VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Poprosím o kontrolu

https://forum.viry.cz:443/viewtopic.php?t=150318

Stránka 1 z 1

Poprosím o kontrolu

Napsal: 18 říj 2016 21:42
od Tomik152
Ahoj, prosím o kontrolu logu. Děkuji:)
Logfile of random's system information tool 1.13 (written by random/random)
Run by oem at 2016-10-18 22:39:02
Microsoft Windows 10 Home
System drive C: has 34 GB (5%) free of 701 GB
Total RAM: 8067 MB (54% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:39:17, on 18. 10. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0494)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\oem\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\oem\AppData\Roaming\uTorrent\uTorrent.exe
C:\Users\oem\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe
C:\Users\oem\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\oem\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Program Files\trend micro\oem_RSITx64.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AmIcoSinglun64] "C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
O4 - HKLM\..\Run: [1.TPUReg] "C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe"
O4 - HKLM\..\Run: [TSVU] "c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\oem\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_6AF4D3C1C17486D4BC3955C6A1BBEAB1] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKCU\..\Run: [BingSvc] C:\Users\oem\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\52.0.2743.48\remoting_core.dll,-101 (chromoting) - Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\52.0.2743.48\remoting_host.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: DTS APO Service (dts_apo_service) - Unknown owner - C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: wampapache64 - Apache Software Foundation - c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe
O23 - Service: wampmysqld64 - Unknown owner - c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13703 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\igfxCUIService.exe
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe"
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
dashost.exe {d053152b-c4ee-4bae-b00a900a4bb928df}
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
C:\WINDOWS\system32\svchost.exe -k SDRSVC

"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe" -k runservice
c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe wampmysqld64
C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe -d C:/wamp/bin/apache/apache2.4.9
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
sihost.exe
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" XGpuTrayIcon"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
"C:\Users\oem\AppData\Local\Microsoft\BingSvc\BingSvc.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\oem\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=53.0.2785.143 --handshake-handle=0x1a8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="7108.0.345177660\447414691" --mojo-application-channel-token=9BBF79C62D120E6355CC09593A2DF2E9 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-conservative/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,14,18,31,48,56 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4358 --gpu-driver-date=12-21-2015 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1140 --mojo-platform-channel-handle=1232 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=FF48A58E5274FA498DE5E632534F9F8D --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=AC9E944BF0E8B81134072A74022F269F --mojo-application-channel-token=FF48A58E5274FA498DE5E632534F9F8D --channel="7108.2.2131177879\1156818296" --mojo-platform-channel-handle=2412 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=4FF7AA5065794AC23D58016028F24495 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=C3ACC590D5C5EBE0A7C744F16AA5AB8B --mojo-application-channel-token=4FF7AA5065794AC23D58016028F24495 --channel="7108.4.1933873976\350160542" --mojo-platform-channel-handle=2448 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=FAB6F5FBEA9DCAE55BDC5B8B473D8A18 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=F725B815330B51CCE7EEE29744B0588D --mojo-application-channel-token=FAB6F5FBEA9DCAE55BDC5B8B473D8A18 --channel="7108.5.1617487199\385967251" --mojo-platform-channel-handle=2568 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=7D8E1F08FF08F278DC2016CAD5E73C63 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=3E86F8B9BFB0EB7B9BBC7672DC724F32 --mojo-application-channel-token=7D8E1F08FF08F278DC2016CAD5E73C63 --channel="7108.6.792387257\1737859788" --mojo-platform-channel-handle=2580 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=E50AA123D9A77FEF15C5C4AA454DD4A8 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=DFFFD18A511498DC05F6B232A6D45B8E --mojo-application-channel-token=E50AA123D9A77FEF15C5C4AA454DD4A8 --channel="7108.7.27423077\198049588" --mojo-platform-channel-handle=2664 /prefetch:1
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\Windows\System32\InstallAgent.exe -Embedding
"C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe" /hide
"fontdrvhost.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=F92C9022FF3F272D33556D747AF4DFFA --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=615F0A81895CFAEE6B7AC25EC24C8553 --mojo-application-channel-token=F92C9022FF3F272D33556D747AF4DFFA --channel="7108.15.219460868\1496522523" --mojo-platform-channel-handle=3444 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=4465F87E7F4679F77F92EA4F4F3FD76B --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=B6362073DD13282E25EE6B96092013B6 --mojo-application-channel-token=4465F87E7F4679F77F92EA4F4F3FD76B --channel="7108.16.875748458\1869655493" --mojo-platform-channel-handle=8948 /prefetch:1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=E6687192E20B14E8C21AC4AAD2C99900 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=9A14CDB24B6EA787490D069EB5620899 --mojo-application-channel-token=E6687192E20B14E8C21AC4AAD2C99900 --channel="7108.19.274365131\705883568" --mojo-platform-channel-handle=3252 /prefetch:1

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=EF97F274277936D2DB0D45E8A94FFF4D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=B958768B901EAE14DB53680B31A120A8 --mojo-application-channel-token=EF97F274277936D2DB0D45E8A94FFF4D --channel="7108.34.1029592534\1764021633" --mojo-platform-channel-handle=6524 /prefetch:1
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=57008A5372F020A0F6718A2C17F7996A --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=5AD9CCEE8CC36D61E8F1ED8B91365748 --mojo-application-channel-token=57008A5372F020A0F6718A2C17F7996A --channel="7108.78.1291760424\1488000053" --mojo-platform-channel-handle=9588 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=6ACC814BCEE97D60EDC7EAB12E093DB1 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=F8B3CDCCD2DC191FCAEDEFE3B27DD2C2 --mojo-application-channel-token=6ACC814BCEE97D60EDC7EAB12E093DB1 --channel="7108.79.502712036\1012775893" --mojo-platform-channel-handle=6844 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=CAF1B10AFEE4FF3EA458F1546DCDB811 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=BC023E42ED8C286099E56C11B1B603AE --mojo-application-channel-token=CAF1B10AFEE4FF3EA458F1546DCDB811 --channel="7108.86.691971533\595865028" --mojo-platform-channel-handle=12688 /prefetch:1
C:\WINDOWS\system32\DllHost.exe /Processid:{3AD05575-8857-4850-9277-11B85BDB8E09}
"C:\Users\oem\AppData\Roaming\uTorrent\uTorrent.exe" "C:\Users\oem\Desktop\[CzT]Rick_and_Morty_2_serie_WebRip_1080p_ (1).torrent" /SHELLASSOC
"C:\Users\oem\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe" uTorrent_2852_00B3FAC8_1325778400 µTorrent4823DF041B09 uTorrent
"C:\Users\oem\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe" uTorrent_2852_00B3FEF0_1183681175 µTorrent4823DF041B09 uTorrent
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/Enabled5RTOJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_14/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=BAACDC4841C7B5DEE768EE554EC8B946 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=3A261CB9710402EF2D52261682E3DA2E --mojo-application-channel-token=BAACDC4841C7B5DEE768EE554EC8B946 --channel="7108.93.535590533\1471628081" --mojo-platform-channel-handle=4204 /prefetch:1

"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe440_ Global\UsGthrCtrlFltPipeMssGthrPipe440 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 640 644 652 8192 648
"C:\Users\oem\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe"
"C:\Users\oem\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\tasks\AdobeAAMUpdater-1.0-tomas-oem - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\Synaptics TouchPad Enhancements - "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{39B0DD72-A020-4A1F-BF19-27E7B1570E8D} - C:\WINDOWS\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\WPD\SqmUpload_S-1-5-21-2606986550-1542272341-219935788-1002 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\WINDOWS\system32\tasks\TOSHIBA\CommonNotifier - C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
C:\WINDOWS\system32\tasks\TOSHIBA\Service Station - "C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe" /hide
C:\WINDOWS\system32\tasks\Microsoft\Windows\SysResetLogSuccess - %windir%\system32\rundll32.exe ResetEng.dll,RjvLogSuccessEntryPoint
C:\WINDOWS\system32\tasks\Microsoft\Windows\WS\License Validation - rundll32.exe WSClient.dll,WSpTLR licensing
C:\WINDOWS\system32\tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask - rundll32.exe WSClient.dll,RefreshBannedAppsList
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - C:\WINDOWS\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe Reboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\SpaceMan.exe /Repair
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\WINDOWS\System32\lpksetup.exe -v
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\WINDOWS\System32\mcbuilder.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\StorageSense - %windir%\system32\rundll32.exe %windir%\system32\StorageUsage.dll,GetStorageUsageInfo
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe

=========Google Chrome=========

C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension ahjaciijnoiaklcomgnblndopackapon 1 Identity API Scope Approval UI 1.1
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cfhdojbkjhnklbpkdaibdccddilifddb 1 Adblock Plus 1.12.2
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension ecmfchgfmbbddembehpkopmhjiepcckd 1 FMessenger™ 8.5
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension fcfenmboojpjinhpgggodefccipikbpd 0 MSN Homepage & Bing Search Engine 0.0.0.9
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky Google 1.1
Extension fnbdnhhicmebfgdgglcdacdapkcihcoh 1 Page Analytics (by Google) 1.7.7
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension gfllkgkeiciklnenppokkgkmbjnoeodn 1 Youtube looper 1.2.7.2
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 0 AdBlock 3.3.2
Extension homgcnaoacgigpkkljjjekpignblkeae 1 Appspector 0.3.2
Extension jnhgnonknehpejjnehehllkliplmbmhn 1 Web Scraper 0.2.0.10
Extension kanbnempkjnhadplbfgdaagijdbdbjeb 1 Auto Replay for YouTube™ 1.9.38
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension knipolnnllmklapflnccelgolnpehhpl 1 Hangouts Google 2016.1011.418.1
Extension mcdpnidfhfjfbafmpppcplcejgepadbo 1 Auto Replay for YouTube™ 3.3
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.0
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.0
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh 1 Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5316.725.0.15
Homepage: http://www.seznam.cz/?clid=13415
default_search_provider.search_url:
C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 1.4.8.866 Widevine Content Decryption Module C:\Users\oem\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.866\_platform_specific\win_x86\widevinecdmadapter.dll
Plugin Chrome PDF Viewer chrome-extension://mhjfbmdgcfjbbpaeojofohoefgiehjai/
Plugin 20.0.0.306 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\PepperFlash\pepflashplayer.dll
Plugin Native Client C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\internal-nacl-plugin
Plugin Chrome PDF Viewer internal-pdf-viewer
Homepage:
default_search_provider.search_url:

======Registry dump======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={9D76D6AA-F231-4A1F-8C52-62B4B927B1B0}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9D76D6AA-F231-4A1F-8C52-62B4B927B1B0}]
"URL"=http://www.bing.com/search?q={searchTer ... &pc=MATMJS


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={9D76D6AA-F231-4A1F-8C52-62B4B927B1B0}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{9D76D6AA-F231-4A1F-8C52-62B4B927B1B0}]
"URL"=http://www.bing.com/search?q={searchTer ... &pc=MATMJS

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-02 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-02 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TODDMain"=C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [2012-08-05 213136]
"TecoResident"=C:\Program Files\TOSHIBA\Teco\TecoResident.exe [2013-01-29 170848]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2012-07-11 356776]
"TCrdMain"=C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2013-04-23 2565472]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-08-05 508240]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-09-09 3946184]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-06-14 2397120]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2016-06-14 1767944]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2015-02-27 5583120]
"OneDrive"=C:\Users\oem\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-29 551112]
"GoogleChromeAutoLaunch_6AF4D3C1C17486D4BC3955C6A1BBEAB1"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2016-09-25 966760]
"AdobeBridge"= []
"BingSvc"=C:\Users\oem\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-11-05 144008]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2013-04-19 374784]
"1.TPUReg"=C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2013-03-27 2216800]
"TSVU"=c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [2013-03-08 467360]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-07-22 402432]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-01-29 594992]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath"=%SystemRoot%\inf\unregmp2.exe /ShowWMP

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-10-18 22:39:04 ----D---- C:\Program Files\trend micro
2016-10-18 22:39:02 ----D---- C:\rsit

======List of files/folders modified in the last 1 month======

2016-10-18 22:39:04 ----RD---- C:\Program Files
2016-10-18 22:38:38 ----D---- C:\WINDOWS\Temp
2016-10-18 22:37:03 ----D---- C:\WINDOWS\system32\sru
2016-10-18 22:36:44 ----D---- C:\Users\oem\AppData\Roaming\uTorrent
2016-10-18 22:13:54 ----D---- C:\Users\oem\AppData\Roaming\vlc
2016-10-18 17:56:21 ----D---- C:\Users\oem\AppData\Roaming\Skype
2016-10-18 17:31:36 ----D---- C:\WINDOWS\Microsoft.NET
2016-10-18 17:25:21 ----D---- C:\WINDOWS\AppReadiness
2016-10-12 17:49:49 ----SHD---- C:\System Volume Information
2016-10-12 17:17:28 ----D---- C:\WINDOWS\system32\config
2016-10-10 16:46:45 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-10 16:46:45 ----D---- C:\WINDOWS\INF
2016-10-08 11:48:23 ----D---- C:\ProgramData\NVIDIA Corporation
2016-09-25 17:45:48 ----D---- C:\WINDOWS\System32
2016-09-25 17:45:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2015-07-14 251632]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-03-11 652784]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2016-04-28 48696]
R0 tos_sps64;@oem40.inf,%SERVICE_DESC_amd64%;TOSHIBA tos_sps64 Service; C:\WINDOWS\System32\drivers\tos_sps64.sys [2012-06-18 499096]
R0 TVALZ;@oem36.inf,%TVALZ.SvcDesc%;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [2016-07-21 53888]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2016-10-10 263296]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2016-06-28 197288]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2016-06-28 181416]
R2 PEGAGFN;PEGAGFN; \??\C:\Program Files (x86)\TOSHIBA\PasswordUtility\PEGAGFN.sys [2009-09-11 14344]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\WINDOWS\system32\DRIVERS\TVALZFL.sys [2012-07-22 16768]
R3 AmUStor;@oem1.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2013-04-24 109336]
R3 athr;@oem17.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athw10x.sys [2015-12-09 4342936]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2015-05-28 604776]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-07-01 84992]
R3 dtlitescsibus;@oem26.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-05-19 30352]
R3 iwdbus;@oem16.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2015-10-30 121344]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-04-28 12631616]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-06-14 26560]
R3 nvvad_WaveExtensible;@oem33.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2016-04-14 56384]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-09-09 42696]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2013-04-25 546304]
R3 SynTP;@oem10.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2015-09-09 618696]
R3 TDCMDPST;TOSHIBA Writing Engine Filter Driver; C:\WINDOWS\system32\DRIVERS\tdcmdpst.sys [2012-07-25 31184]
R3 Thotkey;@oem41.inf,%Thotkey%;Toshiba Hotkey Driver; C:\WINDOWS\System32\drivers\Thotkey.sys [2015-12-12 54424]
R3 tosrfec;@oem23.inf,%busenum.SVCDESC%;Bluetooth ACPI; C:\WINDOWS\System32\drivers\tosrfec.sys [2013-11-01 27032]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2016-06-28 15488]
S3 BthA2DP;@wdma_bt.inf,%BthA2DP.SvcDesc%;Bluetooth stereo; C:\WINDOWS\system32\drivers\BthA2DP.sys [2015-10-30 165376]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-07-01 112640]
S3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2015-10-30 36864]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-03-29 245760]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-07-01 954368]
S3 intaud_WaveExtensible;@oem15.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-12-01 50160]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-03-29 181248]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2015-12-09 13512]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016-09-26 2207960]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2016-06-10 2542216]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-06-14 1163712]
R2 GFNEXSrv;GFNEX Service; C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe [2013-03-27 163168]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-01-13 319096]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-06-20 634632]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-05 129856]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-08-21 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-09-11 277792]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-06-14 1879488]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-06-14 2521024]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-04-27 1265720]
R2 OneSyncSvc_41dd1d39;Hostitel synchronizace_41dd1d39; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-04-25 332800]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2015-09-09 246472]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-02-27 1272592]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-06-14 3632576]
R3 PimIndexMaintenanceSvc_41dd1d39;Data kontaktů_41dd1d39; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R3 TMachInfo;TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2015-12-08 53040]
S2 dts_apo_service;DTS APO Service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [2013-05-09 16720]
S2 OneSyncSvc_1221f628;Hostitel synchronizace_1221f628; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-07-25 324224]
S3 chromoting;@C:\Program Files (x86)\Google\Chrome Remote Desktop\52.0.2743.48\remoting_core.dll,-101; C:\Program Files (x86)\Google\Chrome Remote Desktop\52.0.2743.48\remoting_host.exe [2016-06-20 76616]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 MessagingService_1221f628;Služba zasílání zpráv_1221f628; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 MessagingService_41dd1d39;Služba zasílání zpráv_41dd1d39; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc_1221f628;Data kontaktů_1221f628; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TemproMonitoringService;TEMPRO Service; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2013-01-04 116240]
S3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2013-03-12 462688]
S4 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
S4 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\Teco\TecoService.exe [2013-01-29 322400]

-----------------EOF-----------------

Re: Poprosím o kontrolu

Napsal: 19 říj 2016 16:30
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Poprosím o kontrolu

Napsal: 19 říj 2016 21:12
od Tomik152
# AdwCleaner v6.030 - Log soubor vytvořen 19/10/2016 na 21:56:12
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-10-18.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : oem - TOMAS
# Beží od : C:\Users\oem\Desktop\adwcleaner_6.030.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Adresáře ] *****

[-] Adresář smazán:C:\Users\oem\AppData\Roaming\RHEng
[-] Adresář smazán:C:\Program Files (x86)\ShowMyPCService
[-] Adresář smazán:C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd


***** [ Soubory ] *****

[-] Soubor smazán:C:\Users\Administrator\Favorites\eBay.lnk


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupce ] *****



***** [ Plánovač úloh ] *****



***** [ Registry ] *****

[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Klíč smazán:HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[#] Klíč smazán po restartování:[x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd


***** [ Prohlížeče ] *****

[-] [C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazání:fcfenmboojpjinhpgggodefccipikbpd


*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1828 Bajtů] - [19/10/2016 21:56:12]
C:\AdwCleaner\AdwCleaner[S0].txt - [2151 Bajtů] - [19/10/2016 21:55:27]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1976 Bajtů] ##########

Re: Poprosím o kontrolu

Napsal: 19 říj 2016 22:28
od Tomik152
Pro sychr jsem ti hned udělal ten FRST či co to je:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-10-2016
Ran by oem (administrator) on TOMAS (19-10-2016 23:13:48)
Running from C:\Users\oem\Desktop
Loaded Profiles: oem (Available Profiles: oem & Administrator)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
() C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(© 2015 Microsoft Corporation) C:\Users\oem\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(TOSHIBA) C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\oem\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [TODDMain] => C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [213136 2012-08-05] ()
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [170848 2013-01-29] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [356776 2012-07-11] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2565472 2013-04-23] (TOSHIBA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3946184 2015-09-09] (Synaptics Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1767944 2016-06-14] (NVIDIA Corporation)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [374784 2013-04-19] (Alcor Micro Corp.)
HKLM-x32\...\Run: [1.TPUReg] => C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2216800 2013-03-27] (TOSHIBA)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [467360 2013-03-08] (TOSHIBA)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5583120 2015-02-27] (Disc Soft Ltd)
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\...\Run: [GoogleChromeAutoLaunch_6AF4D3C1C17486D4BC3955C6A1BBEAB1] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [966760 2016-09-25] (Google Inc.)
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\...\Run: [BingSvc] => C:\Users\oem\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\...\MountPoints2: {07875783-0bab-11e5-be88-c0d962d05ef8} - "D:\Setup.exe"
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [175880 2016-04-27] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [175880 2016-04-27] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [153392 2016-04-27] (NVIDIA Corporation)
GroupPolicy: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{bcba096f-9618-413c-a7ae-d945bbb8054b}: [DhcpNameServer] 192.168.160.1
Tcpip\..\Interfaces\{c42b78e3-ec6c-4daf-9290-7736a029a87c}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://toshiba13.msn.com
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com
SearchScopes: HKU\S-1-5-21-2606986550-1542272341-219935788-1002 -> DefaultScope {9D76D6AA-F231-4A1F-8C52-62B4B927B1B0} URL =
SearchScopes: HKU\S-1-5-21-2606986550-1542272341-219935788-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2606986550-1542272341-219935788-1002 -> {9D76D6AA-F231-4A1F-8C52-62B4B927B1B0} URL =
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-02] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-02] (Oracle Corporation)

FireFox:
========
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-02] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-03-02] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/?clid=13415
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/","hxxps://www.facebook.c ... zotify.cz/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.866\_platform_specific\win_x86\widevinecdmadapter.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default [2016-10-19]
CHR Extension: (Prezentace Google) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-03]
CHR Extension: (Dokumenty Google) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-03]
CHR Extension: (Disk Google) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Adblock Plus) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-08-23]
CHR Extension: (Vyhledávání Google) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (FMessenger™) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecmfchgfmbbddembehpkopmhjiepcckd [2016-10-18]
CHR Extension: (Tabulky Google) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-03]
CHR Extension: (Page Analytics (by Google)) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnbdnhhicmebfgdgglcdacdapkcihcoh [2016-06-09]
CHR Extension: (Youtube looper) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfllkgkeiciklnenppokkgkmbjnoeodn [2015-05-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-10-10]
CHR Extension: (Appspector) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\homgcnaoacgigpkkljjjekpignblkeae [2015-11-04]
CHR Extension: (Web Scraper) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnhgnonknehpejjnehehllkliplmbmhn [2016-09-13]
CHR Extension: (Auto Replay for YouTube™) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\kanbnempkjnhadplbfgdaagijdbdbjeb [2015-05-03]
CHR Extension: (Hangouts Google) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2016-10-18]
CHR Extension: (Auto Replay for YouTube™) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcdpnidfhfjfbafmpppcplcejgepadbo [2015-05-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-03]
CHR Extension: (Chrome Media Router) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-23]
CHR Profile: C:\Users\oem\AppData\Local\Google\Chrome\User Data\System Profile [2015-11-08]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\52.0.2743.48\remoting_host.exe [76616 2016-06-20] (Google Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272592 2015-02-27] (Disc Soft Ltd)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [16720 2013-05-09] ()
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2780160 2016-10-10] (ESET)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
R2 GFNEXSrv; C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe [163168 2013-03-27] ()
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319096 2016-01-13] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-05] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2013-04-25] (IDT, Inc.) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-09-09] (Synaptics Incorporated)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116240 2013-01-04] (Toshiba Europe GmbH)
S3 vmicvss; C:\WINDOWS\System32\ICSvc.dll [511488 2016-09-07] (Microsoft Corporation)
S3 wampapache64; c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [24576 2014-05-01] (Apache Software Foundation) [File not signed]
S3 wampmysqld64; c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [12942848 2014-05-01] () [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364456 2016-09-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-09-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4342936 2015-12-09] (Qualcomm Atheros Communications, Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30352 2015-05-19] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [263296 2016-10-10] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [251632 2015-07-14] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15488 2016-06-28] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [197288 2016-06-28] (ESET)
R2 epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [181416 2016-06-28] (ESET)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R2 PEGAGFN; C:\Program Files (x86)\TOSHIBA\PasswordUtility\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13512 2015-12-09] ()
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-09-09] (Synaptics Incorporated)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [54424 2015-12-12] (Toshiba Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-19 23:14 - 2016-10-19 23:14 - 192609931 _____ C:\Users\oem\Desktop\Nepotvrzeno 146305.crdownload
2016-10-19 23:13 - 2016-10-19 23:15 - 00020785 _____ C:\Users\oem\Desktop\FRST.txt
2016-10-19 23:13 - 2016-10-19 23:13 - 00000000 ____D C:\FRST
2016-10-19 23:12 - 2016-10-19 23:13 - 00112640 _____ (forum.viry.cz) C:\Users\oem\Desktop\FRSTLauncher.exe
2016-10-19 23:09 - 2016-10-19 23:09 - 02407424 _____ (Farbar) C:\Users\oem\Desktop\FRST64.exe
2016-10-19 21:51 - 2016-10-19 21:56 - 00000000 ____D C:\AdwCleaner
2016-10-19 21:50 - 2016-10-19 21:51 - 03910208 _____ C:\Users\oem\Desktop\adwcleaner_6.030.exe
2016-10-19 19:31 - 2016-10-19 19:31 - 00000000 ____D C:\WINDOWS\Panther
2016-10-19 19:29 - 2016-10-19 19:31 - 00000000 ___HD C:\$WINDOWS.~BT
2016-10-19 18:08 - 2016-10-05 09:56 - 01644736 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-19 18:08 - 2016-10-05 09:56 - 00144576 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-19 18:08 - 2016-10-05 09:56 - 00085696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-19 18:08 - 2016-10-05 09:18 - 07468384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-19 18:08 - 2016-10-05 08:54 - 01297760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-10-19 18:08 - 2016-10-05 08:17 - 03693064 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-19 18:08 - 2016-10-05 08:15 - 00304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-10-19 18:08 - 2016-10-05 08:14 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-10-19 18:08 - 2016-10-05 07:45 - 00987488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-10-19 18:08 - 2016-10-05 07:39 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-19 18:08 - 2016-10-05 07:08 - 02937896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-10-19 18:08 - 2016-10-05 07:05 - 00256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-10-19 18:08 - 2016-10-05 06:30 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-10-19 18:08 - 2016-10-05 06:10 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-10-19 18:08 - 2016-10-05 06:10 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-19 18:08 - 2016-10-05 05:40 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-19 18:08 - 2016-10-05 05:29 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-19 18:08 - 2016-10-05 05:10 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-10-19 18:08 - 2016-10-05 05:09 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-10-19 18:08 - 2016-10-05 05:04 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-19 18:08 - 2016-10-05 04:55 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-19 18:08 - 2016-10-05 04:50 - 22379520 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-19 18:08 - 2016-10-05 04:50 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-10-19 18:08 - 2016-10-05 04:39 - 24611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-19 18:08 - 2016-10-05 04:39 - 13392384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-19 18:08 - 2016-10-05 04:39 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-10-19 18:08 - 2016-10-05 04:33 - 14255104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-19 18:08 - 2016-10-05 04:27 - 09920512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-10-19 18:08 - 2016-10-05 04:26 - 07836672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-19 18:08 - 2016-10-05 04:22 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-10-19 18:08 - 2016-10-05 04:13 - 19349504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-10-19 18:08 - 2016-10-05 04:13 - 18675200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-10-19 18:08 - 2016-10-05 04:13 - 12134400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-10-19 18:08 - 2016-10-05 04:06 - 12587008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-10-19 18:08 - 2016-10-05 04:01 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-10-19 18:08 - 2016-09-17 10:08 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-10-19 18:08 - 2016-09-17 09:45 - 02610176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-10-19 18:08 - 2016-09-17 09:28 - 03077120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-19 18:08 - 2016-09-17 09:12 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-10-19 18:08 - 2016-09-17 08:45 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-19 18:08 - 2016-09-17 08:43 - 02552832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-10-19 18:08 - 2016-09-17 08:22 - 04405248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-10-19 18:08 - 2016-09-07 07:26 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-10-19 18:08 - 2016-09-07 07:26 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-10-19 18:08 - 2016-09-07 07:24 - 02180128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-10-19 18:08 - 2016-09-07 07:24 - 01118200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-10-19 18:08 - 2016-09-07 07:24 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-10-19 18:08 - 2016-09-07 07:23 - 06605544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-10-19 18:08 - 2016-09-07 07:23 - 06536248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-19 18:08 - 2016-09-07 07:22 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-10-19 18:08 - 2016-09-07 07:21 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-10-19 18:08 - 2016-09-07 07:21 - 05240952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-10-19 18:08 - 2016-09-07 06:43 - 16985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-19 18:08 - 2016-09-07 06:42 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-10-19 18:08 - 2016-09-07 06:40 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-10-19 18:08 - 2016-09-07 06:35 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-10-19 18:08 - 2016-09-07 06:34 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-10-19 18:08 - 2016-09-07 06:34 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-10-19 18:08 - 2016-09-07 06:32 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-10-19 18:08 - 2016-09-07 06:31 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-10-19 18:08 - 2016-09-07 06:31 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-10-19 18:08 - 2016-09-07 06:31 - 00852992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-19 18:08 - 2016-09-07 06:31 - 00794624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-10-19 18:08 - 2016-09-07 06:30 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-10-19 18:08 - 2016-09-07 06:30 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-10-19 18:08 - 2016-09-07 06:30 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-10-19 18:08 - 2016-09-07 06:30 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-10-19 18:08 - 2016-09-07 06:29 - 07977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-19 18:08 - 2016-09-07 06:29 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-10-19 18:08 - 2016-09-07 06:28 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-10-19 18:08 - 2016-09-07 06:28 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-10-19 18:08 - 2016-09-07 06:27 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-10-19 18:08 - 2016-09-07 06:26 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-10-19 18:08 - 2016-09-07 06:26 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-10-19 18:08 - 2016-09-07 06:25 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-10-19 18:08 - 2016-09-07 06:24 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-19 18:08 - 2016-09-07 06:24 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-19 18:08 - 2016-09-07 06:20 - 06976000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-19 18:08 - 2016-09-07 06:19 - 05325824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-10-19 18:08 - 2016-09-07 06:18 - 07536640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-10-19 18:08 - 2016-09-07 06:18 - 05503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-10-19 18:08 - 2016-09-07 06:18 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-10-19 18:08 - 2016-09-07 06:18 - 03577344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-10-19 18:08 - 2016-09-07 06:16 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-10-19 18:08 - 2016-09-07 06:16 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-10-19 18:08 - 2016-09-07 06:14 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-10-19 18:08 - 2016-09-07 06:13 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-10-19 18:08 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-10-19 18:08 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-10-19 18:07 - 2016-10-05 09:56 - 01242304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-19 18:07 - 2016-10-05 09:56 - 00602304 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-19 18:07 - 2016-10-05 09:56 - 00591040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-19 18:07 - 2016-10-05 09:56 - 00329920 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-19 18:07 - 2016-10-05 09:56 - 00290496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-19 18:07 - 2016-10-05 09:20 - 01030408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-10-19 18:07 - 2016-10-05 09:20 - 00875480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-10-19 18:07 - 2016-10-05 09:18 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-19 18:07 - 2016-10-05 09:18 - 01142560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-19 18:07 - 2016-10-05 09:01 - 01637216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-19 18:07 - 2016-10-05 08:09 - 00604920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-19 18:07 - 2016-10-05 07:39 - 00576856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-19 18:07 - 2016-10-05 07:00 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-19 18:07 - 2016-10-05 06:49 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-10-19 18:07 - 2016-10-05 06:00 - 01661952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-19 18:07 - 2016-10-05 05:55 - 03549696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-10-19 18:07 - 2016-10-05 05:48 - 02437120 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-19 18:07 - 2016-10-05 05:29 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-19 18:07 - 2016-10-05 05:14 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-10-19 18:07 - 2016-10-05 04:54 - 01987584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-10-19 18:07 - 2016-10-05 04:40 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-10-19 18:07 - 2016-09-27 04:39 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-10-19 18:07 - 2016-09-07 07:39 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-19 18:07 - 2016-09-07 07:39 - 01997832 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-10-19 18:07 - 2016-09-07 07:39 - 01862000 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-10-19 18:07 - 2016-09-07 07:39 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-10-19 18:07 - 2016-09-07 07:39 - 01098640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-10-19 18:07 - 2016-09-07 07:39 - 00799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-10-19 18:07 - 2016-09-07 07:39 - 00601744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-10-19 18:07 - 2016-09-07 07:34 - 02587696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-10-19 18:07 - 2016-09-07 07:33 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-10-19 18:07 - 2016-09-07 07:27 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-10-19 18:07 - 2016-09-07 07:26 - 01554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-10-19 18:07 - 2016-09-07 07:26 - 01552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-19 18:07 - 2016-09-07 07:26 - 00588320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2016-10-19 18:07 - 2016-09-07 07:25 - 02607336 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-19 18:07 - 2016-09-07 07:25 - 01447776 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2016-10-19 18:07 - 2016-09-07 07:25 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-10-19 18:07 - 2016-09-07 07:24 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-10-19 18:07 - 2016-09-07 07:24 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-10-19 18:07 - 2016-09-07 07:23 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-10-19 18:07 - 2016-09-07 07:23 - 01750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-10-19 18:07 - 2016-09-07 07:23 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-10-19 18:07 - 2016-09-07 07:22 - 01824264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-10-19 18:07 - 2016-09-07 07:22 - 01085728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2016-10-19 18:07 - 2016-09-07 07:22 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-10-19 18:07 - 2016-09-07 07:22 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-10-19 18:07 - 2016-09-07 07:21 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-10-19 18:07 - 2016-09-07 07:20 - 00836752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2016-10-19 18:07 - 2016-09-07 07:16 - 02773088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-10-19 18:07 - 2016-09-07 07:15 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-10-19 18:07 - 2016-09-07 07:15 - 01415200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-10-19 18:07 - 2016-09-07 07:12 - 28851224 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-10-19 18:07 - 2016-09-07 07:12 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-10-19 18:07 - 2016-09-07 07:08 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2016-10-19 18:07 - 2016-09-07 06:53 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2016-10-19 18:07 - 2016-09-07 06:51 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-10-19 18:07 - 2016-09-07 06:47 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-10-19 18:07 - 2016-09-07 06:44 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-10-19 18:07 - 2016-09-07 06:43 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-10-19 18:07 - 2016-09-07 06:42 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-10-19 18:07 - 2016-09-07 06:41 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-10-19 18:07 - 2016-09-07 06:39 - 01567744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-10-19 18:07 - 2016-09-07 06:39 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-10-19 18:07 - 2016-09-07 06:38 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-10-19 18:07 - 2016-09-07 06:37 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-10-19 18:07 - 2016-09-07 06:36 - 00752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-10-19 18:07 - 2016-09-07 06:35 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-10-19 18:07 - 2016-09-07 06:33 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-10-19 18:07 - 2016-09-07 06:32 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-10-19 18:07 - 2016-09-07 06:31 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-19 18:07 - 2016-09-07 06:31 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2016-10-19 18:07 - 2016-09-07 06:31 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-10-19 18:07 - 2016-09-07 06:31 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-10-19 18:07 - 2016-09-07 06:30 - 02476032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-10-19 18:07 - 2016-09-07 06:30 - 02012672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-10-19 18:07 - 2016-09-07 06:30 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-10-19 18:07 - 2016-09-07 06:30 - 01558528 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-10-19 18:07 - 2016-09-07 06:30 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-10-19 18:07 - 2016-09-07 06:30 - 01144320 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-10-19 18:07 - 2016-09-07 06:30 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-10-19 18:07 - 2016-09-07 06:30 - 00698368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-10-19 18:07 - 2016-09-07 06:30 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-10-19 18:07 - 2016-09-07 06:29 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-10-19 18:07 - 2016-09-07 06:29 - 01465344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-10-19 18:07 - 2016-09-07 06:29 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2016-10-19 18:07 - 2016-09-07 06:29 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-10-19 18:07 - 2016-09-07 06:29 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-10-19 18:07 - 2016-09-07 06:29 - 00669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-19 18:07 - 2016-09-07 06:29 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-10-19 18:07 - 2016-09-07 06:28 - 01466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2016-10-19 18:07 - 2016-09-07 06:28 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-10-19 18:07 - 2016-09-07 06:28 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-10-19 18:07 - 2016-09-07 06:28 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-10-19 18:07 - 2016-09-07 06:27 - 01743872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-10-19 18:07 - 2016-09-07 06:27 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-10-19 18:07 - 2016-09-07 06:27 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-10-19 18:07 - 2016-09-07 06:27 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-19 18:07 - 2016-09-07 06:27 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comuid.dll
2016-10-19 18:07 - 2016-09-07 06:27 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-10-19 18:07 - 2016-09-07 06:26 - 02881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-10-19 18:07 - 2016-09-07 06:26 - 01537536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2016-10-19 18:07 - 2016-09-07 06:25 - 01965568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2016-10-19 18:07 - 2016-09-07 06:25 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-10-19 18:07 - 2016-09-07 06:25 - 01166848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Pimstore.dll
2016-10-19 18:07 - 2016-09-07 06:25 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-10-19 18:07 - 2016-09-07 06:25 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-10-19 18:07 - 2016-09-07 06:25 - 00759808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-10-19 18:07 - 2016-09-07 06:25 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2016-10-19 18:07 - 2016-09-07 06:24 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-10-19 18:07 - 2016-09-07 06:24 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-10-19 18:07 - 2016-09-07 06:23 - 04646912 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-10-19 18:07 - 2016-09-07 06:23 - 01562112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2016-10-19 18:07 - 2016-09-07 06:23 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-10-19 18:07 - 2016-09-07 06:23 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc.dll
2016-10-19 18:07 - 2016-09-07 06:23 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-10-19 18:07 - 2016-09-07 06:23 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-10-19 18:07 - 2016-09-07 06:22 - 02106368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-10-19 18:07 - 2016-09-07 06:22 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-10-19 18:07 - 2016-09-07 06:21 - 03046400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2016-10-19 18:07 - 2016-09-07 06:21 - 02527232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-10-19 18:07 - 2016-09-07 06:21 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-10-19 18:07 - 2016-09-07 06:21 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2016-10-19 18:07 - 2016-09-07 06:20 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-10-19 18:07 - 2016-09-07 06:20 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-10-19 18:07 - 2016-09-07 06:19 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-10-19 18:07 - 2016-09-07 06:19 - 04078592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-10-19 18:07 - 2016-09-07 06:19 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2016-10-19 18:07 - 2016-09-07 06:19 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-10-19 18:07 - 2016-09-07 06:19 - 02102272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2016-10-19 18:07 - 2016-09-07 06:19 - 01997312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-10-19 18:07 - 2016-09-07 06:19 - 01141248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-10-19 18:07 - 2016-09-07 06:19 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-10-19 18:07 - 2016-09-07 06:19 - 00527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-10-19 18:07 - 2016-09-07 06:18 - 04826624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-10-19 18:07 - 2016-09-07 06:18 - 02876928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-10-19 18:07 - 2016-09-07 06:17 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2016-10-19 18:07 - 2016-09-07 06:17 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-19 18:07 - 2016-09-07 06:17 - 01526784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 02911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 02746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 02361856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 01676800 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 01194496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2016-10-19 18:07 - 2016-09-07 06:16 - 01123328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2016-10-19 18:07 - 2016-09-07 06:15 - 02772480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-10-19 18:07 - 2016-09-07 06:15 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-10-19 18:07 - 2016-09-07 06:15 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-10-19 18:07 - 2016-09-07 06:15 - 02055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2016-10-19 18:07 - 2016-09-07 06:15 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2016-10-19 18:07 - 2016-09-07 06:14 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-10-19 18:07 - 2016-09-07 06:14 - 02573824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-10-19 18:07 - 2016-09-07 06:14 - 02177024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-10-19 18:07 - 2016-09-07 06:14 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-10-19 18:07 - 2016-09-07 06:14 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-10-19 18:07 - 2016-09-07 06:14 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-10-19 18:07 - 2016-09-07 06:14 - 01487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-10-19 18:07 - 2016-09-07 06:14 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-10-19 18:07 - 2016-09-07 06:13 - 02874880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2016-10-19 18:07 - 2016-09-07 06:13 - 01390592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-10-19 18:07 - 2016-09-07 06:13 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-10-19 18:07 - 2016-09-07 06:12 - 02632192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-10-19 18:07 - 2016-09-07 06:12 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-10-19 18:07 - 2016-09-07 06:12 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-19 18:07 - 2016-09-07 06:12 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-10-19 18:07 - 2016-09-07 06:11 - 03065344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-10-19 18:07 - 2016-09-07 06:11 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-19 18:07 - 2016-09-07 06:10 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-10-19 18:07 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-19 18:07 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-10-19 18:07 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-10-19 18:06 - 2016-10-05 09:19 - 00129376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-10-19 18:06 - 2016-10-05 09:01 - 01337184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-10-19 18:06 - 2016-10-05 07:38 - 00636296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-10-19 18:06 - 2016-10-05 07:38 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-19 18:06 - 2016-10-05 07:37 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-10-19 18:06 - 2016-10-05 07:31 - 00422240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-10-19 18:06 - 2016-10-05 07:25 - 00871776 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-10-19 18:06 - 2016-10-05 07:23 - 00305808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-10-19 18:06 - 2016-10-05 07:01 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-10-19 18:06 - 2016-10-05 06:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-19 18:06 - 2016-10-05 06:33 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-10-19 18:06 - 2016-10-05 06:32 - 00538744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-10-19 18:06 - 2016-10-05 06:30 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-10-19 18:06 - 2016-10-05 06:27 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2016-10-19 18:06 - 2016-10-05 06:23 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-10-19 18:06 - 2016-10-05 06:19 - 00717152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-10-19 18:06 - 2016-10-05 06:18 - 00253080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-10-19 18:06 - 2016-10-05 06:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-10-19 18:06 - 2016-10-05 06:17 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-10-19 18:06 - 2016-10-05 06:15 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2016-10-19 18:06 - 2016-10-05 06:07 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-10-19 18:06 - 2016-10-05 06:05 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-19 18:06 - 2016-10-05 06:04 - 01718272 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-19 18:06 - 2016-10-05 06:02 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-10-19 18:06 - 2016-10-05 06:00 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-10-19 18:06 - 2016-10-05 05:57 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-10-19 18:06 - 2016-10-05 05:24 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-10-19 18:06 - 2016-10-05 05:15 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-10-19 18:06 - 2016-10-05 05:13 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2016-10-19 18:06 - 2016-10-05 05:05 - 01467904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-10-19 18:06 - 2016-10-05 05:04 - 00885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-10-19 18:06 - 2016-10-05 04:59 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-10-19 18:06 - 2016-10-01 04:16 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-19 18:06 - 2016-09-07 07:39 - 04387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-10-19 18:06 - 2016-09-07 07:39 - 01238584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2016-10-19 18:06 - 2016-09-07 07:39 - 00845568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-10-19 18:06 - 2016-09-07 07:39 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-10-19 18:06 - 2016-09-07 07:39 - 00705576 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2016-10-19 18:06 - 2016-09-07 07:39 - 00620176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2016-10-19 18:06 - 2016-09-07 07:39 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-10-19 18:06 - 2016-09-07 07:39 - 00414232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2016-10-19 18:06 - 2016-09-07 07:39 - 00337328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-10-19 18:06 - 2016-09-07 07:39 - 00328520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2016-10-19 18:06 - 2016-09-07 07:39 - 00277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-10-19 18:06 - 2016-09-07 07:39 - 00175120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-10-19 18:06 - 2016-09-07 07:37 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2016-10-19 18:06 - 2016-09-07 07:37 - 00129888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-10-19 18:06 - 2016-09-07 07:36 - 00528736 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-10-19 18:06 - 2016-09-07 07:36 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-10-19 18:06 - 2016-09-07 07:35 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-10-19 18:06 - 2016-09-07 07:35 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2016-10-19 18:06 - 2016-09-07 07:34 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-10-19 18:06 - 2016-09-07 07:33 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-10-19 18:06 - 2016-09-07 07:26 - 01152320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-10-19 18:06 - 2016-09-07 07:26 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-19 18:06 - 2016-09-07 07:26 - 00858952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-10-19 18:06 - 2016-09-07 07:26 - 00847648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-10-19 18:06 - 2016-09-07 07:26 - 00785088 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-10-19 18:06 - 2016-09-07 07:26 - 00693592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-10-19 18:06 - 2016-09-07 07:26 - 00586200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-10-19 18:06 - 2016-09-07 07:26 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-10-19 18:06 - 2016-09-07 07:26 - 00439136 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-10-19 18:06 - 2016-09-07 07:26 - 00245840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-10-19 18:06 - 2016-09-07 07:26 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-10-19 18:06 - 2016-09-07 07:25 - 01270064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-10-19 18:06 - 2016-09-07 07:24 - 01349632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-10-19 18:06 - 2016-09-07 07:24 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-10-19 18:06 - 2016-09-07 07:24 - 00511312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-10-19 18:06 - 2016-09-07 07:24 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-10-19 18:06 - 2016-09-07 07:24 - 00496360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmdev.dll
2016-10-19 18:06 - 2016-09-07 07:24 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-10-19 18:06 - 2016-09-07 07:24 - 00355672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2016-10-19 18:06 - 2016-09-07 07:23 - 01603224 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-10-19 18:06 - 2016-09-07 07:23 - 01540216 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-19 18:06 - 2016-09-07 07:23 - 01040792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-10-19 18:06 - 2016-09-07 07:23 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-10-19 18:06 - 2016-09-07 07:23 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-10-19 18:06 - 2016-09-07 07:23 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-19 18:06 - 2016-09-07 07:22 - 01128096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-19 18:06 - 2016-09-07 07:22 - 00742192 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-19 18:06 - 2016-09-07 07:22 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-10-19 18:06 - 2016-09-07 07:22 - 00359256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-10-19 18:06 - 2016-09-07 07:21 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-10-19 18:06 - 2016-09-07 07:20 - 01355336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2016-10-19 18:06 - 2016-09-07 07:20 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-10-19 18:06 - 2016-09-07 07:19 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-10-19 18:06 - 2016-09-07 07:16 - 02548936 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-10-19 18:06 - 2016-09-07 07:16 - 02144512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-10-19 18:06 - 2016-09-07 07:15 - 00911640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-10-19 18:06 - 2016-09-07 07:15 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2016-10-19 18:06 - 2016-09-07 07:14 - 00430944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-10-19 18:06 - 2016-09-07 07:14 - 00216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-10-19 18:06 - 2016-09-07 07:13 - 02186856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-10-19 18:06 - 2016-09-07 07:13 - 01865584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-10-19 18:06 - 2016-09-07 07:12 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-10-19 18:06 - 2016-09-07 07:12 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-10-19 18:06 - 2016-09-07 07:11 - 02187408 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-19 18:06 - 2016-09-07 07:11 - 00503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-10-19 18:06 - 2016-09-07 07:11 - 00388888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-10-19 18:06 - 2016-09-07 07:11 - 00057912 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-10-19 18:06 - 2016-09-07 07:08 - 00116216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-10-19 18:06 - 2016-09-07 07:07 - 01951848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-10-19 18:06 - 2016-09-07 06:49 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-10-19 18:06 - 2016-09-07 06:46 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-10-19 18:06 - 2016-09-07 06:46 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-10-19 18:06 - 2016-09-07 06:46 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2016-10-19 18:06 - 2016-09-07 06:44 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2016-10-19 18:06 - 2016-09-07 06:44 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2016-10-19 18:06 - 2016-09-07 06:42 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-10-19 18:06 - 2016-09-07 06:41 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2016-10-19 18:06 - 2016-09-07 06:41 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2016-10-19 18:06 - 2016-09-07 06:41 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-10-19 18:06 - 2016-09-07 06:40 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbemcomn.dll
2016-10-19 18:06 - 2016-09-07 06:40 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcshext.dll
2016-10-19 18:06 - 2016-09-07 06:39 - 09324032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-10-19 18:06 - 2016-09-07 06:39 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-10-19 18:06 - 2016-09-07 06:39 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Cortana.ProxyStub.dll
2016-10-19 18:06 - 2016-09-07 06:38 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2016-10-19 18:06 - 2016-09-07 06:37 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-10-19 18:06 - 2016-09-07 06:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-10-19 18:06 - 2016-09-07 06:37 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-10-19 18:06 - 2016-09-07 06:37 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2016-10-19 18:06 - 2016-09-07 06:37 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2016-10-19 18:06 - 2016-09-07 06:36 - 00600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-10-19 18:06 - 2016-09-07 06:36 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-10-19 18:06 - 2016-09-07 06:36 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2016-10-19 18:06 - 2016-09-07 06:36 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-10-19 18:06 - 2016-09-07 06:36 - 00317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-10-19 18:06 - 2016-09-07 06:36 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-10-19 18:06 - 2016-09-07 06:36 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 09324032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-10-19 18:06 - 2016-09-07 06:35 - 00814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 00714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 00577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wbemcomn.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 00363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneOm.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2016-10-19 18:06 - 2016-09-07 06:35 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2016-10-19 18:06 - 2016-09-07 06:34 - 00952320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-10-19 18:06 - 2016-09-07 06:34 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-10-19 18:06 - 2016-09-07 06:34 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-10-19 18:06 - 2016-09-07 06:34 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2016-10-19 18:06 - 2016-09-07 06:34 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll
2016-10-19 18:06 - 2016-09-07 06:34 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-10-19 18:06 - 2016-09-07 06:34 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-10-19 18:06 - 2016-09-07 06:34 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-10-19 18:06 - 2016-09-07 06:34 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-10-19 18:06 - 2016-09-07 06:34 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2016-10-19 18:06 - 2016-09-07 06:34 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll
2016-10-19 18:06 - 2016-09-07 06:33 - 01813504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-10-19 18:06 - 2016-09-07 06:33 - 00904704 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2016-10-19 18:06 - 2016-09-07 06:33 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-10-19 18:06 - 2016-09-07 06:33 - 00602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2016-10-19 18:06 - 2016-09-07 06:33 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2016-10-19 18:06 - 2016-09-07 06:33 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-10-19 18:06 - 2016-09-07 06:33 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 04213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc_ssp.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-10-19 18:06 - 2016-09-07 06:32 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2016-10-19 18:06 - 2016-09-07 06:32 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll

Re: Poprosím o kontrolu

Napsal: 19 říj 2016 22:29
od Tomik152
2016-10-19 18:06 - 2016-09-07 06:31 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2016-10-19 18:06 - 2016-09-07 06:31 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 01318400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 01001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 00904704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-10-19 18:06 - 2016-09-07 06:30 - 00697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\filemgmt.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-10-19 18:06 - 2016-09-07 06:30 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2016-10-19 18:06 - 2016-09-07 06:29 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-10-19 18:06 - 2016-09-07 06:29 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-10-19 18:06 - 2016-09-07 06:29 - 01487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2016-10-19 18:06 - 2016-09-07 06:29 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-10-19 18:06 - 2016-09-07 06:29 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-10-19 18:06 - 2016-09-07 06:29 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-10-19 18:06 - 2016-09-07 06:29 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2016-10-19 18:06 - 2016-09-07 06:29 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-10-19 18:06 - 2016-09-07 06:28 - 02731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-10-19 18:06 - 2016-09-07 06:28 - 01783808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-10-19 18:06 - 2016-09-07 06:28 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-10-19 18:06 - 2016-09-07 06:28 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-10-19 18:06 - 2016-09-07 06:28 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-10-19 18:06 - 2016-09-07 06:28 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc_ssp.dll
2016-10-19 18:06 - 2016-09-07 06:28 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-10-19 18:06 - 2016-09-07 06:28 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2016-10-19 18:06 - 2016-09-07 06:28 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-10-19 18:06 - 2016-09-07 06:28 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-10-19 18:06 - 2016-09-07 06:28 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysdm.cpl
2016-10-19 18:06 - 2016-09-07 06:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-10-19 18:06 - 2016-09-07 06:27 - 01872896 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 00961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmsdk.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2016-10-19 18:06 - 2016-09-07 06:27 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-10-19 18:06 - 2016-09-07 06:26 - 02057216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-10-19 18:06 - 2016-09-07 06:26 - 01915392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-10-19 18:06 - 2016-09-07 06:26 - 01570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-10-19 18:06 - 2016-09-07 06:26 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2016-10-19 18:06 - 2016-09-07 06:26 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-10-19 18:06 - 2016-09-07 06:26 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-10-19 18:06 - 2016-09-07 06:26 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-10-19 18:06 - 2016-09-07 06:26 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-10-19 18:06 - 2016-09-07 06:26 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-10-19 18:06 - 2016-09-07 06:26 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-10-19 18:06 - 2016-09-07 06:25 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-10-19 18:06 - 2016-09-07 06:25 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-10-19 18:06 - 2016-09-07 06:25 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2016-10-19 18:06 - 2016-09-07 06:25 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2016-10-19 18:06 - 2016-09-07 06:24 - 01276928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-10-19 18:06 - 2016-09-07 06:24 - 00785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-10-19 18:06 - 2016-09-07 06:24 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2016-10-19 18:06 - 2016-09-07 06:23 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2016-10-19 18:06 - 2016-09-07 06:23 - 00918016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2016-10-19 18:06 - 2016-09-07 06:23 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-10-19 18:06 - 2016-09-07 06:22 - 03093504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-10-19 18:06 - 2016-09-07 06:22 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-19 18:06 - 2016-09-07 06:22 - 01297408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-10-19 18:06 - 2016-09-07 06:21 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-19 18:06 - 2016-09-07 06:21 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-10-19 18:06 - 2016-09-07 06:21 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-10-19 18:06 - 2016-09-07 06:21 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-10-19 18:06 - 2016-09-07 06:20 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-19 18:06 - 2016-09-07 06:20 - 00882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-10-19 18:06 - 2016-09-07 06:20 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-10-19 18:06 - 2016-09-07 06:20 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-10-19 18:06 - 2016-09-07 06:20 - 00513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2016-10-19 18:06 - 2016-09-07 06:19 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-10-19 18:06 - 2016-09-07 06:19 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2016-10-19 18:06 - 2016-09-07 06:19 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-10-19 18:06 - 2016-09-07 06:19 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-10-19 18:06 - 2016-09-07 06:18 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-10-19 18:06 - 2016-09-07 06:18 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2016-10-19 18:06 - 2016-09-07 06:17 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-10-19 18:06 - 2016-09-07 06:17 - 02285568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-10-19 18:06 - 2016-09-07 06:17 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-10-19 18:06 - 2016-09-07 06:17 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-10-19 18:06 - 2016-09-07 06:16 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2016-10-19 18:06 - 2016-09-07 06:15 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-10-19 18:06 - 2016-09-07 06:15 - 01121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-10-19 18:06 - 2016-09-07 06:15 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-10-19 18:06 - 2016-09-07 06:15 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-10-19 18:06 - 2016-09-07 06:15 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hnetcfg.dll
2016-10-19 18:06 - 2016-09-07 06:13 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-10-19 18:06 - 2016-09-07 06:12 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-10-19 18:06 - 2016-09-07 06:11 - 03294208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-10-19 18:06 - 2016-09-07 06:11 - 03053568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-10-19 18:06 - 2016-09-07 06:10 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-10-19 18:06 - 2016-09-07 06:10 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-10-19 18:06 - 2016-09-07 06:10 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2016-10-19 18:06 - 2016-09-07 06:10 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2016-10-19 18:06 - 2016-09-07 06:09 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-10-19 18:06 - 2016-09-07 06:09 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-10-19 18:06 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-10-19 18:06 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-10-19 18:06 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-10-19 18:06 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-10-19 18:06 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2016-10-19 18:06 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-10-19 18:06 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-10-19 18:06 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2016-10-19 18:06 - 2016-06-18 06:51 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-10-19 18:05 - 2016-10-05 06:50 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-10-19 18:05 - 2016-10-05 06:47 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-10-19 18:05 - 2016-10-05 06:38 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-10-19 18:05 - 2016-10-05 06:35 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-10-19 18:05 - 2016-10-05 06:34 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-10-19 18:05 - 2016-10-05 06:30 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-10-19 18:05 - 2016-10-05 06:29 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-10-19 18:05 - 2016-10-05 06:00 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-10-19 18:05 - 2016-10-05 05:40 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-10-19 18:05 - 2016-10-05 05:37 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-10-19 18:05 - 2016-10-05 05:30 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-10-19 18:05 - 2016-10-05 05:28 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-10-19 18:05 - 2016-10-05 05:24 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-10-19 18:05 - 2016-10-05 05:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-10-19 18:05 - 2016-09-07 07:27 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-10-19 18:05 - 2016-09-07 07:24 - 00652312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-10-19 18:05 - 2016-09-07 07:23 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-19 18:05 - 2016-09-07 07:22 - 00431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-10-19 18:05 - 2016-09-07 07:19 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-10-19 18:05 - 2016-09-07 06:52 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-10-19 18:05 - 2016-09-07 06:46 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2016-10-19 18:05 - 2016-09-07 06:45 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2016-10-19 18:05 - 2016-09-07 06:44 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoipRT.dll
2016-10-19 18:05 - 2016-09-07 06:44 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2016-10-19 18:05 - 2016-09-07 06:43 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2016-10-19 18:05 - 2016-09-07 06:43 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MTConfig.sys
2016-10-19 18:05 - 2016-09-07 06:42 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2016-10-19 18:05 - 2016-09-07 06:42 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2016-10-19 18:05 - 2016-09-07 06:42 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2016-10-19 18:05 - 2016-09-07 06:41 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2016-10-19 18:05 - 2016-09-07 06:41 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-10-19 18:05 - 2016-09-07 06:41 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-10-19 18:05 - 2016-09-07 06:40 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-10-19 18:05 - 2016-09-07 06:40 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-10-19 18:05 - 2016-09-07 06:40 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2016-10-19 18:05 - 2016-09-07 06:39 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2016-10-19 18:05 - 2016-09-07 06:39 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2016-10-19 18:05 - 2016-09-07 06:39 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoipRT.dll
2016-10-19 18:05 - 2016-09-07 06:39 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2016-10-19 18:05 - 2016-09-07 06:38 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-10-19 18:05 - 2016-09-07 06:38 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-10-19 18:05 - 2016-09-07 06:38 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-10-19 18:05 - 2016-09-07 06:38 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2016-10-19 18:05 - 2016-09-07 06:38 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll
2016-10-19 18:05 - 2016-09-07 06:37 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsecsnp.dll
2016-10-19 18:05 - 2016-09-07 06:37 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2016-10-19 18:05 - 2016-09-07 06:37 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-10-19 18:05 - 2016-09-07 06:37 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-10-19 18:05 - 2016-09-07 06:37 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2016-10-19 18:05 - 2016-09-07 06:37 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-10-19 18:05 - 2016-09-07 06:36 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-10-19 18:05 - 2016-09-07 06:36 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-10-19 18:05 - 2016-09-07 06:36 - 01051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagCpl.dll
2016-10-19 18:05 - 2016-09-07 06:36 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\authfwcfg.dll
2016-10-19 18:05 - 2016-09-07 06:36 - 00457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroleui.dll
2016-10-19 18:05 - 2016-09-07 06:36 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-10-19 18:05 - 2016-09-07 06:36 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-10-19 18:05 - 2016-09-07 06:36 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-10-19 18:05 - 2016-09-07 06:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2016-10-19 18:05 - 2016-09-07 06:36 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-10-19 18:05 - 2016-09-07 06:36 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-10-19 18:05 - 2016-09-07 06:36 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwcfg.dll
2016-10-19 18:05 - 2016-09-07 06:35 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2016-10-19 18:05 - 2016-09-07 06:35 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-10-19 18:05 - 2016-09-07 06:35 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-10-19 18:05 - 2016-09-07 06:35 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-10-19 18:05 - 2016-09-07 06:35 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-10-19 18:05 - 2016-09-07 06:35 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-10-19 18:05 - 2016-09-07 06:35 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2016-10-19 18:05 - 2016-09-07 06:35 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usbceip.dll
2016-10-19 18:05 - 2016-09-07 06:35 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcshext.dll
2016-10-19 18:05 - 2016-09-07 06:34 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-10-19 18:05 - 2016-09-07 06:34 - 00507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-10-19 18:05 - 2016-09-07 06:34 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2016-10-19 18:05 - 2016-09-07 06:34 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-10-19 18:05 - 2016-09-07 06:34 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2016-10-19 18:05 - 2016-09-07 06:34 - 00300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcbase.dll
2016-10-19 18:05 - 2016-09-07 06:34 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-10-19 18:05 - 2016-09-07 06:34 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-10-19 18:05 - 2016-09-07 06:33 - 00847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-10-19 18:05 - 2016-09-07 06:33 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-10-19 18:05 - 2016-09-07 06:33 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2016-10-19 18:05 - 2016-09-07 06:33 - 00276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-10-19 18:05 - 2016-09-07 06:33 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2016-10-19 18:05 - 2016-09-07 06:32 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-10-19 18:05 - 2016-09-07 06:32 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2016-10-19 18:05 - 2016-09-07 06:32 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-10-19 18:05 - 2016-09-07 06:32 - 00689664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-10-19 18:05 - 2016-09-07 06:32 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-10-19 18:05 - 2016-09-07 06:32 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-10-19 18:05 - 2016-09-07 06:32 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2016-10-19 18:05 - 2016-09-07 06:32 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2016-10-19 18:05 - 2016-09-07 06:32 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-10-19 18:05 - 2016-09-07 06:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-10-19 18:05 - 2016-09-07 06:32 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl
2016-10-19 18:05 - 2016-09-07 06:32 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-10-19 18:05 - 2016-09-07 06:32 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certmgr.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-10-19 18:05 - 2016-09-07 06:31 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-10-19 18:05 - 2016-09-07 06:31 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-10-19 18:05 - 2016-09-07 06:30 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2016-10-19 18:05 - 2016-09-07 06:30 - 01037824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-10-19 18:05 - 2016-09-07 06:30 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-10-19 18:05 - 2016-09-07 06:30 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-10-19 18:05 - 2016-09-07 06:30 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-10-19 18:05 - 2016-09-07 06:30 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-10-19 18:05 - 2016-09-07 06:30 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2016-10-19 18:05 - 2016-09-07 06:30 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-10-19 18:05 - 2016-09-07 06:29 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll
2016-10-19 18:05 - 2016-09-07 06:29 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-10-19 18:05 - 2016-09-07 06:29 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2016-10-19 18:05 - 2016-09-07 06:29 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2016-10-19 18:05 - 2016-09-07 06:29 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2016-10-19 18:05 - 2016-09-07 06:28 - 04143104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2016-10-19 18:05 - 2016-09-07 06:28 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2016-10-19 18:05 - 2016-09-07 06:28 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2016-10-19 18:05 - 2016-09-07 06:28 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-10-19 18:05 - 2016-09-07 06:28 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2016-10-19 18:05 - 2016-09-07 06:28 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-19 18:05 - 2016-09-07 06:28 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2016-10-19 18:05 - 2016-09-07 06:28 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-10-19 18:05 - 2016-09-07 06:28 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-10-19 18:05 - 2016-09-07 06:28 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-10-19 18:05 - 2016-09-07 06:28 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-10-19 18:05 - 2016-09-07 06:27 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-19 18:05 - 2016-09-07 06:27 - 03415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-10-19 18:05 - 2016-09-07 06:27 - 01424384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2016-10-19 18:05 - 2016-09-07 06:27 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-10-19 18:05 - 2016-09-07 06:27 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-10-19 18:05 - 2016-09-07 06:27 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-10-19 18:05 - 2016-09-07 06:27 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-10-19 18:05 - 2016-09-07 06:27 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-10-19 18:05 - 2016-09-07 06:27 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-10-19 18:05 - 2016-09-07 06:27 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-10-19 18:05 - 2016-09-07 06:26 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-10-19 18:05 - 2016-09-07 06:26 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-10-19 18:05 - 2016-09-07 06:26 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-10-19 18:05 - 2016-09-07 06:26 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2016-10-19 18:05 - 2016-09-07 06:26 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-10-19 18:05 - 2016-09-07 06:26 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-10-19 18:05 - 2016-09-07 06:26 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2016-10-19 18:05 - 2016-09-07 06:25 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-10-19 18:05 - 2016-09-07 06:25 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-10-19 18:05 - 2016-09-07 06:25 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-10-19 18:05 - 2016-09-07 06:24 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-10-19 18:05 - 2016-09-07 06:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-10-19 18:05 - 2016-09-07 06:24 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-10-19 18:05 - 2016-09-07 06:24 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-10-19 18:05 - 2016-09-07 06:22 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2016-10-19 18:05 - 2016-09-07 06:22 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-10-19 18:05 - 2016-09-07 06:21 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2016-10-19 18:05 - 2016-09-07 06:20 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-10-19 18:05 - 2016-09-07 06:20 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-10-19 18:05 - 2016-09-07 06:20 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2016-10-19 18:05 - 2016-09-07 06:20 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-10-19 18:05 - 2016-09-07 06:19 - 02563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-10-19 18:05 - 2016-09-07 06:19 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2016-10-19 18:05 - 2016-09-07 06:17 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-10-19 18:05 - 2016-09-07 06:16 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-10-19 18:05 - 2016-09-07 06:15 - 01755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-10-19 18:05 - 2016-09-07 06:15 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2016-10-19 18:05 - 2016-09-07 06:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2016-10-19 18:05 - 2016-09-07 06:14 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-10-19 18:05 - 2016-09-07 06:12 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-10-19 18:05 - 2016-09-07 06:11 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2016-10-19 18:05 - 2016-09-07 06:11 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-10-19 18:05 - 2016-09-07 06:10 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-10-19 18:05 - 2016-09-07 06:09 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2016-10-19 18:05 - 2016-09-07 06:09 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2016-10-19 18:05 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-10-19 18:05 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-10-19 18:05 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-10-19 18:05 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-10-19 18:05 - 2016-08-03 11:41 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-10-19 18:05 - 2016-08-03 11:40 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-10-19 18:05 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-10-19 18:05 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2016-10-19 18:05 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-10-19 18:05 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-10-19 18:05 - 2016-08-03 11:29 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-10-19 18:05 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-10-19 18:05 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-10-19 18:05 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-10-19 18:05 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-10-19 18:05 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-10-19 18:05 - 2016-06-18 06:55 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-10-19 18:05 - 2016-06-18 06:49 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-10-19 18:05 - 2016-06-18 06:45 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-10-19 18:04 - 2016-10-05 06:49 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2016-10-19 18:04 - 2016-10-05 06:47 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2016-10-19 18:04 - 2016-10-05 05:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2016-10-19 18:04 - 2016-09-07 06:52 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-10-19 18:04 - 2016-09-07 06:48 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-10-19 18:04 - 2016-09-07 06:47 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-19 18:04 - 2016-09-07 06:46 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-10-19 18:04 - 2016-09-07 06:46 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-10-19 18:04 - 2016-09-07 06:45 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-10-19 18:04 - 2016-09-07 06:44 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-10-19 18:04 - 2016-09-07 06:44 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2016-10-19 18:04 - 2016-09-07 06:44 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IconCodecService.dll
2016-10-19 18:04 - 2016-09-07 06:43 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-19 18:04 - 2016-09-07 06:43 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2016-10-19 18:04 - 2016-09-07 06:42 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-10-19 18:04 - 2016-09-07 06:42 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2016-10-19 18:04 - 2016-09-07 06:42 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2016-10-19 18:04 - 2016-09-07 06:41 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-10-19 18:04 - 2016-09-07 06:41 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-10-19 18:04 - 2016-09-07 06:41 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwcfg.dll
2016-10-19 18:04 - 2016-09-07 06:41 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-10-19 18:04 - 2016-09-07 06:41 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-10-19 18:04 - 2016-09-07 06:40 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2016-10-19 18:04 - 2016-09-07 06:40 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-10-19 18:04 - 2016-09-07 06:40 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-10-19 18:04 - 2016-09-07 06:40 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CheckNetIsolation.exe
2016-10-19 18:04 - 2016-09-07 06:39 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FingerprintEnrollment.dll
2016-10-19 18:04 - 2016-09-07 06:39 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2016-10-19 18:04 - 2016-09-07 06:38 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-10-19 18:04 - 2016-09-07 06:38 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2016-10-19 18:04 - 2016-09-07 06:38 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-10-19 18:04 - 2016-09-07 06:38 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-10-19 18:04 - 2016-09-07 06:38 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-10-19 18:04 - 2016-09-07 06:38 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2016-10-19 18:04 - 2016-09-07 06:38 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2016-10-19 18:04 - 2016-09-07 06:37 - 00435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-19 18:04 - 2016-09-07 06:37 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-19 18:04 - 2016-09-07 06:37 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2016-10-19 18:04 - 2016-09-07 06:37 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-10-19 18:04 - 2016-09-07 06:37 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvc.dll
2016-10-19 18:04 - 2016-09-07 06:37 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2016-10-19 18:04 - 2016-09-07 06:37 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-10-19 18:04 - 2016-09-07 06:37 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2016-10-19 18:04 - 2016-09-07 06:36 - 01568768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdt.exe
2016-10-19 18:04 - 2016-09-07 06:36 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-10-19 18:04 - 2016-09-07 06:36 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-10-19 18:04 - 2016-09-07 06:36 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-10-19 18:04 - 2016-09-07 06:36 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2016-10-19 18:04 - 2016-09-07 06:36 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2016-10-19 18:04 - 2016-09-07 06:35 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-10-19 18:04 - 2016-09-07 06:35 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-10-19 18:04 - 2016-09-07 06:35 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-10-19 18:04 - 2016-09-07 06:35 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2016-10-19 18:04 - 2016-09-07 06:35 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-10-19 18:04 - 2016-09-07 06:35 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-10-19 18:04 - 2016-09-07 06:35 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-10-19 18:04 - 2016-09-07 06:35 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-10-19 18:04 - 2016-09-07 06:35 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.ps.dll
2016-10-19 18:04 - 2016-09-07 06:35 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-10-19 18:04 - 2016-09-07 06:35 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CheckNetIsolation.exe
2016-10-19 18:04 - 2016-09-07 06:34 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-10-19 18:04 - 2016-09-07 06:34 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-10-19 18:04 - 2016-09-07 06:34 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-10-19 18:04 - 2016-09-07 06:34 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2016-10-19 18:04 - 2016-09-07 06:34 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-10-19 18:04 - 2016-09-07 06:33 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-10-19 18:04 - 2016-09-07 06:33 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-10-19 18:04 - 2016-09-07 06:33 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-19 18:04 - 2016-09-07 06:33 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2016-10-19 18:04 - 2016-09-07 06:33 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll
2016-10-19 18:04 - 2016-09-07 06:33 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2016-10-19 18:04 - 2016-09-07 06:33 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-10-19 18:04 - 2016-09-07 06:32 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartCardSimulator.dll
2016-10-19 18:04 - 2016-09-07 06:32 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3ui.dll
2016-10-19 18:04 - 2016-09-07 06:31 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-10-19 18:04 - 2016-09-07 06:31 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppinst.dll
2016-10-19 18:04 - 2016-09-07 06:31 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2016-10-19 18:04 - 2016-09-07 06:31 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-10-19 18:04 - 2016-09-07 06:31 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-10-19 18:04 - 2016-09-07 06:31 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authfwcfg.dll
2016-10-19 18:04 - 2016-09-07 06:31 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-10-19 18:04 - 2016-09-07 06:31 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-10-19 18:04 - 2016-09-07 06:31 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-10-19 18:04 - 2016-09-07 06:30 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-10-19 18:04 - 2016-09-07 06:30 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll
2016-10-19 18:04 - 2016-09-07 06:30 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-19 18:04 - 2016-09-07 06:30 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2016-10-19 18:04 - 2016-09-07 06:29 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-10-19 18:04 - 2016-09-07 06:29 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-10-19 18:04 - 2016-09-07 06:29 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-19 18:04 - 2016-09-07 06:29 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2016-10-19 18:04 - 2016-09-07 06:29 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-10-19 18:04 - 2016-09-07 06:28 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-10-19 18:04 - 2016-09-07 06:28 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2016-10-19 18:04 - 2016-09-07 06:28 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-10-19 18:04 - 2016-09-07 06:28 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-10-19 18:04 - 2016-09-07 06:27 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-10-19 18:04 - 2016-09-07 06:27 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-10-19 18:04 - 2016-09-07 06:27 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-10-19 18:04 - 2016-09-07 06:27 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2016-10-19 18:04 - 2016-09-07 06:26 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2016-10-19 18:04 - 2016-09-07 06:26 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2016-10-19 18:04 - 2016-09-07 06:25 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-10-19 18:04 - 2016-09-07 06:25 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2016-10-19 18:04 - 2016-09-07 06:20 - 06675968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-10-19 18:04 - 2016-09-07 06:19 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-10-19 18:04 - 2016-09-07 06:19 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2016-10-19 18:04 - 2016-09-07 06:19 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2016-10-19 18:04 - 2016-09-07 06:18 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-10-19 18:04 - 2016-09-07 06:16 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-10-19 18:04 - 2016-09-07 06:16 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-10-19 18:04 - 2016-09-07 06:14 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-10-19 18:04 - 2016-09-07 06:10 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2016-10-19 18:04 - 2016-09-07 06:09 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msobjs.dll
2016-10-19 18:04 - 2016-09-07 06:09 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll
2016-10-19 18:04 - 2016-09-07 05:57 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-10-19 18:04 - 2016-08-03 11:41 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-10-19 18:04 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-19 18:04 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-10-19 18:04 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-10-19 18:04 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-10-19 18:04 - 2016-08-03 11:29 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-10-19 18:04 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-10-19 18:04 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2016-10-19 18:04 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-10-19 18:04 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-10-18 22:39 - 2016-10-18 22:39 - 00000000 ____D C:\rsit
2016-10-18 22:39 - 2016-10-18 22:39 - 00000000 ____D C:\Program Files\trend micro
2016-10-18 22:38 - 2016-10-18 22:38 - 01328128 _____ C:\Users\oem\Desktop\RSITx64.exe
2016-10-18 22:25 - 2016-10-18 22:26 - 00002225 _____ C:\Users\oem\Desktop\HRY.lnk
2016-10-18 22:20 - 2016-10-18 22:27 - 00001865 _____ C:\Users\oem\Desktop\OSOBNI_dulezite.lnk
2016-10-18 22:20 - 2016-10-18 22:23 - 00000000 ____D C:\Users\oem\Documents\OSOBNI_duležité
2016-10-18 22:16 - 2016-10-18 22:27 - 00001771 _____ C:\Users\oem\Desktop\TRASH.lnk
2016-10-18 22:16 - 2016-10-18 22:16 - 00000000 ____D C:\Users\oem\Documents\TRASH
2016-10-18 22:15 - 2016-10-18 22:27 - 00002303 _____ C:\Users\oem\Desktop\FOTKY+VIDEA.lnk
2016-10-18 22:15 - 2016-10-18 22:22 - 00000000 ____D C:\Users\oem\Documents\FOTKY+VIDEA
2016-10-18 22:14 - 2016-10-18 22:28 - 00002265 _____ C:\Users\oem\Desktop\TORRENT.lnk
2016-10-18 22:14 - 2016-10-18 22:14 - 00000000 ____D C:\Users\oem\AppData\LocalLow\uTorrent
2016-10-06 07:24 - 2016-10-19 07:05 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-09-25 17:00 - 2016-10-18 22:22 - 00000000 ____D C:\Users\oem\Documents\HRY
2016-09-25 09:55 - 2016-09-25 09:55 - 00805022 _____ C:\Users\oem\Downloads\EA0B.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00663633 _____ C:\Users\oem\Downloads\D006.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00531442 _____ C:\Users\oem\Downloads\CA9C.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00390424 _____ C:\Users\oem\Downloads\E548.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00355653 _____ C:\Users\oem\Downloads\B3D8.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00273226 _____ C:\Users\oem\Downloads\CDFF.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00264473 _____ C:\Users\oem\Downloads\ECB0.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00248245 _____ C:\Users\oem\Downloads\B466.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00245154 _____ C:\Users\oem\Downloads\C5EA.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00192379 _____ C:\Users\oem\Downloads\B7F8.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00185913 _____ C:\Users\oem\Downloads\B562.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00162616 _____ C:\Users\oem\Downloads\C54D.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00162328 _____ C:\Users\oem\Downloads\C461.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00151928 _____ C:\Users\oem\Downloads\B163.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00147769 _____ C:\Users\oem\Downloads\B5D0.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00134994 _____ C:\Users\oem\Downloads\C1BB.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00131689 _____ C:\Users\oem\Downloads\EFB4.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00129371 _____ C:\Users\oem\Downloads\E39E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00128811 _____ C:\Users\oem\Downloads\BFD1.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00125673 _____ C:\Users\oem\Downloads\C2D6.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00123015 _____ C:\Users\oem\Downloads\B866.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00120094 _____ C:\Users\oem\Downloads\BF04.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00119622 _____ C:\Users\oem\Downloads\B0D6.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00113089 _____ C:\Users\oem\Downloads\AEAE.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00110333 _____ C:\Users\oem\Downloads\E624.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00109396 _____ C:\Users\oem\Downloads\CA3D.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00088195 _____ C:\Users\oem\Downloads\D3EA.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00087715 _____ C:\Users\oem\Downloads\E34F.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00087034 _____ C:\Users\oem\Downloads\B36A.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00085402 _____ C:\Users\oem\Downloads\CF2A.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00080770 _____ C:\Users\oem\Downloads\B2DC.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00079297 _____ C:\Users\oem\Downloads\B513.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00078044 _____ C:\Users\oem\Downloads\AF1C.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00076823 _____ C:\Users\oem\Downloads\BA02.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00074680 _____ C:\Users\oem\Downloads\BA91.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00073924 _____ C:\Users\oem\Downloads\D6D1.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00072332 _____ C:\Users\oem\Downloads\AE0E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00071648 _____ C:\Users\oem\Downloads\C9BF.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00067578 _____ C:\Users\oem\Downloads\B73C.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00065923 _____ C:\Users\oem\Downloads\B6BD.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00060664 _____ C:\Users\oem\Downloads\C4EE.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00060528 _____ C:\Users\oem\Downloads\DA97.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00060297 _____ C:\Users\oem\Downloads\E175.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00060207 _____ C:\Users\oem\Downloads\DB05.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00059921 _____ C:\Users\oem\Downloads\CC36.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00059624 _____ C:\Users\oem\Downloads\C248.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00059066 _____ C:\Users\oem\Downloads\AD10.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00059004 _____ C:\Users\oem\Downloads\DD13.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00055502 _____ C:\Users\oem\Downloads\AFF9.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00054715 _____ C:\Users\oem\Downloads\B64E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00049345 _____ C:\Users\oem\Downloads\FB42.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00047722 _____ C:\Users\oem\Downloads\D28D.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00046324 _____ C:\Users\oem\Downloads\B1F1.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00044463 _____ C:\Users\oem\Downloads\C0DD.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00044382 _____ C:\Users\oem\Downloads\C902.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00043766 _____ C:\Users\oem\Downloads\B058.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00043330 _____ C:\Users\oem\Downloads\AD60.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00041451 _____ C:\Users\oem\Downloads\BC6B.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00040221 _____ C:\Users\oem\Downloads\BB9E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00039052 _____ C:\Users\oem\Downloads\DEDF.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00038064 _____ C:\Users\oem\Downloads\C373.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00037998 _____ C:\Users\oem\Downloads\D7ED.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00036997 _____ C:\Users\oem\Downloads\ADDF.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00036896 _____ C:\Users\oem\Downloads\ED7D.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00036497 _____ C:\Users\oem\Downloads\E741.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00036109 _____ C:\Users\oem\Downloads\C06F.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00035620 _____ C:\Users\oem\Downloads\BD2A.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00035604 _____ C:\Users\oem\Downloads\BB20.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00034677 _____ C:\Users\oem\Downloads\E0D7.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00034309 _____ C:\Users\oem\Downloads\BC1C.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00033687 _____ C:\Users\oem\Downloads\B924.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00033659 _____ C:\Users\oem\Downloads\D1C0.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00032588 _____ C:\Users\oem\Downloads\CCB4.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00029231 _____ C:\Users\oem\Downloads\B992.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00028374 _____ C:\Users\oem\Downloads\B9C2.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00028148 _____ C:\Users\oem\Downloads\CD23.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00027865 _____ C:\Users\oem\Downloads\E9AC.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00027852 _____ C:\Users\oem\Downloads\DFAC.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00027192 _____ C:\Users\oem\Downloads\BDA8.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00026407 _____ C:\Users\oem\Downloads\CB58.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00025512 _____ C:\Users\oem\Downloads\E059.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00024487 _____ C:\Users\oem\Downloads\CECB.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00024122 _____ C:\Users\oem\Downloads\D73F.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00023047 _____ C:\Users\oem\Downloads\D5A5.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00021903 _____ C:\Users\oem\Downloads\E8AE.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00021783 _____ C:\Users\oem\Downloads\EAF6.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00021536 _____ C:\Users\oem\Downloads\BCD9.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00020732 _____ C:\Users\oem\Downloads\BF92.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00020632 _____ C:\Users\oem\Downloads\FB03.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00020142 _____ C:\Users\oem\Downloads\E290.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00020127 _____ C:\Users\oem\Downloads\DB94.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00019915 _____ C:\Users\oem\Downloads\E91D.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00019572 _____ C:\Users\oem\Downloads\BA41.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00019102 _____ C:\Users\oem\Downloads\D110.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00018848 _____ C:\Users\oem\Downloads\DDF3.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00017945 _____ C:\Users\oem\Downloads\DF4D.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00017645 _____ C:\Users\oem\Downloads\E116.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00016874 _____ C:\Users\oem\Downloads\B8F4.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00016188 _____ C:\Users\oem\Downloads\BD09.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00015742 _____ C:\Users\oem\Downloads\F32E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00015604 _____ C:\Users\oem\Downloads\DBE4.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00015415 _____ C:\Users\oem\Downloads\DCC3.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00015125 _____ C:\Users\oem\Downloads\E2C0.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00014503 _____ C:\Users\oem\Downloads\E711.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00014313 _____ C:\Users\oem\Downloads\CCF4.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00014287 _____ C:\Users\oem\Downloads\DDC3.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00013538 _____ C:\Users\oem\Downloads\BA71.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00013414 _____ C:\Users\oem\Downloads\D33B.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00013227 _____ C:\Users\oem\Downloads\BDE7.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00012429 _____ C:\Users\oem\Downloads\ADAF.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00012070 _____ C:\Users\oem\Downloads\D3AB.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00011851 _____ C:\Users\oem\Downloads\DB54.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00011837 _____ C:\Users\oem\Downloads\E7A0.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00011640 _____ C:\Users\oem\Downloads\DA67.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00011041 _____ C:\Users\oem\Downloads\EE3B.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00010383 _____ C:\Users\oem\Downloads\CC06.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00010213 _____ C:\Users\oem\Downloads\E693.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00010025 _____ C:\Users\oem\Downloads\BAE0.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00009748 _____ C:\Users\oem\Downloads\D131.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00009538 _____ C:\Users\oem\Downloads\E300.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00009396 _____ C:\Users\oem\Downloads\DA18.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00009294 _____ C:\Users\oem\Downloads\C980.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00007688 _____ C:\Users\oem\Downloads\BEC5.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00007621 _____ C:\Users\oem\Downloads\EEE8.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00007604 _____ C:\Users\oem\Downloads\E673.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00007502 _____ C:\Users\oem\Downloads\DD43.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00007277 _____ C:\Users\oem\Downloads\C431.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00007044 _____ C:\Users\oem\Downloads\EC80.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00006944 _____ C:\Users\oem\Downloads\D9A9.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00006385 _____ C:\Users\oem\Downloads\D4F7.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00006197 _____ C:\Users\oem\Downloads\C3D2.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00006064 _____ C:\Users\oem\Downloads\FE86.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00005756 _____ C:\Users\oem\Downloads\D691.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00005703 _____ C:\Users\oem\Downloads\C8A2.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00005650 _____ C:\Users\oem\Downloads\D81D.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00005456 _____ C:\Users\oem\Downloads\DD73.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00005288 _____ C:\Users\oem\Downloads\D181.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00005049 _____ C:\Users\oem\Downloads\FDF8.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00004831 _____ C:\Users\oem\Downloads\D37B.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00004523 _____ C:\Users\oem\Downloads\FEE6.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00004510 _____ C:\Users\oem\Downloads\E81F.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00004359 _____ C:\Users\oem\Downloads\FD0C.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00004090 _____ C:\Users\oem\Downloads\B70C.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00003965 _____ C:\Users\oem\Downloads\FF26.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00003938 _____ C:\Users\oem\Downloads\D2FC.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00003928 _____ C:\Users\oem\Downloads\FE57.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00003710 _____ C:\Users\oem\Downloads\AE8D.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00003697 _____ C:\Users\oem\Downloads\FEB6.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00003497 _____ C:\Users\oem\Downloads\E85E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00003418 _____ C:\Users\oem\Downloads\D979.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00003246 _____ C:\Users\oem\Downloads\C688.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00003240 _____ C:\Users\oem\Downloads\D85C.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00003130 _____ C:\Users\oem\Downloads\BE17.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00002978 _____ C:\Users\oem\Downloads\CBC7.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00002695 _____ C:\Users\oem\Downloads\E95C.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00002509 _____ C:\Users\oem\Downloads\F7AD.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00002453 _____ C:\Users\oem\Downloads\ED9D.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00002443 _____ C:\Users\oem\Downloads\C12C.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00002417 _____ C:\Users\oem\Downloads\BE47.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00002262 _____ C:\Users\oem\Downloads\FC1F.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00002206 _____ C:\Users\oem\Downloads\DCF2.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00002133 _____ C:\Users\oem\Downloads\F967.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001928 _____ C:\Users\oem\Downloads\F6AF.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001905 _____ C:\Users\oem\Downloads\D7AD.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001903 _____ C:\Users\oem\Downloads\32.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001900 _____ C:\Users\oem\Downloads\FA66.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001852 _____ C:\Users\oem\Downloads\F9B6.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001843 _____ C:\Users\oem\Downloads\F0D3.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001822 _____ C:\Users\oem\Downloads\DBB4.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001819 _____ C:\Users\oem\Downloads\F64F.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001808 _____ C:\Users\oem\Downloads\F231.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001793 _____ C:\Users\oem\Downloads\FFF3.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001781 _____ C:\Users\oem\Downloads\D151.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001740 _____ C:\Users\oem\Downloads\F5F0.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001721 _____ C:\Users\oem\Downloads\F093.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001720 _____ C:\Users\oem\Downloads\F1D2.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001709 _____ C:\Users\oem\Downloads\F261.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001648 _____ C:\Users\oem\Downloads\5EE.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001627 _____ C:\Users\oem\Downloads\E87E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001601 _____ C:\Users\oem\Downloads\F1B1.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001599 _____ C:\Users\oem\Downloads\521.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001587 _____ C:\Users\oem\Downloads\F74E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001556 _____ C:\Users\oem\Downloads\E7DF.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001544 _____ C:\Users\oem\Downloads\C18B.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001526 _____ C:\Users\oem\Downloads\F71E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001524 _____ C:\Users\oem\Downloads\F152.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001482 _____ C:\Users\oem\Downloads\F043.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001450 _____ C:\Users\oem\Downloads\FF65.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001414 _____ C:\Users\oem\Downloads\FBC0.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001408 _____ C:\Users\oem\Downloads\F9E6.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001385 _____ C:\Users\oem\Downloads\D8AB.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001362 _____ C:\Users\oem\Downloads\EC31.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001359 _____ C:\Users\oem\Downloads\DC93.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001300 _____ C:\Users\oem\Downloads\E48A.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001288 _____ C:\Users\oem\Downloads\F68F.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001269 _____ C:\Users\oem\Downloads\2F8.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001230 _____ C:\Users\oem\Downloads\F85B.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001202 _____ C:\Users\oem\Downloads\65D.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001190 _____ C:\Users\oem\Downloads\ED4D.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001167 _____ C:\Users\oem\Downloads\1DD.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001142 _____ C:\Users\oem\Downloads\4B2.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001127 _____ C:\Users\oem\Downloads\A2.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001123 _____ C:\Users\oem\Downloads\501.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001120 _____ C:\Users\oem\Downloads\3F4.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001108 _____ C:\Users\oem\Downloads\29A.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001105 _____ C:\Users\oem\Downloads\415.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001099 _____ C:\Users\oem\Downloads\F61F.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001093 _____ C:\Users\oem\Downloads\3A5.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001072 _____ C:\Users\oem\Downloads\18E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001031 _____ C:\Users\oem\Downloads\62.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00001022 _____ C:\Users\oem\Downloads\F063.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000960 _____ C:\Users\oem\Downloads\C813.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000958 _____ C:\Users\oem\Downloads\C726.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000925 _____ C:\Users\oem\Downloads\F202.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000923 _____ C:\Users\oem\Downloads\F004.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000905 _____ C:\Users\oem\Downloads\F182.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000892 _____ C:\Users\oem\Downloads\E97C.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000880 _____ C:\Users\oem\Downloads\D94A.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000865 _____ C:\Users\oem\Downloads\12F.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000862 _____ C:\Users\oem\Downloads\F6DF.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000862 _____ C:\Users\oem\Downloads\F282.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000844 _____ C:\Users\oem\Downloads\FC5F.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000822 _____ C:\Users\oem\Downloads\E4D9.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000782 _____ C:\Users\oem\Downloads\D584.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000768 _____ C:\Users\oem\Downloads\F112.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000709 _____ C:\Users\oem\Downloads\C8C2.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000659 _____ C:\Users\oem\Downloads\D613.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000602 _____ C:\Users\oem\Downloads\EBB3.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000599 _____ C:\Users\oem\Downloads\E44B.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000580 _____ C:\Users\oem\Downloads\F7ED.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000557 _____ C:\Users\oem\Downloads\AF9A.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000552 _____ C:\Users\oem\Downloads\C6D7.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000522 _____ C:\Users\oem\Downloads\FA15.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000456 _____ C:\Users\oem\Downloads\E203.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000438 _____ C:\Users\oem\Downloads\DC14.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000427 _____ C:\Users\oem\Downloads\EDDD.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000421 _____ C:\Users\oem\Downloads\D21F.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000392 _____ C:\Users\oem\Downloads\F5A0.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000281 _____ C:\Users\oem\Downloads\DC72.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000277 _____ C:\Users\oem\Downloads\D42B.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000265 _____ C:\Users\oem\Downloads\FC9E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000261 _____ C:\Users\oem\Downloads\C765.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000258 _____ C:\Users\oem\Downloads\C7D4.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000240 _____ C:\Users\oem\Downloads\F89A.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000160 _____ C:\Users\oem\Downloads\C843.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000133 _____ C:\Users\oem\Downloads\D8EB.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000074 _____ C:\Users\oem\Downloads\AE3E.tmp
2016-09-25 09:55 - 2016-09-25 09:55 - 00000000 _____ C:\Users\oem\Downloads\6FA.tmp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-19 22:28 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-10-19 22:28 - 2015-05-03 22:38 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-19 22:28 - 2015-05-03 22:38 - 00000968 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-19 22:24 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-19 22:10 - 2015-09-08 19:47 - 00000000 __SHD C:\Users\oem\IntelGraphicsProfiles
2016-10-19 22:10 - 2014-12-13 03:50 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-19 22:05 - 2015-12-17 06:12 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-19 22:05 - 2015-12-17 05:36 - 05037424 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-19 22:03 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-10-19 22:01 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-10-19 22:01 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-10-19 22:01 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-10-19 22:01 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-10-19 22:01 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\setup
2016-10-19 22:01 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-19 22:01 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-10-19 22:01 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-19 22:01 - 2015-10-30 08:31 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2016-10-19 22:01 - 2015-10-30 08:31 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-10-19 22:01 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-10-19 22:01 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-10-19 22:00 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-10-19 22:00 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-19 22:00 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-10-19 22:00 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-10-19 22:00 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2016-10-19 22:00 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-10-19 22:00 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-10-19 19:28 - 2015-10-30 20:35 - 00000000 ____D C:\WINDOWS\ShellNew
2016-10-19 19:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-10-19 19:28 - 2015-05-04 23:09 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-10-19 19:20 - 2015-05-04 23:09 - 143495576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-10-19 18:33 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-19 18:33 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-19 17:40 - 2015-10-30 09:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-10-19 17:40 - 2015-10-30 09:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-10-19 17:40 - 2015-10-30 09:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2016-10-19 17:27 - 2015-05-31 11:04 - 00004186 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{39B0DD72-A020-4A1F-BF19-27E7B1570E8D}
2016-10-18 22:54 - 2015-05-03 22:56 - 00000000 ____D C:\Users\oem\AppData\Roaming\uTorrent
2016-10-18 22:13 - 2015-05-03 22:57 - 00000000 ____D C:\Users\oem\AppData\Roaming\vlc
2016-10-18 17:56 - 2015-08-08 00:04 - 00000000 ____D C:\Users\oem\AppData\Roaming\Skype
2016-10-17 22:43 - 2015-02-15 19:37 - 00000000 ____D C:\Users\oem\Documents\TORRENT
2016-10-10 16:42 - 2015-03-10 17:24 - 00263296 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2016-10-08 11:48 - 2016-03-02 23:16 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-10-04 22:37 - 2015-12-17 05:50 - 00000000 ____D C:\Users\oem
2016-10-04 08:43 - 2015-05-03 22:39 - 00002283 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-04 08:43 - 2015-05-03 22:39 - 00002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-01 10:09 - 2015-12-12 03:55 - 00000000 ____D C:\Users\oem\AppData\Local\CrashDumps
2016-10-01 02:23 - 2015-10-30 09:26 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-01 02:23 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-29 17:55 - 2016-03-14 21:01 - 00000000 ____D C:\Users\oem\AppData\Local\ElevatedDiagnostics
2016-09-25 19:30 - 2015-09-23 21:38 - 00091248 _____ C:\Users\oem\AppData\Local\GDIPFONTCACHEV1.DAT
2016-09-25 17:45 - 2015-10-30 20:31 - 00751272 _____ C:\WINDOWS\system32\perfh005.dat
2016-09-25 17:45 - 2015-10-30 20:31 - 00150860 _____ C:\WINDOWS\system32\perfc005.dat
2016-09-25 17:45 - 2015-09-08 19:29 - 01771468 _____ C:\WINDOWS\system32\PerfStringBackup.INI

==================== Files in the root of some directories =======

2015-12-06 22:42 - 2015-12-10 23:58 - 0000132 _____ () C:\Users\oem\AppData\Roaming\Adobe Formát PNG CS5 – předvolby

Some files in TEMP:
====================
C:\Users\oem\AppData\Local\Temp\AutoRun.exe
C:\Users\oem\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\oem\AppData\Local\Temp\BSvcProcessor.exe
C:\Users\oem\AppData\Local\Temp\BSvcUpdater.exe
C:\Users\oem\AppData\Local\Temp\libeay32.dll
C:\Users\oem\AppData\Local\Temp\msvcr120.dll
C:\Users\oem\AppData\Local\Temp\rldfw32_s26c.dll
C:\Users\oem\AppData\Local\Temp\rldfw32_s3ek.dll
C:\Users\oem\AppData\Local\Temp\rldfw32_s73c.dll
C:\Users\oem\AppData\Local\Temp\rldfw64_s2j0.dll
C:\Users\oem\AppData\Local\Temp\rldfw64_s4m4.dll
C:\Users\oem\AppData\Local\Temp\SkypeSetup.exe
C:\Users\oem\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET NOD32 Antivirus 9.0.401.1 (Disabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET NOD32 Antivirus 9.0.401.1 (Disabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\oem\Desktop" je 255 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

Re: Poprosím o kontrolu

Napsal: 20 říj 2016 16:17
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
C:\Users\oem\Downloads
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\oem\AppData\Local\Temp
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\...\Run: [BingSvc] => C:\Users\oem\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
C:\Users\oem\AppData\Local\Microsoft\BingSvc
GroupPolicy: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-2606986550-1542272341-219935788-1002 -> DefaultScope {9D76D6AA-F231-4A1F-8C52-62B4B927B1B0} URL =
SearchScopes: HKU\S-1-5-21-2606986550-1542272341-219935788-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2606986550-1542272341-219935788-1002 -> {9D76D6AA-F231-4A1F-8C52-62B4B927B1B0} URL =
C:\WINDOWS\system32\ApnDatabase.xml
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Poprosím o kontrolu

Napsal: 20 říj 2016 21:10
od Tomik152
Fix result of Farbar Recovery Scan Tool (x64) Version: 17-10-2016
Ran by oem (20-10-2016 22:05:08) Run:5
Running from C:\Users\oem\Desktop
Loaded Profiles: oem (Available Profiles: oem & Administrator)
Boot Mode: Safe Mode (minimal)
==============================================

fixlist content:
*****************
Start
C:\Users\oem\Downloads
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\oem\AppData\Local\Temp
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\...\Run: [BingSvc] => C:\Users\oem\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
C:\Users\oem\AppData\Local\Microsoft\BingSvc
GroupPolicy: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-2606986550-1542272341-219935788-1002 -> DefaultScope {9D76D6AA-F231-4A1F-8C52-62B4B927B1B0} URL =
SearchScopes: HKU\S-1-5-21-2606986550-1542272341-219935788-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2606986550-1542272341-219935788-1002 -> {9D76D6AA-F231-4A1F-8C52-62B4B927B1B0} URL =
C:\WINDOWS\system32\ApnDatabase.xml
End
*****************

"C:\Users\oem\Downloads" => not found.
"C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job" => not found.
"C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job" => not found.
"C:\Users\oem\AppData\Local\Temp" => not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\Software\Microsoft\Windows\CurrentVersion\Run\\BingSvc => value removed successfully
C:\Users\oem\AppData\Local\Microsoft\BingSvc => moved successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKU\S-1-5-21-2606986550-1542272341-219935788-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-2606986550-1542272341-219935788-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
"HKU\S-1-5-21-2606986550-1542272341-219935788-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9D76D6AA-F231-4A1F-8C52-62B4B927B1B0}" => key removed successfully
HKCR\CLSID\{9D76D6AA-F231-4A1F-8C52-62B4B927B1B0} => key not found.
C:\WINDOWS\system32\ApnDatabase.xml => moved successfully


The system needed a reboot.

==== End of Fixlog 22:05:09 ====

Re: Poprosím o kontrolu

Napsal: 21 říj 2016 19:41
od Rudy
Smazáno. Log by již měl být OK.

Re: Poprosím o kontrolu

Napsal: 22 říj 2016 10:29
od Tomik152
Pomohlo, to, nainstalovalo se tuna aktualizací a NTB je rychlejší, děkuji!:)

Re: Poprosím o kontrolu

Napsal: 22 říj 2016 11:35
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz