:42:52 ----D---- C:\Program Files\trend micro
2017-02-05 17:00:57 ----SHD---- C:\Config.Msi
2017-01-25 15:32:04 ----D---- C:\Users\Klára\AppData\Roaming\WinRAR
2017-01-25 11:47:30 ----D---- C:\Users\Klára\AppData\Roaming\dvdcss
2017-01-22 23:10:42 ----D---- C:\Users\Klára\AppData\Roaming\LibreOffice
2017-01-22 23:08:57 ----D---- C:\Program Files\LibreOffice 5
2017-01-21 18:01:00 ----D---- C:\Users\Klára\AppData\Roaming\java
2017-01-21 18:00:57 ----D---- C:\Users\Klára\AppData\Roaming\.minecraft
2017-01-21 18:00:07 ----D---- C:\Program Files (x86)\Minecraft
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2017-01-21 17:54:31 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2017-01-21 17:54:19 ----D---- C:\Program Files (x86)\Microsoft XNA
2017-01-21 13:58:25 ----D---- C:\Users\Klára\AppData\Roaming\Lenovo
2017-01-21 13:05:43 ----D---- C:\Program Files (x86)\Microsoft Works
2017-01-21 13:05:36 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2017-01-21 13:04:20 ----D---- C:\Program Files\Microsoft Office
2017-01-21 13:04:02 ----D---- C:\Windows\SHELLNEW
2017-01-21 13:03:55 ----D---- C:\ProgramData\Microsoft Help
2017-01-21 13:03:55 ----D---- C:\Program Files (x86)\Microsoft Office
2017-01-21 13:03:44 ----RHD---- C:\MSOCache
2017-01-21 12:57:37 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2017-01-21 12:57:27 ----D---- C:\Users\Klára\AppData\Roaming\DAEMON Tools Lite
2017-01-21 12:57:27 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2017-01-21 12:57:23 ----D---- C:\Program Files\DAEMON Tools Lite
2017-01-21 12:56:56 ----D---- C:\ProgramData\DAEMON Tools Lite
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wucltux.dll
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuauclt.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\wuapp.exe
2017-01-21 00:12:31 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-01-21 00:12:30 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuwebv.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wudriver.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuaueng.dll
2017-01-21 00:12:30 ----A---- C:\Windows\system32\wuapi.dll
2017-01-21 00:12:29 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups2.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wups.dll
2017-01-21 00:12:28 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-01-21 00:11:20 ----D---- C:\Users\Klára\AppData\Roaming\Mozilla
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbport.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbohci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbhub.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbehci.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbd.sys
2017-01-21 00:11:08 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2017-01-21 00:02:53 ----A---- C:\Windows\system32\wksprt.exe
2017-01-21 00:02:53 ----A---- C:\Windows\system32\mstscax.dll
2017-01-21 00:02:52 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\tsgqec.dll
2017-01-21 00:02:51 ----A---- C:\Windows\system32\rdvidcrl.dll
2017-01-21 00:02:50 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2017-01-21 00:02:50 ----A---- C:\Windows\system32\KBDTAT.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2017-01-21 00:02:49 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDYAK.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU1.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDRU.DLL
2017-01-21 00:02:48 ----A---- C:\Windows\system32\KBDBASH.DLL
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpudd.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-01-21 00:01:43 ----A---- C:\Windows\system32\rdpcorets.dll
2017-01-21 00:01:29 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2017-01-21 00:01:29 ----A---- C:\Windows\system32\d2d1.dll
2017-01-21 00:01:16 ----A---- C:\Windows\system32\TSWbPrxy.exe
2017-01-20 23:53:29 ----D---- C:\Users\Klára\AppData\Roaming\Skype
2017-01-20 22:47:37 ----D---- C:\Users\Klára\AppData\Roaming\vlc
2017-01-20 22:31:05 ----D---- C:\Users\Klára\AppData\Roaming\AVAST Software
2017-01-20 22:29:54 ----D---- C:\Program Files\Common Files\AV
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswvmm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswStm.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsp.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2017-01-20 22:29:40 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2017-01-20 22:29:37 ----A---- C:\Windows\system32\aswBoot.exe
2017-01-20 22:29:31 ----A---- C:\Windows\avastSS.scr
2017-01-20 22:29:22 ----D---- C:\Program Files\AVAST Software
2017-01-20 22:29:06 ----D---- C:\ProgramData\AVAST Software
2017-01-20 22:26:38 ----A---- C:\Windows\system32\pdfcmon.dll
2017-01-20 22:26:16 ----D---- C:\Program Files\PDFCreator
2017-01-20 22:25:42 ----D---- C:\Program Files\GIMP 2
2017-01-20 22:19:54 ----RD---- C:\Program Files (x86)\Skype
2017-01-20 22:19:40 ----D---- C:\ProgramData\Skype
2017-01-20 22:19:29 ----D---- C:\Program Files\VideoLAN
2017-01-20 22:19:21 ----D---- C:\Users\Klára\AppData\Roaming\IrfanView
2017-01-20 22:19:20 ----D---- C:\Program Files (x86)\IrfanView
2017-01-20 22:19:13 ----D---- C:\Program Files\WinRAR
2017-01-20 22:19:12 ----D---- C:\Program Files (x86)\Steam
2017-01-20 22:18:47 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2017-01-20 22:18:11 ----D---- C:\Program Files\Java
2017-01-20 22:16:30 ----D---- C:\Users\Klára\AppData\Roaming\Sun
2017-01-20 22:16:13 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2017-01-20 22:14:51 ----D---- C:\Program Files (x86)\Java
2017-01-20 22:14:49 ----D---- C:\ProgramData\Oracle
2017-01-20 22:11:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-20 22:11:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-01-20 21:25:42 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-01-20 21:25:40 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\wksprtPS.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-01-20 21:25:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-01-20 21:25:40 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2017-01-20 21:25:39 ----A---- C:\Windows\system32\mstsc.exe
2017-01-20 21:25:39 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2017-01-20 21:24:14 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2017-01-20 21:24:13 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2017-01-20 21:24:13 ----A---- C:\Windows\system32\rdpendp_winip.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iertutil.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\iernonce.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-01-20 21:17:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-01-20 21:17:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\inseng.dll
2017-01-20 21:17:46 ----A---- C:\Windows\system32\ie4uinit.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-01-20 21:17:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\urlmon.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\occache.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-01-20 21:17:45 ----A---- C:\Windows\system32\iedkcs32.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-01-20 21:17:44 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-01-20 21:17:44 ----A---- C:\Windows\system32\msfeeds.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\iesetup.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\ieapfltr.dll
2017-01-20 21:17:44 ----A---- C:\Windows\system32\dxtrans.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-01-20 21:17:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\vbscript.dll
2017-01-20 21:17:43 ----A---- C:\Windows\system32\jsproxy.dll
2017-01-20 21:17:42 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieUnatt.exe
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieui.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\ieframe.dll
2017-01-20 21:17:42 ----A---- C:\Windows\system32\dxtmsft.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\webcheck.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\mshtmled.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript9diag.dll
2017-01-20 21:17:41 ----A---- C:\Windows\system32\jscript.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\wininet.dll
2017-01-20 21:17:40 ----A---- C:\Windows\system32\jscript9.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\msrating.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-01-20 21:17:39 ----A---- C:\Windows\system32\mshtml.dll
2017-01-20 21:17:38 ----A---- C:\Windows\system32\FntCache.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\UIAnimation.dll
2017-01-20 21:17:37 ----A---- C:\Windows\system32\DWrite.dll
2017-01-20 21:14:22 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2017-01-20 21:14:22 ----A---- C:\Windows\system32\d3d10warp.dll
2017-01-20 21:14:20 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2017-01-20 21:14:20 ----A---- C:\Windows\system32\d3d10level9.dll
2017-01-20 21:14:19 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2017-01-20 21:14:18 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2017-01-20 21:14:10 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2017-01-20 21:14:10 ----A---- C:\Windows\system32\WindowsCodecs.dll
2017-01-20 21:14:08 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2017-01-20 21:14:08 ----A---- C:\Windows\system32\WMPhoto.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\kbdgeoqw.dll
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZEL.DLL
2017-01-20 21:14:05 ----A---- C:\Windows\system32\KBDAZE.DLL
2017-01-20 21:13:42 ----A---- C:\Windows\system32\icaapi.dll
2017-01-20 21:13:41 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2017-01-20 20:55:02 ----D---- C:\Windows\SYSWOW64\Wat
2017-01-20 20:55:02 ----D---- C:\Windows\system32\Wat
2017-01-20 19:33:30 ----SHD---- C:\System Volume Information
2017-01-20 19:33:30 ----ASH---- C:\pagefile.sys
2017-01-20 19:33:25 ----ASH---- C:\hiberfil.sys
2017-01-20 17:43:57 ----SD---- C:\Windows\system32\CompatTel
2017-01-20 17:43:57 ----D---- C:\Windows\system32\appraiser
2017-01-20 16:31:15 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:31:14 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-01-20 16:26:12 ----A---- C:\Windows\system32\IEUDINIT.EXE
2017-01-20 16:13:49 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\msls31.dll
2017-01-20 16:13:45 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2017-01-20 16:13:45 ----A---- C:\Windows\system32\elshyph.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\wextract.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\url.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2017-01-20 16:13:44 ----A---- C:\Windows\SYSWOW64\icardie.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\mshta.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2017-01-20 16:13:43 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2017-01-20 16:13:43 ----A---- C:\Windows\system32\jsIntl.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msls31.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\mshtmler.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedssync.exe
2017-01-20 16:13:42 ----A---- C:\Windows\system32\msfeedsbs.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\iesysprep.dll
2017-01-20 16:13:42 ----A---- C:\Windows\system32\ieapfltr.dat
2017-01-20 16:13:42 ----A---- C:\Windows\system32\IEAdvpack.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\wextract.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\url.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\pngfilt.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\licmgr10.dll
2017-01-20 16:13:41 ----A---- C:\Windows\system32\iexpress.exe
2017-01-20 16:13:41 ----A---- C:\Windows\system32\icardie.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\mshta.exe
2017-01-20 16:13:40 ----A---- C:\Windows\system32\imgutil.dll
2017-01-20 16:13:40 ----A---- C:\Windows\system32\iepeers.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-01-20 16:05:05 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-01-20 16:05:05 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2017-01-20 16:05:05 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsPrint.dll
2017-01-20 16:05:05 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\dxgi.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1core.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10_1.dll
2017-01-20 16:05:04 ----A---- C:\Windows\system32\d3d10.dll
2017-01-20 16:05:03 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2017-01-20 15:24:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-01-20 15:20:39 ----D---- C:\Windows\Migration
2017-01-20 13:31:45 ----A---- C:\Windows\system32\WUDFSvc.dll
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2017-01-20 13:31:45 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFx.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFPlatform.dll
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFHost.exe
2017-01-20 13:31:44 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2017-01-20 13:26:40 ----D---- C:\Windows\system32\MRT
2017-01-20 13:26:33 ----AC---- C:\Windows\system32\MRT.exe
2017-01-20 13:12:41 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2017-01-20 13:12:40 ----A---- C:\Windows\SYSWOW64\wmi.dll
2017-01-20 13:12:40 ----A---- C:\Windows\system32\wmi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2017-01-20 12:55:11 ----A---- C:\Windows\system32\infocardapi.dll
2017-01-20 12:55:11 ----A---- C:\Windows\system32\icardagt.exe
2017-01-20 12:55:10 ----A---- C:\Windows\SYSWOW64\icardres.dll
2017-01-20 12:55:10 ----A---- C:\Windows\system32\icardres.dll
2017-01-20 12:55:06 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2017-01-20 12:55:06 ----A---- C:\Windows\system32\TsWpfWrp.exe
2017-01-20 12:54:08 ----A---- C:\Windows\SYSWOW64\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\wdi.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\powertracker.dll
2017-01-20 12:54:08 ----A---- C:\Windows\system32\perftrack.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6r.dll
2017-01-20 12:53:15 ----A---- C:\Windows\system32\msxml6.dll
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2017-01-20 12:53:14 ----A---- C:\Windows\system32\drivers\usbcir.sys
2017-01-20 12:52:49 ----A---- C:\Windows\system32\OxpsConverter.exe
2017-01-20 12:52:45 ----A---- C:\Windows\SYSWOW64\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\system32\notepad.exe
2017-01-20 12:52:45 ----A---- C:\Windows\notepad.exe
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2017-01-20 12:52:44 ----A---- C:\Windows\system32\nlasvc.dll
2017-01-20 12:52:37 ----A---- C:\Windows\system32\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\SYSWOW64\wmp.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\win32k.sys
2017-01-20 12:52:36 ----A---- C:\Windows\system32\UtcResources.dll
2017-01-20 12:52:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-01-20 12:52:36 ----A---- C:\Windows\system32\diagtrack.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\MSVidCtl.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\mf.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\drmv2clt.dll
2017-01-20 12:52:35 ----A---- C:\Windows\system32\blackbox.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\msi.dll
2017-01-20 12:52:34 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\WsmSvc.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\ntdll.dll
2017-01-20 12:52:34 ----A---- C:\Windows\system32\msi.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2017-01-20 12:52:33 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\wmdrmsdk.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\winload.exe
2017-01-20 12:52:33 ----A---- C:\Windows\system32\scavengeui.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\rpcrt4.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\quartz.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\oleaut32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\lsasrv.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\crypt32.dll
2017-01-20 12:52:33 ----A---- C:\Windows\system32\advapi32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\SYSWOW64\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\winresume.exe
2017-01-20 12:52:32 ----A---- C:\Windows\system32\win32spl.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\schannel.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\msctf.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\KernelBase.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kernel32.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\kerberos.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\inetcomm.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\evr.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\authui.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\audiosrv.dll
2017-01-20 12:52:32 ----A---- C:\Windows\system32\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WsmWmiPl.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wow64win.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\wintrust.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\WebClnt.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\usp10.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\user32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\srcore.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\qdvd.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\msv1_0.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\IMJP10K.DLL
2017-01-20 12:52:31 ----A---- C:\Windows\system32\gdi32.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drmmgrtn.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptui.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\cryptsvc.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\clfs.sys
2017-01-20 12:52:31 ----A---- C:\Windows\system32\ci.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\AudioEng.dll
2017-01-20 12:52:31 ----A---- C:\Windows\system32\atmfd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\user32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2017-01-20 12:52:30 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\WsmAuto.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\wow64.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\winsrv.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\rpchttp.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\pcasvc.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\ncrypt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\msiexec.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfps.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\mfplat.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\EncDump.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\dfsc.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\drivers\cng.sys
2017-01-20 12:52:30 ----A---- C:\Windows\system32\davclnt.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\cryptnet.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\consent.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\conhost.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\certcli.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\bcdedit.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\AudioSes.dll
2017-01-20 12:52:30 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-01-20 12:52:30 ----A---- C:\Windows\system32\adtschema.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wmploc.DLL
2017-01-20 12:52:29 ----A---- C:\Windows\system32\wdigest.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\TSpkg.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\rstrui.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\bowser.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\drivers\appid.sys
2017-01-20 12:52:29 ----A---- C:\Windows\system32\cryptsp.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\bcryptprimitives.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\audiodg.exe
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appinfo.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\appidsvc.dll
2017-01-20 12:52:29 ----A---- C:\Windows\system32\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\mfps.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-01-20 12:52:28 ----A---- C:\Windows\SYSWOW64\adsmsext.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\sspicli.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\srclient.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\smss.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\secur32.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\pcadm.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\ntvdm64.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\nlsbres.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msscp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msnetobj.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msihnd.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\msaudite.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\lsass.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\input.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\hlink.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-01-20 12:52:28 ----A---- C:\Windows\system32\csrsrv.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\cryptbase.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\credssp.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\bcrypt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\auditpol.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\asycfilt.dll
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-01-20 12:52:28 ----A---- C:\Windows\system32\appidapi.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-01-20 12:52:27 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\user.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\WsmRes.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmprovhost.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wsmplpxy.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\wow64cpu.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\sspisrv.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\spwmp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\rrinstaller.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcawrk.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcalua.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\pcaevts.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msobjs.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msmmsp.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\msimsg.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mfpmp.exe
2017-01-20 12:52:27 ----A---- C:\Windows\system32\mferror.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\lpk.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\INETRES.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\fontsub.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dxmasf.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\dciman32.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\atmlib.dll
2017-01-20 12:52:27 ----A---- C:\Windows\system32\apisetschema.dll
2017-01-20 12:52:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-01-20 12:52:26 ----A---- C:\Windows\system32\tzres.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\EncDec.dll
2017-01-20 12:51:19 ----A---- C:\Windows\system32\CPFilters.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2017-01-20 12:51:18 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2017-01-20 12:50:39 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2017-01-20 12:50:39 ----A---- C:\Windows\system32\poqexec.exe
2017-01-20 12:50:34 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-01-20 12:50:34 ----A---- C:\Windows\system32\ole32.dll
2017-01-20 12:50:12 ----A---- C:\Windows\SYSWOW64\tdh.dll
2017-01-20 12:50:12 ----A---- C:\Windows\system32\tdh.dll
2017-01-20 12:49:39 ----A---- C:\Windows\system32\sysmain.dll
2017-01-20 12:48:56 ----A---- C:\Windows\system32\aitstatic.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\invagent.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\generaltel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\devinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\CompatTelRunner.exe
2017-01-20 12:48:55 ----A---- C:\Windows\system32\centel.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\appraiser.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aepic.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\aeinv.dll
2017-01-20 12:48:55 ----A---- C:\Windows\system32\acmigration.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\typeperf.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\tracerpt.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\sechost.dll
2017-01-20 12:48:47 ----A---- C:\Windows\system32\relog.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\logman.exe
2017-01-20 12:48:47 ----A---- C:\Windows\system32\diskperf.exe
2017-01-20 12:48:01 ----A---- C:\Windows\system32\basesrv.dll
2017-01-20 12:47:39 ----A---- C:\Windows\system32\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2017-01-20 12:47:38 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2017-01-20 12:47:27 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samsrv.dll
2017-01-20 12:47:27 ----A---- C:\Windows\system32\samlib.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\SYSWOW64\gameux.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\Wpc.dll
2017-01-20 12:46:55 ----A---- C:\Windows\system32\gameux.dll
2017-01-20 12:46:16 ----A---- C:\Windows\system32\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\SYSWOW64\explorer.exe
2017-01-20 12:46:15 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-01-20 12:46:15 ----A---- C:\Windows\explorer.exe
2017-01-20 12:46:12 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2017-01-20 12:46:12 ----A---- C:\Windows\system32\cryptdlg.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3r.dll
2017-01-20 12:45:22 ----A---- C:\Windows\system32\msxml3.dll
2017-01-20 12:45:21 ----A---- C:\Windows\system32\rpcss.dll
2017-01-20 12:45:19 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\tdx.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\drivers\afd.sys
2017-01-20 12:45:19 ----A---- C:\Windows\system32\dpnet.dll
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-01-20 12:45:18 ----A---- C:\Windows\system32\cdd.dll
2017-01-20 12:45:17 ----A---- C:\Windows\SYSWOW64\mfds.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\profsvc.dll
2017-01-20 12:45:17 ----A---- C:\Windows\system32\mfds.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscories.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\mscorier.dll
2017-01-20 12:45:16 ----A---- C:\Windows\system32\dfshim.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\SYSWOW64\charmap.exe
2017-01-20 12:45:14 ----A---- C:\Windows\system32\StructuredQuery.dll
2017-01-20 12:45:14 ----A---- C:\Windows\system32\charmap.exe
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidparse.sys
2017-01-20 12:45:13 ----A---- C:\Windows\system32\drivers\hidclass.sys
2017-01-20 12:45:12 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2017-01-20 12:45:12 ----A---- C:\Windows\system32\cewmdm.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\objsel.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dpapiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\dimsroam.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\cngprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\capiprovider.dll
2017-01-20 12:45:08 ----A---- C:\Windows\system32\adprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2017-01-20 12:45:07 ----A---- C:\Windows\system32\wincredprovider.dll
2017-01-20 12:44:49 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2017-01-20 12:44:49 ----A---- C:\Windows\system32\wpdshext.dll
2017-01-20 12:44:48 ----A---- C:\Windows\system32\drivers\disk.sys
2017-01-20 12:44:04 ----A---- C:\Windows\system32\winlogon.exe
2017-01-20 12:44:03 ----A---- C:\Windows\SYSWOW64\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\winsta.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdrmemptylst.exe
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpwsx.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\rdpcorekmts.dll
2017-01-20 12:44:03 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2017-01-20 12:43:48 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2017-01-20 12:43:48 ----A---- C:\Windows\system32\comctl32.dll
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\secproc_isv.dll
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate_isv.exe
2017-01-20 12:43:47 ----A---- C:\Windows\system32\RMActivate.exe
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\secproc.dll
2017-01-20 12:43:46 ----A---- C:\Windows\system32\msdrm.dll
2017-01-20 12:43:00 ----A---- C:\Windows\system32\termsrv.dll
2017-01-20 12:42:33 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2017-01-20 12:42:33 ----A---- C:\Windows\system32\pku2u.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\Wdfres.dll
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2017-01-20 12:42:18 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2017-01-20 12:41:55 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2017-01-20 12:41:55 ----A---- C:\Windows\system32\d3d11.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2017-01-20 12:41:54 ----A---- C:\Windows\system32\dhcpcore6.dll
2017-01-20 12:41:44 ----A---- C:\Windows\SYSWOW64\rastls.dll
2017-01-20 12:41:44 ----A---- C:\Windows\system32\rastls.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\SYSWOW64\credui.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2017-01-20 12:41:31 ----A---- C:\Windows\system32\credui.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\SYSWOW64\synceng.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\wer.dll
2017-01-20 12:41:09 ----A---- C:\Windows\system32\synceng.dll
2017-01-20 12:41:08 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2017-01-20 12:41:07 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\wshrm.dll
2017-01-20 12:41:07 ----A---- C:\Windows\system32\drivers\rmcast.sys
2017-01-20 12:40:12 ----A---- C:\Windows\system32\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\SYSWOW64\msmpeg2adec.dll
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMVSDECD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\WMADMOD.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2017-01-20 12:40:11 ----A---- C:\Windows\system32\msmpeg2adec.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\SYSWOW64\COLORCNV.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMVENCOD.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\wmpmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\WMADMOE.DLL
2017-01-20 12:40:10 ----A---- C:\Windows\system32\mcmde.dll
2017-01-20 12:40:10 ----A---- C:\Windows\system32\COLORCNV.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMVENCOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\SYSWOW64\devenum.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVXENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMVSENCD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\VIDRESZR.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\SysFxUI.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\qasf.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MPG4DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP4SDECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP43DECD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MP3DMOD.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2017-01-20 12:40:09 ----A---- C:\Windows\system32\mfvdsp.dll
2017-01-20 12:40:09 ----A---- C:\Windows\system32\drivers\portcls.sys
2017-01-20 12:40:09 ----A---- C:\Windows\system32\devenum.dll
2017-01-20 12:40:08 ----A---- C:\Windows\SYSWOW64\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\ksuser.dll
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2017-01-20 12:40:08 ----A---- C:\Windows\system32\drivers\drmk.sys
2017-01-20 12:39:58 ----A---- C:\Windows\SYSWOW64\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\tbs.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapibase.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\fveapi.dll
2017-01-20 12:39:58 ----A---- C:\Windows\system32\drivers\tpm.sys
2017-01-20 12:39:51 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\shimeng.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\sdbinst.exe
2017-01-20 12:39:50 ----A---- C:\Windows\system32\apphelp.dll
2017-01-20 12:39:50 ----A---- C:\Windows\system32\aelupsvc.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\ucrtbase.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-01-20 12:39:25 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\srv.sys
2017-01-20 12:38:53 ----A---- C:\Windows\system32\drivers\netio.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2017-01-20 12:38:52 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\nlaapi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netevent.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\netcorehc.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\ncsi.dll
2017-01-20 12:38:26 ----A---- C:\Windows\system32\iphlpsvc.dll
2017-01-20 12:38:04 ----A---- C:\Windows\SYSWOW64\osk.exe
2017-01-20 12:38:04 ----A---- C:\Windows\system32\osk.exe
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\SYSWOW64\FwRemoteSvr.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\winipsec.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\polstore.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\IPSECSVC.DLL
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpsvc.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\gpapi.dll
2017-01-20 12:38:03 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2017-01-20 12:37:56 ----A---- C:\Windows\system32\drivers\ntfs.sys
2017-01-20 12:37:49 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2017-01-20 12:37:49 ----A---- C:\Windows\system32\shdocvw.dll
2017-01-20 12:37:44 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2017-01-20 12:37:44 ----A---- C:\Windows\system32\TSWorkspace.dll
2017-01-20 12:37:42 ----A---- C:\Windows\system32\schedsvc.dll
2017-01-20 12:37:28 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\wpnpinst.exe
2017-01-20 12:37:28 ----A---- C:\Windows\system32\ntprint.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\localspl.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetppui.dll
2017-01-20 12:37:28 ----A---- C:\Windows\system32\inetpp.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ubpm.dll
2017-01-20 12:37:26 ----A---- C:\Windows\system32\ntprint.exe
2017-01-20 12:37:22 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\iologmsg.dll
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\storport.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2017-01-20 12:37:22 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\ws2_32.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\winhttp.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\netbtugc.exe
2017-01-20 12:37:16 ----A---- C:\Windows\system32\mswsock.dll
2017-01-20 12:37:16 ----A---- C:\Windows\system32\drivers\netbt.sys
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\SYSWOW64\browcli.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\netapi32.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmcore.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\dwmapi.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browser.dll
2017-01-20 12:37:15 ----A---- C:\Windows\system32\browcli.dll
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\stream.sys
2017-01-20 12:37:11 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2017-01-20 12:37:10 ----A---- C:\Windows\system32\drivers\partmgr.sys
2017-01-20 12:37:09 ----A---- C:\Windows\system32\drivers\http.sys
2017-01-20 12:37:08 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2017-01-20 12:37:08 ----A---- C:\Windows\system32\imagehlp.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\services.exe
2017-01-20 12:37:07 ----A---- C:\Windows\system32\seclogon.dll
2017-01-20 12:37:07 ----A---- C:\Windows\system32\drivers\bthport.sys
2017-01-20 12:37:06 ----A---- C:\Windows\system32\drivers\usb8023.sys
2017-01-20 12:37:05 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\msieftp.dll
2017-01-20 12:37:05 ----A---- C:\Windows\system32\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2017-01-20 12:37:04 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2017-01-20 12:37:04 ----A---- C:\Windows\system32\catsrvut.dll
2017-01-20 12:36:47 ----A---- C:\Windows\SYSWOW64\qedit.dll
2017-01-20 12:36:47 ----A---- C:\Windows\system32\qedit.dll
2017-01-20 12:36:42 ----A---- C:\Windows\system32\taskhost.exe
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\SYSWOW64\fixmapi.exe
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapistub.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\mapi32.dll
2017-01-20 12:36:41 ----A---- C:\Windows\system32\fixmapi.exe
2017-01-20 12:36:40 ----A---- C:\Windows\SYSWOW64\packager.dll
2017-01-20 12:36:40 ----A---- C:\Windows\system32\packager.dll
2017-01-20 12:36:22 ----A---- C:\Windows\system32\drivers\ataport.sys
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwansvc.dll
2017-01-20 12:36:21 ----A---- C:\Windows\system32\wwanprotdim.dll
2017-01-20 12:28:18 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2017-01-20 12:28:18 ----A---- C:\Windows\system32\scesrv.dll
2017-01-20 12:28:17 ----A---- C:\Windows\system32\drivers\ndis.sys
2017-01-20 12:28:16 ----A---- C:\Windows\system32\drivers\fvevol.sys
2017-01-20 12:28:15 ----A---- C:\Windows\SYSWOW64\webio.dll
2017-01-20 12:28:15 ----A---- C:\Windows\system32\webio.dll
2017-01-20 12:25:45 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-01-20 12:25:45 ----A---- C:\Windows\system32\cdosys.dll
2017-01-20 12:25:31 ----A---- C:\Windows\system32\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certutil.exe
2017-01-20 12:25:30 ----A---- C:\Windows\SYSWOW64\certenc.dll
2017-01-20 12:25:30 ----A---- C:\Windows\system32\certenc.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\SYSWOW64\cscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\wscript.exe
2017-01-20 12:25:26 ----A---- C:\Windows\system32\scrrun.dll
2017-01-20 12:25:26 ----A---- C:\Windows\system32\cscript.exe
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\nshwfp.dll
2017-01-20 12:25:25 ----A---- C:\Windows\system32\IKEEXT.DLL
2017-01-20 12:25:25 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2017-01-20 12:24:31 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2017-01-20 12:24:31 ----A---- C:\Windows\system32\InkEd.dll
2017-01-20 12:18:44 ----A---- C:\Windows\SYSWOW64\els.dll
2017-01-20 12:18:44 ----A---- C:\Windows\system32\els.dll
2017-01-20 12:18:13 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2017-01-20 12:18:13 ----A---- C:\Windows\system32\clfsw32.dll
2017-01-20 11:50:09 ----D---- C:\Users\Klára\AppData\Roaming\PwrMgr
2017-01-20 11:49:09 ----D---- C:\Users\Klára\AppData\Roaming\Adobe
2017-01-20 11:43:18 ----D---- C:\Users\Klára\AppData\Roaming\LSC
2017-01-20 11:43:13 ----D---- C:\Users\Klára\AppData\Roaming\Leadertech
2017-01-20 11:42:39 ----D---- C:\Users\Klára\AppData\Roaming\Identities
2017-01-20 11:40:59 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2017-01-20 11:40:52 ----D---- C:\Program Files (x86)\Amazon
2017-01-20 11:39:43 ----A---- C:\Windows\firstboot.dat
2017-01-20 11:39:06 ----D---- C:\Users\Klára\AppData\Roaming\Intel
2017-01-20 11:39:05 ----SD---- C:\Users\Klára\AppData\Roaming\Microsoft
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Media Center Programs
2017-01-20 11:39:05 ----D---- C:\Users\Klára\AppData\Roaming\Macromedia
======List of files/folders modified in the last 1 month======
2017-02-05 23:44:15 ----D---- C:\Windows\Prefetch
2017-02-05 23:43:36 ----A---- C:\Windows\SYSWOW64\log.txt
2017-02-05 23:43:00 ----D---- C:\Windows\Temp
2017-02-05 23:41:37 ----D---- C:\Windows\system32\config
2017-02-05 23:07:15 ----D---- C:\Windows\System32
2017-02-05 23:07:15 ----D---- C:\Windows\inf
2017-02-05 23:07:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-02-05 21:36:51 ----D---- C:\Windows\system32\drivers
2017-02-05 21:34:15 ----RD---- C:\Program Files
2017-02-05 21:34:15 ----HD---- C:\ProgramData
2017-02-05 17:01:44 ----SHD---- C:\Windows\Installer
2017-02-05 17:00:40 ----D---- C:\Windows\SysWOW64
2017-02-03 09:23:12 ----D---- C:\Program Files (x86)\Common Files
2017-01-24 20:41:49 ----D---- C:\Windows\system32\wdi
2017-01-24 11:30:28 ----D---- C:\ProgramData\Adobe
2017-01-22 23:10:04 ----RSD---- C:\Windows\assembly
2017-01-22 23:09:16 ----RSD---- C:\Windows\Fonts
2017-01-21 18:42:16 ----D---- C:\Windows\rescache
2017-01-21 18:00:07 ----RD---- C:\Program Files (x86)
2017-01-21 17:33:53 ----D---- C:\Windows\winsxs
2017-01-21 17:31:17 ----D---- C:\Windows\system32\catroot2
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\winrm
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\slmgr
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\migwiz
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\en
2017-01-21 17:13:58 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files\Windows Defender
2017-01-21 17:13:58 ----D---- C:\Program Files\DVD Maker
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Sidebar
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Media Player
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Mail
2017-01-21 17:13:58 ----D---- C:\Program Files (x86)\Windows Defender
2017-01-21 17:13:57 ----D---- C:\Windows\SYSWOW64\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\WCN
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\DriverStore
2017-01-21 17:13:54 ----D---- C:\Windows\SYSWOW64\Dism
2017-01-21 17:13:54 ----D---- C:\Windows\system32\winrm
2017-01-21 17:13:54 ----D---- C:\Windows\system32\slmgr
2017-01-21 17:13:54 ----D---- C:\Windows\system32\migwiz
2017-01-21 17:13:54 ----D---- C:\Windows\system32\en
2017-01-21 17:13:54 ----D---- C:\Windows\system32\drivers\en-US
2017-01-21 17:13:54 ----D---- C:\Windows\system32\Boot
2017-01-21 17:13:54 ----D---- C:\Windows\en-US
2017-01-21 17:13:53 ----D---- C:\Windows\system32\en-US
2017-01-21 17:13:50 ----D---- C:\Windows\system32\WCN
2017-01-21 17:13:50 ----D---- C:\Windows\system32\Dism
2017-01-21 17:13:49 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2017-01-21 17:13:49 ----D---- C:\Windows\Speech
2017-01-21 17:07:18 ----D---- C:\Program Files (x86)\Lenovo
2017-01-21 17:01:13 ----D---- C:\ProgramData\Lenovo
2017-01-21 15:39:11 ----D---- C:\Windows\Logs
2017-01-21 15:02:33 ----D---- C:\Program Files (x86)\Lenovo Registration
2017-01-21 14:59:34 ----D---- C:\Program Files\Common Files
2017-01-21 14:46:37 ----D---- C:\Program Files\Lenovo
2017-01-21 14:46:37 ----D---- C:\Program Files (x86)\SugarSync
2017-01-21 14:41:03 ----D---- C:\Program Files\Common Files\Lenovo
2017-01-21 14:41:02 ----D---- C:\SWTOOLS
2017-01-21 14:40:09 ----D---- C:\Windows\Microsoft.NET
2017-01-21 14:24:46 ----D---- C:\Program Files (x86)\Windows Live
2017-01-21 14:13:19 ----D---- C:\Windows\system32\DriverStore
2017-01-21 14:00:58 ----D---- C:\Windows\Downloaded Installations
2017-01-21 13:05:27 ----SD---- C:\ProgramData\Microsoft
2017-01-21 13:05:27 ----D---- C:\Program Files (x86)\Microsoft.NET
2017-01-21 13:05:03 ----D---- C:\Program Files\Common Files\Microsoft Shared
2017-01-21 13:04:02 ----D---- C:\Windows
2017-01-21 11:56:49 ----D---- C:\Windows\AppCompat
2017-01-21 00:17:41 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-01-21 00:17:41 ----D---- C:\Windows\system32\cs-CZ
2017-01-21 00:17:40 ----D---- C:\Windows\system32\drivers\cs-CZ
2017-01-21 00:07:45 ----D---- C:\Program Files (x86)\Google
2017-01-20 23:52:46 ----D---- C:\ProgramData\Norton
2017-01-20 22:29:55 ----D---- C:\Windows\system32\Tasks
2017-01-20 22:06:56 ----D---- C:\Program Files (x86)\Adobe
2017-01-20 22:06:30 ----D---- C:\Program Files (x86)\Symantec
2017-01-20 22:00:13 ----D---- C:\Windows\PolicyDefinitions
2017-01-20 22:00:13 ----D---- C:\Program Files\Internet Explorer
2017-01-20 22:00:12 ----D---- C:\Program Files (x86)\Internet Explorer
2017-01-20 21:55:39 ----D---- C:\Program Files\Google
2017-01-20 21:54:12 ----D---- C:\Windows\SYSWOW64\wbem
2017-01-20 21:54:12 ----D---- C:\Windows\system32\wbem
2017-01-20 20:55:46 ----D---- C:\Windows\tracing
2017-01-20 17:44:26 ----D---- C:\Windows\ehome
2017-01-20 17:44:25 ----D---- C:\Program Files\Common Files\System
2017-01-20 17:44:22 ----D---- C:\Windows\SYSWOW64\migration
2017-01-20 17:44:20 ----D---- C:\Windows\system32\migration
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-TW
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-HK
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\zh-CN
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\tr-TR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\sv-SE
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-PT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pt-BR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\pl-PL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\nl-NL
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ko-KR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\ja-JP
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\it-IT
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\hu-HU
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fr-FR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\fi-FI
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\es-ES
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\el-GR
2017-01-20 17:44:18 ----D---- C:\Windows\SYSWOW64\de-DE
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\ru-RU
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\nb-NO
2017-01-20 17:44:17 ----D---- C:\Windows\SYSWOW64\da-DK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\zh-HK
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-PT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pt-BR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\pl-PL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\nl-NL
2017-01-20 17:44:17 ----D---- C:\Windows\system32\ko-KR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\it-IT
2017-01-20 17:44:17 ----D---- C:\Windows\system32\hu-HU
2017-01-20 17:44:17 ----D---- C:\Windows\system32\fr-FR
2017-01-20 17:44:17 ----D---- C:\Windows\system32\el-GR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-TW
2017-01-20 17:44:16 ----D---- C:\Windows\system32\zh-CN
2017-01-20 17:44:16 ----D---- C:\Windows\system32\tr-TR
2017-01-20 17:44:16 ----D---- C:\Windows\system32\sv-SE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ru-RU
2017-01-20 17:44:16 ----D---- C:\Windows\system32\nb-NO
2017-01-20 17:44:16 ----D---- C:\Windows\system32\ja-JP
2017-01-20 17:44:16 ----D---- C:\Windows\system32\fi-FI
2017-01-20 17:44:16 ----D---- C:\Windows\system32\es-ES
2017-01-20 17:44:16 ----D---- C:\Windows\system32\de-DE
2017-01-20 17:44:16 ----D---- C:\Windows\system32\da-DK
2017-01-20 17:44:00 ----D---- C:\Windows\system32\AdvancedInstallers
2017-01-20 17:43:57 ----D---- C:\Windows\AppPatch
2017-01-20 17:43:38 ----D---- C:\Windows\system32\CodeIntegrity
2017-01-20 16:57:03 ----D---- C:\Windows\system32\catroot
2017-01-20 13:26:40 ----D---- C:\Windows\debug
2017-01-20 12:56:28 ----D---- C:\Windows\SoftwareDistribution
2017-01-20 11:42:37 ----SHD---- C:\$Recycle.Bin
2017-01-20 11:41:00 ----D---- C:\Windows\Panther
2017-01-20 11:39:05 ----RD---- C:\Users
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2017-01-20 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2017-01-20 293352]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-11-30 568600]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2011-12-05 16152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-12-29 147784]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-12-29 25416]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-01-20 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-01-20 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-01-20 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-01-20 513632]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\Windows\system32\drivers\mbae64.sys [2017-01-20 77416]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2012-01-31 33344]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2012-03-29 19784]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-01-20 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-01-20 163416]
R2 MBAMChameleon;MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [2017-02-05 176584]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2017-01-21 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2017-01-21 47672]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2016-11-01 82824]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-17 14692896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-02-29 4757608]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-05 331264]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2011-12-05 355096]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2011-12-05 785688]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2011-12-02 11417088]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-12-26 40248]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-11-24 648808]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-12-23 412432]
R3 TVTI2C;Lenovo SM bus driver; C:\Windows\system32\DRIVERS\Tvti2c.sys [2011-05-29 40248]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2012-02-29 952832]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2017-01-20 37656]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-12-08 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-11-30 94720]
S3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2011-11-30 747008]
S3 Fastboot;Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [2012-01-17 70416]
S3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2012-02-14 60928]
S3 MBAMFarflt;MBAMFarflt; \??\C:\Windows\system32\drivers\farflt.sys [2017-02-05 110536]
S3 MBAMProtection;MBAMProtection; \??\C:\Windows\system32\drivers\mbam.sys [2017-02-05 43968]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2017-02-05 251848]
S3 MBAMWebProtection;MBAMWebProtection; \??\C:\Windows\system32\drivers\mwac.sys [2017-02-05 81696]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2012-01-31 340584]
S3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tvtvcamd;ThinkVantage Virtual Camera; C:\Windows\system32\DRIVERS\tvtvcamd.sys [2011-12-08 27432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-24 81088]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-01-20 197128]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-02-22 1014096]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-02-22 1104208]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2011-11-09 8447848]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-12-08 618256]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2012-01-17 169776]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2016-11-01 184408]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-12-07 2429544]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-03 628448]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-03-06 128280]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-06 163608]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-06 277784]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-12-08 148752]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2011-12-29 144960]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-06 363800]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2012-02-02 145472]
S2 LPlatSvc;Lenovo Platform Service; C:\Windows\system32\LPlatSvc.exe [2016-11-01 711256]
S2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-01-20 4355024]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-01-16 317400]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-02-22 1304912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-08 276248]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-12-22 1471168]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-20 153752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2016-12-07 273544]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-09 172488]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-12-08 273168]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2012-03-29 1662528]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2012-03-29 165440]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-01-19 1464096]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-12-29 49480]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-01-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
FYI: Problém stále přetrvává.
Co je malý to je hezký. A když to hezký není, tak je toho alespoň málo .
.-
Rudy
- Site Admin
- Příspěvky: 119659
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Náhodné otevírání reklamních stránek v Chrome
OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Náhodné otevírání reklamních stránek v Chrome
Bohužel ne :/ .
(psal jsem to na konci logu, asi ale bude lepší psát to vždy na začátek)
(psal jsem to na konci logu, asi ale bude lepší psát to vždy na začátek)
Co je malý to je hezký. A když to hezký není, tak je toho alespoň málo .
.-
Rudy
- Site Admin
- Příspěvky: 119659
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Náhodné otevírání reklamních stránek v Chrome
Udělejte ještě tyto skeny:
1. Junkware removal tool: http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
a
2. Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.
1. Junkware removal tool: http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
a
2. Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;
Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?