Prosím o kontrolu logu Vyřešeno

[jaro3]

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

ještě to projedem:
Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

[Reklama]

[flowem]

aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software
Run date: 2016-05-10 21:56:08
-----------------------------
21:56:08.598 OS Version: Windows x64 6.2.9200
21:56:08.598 Number of processors: 2 586 0x3C03
21:56:08.614 ComputerName: FLOWPC UserName: fLow
21:56:08.770 Initialize success
21:56:08.801 VM: initialized successfully
21:56:08.801 VM: Intel CPU supported
21:56:27.064 VM: not used
21:56:49.528 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000030
21:56:49.528 Disk 0 Vendor: KINGSTON_SHFS37A120G 603ABBF0 Size: 114473MB BusType: 11
21:56:49.528 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000031
21:56:49.528 Disk 1 Vendor: WDC_WD6400AACS-00G8B1 05.04C05 Size: 610480MB BusType: 11
21:56:49.544 Disk 0 MBR read successfully
21:56:49.544 Disk 0 MBR scan
21:56:49.544 Disk 0 unknown MBR code
21:56:49.544 Disk 0 Partition 1 00 EE GPT 2097151 MB offset 1
21:56:49.544 Disk 0 scanning C:\Windows\system32\drivers
21:56:50.714 Service scanning
21:56:53.455 Modules scanning
21:56:53.971 Disk 0 trace - called modules:
21:56:53.986 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys storahci.sys hal.dll
21:56:54.002 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xffffe0016aa9a330]
21:56:54.018 3 CLASSPNP.SYS[fffff8006ab27d95] -> nt!IofCallDriver -> [0xffffe0016a8837b0]
21:56:54.018 5 ACPI.sys[fffff80069d11361] -> nt!IofCallDriver -> [0xffffe0016a9b5e40]
21:56:54.018 7 ACPI.sys[fffff80069d11361] -> nt!IofCallDriver -> \Device\00000030[0xffffe0016a9b5060]
21:56:54.018 Disk 0 statistics 127688/0/0 @ 154,71 MB/s
21:56:54.034 Scan finished successfully
21:57:14.237 Disk 0 MBR has been saved successfully to "C:\Users\fLow\Desktop\MBR.dat"
21:57:14.237 The log file has been saved successfully to "C:\Users\fLow\Desktop\aswMBR.txt"

[flowem]

No, teď jsem se do toho totálně zamotal.. ten jeden log bych sem musel dávat tak na šestkrát a jsem z toho úplně blbej...

Pokud nevadí, tak jsem to nahrál na leteckou poštu: http://leteckaposta.cz/909217276
jsou to ty dva logy: OTL + Extras

Omlouvám se, ale fakt jsem se zamotal.. snad to nevadí.

[jaro3]

Klidně logy rozděl do více příspěvků sem.

[flowem]

OTL logfile created on: 10.05.2016 22:00:19 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\fLow\Desktop
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10586.0)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: dd.MM.yyyy

7,91 Gb Total Physical Memory | 6,35 Gb Available Physical Memory | 80,27% Memory free
9,79 Gb Paging File | 8,04 Gb Available in Paging File | 82,18% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,24 Gb Total Space | 71,67 Gb Free Space | 64,43% Space Free | Partition Type: NTFS
Drive D: | 596,07 Gb Total Space | 292,61 Gb Free Space | 49,09% Space Free | Partition Type: NTFS

Computer Name: FLOWPC | User Name: fLow | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found
PRC - C:\Users\fLow\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes)
PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes)
PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes)
PRC - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO)
PRC - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation)
PRC - C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Intel Corporation)


========== Modules (No Company Name) ==========

MOD - C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll ()


========== Services (SafeList) ==========

SRV:64bit: - (CmdAgent) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO)
SRV:64bit: - (cmdvirth) -- C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe (COMODO)
SRV:64bit: - (NvStreamNetworkSvc) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation)
SRV:64bit: - (NvStreamSvc) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (NVIDIA Corporation)
SRV:64bit: - (GfExperienceService) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation)
SRV:64bit: - (tiledatamodelsvc) -- C:\Windows\SysNative\tileobjserver.dll (Microsoft Corporation)
SRV:64bit: - (RetailDemo) -- C:\Windows\SysNative\RDXService.dll (Microsoft Corporation)
SRV:64bit: - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation)
SRV:64bit: - (tzautoupdate) -- C:\Windows\SysNative\tzautoupdate.dll (Microsoft Corporation)
SRV:64bit: - (MapsBroker) -- C:\Windows\SysNative\moshost.dll (Microsoft Corporation)
SRV:64bit: - (NetSetupSvc) -- C:\Windows\SysNative\NetSetupSvc.dll (Microsoft Corporation)
SRV:64bit: - (SensorService) -- C:\Windows\SysNative\SensorService.dll (Microsoft Corporation)
SRV:64bit: - (XblAuthManager) -- C:\Windows\SysNative\XblAuthManager.dll (Microsoft Corporation)
SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SRV:64bit: - (DoSvc) -- C:\Windows\SysNative\dosvc.dll (Microsoft Corporation)
SRV:64bit: - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation)
SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)
SRV:64bit: - (ClipSVC) -- C:\Windows\SysNative\ClipSVC.dll (Microsoft Corporation)
SRV:64bit: - (DsSvc) -- C:\Windows\SysNative\dssvc.dll (Microsoft Corporation)
SRV:64bit: - (PimIndexMaintenanceSvc) -- C:\Windows\SysNative\PimIndexMaintenance.dll (Microsoft Corporation)
SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
SRV:64bit: - (UnistoreSvc) -- C:\Windows\SysNative\Unistore.dll (Microsoft Corporation)
SRV:64bit: - (UserDataSvc) -- C:\Windows\SysNative\UserDataService.dll (Microsoft Corporation)
SRV:64bit: - (XblGameSave) -- C:\Windows\SysNative\XblGameSave.dll (Microsoft Corporation)
SRV:64bit: - (NgcSvc) -- C:\Windows\SysNative\ngcsvc.dll (Microsoft Corporation)
SRV:64bit: - (SmsRouter) -- C:\Windows\SysNative\SmsRouterSvc.dll (Microsoft Corporation)
SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (XboxNetApiSvc) -- C:\Windows\SysNative\XboxNetApiSvc.dll (Microsoft Corporation)
SRV:64bit: - (UserManager) -- C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
SRV:64bit: - (PhoneSvc) -- C:\Windows\SysNative\PhoneService.dll (Microsoft Corporation)
SRV:64bit: - (icssvc) -- C:\Windows\SysNative\tetheringservice.dll (Microsoft Corporation)
SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
SRV:64bit: - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation)
SRV:64bit: - (WalletService) -- C:\Windows\SysNative\WalletService.dll (Microsoft Corporation)
SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
SRV:64bit: - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation)
SRV:64bit: - (IEEtwCollectorService) -- C:\Windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:64bit: - (SensorDataService) -- C:\Windows\SysNative\SensorDataService.exe (Microsoft Corporation)
SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
SRV:64bit: - (NgcCtnrSvc) -- C:\Windows\SysNative\NgcCtnrSvc.dll (Microsoft Corporation)
SRV:64bit: - (WpnService) -- C:\Windows\SysNative\wpnservice.dll (Microsoft Corporation)
SRV:64bit: - (DevQueryBroker) -- C:\Windows\SysNative\DevQueryBroker.dll (Microsoft Corporation)
SRV:64bit: - (lfsvc) -- C:\Windows\SysNative\lfsvc.dll (Microsoft Corporation)
SRV:64bit: - (LicenseManager) -- C:\Windows\SysNative\LicenseManagerSvc.dll (Microsoft Corporation)
SRV:64bit: - (StateRepository) -- C:\Windows\SysNative\Windows.StateRepository.dll (Microsoft Corporation)
SRV:64bit: - (embeddedmode) -- C:\Windows\SysNative\embeddedmodesvc.dll (Microsoft Corporation)
SRV:64bit: - (AJRouter) -- C:\Windows\SysNative\AJRouter.dll (Microsoft Corporation)
SRV:64bit: - (CoreMessagingRegistrar) -- C:\Windows\SysNative\CoreMessaging.dll (Microsoft Corporation)
SRV:64bit: - (CDPSvc) -- C:\Windows\SysNative\cdpsvc.dll (Microsoft Corporation)
SRV:64bit: - (UsoSvc) -- C:\Windows\SysNative\usocore.dll (Microsoft Corporation)
SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SRV:64bit: - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation)
SRV:64bit: - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation)
SRV:64bit: - (diagnosticshub.standardcollector.service) -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (Microsoft Corporation)
SRV:64bit: - (OneSyncSvc) -- C:\Windows\SysNative\APHostService.dll (Microsoft Corporation)
SRV:64bit: - (UserDataSvc_3fd27) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (UnistoreSvc_3fd27) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (PimIndexMaintenanceSvc_3fd27) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (OneSyncSvc_477a7) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (OneSyncSvc_3fd27) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (MessagingService_3fd27) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
SRV:64bit: - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation)
SRV:64bit: - (TieringEngineService) -- C:\Windows\SysNative\TieringEngineService.exe (Microsoft Corporation)
SRV:64bit: - (DcpSvc) -- C:\Windows\SysNative\dcpsvc.dll (Microsoft Corporation)
SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
SRV:64bit: - (EntAppSvc) -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll (Microsoft Corporation)
SRV:64bit: - (DmEnrollmentSvc) -- C:\Windows\SysNative\Windows.Internal.Management.dll (Microsoft Corporation)
SRV:64bit: - (dmwappushservice) -- C:\Windows\SysNative\dmwappushsvc.dll (Microsoft Corporation)
SRV:64bit: - (MessagingService) -- C:\Windows\SysNative\MessagingService.dll (Microsoft Corporation)
SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (WdNisSvc) -- C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicvmsession) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV:64bit: - (BthHFSrv) -- C:\Windows\SysNative\BthHFSrv.dll (Microsoft Corporation)
SRV:64bit: - (Intel(R) -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe (Intel(R) Corporation)
SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (NvNetworkService) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (UnistoreSvc) -- C:\Windows\SysWOW64\Unistore.dll (Microsoft Corporation)
SRV - (StateRepository) -- C:\Windows\SysWOW64\Windows.StateRepository.dll (Microsoft Corporation)
SRV - (lfsvc) -- C:\Windows\SysWOW64\lfsvc.dll (Microsoft Corporation)
SRV - (CoreMessagingRegistrar) -- C:\Windows\SysWOW64\CoreMessaging.dll (Microsoft Corporation)
SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation)
SRV - (DmEnrollmentSvc) -- C:\Windows\SysWOW64\Windows.Internal.Management.dll (Microsoft Corporation)
SRV - (PrintNotify) -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (isaHelperSvc) -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe ()
SRV - (Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Intel Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes)
DRV:64bit: - (MBAMWebAccessControl) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes Corporation)
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes)
DRV:64bit: - (sshid) -- C:\Windows\SysNative\drivers\sshid.sys (SteelSeries ApS)
DRV:64bit: - (cmderd) -- C:\Windows\SysNative\drivers\cmderd.sys (COMODO)
DRV:64bit: - (nvvad_WaveExtensible) -- C:\Windows\SysNative\drivers\nvvad64v.sys (NVIDIA Corporation)
DRV:64bit: - (NvStreamKms) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys (NVIDIA Corporation)
DRV:64bit: - (MBfilt) -- C:\Windows\SysNative\drivers\MBfilt64.sys (Creative Technology Ltd.)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (Ufx01000) -- C:\Windows\SysNative\drivers\ufx01000.sys (Microsoft Corporation)
DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation)
DRV:64bit: - (xinputhid) -- C:\Windows\SysNative\drivers\xinputhid.sys (Microsoft Corporation)
DRV:64bit: - (wdiwifi) -- C:\Windows\SysNative\drivers\WdiWiFi.sys (Microsoft Corporation)
DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation)
DRV:64bit: - (xboxgip) -- C:\Windows\SysNative\drivers\xboxgip.sys (Microsoft Corporation)
DRV:64bit: - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (CapImg) -- C:\Windows\SysNative\drivers\capimg.sys (Microsoft Corporation)
DRV:64bit: - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation)
DRV:64bit: - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\TeeDriverW8x64.sys (Intel Corporation)
DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation)
DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\drivers\wpcfltr.sys (Microsoft Corporation)
DRV:64bit: - (ReFSv1) -- C:\Windows\SysNative\drivers\refsv1.sys (Microsoft Corporation)
DRV:64bit: - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation)
DRV:64bit: - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation)
DRV:64bit: - (WindowsTrustedRT) -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys (Microsoft Corporation)
DRV:64bit: - (storqosflt) -- C:\Windows\SysNative\drivers\storqosflt.sys (Microsoft Corporation)
DRV:64bit: - (UcmCx0101) -- C:\Windows\SysNative\drivers\UcmCx.sys (Microsoft Corporation)
DRV:64bit: - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (IoQos) -- C:\Windows\SysNative\drivers\ioqos.sys (Microsoft Corporation)
DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation)
DRV:64bit: - (MMCSS) -- C:\Windows\SysNative\drivers\mmcss.sys (Microsoft Corporation)
DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation)
DRV:64bit: - (UrsCx01000) -- C:\Windows\SysNative\drivers\urscx01000.sys (Microsoft Corporation)
DRV:64bit: - (cnghwassist) -- C:\Windows\SysNative\drivers\cnghwassist.sys (Microsoft Corporation)
DRV:64bit: - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation)
DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation)
DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
DRV:64bit: - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation)
DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation)
DRV:64bit: - (Wof) -- C:\Windows\SysNative\drivers\wof.sys (Microsoft Corporation)
DRV:64bit: - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation)
DRV:64bit: - (GpuEnergyDrv) -- C:\Windows\SysNative\drivers\gpuenergydrv.sys (Microsoft Corporation)
DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation)
DRV:64bit: - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation)
DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation)
DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\drivers\WdFilter.sys (Microsoft Corporation)
DRV:64bit: - (Ucx01000) -- C:\Windows\SysNative\drivers\Ucx01000.sys (Microsoft Corporation)
DRV:64bit: - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation)
DRV:64bit: - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation)
DRV:64bit: - (WdNisDrv) -- C:\Windows\SysNative\drivers\WdNisDrv.sys (Microsoft Corporation)
DRV:64bit: - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation)
DRV:64bit: - (FileCrypt) -- C:\Windows\SysNative\drivers\filecrypt.sys (Microsoft Corporation)
DRV:64bit: - (tsusbflt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (UdeCx) -- C:\Windows\SysNative\drivers\Udecx.sys (Microsoft Corporation)
DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\drivers\WdBoot.sys (Microsoft Corporation)
DRV:64bit: - (vhf) -- C:\Windows\SysNative\drivers\vhf.sys (Microsoft Corporation)
DRV:64bit: - (WindowsTrustedRTProxy) -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys (Microsoft Corporation)
DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (UrsChipidea) -- C:\Windows\SysNative\drivers\urschipidea.sys (Microsoft Corporation)
DRV:64bit: - (UrsSynopsys) -- C:\Windows\SysNative\drivers\urssynopsys.sys (Microsoft Corporation)
DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation)
DRV:64bit: - (mlx4_bus) -- C:\Windows\SysNative\drivers\mlx4_bus.sys (Mellanox)
DRV:64bit: - (rt640x64) -- C:\Windows\SysNative\drivers\rt640x64.sys (Realtek )
DRV:64bit: - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation)
DRV:64bit: - (ibbus) -- C:\Windows\SysNative\drivers\ibbus.sys (Mellanox)
DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation)
DRV:64bit: - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation)
DRV:64bit: - (ufxsynopsys) -- C:\Windows\SysNative\drivers\ufxsynopsys.sys (Microsoft Corporation)
DRV:64bit: - (LSI_SAS2i) -- C:\Windows\SysNative\drivers\lsi_sas2i.sys (LSI Corporation)
DRV:64bit: - (LSI_SAS3i) -- C:\Windows\SysNative\drivers\lsi_sas3i.sys (Avago Technologies)
DRV:64bit: - (UfxChipidea) -- C:\Windows\SysNative\drivers\UfxChipidea.sys (Microsoft Corporation)
DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation)
DRV:64bit: - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation)
DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation)
DRV:64bit: - (ndfltr) -- C:\Windows\SysNative\drivers\ndfltr.sys (Mellanox)
DRV:64bit: - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.)
DRV:64bit: - (WinVerbs) -- C:\Windows\SysNative\drivers\winverbs.sys (Mellanox)
DRV:64bit: - (percsas3i) -- C:\Windows\SysNative\drivers\percsas3i.sys (Avago Technologies)
DRV:64bit: - (percsas2i) -- C:\Windows\SysNative\drivers\percsas2i.sys (LSI Corporation)
DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
DRV:64bit: - (UcmUcsi) -- C:\Windows\SysNative\drivers\UcmUcsi.sys (Microsoft Corporation)
DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
DRV:64bit: - (storufs) -- C:\Windows\SysNative\drivers\storufs.sys (Microsoft Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.)
DRV:64bit: - (WinMad) -- C:\Windows\SysNative\drivers\winmad.sys (Mellanox)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (QLogic Corporation)
DRV:64bit: - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra)
DRV:64bit: - (iaStorAV) -- C:\Windows\SysNative\drivers\iaStorAV.sys (Intel Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation)
DRV:64bit: - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (hidinterrupt) -- C:\Windows\SysNative\drivers\hidinterrupt.sys (Microsoft Corporation)
DRV:64bit: - (buttonconverter) -- C:\Windows\SysNative\drivers\buttonconverter.sys (Microsoft Corporation)
DRV:64bit: - (UEFI) -- C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation)
DRV:64bit: - (genericusbfn) -- C:\Windows\SysNative\drivers\genericusbfn.sys (Microsoft Corporation)
DRV:64bit: - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation)
DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation)
DRV:64bit: - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (bcmfn) -- C:\Windows\SysNative\drivers\bcmfn.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (iaLPSS2i_I2C) -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys (Intel Corporation)
DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation)
DRV:64bit: - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation)
DRV:64bit: - (netvsc) -- C:\Windows\SysNative\drivers\netvsc.sys (Microsoft Corporation)
DRV:64bit: - (iai2c) -- C:\Windows\SysNative\drivers\iai2c.sys (Intel(R) Corporation)
DRV:64bit: - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation)
DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\drivers\bthhfenum.sys (Microsoft Corporation)
DRV:64bit: - (Synth3dVsc) -- C:\Windows\SysNative\drivers\Synth3dVsc.sys (Microsoft Corporation)
DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation)
DRV:64bit: - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation)
DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys (Microsoft Corporation)
DRV:64bit: - (CompositeBus) -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys (Microsoft Corporation)
DRV:64bit: - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation)
DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\drivers\BthhfHid.sys (Microsoft Corporation)
DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\drivers\HyperVideo.sys (Microsoft Corporation)
DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation)
DRV:64bit: - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation)
DRV - (aswVmm) -- C:\Users\fLow\AppData\Local\Temp\aswVmm.sys ()
DRV - (aswMBR) -- C:\Users\fLow\AppData\Local\Temp\aswMBR.sys ()
DRV - (CompositeBus) -- C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys (Microsoft Corporation)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SYSTEM32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://windows.microsoft.com/cs-cz/hotm ... ?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs,en-GB;q=0.7,en;q=0.3
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 01 0A 4C 06 87 AA D1 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = E7 16 C9 7E 7D AA D1 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[flowem]

========== FireFox ==========

FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:46.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.91.2: C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2: C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 46.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 46.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2016.05.10 21:07:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\fLow\AppData\Roaming\Mozilla\Extensions
[2016.05.10 21:17:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\fLow\AppData\Roaming\Mozilla\Firefox\Profiles\pnx553c9.default\extensions
[2016.05.10 21:07:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions

========== Chrome ==========

CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_1\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_1\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_1\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\3.0.1_0\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_1\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.11_1\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\daiallmdmonifegjibcalpdgnjaomkme\1_0\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_1\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.56_0\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_1\

O1 HOSTS File: ([2016.05.10 19:19:58 | 000,000,753 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe (COMODO)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Oracle Corporation)
O4 - HKCU..\Run: [Skype] C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsHistory = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2de65b67-ff1f-44df-b085-6a81ac2a2f42}: DhcpNameServer = 10.0.0.138
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2016.05.10 21:58:22 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\fLow\Desktop\OTL.exe
[2016.05.10 21:55:07 | 005,200,384 | ---- | C] (AVAST Software) -- C:\Users\fLow\Desktop\aswmbr.exe
[2016.05.10 21:52:46 | 000,000,000 | ---D | C] -- C:\Users\fLow\Desktop\backups
[2016.05.10 21:07:36 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\Macromedia
[2016.05.10 21:07:09 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Roaming\Mozilla
[2016.05.10 21:07:09 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\Mozilla
[2016.05.10 21:06:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2016.05.10 21:05:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Adobe
[2016.05.10 20:52:51 | 000,042,168 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Windows\SysNative\drivers\PROCEXP152.SYS
[2016.05.10 20:52:28 | 002,694,816 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Users\fLow\Desktop\procexp.exe
[2016.05.10 20:20:50 | 000,000,000 | ---D | C] -- C:\Users\fLow\Tracing
[2016.05.10 20:20:30 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Roaming\Skype
[2016.05.10 20:20:25 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2016.05.10 20:20:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2016.05.10 20:20:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2016.05.10 20:20:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2016.05.10 20:06:46 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\ActiveSync
[2016.05.10 20:05:13 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\VirtualStore
[2016.05.10 20:05:03 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2016.05.10 19:51:45 | 000,000,000 | ---D | C] -- C:\Windows\Temp
[2016.05.10 19:51:45 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\Temp
[2016.05.10 19:17:35 | 000,000,000 | ---D | C] -- C:\zoek_backup
[2016.05.10 12:19:28 | 000,000,000 | ---D | C] -- C:\ProgramData\RogueKiller
[2016.05.10 11:51:22 | 001,610,816 | ---- | C] (Malwarebytes) -- C:\Users\fLow\Desktop\JRT.exe
[2016.05.10 10:39:36 | 000,448,512 | ---- | C] (OldTimer Tools) -- C:\Users\fLow\Desktop\TFC.exe
[2016.05.10 10:37:44 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2016.05.10 10:37:38 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
[2016.05.10 10:37:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RivaTuner Statistics Server
[2016.05.10 10:37:24 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
[2016.05.10 10:37:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSI Afterburner
[2016.05.10 10:27:52 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\fLow\Desktop\hijackthis.exe
[2016.05.10 10:17:40 | 000,192,216 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2016.05.10 10:17:27 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2016.05.10 10:16:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2016.05.10 10:16:39 | 000,140,672 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2016.05.10 10:16:39 | 000,065,408 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2016.05.10 10:16:39 | 000,027,008 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbam.sys
[2016.05.10 10:16:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2016.05.10 10:16:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2016.05.10 10:16:33 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\Programs
[2016.05.10 10:13:34 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Roaming\AB91F728-9699-4E2B-9D85-9EF4B62758A0
[2016.05.10 10:11:44 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2016.05.10 10:11:44 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2016.05.10 10:11:44 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2016.05.10 10:11:44 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2016.05.10 10:11:44 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2016.05.10 10:11:44 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2016.05.10 10:11:43 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2016.05.10 10:11:43 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2016.05.10 10:11:43 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2016.05.10 10:11:43 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2016.05.10 10:11:42 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2016.05.10 10:11:42 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2016.05.10 10:11:42 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2016.05.10 10:11:42 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2016.05.10 10:11:42 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2016.05.10 10:11:42 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2016.05.10 10:11:41 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2016.05.10 10:11:41 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2016.05.10 10:11:41 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2016.05.10 10:11:41 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2016.05.10 10:11:40 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2016.05.10 10:11:40 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2016.05.10 10:11:40 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2016.05.10 10:11:40 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2016.05.10 10:11:40 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2016.05.10 10:11:40 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2016.05.10 10:11:40 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2016.05.10 10:11:40 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2016.05.10 10:11:39 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2016.05.10 10:11:39 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2016.05.10 10:11:39 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2016.05.10 10:11:39 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2016.05.10 10:11:39 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2016.05.10 10:11:39 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2016.05.10 10:11:39 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2016.05.10 10:11:39 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2016.05.10 10:11:39 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2016.05.10 10:11:39 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2016.05.10 10:11:38 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2016.05.10 10:11:38 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2016.05.10 10:11:38 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2016.05.10 10:11:38 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2016.05.10 10:11:38 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2016.05.10 10:11:38 | 000,069,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2016.05.10 10:11:37 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2016.05.10 10:11:37 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2016.05.10 10:11:37 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2016.05.10 10:11:37 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2016.05.10 10:11:37 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2016.05.10 10:11:37 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2016.05.10 10:11:37 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2016.05.10 10:11:37 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2016.05.10 10:11:36 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2016.05.10 10:11:36 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2016.05.10 10:11:36 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2016.05.10 10:11:36 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2016.05.10 10:11:36 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2016.05.10 10:11:36 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2016.05.10 10:11:36 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2016.05.10 10:11:36 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2016.05.10 10:11:35 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2016.05.10 10:11:35 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2016.05.10 10:11:35 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2016.05.10 10:11:35 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2016.05.10 10:11:35 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2016.05.10 10:11:35 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2016.05.10 10:11:35 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2016.05.10 10:11:35 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2016.05.10 10:11:35 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2016.05.10 10:11:35 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2016.05.10 10:11:34 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2016.05.10 10:11:34 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2016.05.10 10:11:34 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2016.05.10 10:11:34 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2016.05.10 10:11:34 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2016.05.10 10:11:34 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2016.05.10 10:11:33 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2016.05.10 10:11:33 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2016.05.10 10:11:33 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2016.05.10 10:11:33 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2016.05.10 10:11:33 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2016.05.10 10:11:33 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2016.05.10 10:11:33 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2016.05.10 10:11:33 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2016.05.10 10:11:33 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2016.05.10 10:11:33 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2016.05.10 10:11:32 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2016.05.10 10:11:32 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2016.05.10 10:11:32 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2016.05.10 10:11:32 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2016.05.10 10:11:31 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2016.05.10 10:11:31 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2016.05.10 10:11:31 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2016.05.10 10:11:31 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2016.05.10 10:11:31 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2016.05.10 10:11:31 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2016.05.10 10:11:31 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2016.05.10 10:11:31 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2016.05.10 10:11:30 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2016.05.10 10:11:30 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2016.05.10 10:11:30 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2016.05.10 10:11:30 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2016.05.10 10:11:30 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2016.05.10 10:11:30 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2016.05.10 10:11:30 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2016.05.10 10:11:30 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2016.05.10 10:11:29 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2016.05.10 10:11:29 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2016.05.10 10:11:29 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2016.05.10 10:11:29 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2016.05.10 10:11:29 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2016.05.10 10:11:29 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2016.05.10 10:11:28 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2016.05.10 10:11:28 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2016.05.10 10:11:28 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2016.05.10 10:11:28 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2016.05.10 10:11:28 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2016.05.10 10:11:28 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2016.05.10 10:11:28 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2016.05.10 10:11:28 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2016.05.10 10:11:28 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2016.05.10 10:11:28 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2016.05.10 10:11:27 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2016.05.10 10:11:27 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2016.05.10 10:11:27 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2016.05.10 10:11:27 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2016.05.10 10:11:27 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2016.05.10 10:11:27 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2016.05.10 10:11:26 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2016.05.10 10:11:26 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2016.05.10 10:11:26 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2016.05.10 10:11:26 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2016.05.10 10:11:26 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2016.05.10 10:11:26 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2016.05.10 10:11:26 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2016.05.10 10:11:26 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2016.05.10 10:11:25 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2016.05.10 10:11:25 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2016.05.10 10:11:25 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2016.05.10 10:11:25 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2016.05.10 10:11:24 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2016.05.10 10:11:24 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2016.05.10 10:11:24 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2016.05.10 10:11:24 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2016.05.10 10:11:24 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2016.05.10 10:11:24 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2016.05.10 10:11:24 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2016.05.10 10:11:24 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2016.05.10 10:11:23 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2016.05.10 10:11:23 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2016.05.10 10:11:23 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2016.05.10 10:11:23 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2016.05.10 10:11:23 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2016.05.10 10:11:23 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2016.05.10 10:11:23 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2016.05.10 10:11:23 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2016.05.10 10:11:22 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2016.05.10 10:11:22 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2016.05.10 10:11:21 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2016.05.10 10:11:21 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2016.05.10 10:11:21 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2016.05.10 10:11:21 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2016.05.10 10:11:21 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2016.05.10 10:11:21 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2016.05.10 10:11:20 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2016.05.10 10:11:20 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2016.05.10 10:11:20 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2016.05.10 10:11:20 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2016.05.10 10:11:20 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2016.05.10 10:11:20 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2016.05.10 10:11:20 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2016.05.10 10:11:20 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2016.05.10 10:11:19 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2016.05.10 10:11:19 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2016.05.10 10:11:19 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2016.05.10 10:11:19 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll

[flowem]

[2016.05.10 10:10:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer
[2016.05.10 10:10:45 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2016.05.10 10:10:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2016.05.10 10:10:45 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2016.05.10 10:10:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2016.05.10 10:10:15 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationNative_v0300.dll
[2016.05.10 10:10:15 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2016.05.10 10:10:15 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TsWpfWrp.exe
[2016.05.10 10:10:14 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationNative_v0300.dll
[2016.05.10 10:10:14 | 000,124,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2016.05.10 10:10:14 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsWpfWrp.exe
[2016.05.10 10:07:32 | 000,000,000 | -H-D | C] -- C:\VTRoot
[2016.05.10 09:13:24 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2016.05.10 09:06:42 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Roaming\TS3Client
[2016.05.10 09:06:38 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\TeamSpeak 3 Client
[2016.05.10 09:01:01 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\Steam
[2016.05.10 09:01:01 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\CEF
[2016.05.10 08:59:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2016.05.10 08:59:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
[2016.05.10 08:59:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2016.05.10 08:57:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2016.05.10 08:57:13 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Roaming\Sun
[2016.05.10 08:57:13 | 000,000,000 | ---D | C] -- C:\Users\fLow\.oracle_jre_usage
[2016.05.10 08:57:12 | 000,097,856 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2016.05.10 08:57:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2016.05.10 08:57:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2016.05.10 08:57:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2016.05.10 08:42:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2016.05.10 08:42:14 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\Google
[2016.05.10 08:25:21 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\speech
[2016.05.10 08:21:21 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2016.05.10 08:13:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\en-GB
[2016.05.10 08:13:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\en-GB
[2016.05.10 08:13:56 | 000,000,000 | ---D | C] -- C:\Windows\en-GB
[2016.05.10 08:11:12 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\en-GB\NdisImPlatform.sys.mui
[2016.05.10 08:11:11 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\portcls.sys.mui
[2016.05.10 08:11:11 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\serscan.sys.mui
[2016.05.10 08:11:09 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\tcpip.sys.mui
[2016.05.10 08:11:09 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\scfilter.sys.mui
[2016.05.10 08:11:07 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\NdisImPlatform.sys.mui
[2016.05.10 08:11:04 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\bthport.sys.mui
[2016.05.10 08:11:04 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\hidbth.sys.mui
[2016.05.10 08:11:04 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\BthMini.SYS.mui
[2016.05.10 08:11:04 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\BTHUSB.SYS.mui
[2016.05.10 08:11:04 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\bthenum.sys.mui
[2016.05.10 08:10:18 | 006,359,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NlsData0009.dll
[2016.05.10 08:10:18 | 005,739,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prm0009.dll
[2016.05.10 08:10:18 | 002,629,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NlsLexicons0009.dll
[2016.05.10 08:05:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
[2016.05.10 08:04:43 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2016.05.10 08:04:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo
[2016.05.10 08:01:17 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2016.05.10 08:01:16 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2016.05.10 08:01:10 | 000,532,384 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2016.05.10 08:01:10 | 000,221,968 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2016.05.10 08:01:10 | 000,209,536 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2016.05.10 08:01:10 | 000,166,208 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2016.05.10 08:01:09 | 003,199,232 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2016.05.10 08:01:09 | 002,895,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2016.05.10 08:01:09 | 000,343,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2016.05.10 08:01:08 | 003,283,240 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2016.05.10 08:01:08 | 003,092,624 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RltkAPO64.dll
[2016.05.10 08:01:08 | 002,058,496 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
[2016.05.10 08:01:08 | 001,355,616 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2016.05.10 08:01:08 | 000,689,888 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll
[2016.05.10 08:01:08 | 000,387,320 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2016.05.10 08:01:08 | 000,321,720 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2016.05.10 08:01:08 | 000,321,720 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2016.05.10 08:01:08 | 000,214,832 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2016.05.10 08:01:08 | 000,192,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2016.05.10 08:01:08 | 000,110,984 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2016.05.10 08:01:08 | 000,088,352 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2016.05.10 08:01:08 | 000,023,696 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll
[2016.05.10 08:01:07 | 002,050,176 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ64.dll
[2016.05.10 08:01:07 | 001,978,608 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBAPO264.dll
[2016.05.10 08:01:07 | 001,745,160 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBAPO232.dll
[2016.05.10 08:01:07 | 000,410,040 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBWrp64.dll
[2016.05.10 08:01:07 | 000,330,560 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2016.05.10 08:01:07 | 000,041,088 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\drivers\MBfilt64.sys
[2016.05.10 08:01:06 | 003,282,544 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2016.05.10 08:01:05 | 000,574,760 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2016.05.10 08:01:05 | 000,122,320 | ---- | C] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll
[2016.05.10 08:01:05 | 000,118,600 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2016.05.10 08:01:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2016.05.10 08:01:04 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2016.05.10 08:00:30 | 002,838,232 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2016.05.10 08:00:30 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2016.05.10 08:00:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PostureAgent
[2016.05.10 07:59:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2016.05.10 07:59:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2016.05.10 07:59:46 | 000,000,000 | ---D | C] -- C:\Users\fLow\Intel
[2016.05.10 07:59:32 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2016.05.10 07:58:13 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\NVIDIA Corporation
[2016.05.10 07:58:01 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2016.05.10 07:58:01 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2016.05.10 07:58:01 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2016.05.10 07:58:01 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2016.05.10 07:58:01 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2016.05.10 07:58:01 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2016.05.10 07:57:59 | 001,767,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspcap64.dll
[2016.05.10 07:57:59 | 001,756,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspbridge64.dll
[2016.05.10 07:57:58 | 001,373,864 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspcap.dll
[2016.05.10 07:57:58 | 001,316,000 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspbridge.dll
[2016.05.10 07:57:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2016.05.10 07:57:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VulkanRT
[2016.05.10 07:57:37 | 000,530,880 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshext.dll
[2016.05.10 07:57:37 | 000,081,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshextr.dll
[2016.05.10 07:56:55 | 000,109,632 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvaudcap64v.dll
[2016.05.10 07:56:55 | 000,100,416 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvaudcap32v.dll
[2016.05.10 07:56:55 | 000,056,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvad64v.sys
[2016.05.10 07:56:54 | 031,598,136 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2016.05.10 07:56:54 | 025,350,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2016.05.10 07:56:54 | 021,365,048 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2016.05.10 07:56:54 | 020,906,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2016.05.10 07:56:54 | 017,756,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2016.05.10 07:56:54 | 017,369,768 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2016.05.10 07:56:54 | 017,350,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2016.05.10 07:56:54 | 017,333,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2016.05.10 07:56:54 | 014,227,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2016.05.10 07:56:54 | 003,262,784 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2016.05.10 07:56:54 | 002,614,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2016.05.10 07:56:54 | 002,258,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2016.05.10 07:56:54 | 001,922,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6436510.dll
[2016.05.10 07:56:54 | 001,573,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6436510.dll
[2016.05.10 07:56:54 | 000,960,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2016.05.10 07:56:54 | 000,887,744 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2016.05.10 07:56:54 | 000,786,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncMFTH264.dll
[2016.05.10 07:56:54 | 000,753,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2016.05.10 07:56:54 | 000,694,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2016.05.10 07:56:54 | 000,632,152 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncMFTH264.dll
[2016.05.10 07:56:54 | 000,448,824 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2016.05.10 07:56:54 | 000,425,016 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFROpenGL.dll
[2016.05.10 07:56:54 | 000,385,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvDecMFTMjpeg.dll
[2016.05.10 07:56:54 | 000,379,480 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll
[2016.05.10 07:56:54 | 000,379,448 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFROpenGL.dll
[2016.05.10 07:56:54 | 000,348,216 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvDecMFTMjpeg.dll
[2016.05.10 07:56:54 | 000,317,472 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll
[2016.05.10 07:56:54 | 000,175,880 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2016.05.10 07:56:54 | 000,153,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2016.05.10 07:56:54 | 000,151,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll
[2016.05.10 07:56:54 | 000,129,024 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll
[2016.05.10 07:48:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2016.05.10 07:48:40 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2016.05.10 07:47:17 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\Comms
[2016.05.10 07:46:20 | 000,462,848 | ---- | C] (WZT) -- C:\Users\fLow\Desktop\DWS_Lite.exe
[2016.05.10 07:39:20 | 018,673,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\edgehtml.dll
[2016.05.10 07:39:19 | 001,626,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2016.05.10 07:39:18 | 005,662,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Chakra.dll
[2016.05.10 07:39:18 | 004,894,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2016.05.10 07:39:18 | 001,946,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2016.05.10 07:39:18 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wininetlui.dll
[2016.05.10 07:39:17 | 022,378,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\edgehtml.dll
[2016.05.10 07:39:17 | 007,836,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Chakra.dll
[2016.05.10 07:39:17 | 001,818,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2016.05.10 07:39:17 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wininetlui.dll
[2016.05.10 07:39:16 | 007,474,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2016.05.10 07:39:16 | 003,592,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32kfull.sys
[2016.05.10 07:39:16 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Chakradiag.dll
[2016.05.10 07:39:15 | 011,545,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll
[2016.05.10 07:39:15 | 009,918,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll
[2016.05.10 07:39:15 | 008,705,672 | ---- | C] (Microsoft Corp.) -- C:\Windows\SysNative\Windows.Media.Protection.PlayReady.dll
[2016.05.10 07:39:15 | 006,952,088 | ---- | C] (Microsoft Corp.) -- C:\Windows\SysWow64\Windows.Media.Protection.PlayReady.dll
[2016.05.10 07:39:15 | 000,536,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2016.05.10 07:39:15 | 000,369,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2016.05.10 07:39:15 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll
[2016.05.10 07:39:14 | 005,242,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\windows.storage.dll
[2016.05.10 07:39:13 | 016,985,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2016.05.10 07:39:12 | 013,018,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2016.05.10 07:39:12 | 006,607,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\windows.storage.dll
[2016.05.10 07:39:11 | 014,252,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2016.05.10 07:39:11 | 000,713,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
[2016.05.10 07:39:11 | 000,513,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
[2016.05.10 07:39:11 | 000,408,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AUDIOKSE.dll
[2016.05.10 07:39:10 | 001,388,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2016.05.10 07:39:10 | 001,173,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2016.05.10 07:39:09 | 007,533,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2016.05.10 07:39:09 | 006,972,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Data.Pdf.dll
[2016.05.10 07:39:09 | 003,449,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSService.dll
[2016.05.10 07:39:09 | 002,624,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InputService.dll
[2016.05.10 07:39:09 | 001,944,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InputService.dll
[2016.05.10 07:39:09 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TextInputFramework.dll
[2016.05.10 07:39:09 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TextInputFramework.dll
[2016.05.10 07:39:08 | 012,586,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2016.05.10 07:39:08 | 006,740,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2016.05.10 07:39:08 | 005,321,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Data.Pdf.dll
[2016.05.10 07:39:08 | 003,994,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers_nt.dll
[2016.05.10 07:39:08 | 001,318,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wifinetworkmanager.dll
[2016.05.10 07:39:07 | 005,202,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BingMaps.dll
[2016.05.10 07:39:06 | 004,827,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2016.05.10 07:39:06 | 002,912,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2016.05.10 07:39:06 | 002,773,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2016.05.10 07:39:06 | 002,604,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2016.05.10 07:39:06 | 002,581,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2016.05.10 07:39:06 | 002,544,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll
[2016.05.10 07:39:06 | 002,186,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2016.05.10 07:39:06 | 002,180,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll
[2016.05.10 07:39:06 | 002,061,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2016.05.10 07:39:06 | 001,490,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserDataService.dll
[2016.05.10 07:39:06 | 001,297,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LicenseManager.dll
[2016.05.10 07:39:06 | 000,848,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsvr.dll
[2016.05.10 07:39:06 | 000,709,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsvr.dll
[2016.05.10 07:39:06 | 000,591,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmsRouterSvc.dll
[2016.05.10 07:39:06 | 000,576,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms2.sys
[2016.05.10 07:39:05 | 004,412,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2016.05.10 07:39:05 | 003,575,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2016.05.10 07:39:05 | 002,158,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2016.05.10 07:39:05 | 001,996,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActiveSyncProvider.dll
[2016.05.10 07:39:05 | 001,714,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SRHInproc.dll
[2016.05.10 07:39:05 | 001,707,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActiveSyncProvider.dll
[2016.05.10 07:39:05 | 001,388,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32kbase.sys
[2016.05.10 07:39:05 | 001,139,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XblGameSave.dll
[2016.05.10 07:39:05 | 001,062,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll
[2016.05.10 07:39:05 | 001,017,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsrcsnk.dll
[2016.05.10 07:39:05 | 000,986,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LicenseManager.dll
[2016.05.10 07:39:05 | 000,980,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfasfsrcsnk.dll
[2016.05.10 07:39:05 | 000,895,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsrcsnk.dll
[2016.05.10 07:39:05 | 000,882,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll
[2016.05.10 07:39:05 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.AccountsControl.dll
[2016.05.10 07:39:05 | 000,819,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmpeg2srcsnk.dll
[2016.05.10 07:39:05 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\enterprisecsps.dll
[2016.05.10 07:39:05 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DisplayManager.dll
[2016.05.10 07:39:04 | 007,199,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BingMaps.dll
[2016.05.10 07:39:04 | 003,078,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2016.05.10 07:39:04 | 002,722,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2016.05.10 07:39:04 | 001,997,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2016.05.10 07:39:04 | 001,613,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagtrack.dll
[2016.05.10 07:39:04 | 001,444,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SRHInproc.dll
[2016.05.10 07:39:04 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAutomationCore.dll
[2016.05.10 07:39:04 | 001,152,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfasfsrcsnk.dll
[2016.05.10 07:39:04 | 001,139,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAutomationCore.dll
[2016.05.10 07:39:04 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Audio.dll
[2016.05.10 07:39:04 | 001,118,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2016.05.10 07:39:04 | 001,105,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Audio.dll
[2016.05.10 07:39:04 | 001,098,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dosvc.dll
[2016.05.10 07:39:04 | 000,990,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSyncCore.dll
[2016.05.10 07:39:04 | 000,965,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SRH.dll
[2016.05.10 07:39:04 | 000,948,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XblAuthManager.dll
[2016.05.10 07:39:04 | 000,938,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapControlCore.dll
[2016.05.10 07:39:04 | 000,859,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.dll
[2016.05.10 07:39:04 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapsStore.dll
[2016.05.10 07:39:04 | 000,713,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmpeg2srcsnk.dll
[2016.05.10 07:39:04 | 000,649,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll
[2016.05.10 07:39:04 | 000,585,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.AccountsControl.dll
[2016.05.10 07:39:04 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DisplayManager.dll
[2016.05.10 07:39:03 | 003,428,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2016.05.10 07:39:03 | 001,832,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.dll
[2016.05.10 07:39:03 | 001,497,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPDMC.exe
[2016.05.10 07:39:03 | 001,390,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Shell.dll
[2016.05.10 07:39:03 | 001,322,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2016.05.10 07:39:03 | 001,224,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Unistore.dll
[2016.05.10 07:39:03 | 001,211,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Cred.dll
[2016.05.10 07:39:03 | 000,958,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RemoteNaturalLanguage.dll
[2016.05.10 07:39:03 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Unistore.dll
[2016.05.10 07:39:03 | 000,938,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ContactApis.dll
[2016.05.10 07:39:03 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM.dll
[2016.05.10 07:39:03 | 000,808,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WWAHost.exe
[2016.05.10 07:39:03 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SRH.dll
[2016.05.10 07:39:03 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ContactApis.dll
[2016.05.10 07:39:03 | 000,754,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSyncCore.dll
[2016.05.10 07:39:03 | 000,711,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapControlCore.dll
[2016.05.10 07:39:03 | 000,703,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WWAHost.exe
[2016.05.10 07:39:03 | 000,700,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppointmentApis.dll
[2016.05.10 07:39:03 | 000,673,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.dll
[2016.05.10 07:39:03 | 000,670,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfds.dll
[2016.05.10 07:39:03 | 000,652,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2016.05.10 07:39:03 | 000,649,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ngcsvc.dll
[2016.05.10 07:39:03 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PhoneProviders.dll
[2016.05.10 07:39:03 | 000,613,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSync.dll
[2016.05.10 07:39:03 | 000,606,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wcmsvc.dll
[2016.05.10 07:39:03 | 000,498,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFCaptureEngine.dll
[2016.05.10 07:39:03 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.dll
[2016.05.10 07:39:03 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ngckeyenum.dll
[2016.05.10 07:39:02 | 002,798,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2016.05.10 07:39:02 | 001,575,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Speech.dll
[2016.05.10 07:39:02 | 001,090,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDXService.dll
[2016.05.10 07:39:02 | 001,072,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Web.Http.dll
[2016.05.10 07:39:02 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NMAA.dll
[2016.05.10 07:39:02 | 000,982,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxPackaging.dll
[2016.05.10 07:39:02 | 000,890,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxPackaging.dll
[2016.05.10 07:39:02 | 000,870,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\modernexecserver.dll
[2016.05.10 07:39:02 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netlogon.dll
[2016.05.10 07:39:02 | 000,794,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfds.dll
[2016.05.10 07:39:02 | 000,791,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
[2016.05.10 07:39:02 | 000,765,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2016.05.10 07:39:02 | 000,696,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NetSetupEngine.dll
[2016.05.10 07:39:02 | 000,640,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wer.dll
[2016.05.10 07:39:02 | 000,630,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontdrvhost.exe
[2016.05.10 07:39:02 | 000,625,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ClipSVC.dll
[2016.05.10 07:39:02 | 000,572,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskschd.dll
[2016.05.10 07:39:02 | 000,567,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MCRecvSrc.dll
[2016.05.10 07:39:02 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppointmentApis.dll
[2016.05.10 07:39:02 | 000,550,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StoreAgent.dll
[2016.05.10 07:39:02 | 000,538,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wer.dll
[2016.05.10 07:39:02 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSync.dll
[2016.05.10 07:39:02 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tileobjserver.dll
[2016.05.10 07:39:02 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MCRecvSrc.dll
[2016.05.10 07:39:02 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NetSetupShim.dll
[2016.05.10 07:39:02 | 000,463,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlansec.dll
[2016.05.10 07:39:02 | 000,460,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapConfiguration.dll
[2016.05.10 07:39:02 | 000,450,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFCaptureEngine.dll
[2016.05.10 07:39:02 | 000,450,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Internal.Bluetooth.dll
[2016.05.10 07:39:02 | 000,438,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AccountsRt.dll
[2016.05.10 07:39:02 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dmenrollengine.dll
[2016.05.10 07:39:02 | 000,415,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\StoreAgent.dll
[2016.05.10 07:39:02 | 000,382,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuuhext.dll
[2016.05.10 07:39:02 | 000,379,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmkvsrcsnk.dll
[2016.05.10 07:39:02 | 000,376,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.MediaControl.dll
[2016.05.10 07:39:02 | 000,360,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vaultsvc.dll
[2016.05.10 07:39:02 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapConfiguration.dll
[2016.05.10 07:39:02 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorService.dll
[2016.05.10 07:39:02 | 000,315,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Internal.Bluetooth.dll
[2016.05.10 07:39:02 | 000,307,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usbmon.dll
[2016.05.10 07:39:02 | 000,287,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.MediaControl.dll
[2016.05.10 07:39:02 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QuickActionsDataModel.dll
[2016.05.10 07:39:02 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Core.TextInput.dll
[2016.05.10 07:39:02 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Core.TextInput.dll
[2016.05.10 07:39:02 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SMSRouter.dll
[2016.05.10 07:39:01 | 001,847,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPDMC.exe
[2016.05.10 07:39:01 | 001,410,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Web.Http.dll
[2016.05.10 07:39:01 | 001,317,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2016.05.10 07:39:01 | 001,239,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Devices.Bluetooth.dll
[2016.05.10 07:39:01 | 001,141,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2016.05.10 07:39:01 | 001,056,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JpMapControl.dll
[2016.05.10 07:39:01 | 001,052,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.dll
[2016.05.10 07:39:01 | 001,030,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2016.05.10 07:39:01 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SharedStartModel.dll
[2016.05.10 07:39:01 | 000,848,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2016.05.10 07:39:01 | 000,821,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TokenBroker.dll
[2016.05.10 07:39:01 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JpMapControl.dll
[2016.05.10 07:39:01 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Cred.dll
[2016.05.10 07:39:01 | 000,730,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Internal.Shell.Broker.dll
[2016.05.10 07:39:01 | 000,712,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RemoteNaturalLanguage.dll
[2016.05.10 07:39:01 | 000,688,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.Connectivity.dll
[2016.05.10 07:39:01 | 000,628,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MessagingDataModel2.dll
[2016.05.10 07:39:01 | 000,541,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontdrvhost.exe
[2016.05.10 07:39:01 | 000,517,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
[2016.05.10 07:39:01 | 000,502,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NetSetupEngine.dll
[2016.05.10 07:39:01 | 000,498,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MessagingDataModel2.dll
[2016.05.10 07:39:01 | 000,493,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmkvsrcsnk.dll
[2016.05.10 07:39:01 | 000,476,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvproc.dll
[2016.05.10 07:39:01 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentClient.dll
[2016.05.10 07:39:01 | 000,420,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvproc.dll
[2016.05.10 07:39:01 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MDEServer.exe
[2016.05.10 07:39:01 | 000,365,568 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2016.05.10 07:39:01 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AccountsRt.dll
[2016.05.10 07:39:01 | 000,354,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NetSetupShim.dll
[2016.05.10 07:39:01 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CredProvDataModel.dll
[2016.05.10 07:39:01 | 000,342,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppXDeploymentClient.dll
[2016.05.10 07:39:01 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDXTaskFactory.dll
[2016.05.10 07:39:01 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSFlacDecoder.dll
[2016.05.10 07:39:01 | 000,305,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wifiprofilessettinghandler.dll
[2016.05.10 07:39:01 | 000,300,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LockAppHost.exe
[2016.05.10 07:39:01 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\deviceaccess.dll
[2016.05.10 07:39:01 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\moshostcore.dll
[2016.05.10 07:39:01 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSFlacDecoder.dll
[2016.05.10 07:39:01 | 000,253,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LockAppHost.exe
[2016.05.10 07:39:01 | 000,238,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\xboxgip.sys

[flowem]

[2016.05.10 07:39:01 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\deviceaccess.dll
[2016.05.10 07:39:01 | 000,209,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storewuauth.dll
[2016.05.10 07:39:01 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NetSetupSvc.dll
[2016.05.10 07:39:01 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WiFiDisplay.dll
[2016.05.10 07:39:01 | 000,187,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxAllUserStore.dll
[2016.05.10 07:39:01 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PackageStateRoaming.dll
[2016.05.10 07:39:01 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TimeBrokerServer.dll
[2016.05.10 07:39:01 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceCensus.exe
[2016.05.10 07:39:01 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceEnroller.exe
[2016.05.10 07:39:01 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LaunchWinApp.exe
[2016.05.10 07:39:00 | 003,351,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2016.05.10 07:39:00 | 001,117,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Speech.dll
[2016.05.10 07:39:00 | 000,915,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\configurationclient.dll
[2016.05.10 07:39:00 | 000,881,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Input.Inking.dll
[2016.05.10 07:39:00 | 000,874,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2016.05.10 07:39:00 | 000,790,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EmailApis.dll
[2016.05.10 07:39:00 | 000,787,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Web.dll
[2016.05.10 07:39:00 | 000,779,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskschd.dll
[2016.05.10 07:39:00 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MsSpellCheckingFacility.dll
[2016.05.10 07:39:00 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ChatApis.dll
[2016.05.10 07:39:00 | 000,686,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2016.05.10 07:39:00 | 000,682,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Input.Inking.dll
[2016.05.10 07:39:00 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TokenBroker.dll
[2016.05.10 07:39:00 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Web.dll
[2016.05.10 07:39:00 | 000,587,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll
[2016.05.10 07:39:00 | 000,556,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PsmServiceExtHost.dll
[2016.05.10 07:39:00 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ChatApis.dll
[2016.05.10 07:39:00 | 000,521,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.Connectivity.dll
[2016.05.10 07:39:00 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\werui.dll
[2016.05.10 07:39:00 | 000,440,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CredProvDataModel.dll
[2016.05.10 07:39:00 | 000,401,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sharemediacpl.dll
[2016.05.10 07:39:00 | 000,394,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2016.05.10 07:39:00 | 000,378,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBXHCI.SYS
[2016.05.10 07:39:00 | 000,303,104 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2016.05.10 07:39:00 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\thumbcache.dll
[2016.05.10 07:39:00 | 000,296,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\policymanager.dll
[2016.05.10 07:39:00 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vaultcli.dll
[2016.05.10 07:39:00 | 000,261,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LsaIso.exe
[2016.05.10 07:39:00 | 000,258,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ufx01000.sys
[2016.05.10 07:39:00 | 000,258,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqmapi.dll
[2016.05.10 07:39:00 | 000,220,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqmapi.dll
[2016.05.10 07:39:00 | 000,216,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxAllUserStore.dll
[2016.05.10 07:39:00 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InstallAgent.exe
[2016.05.10 07:39:00 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VCardParser.dll
[2016.05.10 07:39:00 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psmsrv.dll
[2016.05.10 07:39:00 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mdmmigrator.dll
[2016.05.10 07:39:00 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AboveLockAppHost.dll
[2016.05.10 07:39:00 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\enrollmentapi.dll
[2016.05.10 07:39:00 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msorcl32.dll
[2016.05.10 07:39:00 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InstallAgent.exe
[2016.05.10 07:39:00 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CallHistoryClient.dll
[2016.05.10 07:39:00 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WiFiDisplay.dll
[2016.05.10 07:39:00 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuthBroker.dll
[2016.05.10 07:39:00 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\flvprophandler.dll
[2016.05.10 07:39:00 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VEDataLayerHelpers.dll
[2016.05.10 07:39:00 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppointmentActivation.dll
[2016.05.10 07:39:00 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\policymanagerprecheck.dll
[2016.05.10 07:39:00 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MDMAppInstaller.exe
[2016.05.10 07:39:00 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MosStorage.dll
[2016.05.10 07:39:00 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MosStorage.dll
[2016.05.10 07:39:00 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LaunchWinApp.exe
[2016.05.10 07:38:59 | 000,989,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SecConfig.efi
[2016.05.10 07:38:59 | 000,888,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.dll
[2016.05.10 07:38:59 | 000,854,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Devices.Bluetooth.dll
[2016.05.10 07:38:59 | 000,848,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
[2016.05.10 07:38:59 | 000,770,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iuilp.dll
[2016.05.10 07:38:59 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Security.Authentication.Web.Core.dll
[2016.05.10 07:38:59 | 000,705,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2016.05.10 07:38:59 | 000,694,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdiWiFi.sys
[2016.05.10 07:38:59 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EmailApis.dll
[2016.05.10 07:38:59 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SyncController.dll
[2016.05.10 07:38:59 | 000,450,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SyncController.dll
[2016.05.10 07:38:59 | 000,412,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
[2016.05.10 07:38:59 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2016.05.10 07:38:59 | 000,389,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanapi.dll
[2016.05.10 07:38:59 | 000,374,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemSettingsAdminFlows.exe
[2016.05.10 07:38:59 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncbservice.dll
[2016.05.10 07:38:59 | 000,334,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\policymanager.dll
[2016.05.10 07:38:59 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\domgmt.dll
[2016.05.10 07:38:59 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveui.dll
[2016.05.10 07:38:59 | 000,277,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys
[2016.05.10 07:38:59 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserDataAccountApis.dll
[2016.05.10 07:38:59 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\accountaccessor.dll
[2016.05.10 07:38:59 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PimIndexMaintenance.dll
[2016.05.10 07:38:59 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cemapi.dll
[2016.05.10 07:38:59 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PackageStateRoaming.dll
[2016.05.10 07:38:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cemapi.dll
[2016.05.10 07:38:59 | 000,185,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpsd.sys
[2016.05.10 07:38:59 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mdmregistration.dll
[2016.05.10 07:38:59 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PhoneCallHistoryApis.dll
[2016.05.10 07:38:59 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Devices.Scanners.dll
[2016.05.10 07:38:59 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dafBth.dll
[2016.05.10 07:38:59 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fwbase.dll
[2016.05.10 07:38:59 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mdmregistration.dll
[2016.05.10 07:38:59 | 000,147,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wermgr.exe
[2016.05.10 07:38:59 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Devices.dll
[2016.05.10 07:38:59 | 000,141,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuthHost.exe
[2016.05.10 07:38:59 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AboveLockAppHost.dll
[2016.05.10 07:38:59 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppointmentActivation.dll
[2016.05.10 07:38:59 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BitLockerDeviceEncryption.exe
[2016.05.10 07:38:59 | 000,115,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NetSetupApi.dll
[2016.05.10 07:38:59 | 000,110,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srvcli.dll
[2016.05.10 07:38:59 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Devices.dll
[2016.05.10 07:38:59 | 000,100,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\omadmapi.dll
[2016.05.10 07:38:59 | 000,084,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NetSetupApi.dll
[2016.05.10 07:38:59 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VEDataLayerHelpers.dll
[2016.05.10 07:38:59 | 000,081,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2016.05.10 07:38:59 | 000,078,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wkscli.dll
[2016.05.10 07:38:59 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\provpackageapidll.dll
[2016.05.10 07:38:59 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EnterpriseDesktopAppMgmtCSP.dll
[2016.05.10 07:38:59 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wkscli.dll
[2016.05.10 07:38:59 | 000,051,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SensorsNativeApi.dll
[2016.05.10 07:38:58 | 007,979,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mos.dll
[2016.05.10 07:38:58 | 006,297,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mos.dll
[2016.05.10 07:38:58 | 004,774,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2016.05.10 07:38:58 | 000,841,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2016.05.10 07:38:58 | 000,821,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fvewiz.dll
[2016.05.10 07:38:58 | 000,686,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieproxy.dll
[2016.05.10 07:38:58 | 000,685,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scapi.dll
[2016.05.10 07:38:58 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.dll
[2016.05.10 07:38:58 | 000,558,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MBMediaManager.dll
[2016.05.10 07:38:58 | 000,534,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS
[2016.05.10 07:38:58 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FirewallAPI.dll
[2016.05.10 07:38:58 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Security.Authentication.Web.Core.dll
[2016.05.10 07:38:58 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FWPUCLNT.DLL
[2016.05.10 07:38:58 | 000,394,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\werui.dll
[2016.05.10 07:38:58 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys
[2016.05.10 07:38:58 | 000,330,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2016.05.10 07:38:58 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fvecpl.dll
[2016.05.10 07:38:58 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieproxy.dll
[2016.05.10 07:38:58 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VEEventDispatcher.dll
[2016.05.10 07:38:58 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NotificationObjFactory.dll
[2016.05.10 07:38:58 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExSMime.dll
[2016.05.10 07:38:58 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL
[2016.05.10 07:38:58 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2016.05.10 07:38:58 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\credprovhost.dll
[2016.05.10 07:38:58 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NotificationObjFactory.dll
[2016.05.10 07:38:58 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DAFWSD.dll
[2016.05.10 07:38:58 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsqmcons.exe
[2016.05.10 07:38:58 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExSMime.dll
[2016.05.10 07:38:58 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PhoneCallHistoryApis.dll
[2016.05.10 07:38:58 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VEEventDispatcher.dll
[2016.05.10 07:38:58 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Devices.Scanners.dll
[2016.05.10 07:38:58 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserDataAccountApis.dll
[2016.05.10 07:38:58 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fwpolicyiomgr.dll
[2016.05.10 07:38:58 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\credprovhost.dll
[2016.05.10 07:38:58 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fwbase.dll
[2016.05.10 07:38:58 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemSettings.DeviceEncryptionHandlers.dll
[2016.05.10 07:38:58 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\easwrt.dll
[2016.05.10 07:38:58 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxSip.dll
[2016.05.10 07:38:58 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VEStoreEventHandlers.dll
[2016.05.10 07:38:58 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VCardParser.dll
[2016.05.10 07:38:58 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dssvc.dll
[2016.05.10 07:38:58 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\easwrt.dll
[2016.05.10 07:38:58 | 000,141,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wermgr.exe
[2016.05.10 07:38:58 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxSip.dll
[2016.05.10 07:38:58 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CallHistoryClient.dll
[2016.05.10 07:38:58 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dmcsps.dll
[2016.05.10 07:38:58 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapsBtSvc.dll
[2016.05.10 07:38:58 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FontProvider.dll
[2016.05.10 07:38:58 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srpapi.dll
[2016.05.10 07:38:58 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserDataTimeUtil.dll
[2016.05.10 07:38:58 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samlib.dll
[2016.05.10 07:38:58 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpninprc.dll
[2016.05.10 07:38:58 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsNativeApi.V2.dll
[2016.05.10 07:38:58 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserbroker.dll
[2016.05.10 07:38:58 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserDataTimeUtil.dll
[2016.05.10 07:38:58 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapsCSP.dll
[2016.05.10 07:38:58 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxSysprep.dll
[2016.05.10 07:38:58 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tzautoupdate.dll
[2016.05.10 07:38:58 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NetCfgNotifyObjectHost.exe
[2016.05.10 07:38:58 | 000,074,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\easinvoker.exe
[2016.05.10 07:38:58 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\POSyncServices.dll
[2016.05.10 07:38:58 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveskybackup.dll
[2016.05.10 07:38:58 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserDataPlatformHelperUtil.dll
[2016.05.10 07:38:58 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\profext.dll
[2016.05.10 07:38:58 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\moshost.dll
[2016.05.10 07:38:58 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OnDemandConnRouteHelper.dll
[2016.05.10 07:38:58 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\basesrv.dll
[2016.05.10 07:38:58 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PimIndexMaintenanceClient.dll
[2016.05.10 07:38:58 | 000,058,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsNativeApi.dll
[2016.05.10 07:38:58 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2016.05.10 07:38:58 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserDataPlatformHelperUtil.dll
[2016.05.10 07:38:58 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\POSyncServices.dll
[2016.05.10 07:38:58 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\profext.dll
[2016.05.10 07:38:58 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wfdprov.dll
[2016.05.10 07:38:58 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2016.05.10 07:38:58 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PimIndexMaintenanceClient.dll
[2016.05.10 07:38:58 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserDataTypeHelperUtil.dll
[2016.05.10 07:38:58 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserDataLanguageUtil.dll
[2016.05.10 07:38:58 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2016.05.10 07:38:58 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TimeBrokerClient.dll
[2016.05.10 07:38:58 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserDataTypeHelperUtil.dll
[2016.05.10 07:38:58 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserDataLanguageUtil.dll
[2016.05.10 07:38:58 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tbauth.dll
[2016.05.10 07:38:58 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dmenterprisediagnostics.dll
[2016.05.10 07:38:58 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuautoappupdate.dll
[2016.05.10 07:38:58 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsdchngr.dll
[2016.05.10 07:38:58 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tbauth.dll
[2016.05.10 07:38:58 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapsupdatetask.dll
[2016.05.10 07:38:58 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WiFiConfigSP.dll
[2016.05.10 07:38:58 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LicenseManagerShellext.exe
[2016.05.10 07:38:58 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsdchngr.dll
[2016.05.10 07:38:58 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlansvcpal.dll
[2016.05.10 07:38:58 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TokenBrokerCookies.exe
[2016.05.10 07:38:58 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wfapigp.dll
[2016.05.10 07:38:58 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExtrasXmlParser.dll
[2016.05.10 07:38:58 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TokenBrokerCookies.exe
[2016.05.10 07:38:58 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExtrasXmlParser.dll
[2016.05.10 07:38:57 | 000,784,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NMAA.dll
[2016.05.10 07:38:57 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcastdvr.exe
[2016.05.10 07:38:57 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapibase.dll
[2016.05.10 07:38:57 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fwpolicyiomgr.dll
[2016.05.10 07:38:57 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mtxoci.dll
[2016.05.10 07:38:57 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mtxoci.dll
[2016.05.10 07:38:57 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2016.05.10 07:38:57 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InputLocaleManager.dll
[2016.05.10 07:38:57 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BdeHdCfgLib.dll
[2016.05.10 07:38:57 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2016.05.10 07:38:57 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapsBtSvc.dll
[2016.05.10 07:38:57 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppCapture.dll
[2016.05.10 07:38:57 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InputLocaleManager.dll
[2016.05.10 07:38:57 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SensorsNativeApi.V2.dll
[2016.05.10 07:38:57 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OnDemandConnRouteHelper.dll
[2016.05.10 07:38:57 | 000,045,568 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2016.05.10 07:38:57 | 000,037,376 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2016.05.10 07:38:57 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TimeBrokerClient.dll
[2016.05.10 07:38:57 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\xinputhid.sys
[2016.05.10 07:38:57 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wfapigp.dll
[2016.05.10 07:38:57 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacchooks.dll
[2016.05.10 07:38:57 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\oleacchooks.dll
[2016.05.10 07:36:48 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\NVIDIA
[2016.05.10 07:36:27 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2016.05.10 07:36:25 | 006,369,728 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2016.05.10 07:36:25 | 002,994,744 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2016.05.10 07:36:25 | 002,563,128 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2016.05.10 07:36:25 | 000,393,784 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2016.05.10 07:36:25 | 000,071,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2016.05.10 07:36:19 | 000,121,672 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2016.05.10 07:36:16 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2016.05.10 07:36:13 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2016.05.10 07:36:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2016.05.10 07:32:47 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Roaming\Macromedia
[2016.05.10 07:32:07 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\MicrosoftEdge
[2016.05.10 07:29:50 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\Publishers
[2016.05.10 07:29:39 | 000,000,000 | R--D | C] -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2016.05.10 07:29:39 | 000,000,000 | R--D | C] -- C:\Users\fLow\Searches
[2016.05.10 07:29:39 | 000,000,000 | R--D | C] -- C:\Users\fLow\Contacts
[2016.05.10 07:29:39 | 000,000,000 | R--D | C] -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2016.05.10 07:29:39 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\Packages
[2016.05.10 07:29:39 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Roaming\Adobe
[2016.05.10 07:29:38 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\TileDataLayer
[2016.05.10 07:29:32 | 000,000,000 | --SD | C] -- C:\Users\fLow\AppData\Roaming\Microsoft
[2016.05.10 07:29:32 | 000,000,000 | R-SD | C] -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
[2016.05.10 07:29:32 | 000,000,000 | R--D | C] -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2016.05.10 07:29:32 | 000,000,000 | R--D | C] -- C:\Users\fLow\Downloads
[2016.05.10 07:29:32 | 000,000,000 | R--D | C] -- C:\Users\fLow\Documents
[2016.05.10 07:29:32 | 000,000,000 | R--D | C] -- C:\Users\fLow\Desktop
[2016.05.10 07:29:32 | 000,000,000 | R--D | C] -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2016.05.10 07:29:32 | 000,000,000 | R--D | C] -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\AppData\Local\Temporary Internet Files
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Šablony
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Soubory cookie
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\SendTo
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Poslední
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Okolní tiskárny
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Okolní síť
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Documents\Obrázky
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Nabídka Start
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Local Settings
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Documents\Hudba
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\AppData\Local\History
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Documents\Filmy
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Dokumenty
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\Data aplikací
[2016.05.10 07:29:32 | 000,000,000 | -HSD | C] -- C:\Users\fLow\AppData\Local\Data aplikací
[2016.05.10 07:29:32 | 000,000,000 | -H-D | C] -- C:\Users\fLow\AppData
[2016.05.10 07:29:32 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Local\Microsoft
[2016.05.10 07:29:32 | 000,000,000 | ---D | C] -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2016.05.10 07:29:31 | 000,000,000 | R--D | C] -- C:\Users\fLow\Videos
[2016.05.10 07:29:31 | 000,000,000 | R--D | C] -- C:\Users\fLow\Saved Games
[2016.05.10 07:29:31 | 000,000,000 | R--D | C] -- C:\Users\fLow\Pictures
[2016.05.10 07:29:31 | 000,000,000 | R--D | C] -- C:\Users\fLow\Music
[2016.05.10 07:29:31 | 000,000,000 | R--D | C] -- C:\Users\fLow\Links
[2016.05.10 07:29:31 | 000,000,000 | R--D | C] -- C:\Users\fLow\Favorites
[2016.05.10 07:23:35 | 000,000,000 | ---D | C] -- C:\Windows\CSC
[2016.05.10 07:23:23 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2016.05.10 07:23:23 | 000,000,000 | -HSD | C] -- C:\Recovery
[2016.05.10 07:23:23 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2016.05.10 07:23:23 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2016.05.10 07:23:23 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2016.05.10 07:23:23 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2016.05.10 07:23:23 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2016.05.10 07:23:23 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2016.05.10 07:23:23 | 000,000,000 | -HSD | C] -- C:\Documents and Settings
[2016.05.10 07:23:23 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2016.05.10 07:22:54 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2016.05.10 07:21:54 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2016.05.10 07:21:42 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2016.05.05 21:41:24 | 000,051,400 | ---- | C] (SteelSeries ApS) -- C:\Windows\SysNative\drivers\sshid.sys
[2016.04.27 22:10:14 | 000,032,224 | ---- | C] (COMODO) -- C:\Windows\SysNative\drivers\cmderd.sys
[2016.04.27 22:05:12 | 000,051,800 | ---- | C] (COMODO) -- C:\Windows\SysNative\cmdcsr.dll
[2016.04.27 22:04:48 | 000,461,648 | ---- | C] (COMODO) -- C:\Windows\SysWow64\guard32.dll
[2016.04.27 22:04:36 | 000,596,232 | ---- | C] (COMODO) -- C:\Windows\SysNative\guard64.dll
[2016.04.27 22:00:48 | 000,365,752 | ---- | C] (COMODO) -- C:\Windows\SysNative\cmdvrt64.dll
[2016.04.27 21:59:00 | 000,051,896 | ---- | C] (COMODO) -- C:\Windows\SysNative\cmdkbd64.dll
[2016.04.27 21:55:12 | 000,296,120 | ---- | C] (COMODO) -- C:\Windows\SysWow64\cmdvrt32.dll
[2016.04.27 21:53:24 | 000,046,776 | ---- | C] (COMODO) -- C:\Windows\SysWow64\cmdkbd32.dll

========== Files - Modified Within 30 Days ==========

[2016.05.10 21:58:26 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\fLow\Desktop\OTL.exe
[2016.05.10 21:57:14 | 000,000,512 | ---- | M] () -- C:\Users\fLow\Desktop\MBR.dat
[2016.05.10 21:55:11 | 005,200,384 | ---- | M] (AVAST Software) -- C:\Users\fLow\Desktop\aswmbr.exe
[2016.05.10 21:54:36 | 001,474,832 | ---- | M] () -- C:\Windows\SysNative\drivers\sfi.dat
[2016.05.10 21:47:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2016.05.10 20:52:51 | 000,042,168 | ---- | M] (Sysinternals - http://www.sysinternals.com) -- C:\Windows\SysNative\drivers\PROCEXP152.SYS
[2016.05.10 20:52:28 | 002,694,816 | ---- | M] (Sysinternals - http://www.sysinternals.com) -- C:\Users\fLow\Desktop\procexp.exe
[2016.05.10 20:47:03 | 002,105,488 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2016.05.10 20:47:03 | 000,990,978 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2016.05.10 20:47:03 | 000,734,296 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2016.05.10 20:47:03 | 000,239,026 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2016.05.10 20:47:03 | 000,138,836 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2016.05.10 20:43:02 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2016.05.10 20:06:40 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2016.05.10 20:05:08 | 000,000,958 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2016.05.10 20:04:38 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2016.05.10 20:04:37 | 3397,357,568 | -HS- | M] () -- C:\hiberfil.sys
[2016.05.10 19:19:58 | 000,000,753 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2016.05.10 19:17:59 | 000,024,064 | ---- | M] () -- C:\Windows\zoek-delete.exe
[2016.05.10 19:15:55 | 001,309,184 | ---- | M] () -- C:\Users\fLow\Desktop\zoek.exe
[2016.05.10 19:09:30 | 000,028,272 | ---- | M] () -- C:\Windows\SysNative\drivers\TrueSight.sys
[2016.05.10 19:08:32 | 024,080,968 | ---- | M] () -- C:\Users\fLow\Desktop\RogueKillerX64 (1).exe
[2016.05.10 12:30:52 | 000,001,159 | ---- | M] () -- C:\Users\fLow\Desktop\MSI Afterburner.lnk
[2016.05.10 11:51:23 | 001,610,816 | ---- | M] (Malwarebytes) -- C:\Users\fLow\Desktop\JRT.exe
[2016.05.10 10:43:12 | 003,640,384 | ---- | M] () -- C:\Users\fLow\Desktop\AdwCleaner.exe
[2016.05.10 10:39:38 | 000,448,512 | ---- | M] (OldTimer Tools) -- C:\Users\fLow\Desktop\TFC.exe
[2016.05.10 10:29:15 | 000,003,786 | ---- | M] () -- C:\Windows\SysNative\drivers\fvstore.dat
[2016.05.10 10:27:53 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\fLow\Desktop\hijackthis.exe
[2016.05.10 10:16:40 | 000,001,175 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016.05.10 10:16:39 | 000,140,672 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2016.05.10 10:16:39 | 000,065,408 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2016.05.10 10:16:39 | 000,027,008 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbam.sys
[2016.05.10 10:11:44 | 002,526,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2016.05.10 10:11:44 | 000,527,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2016.05.10 10:11:44 | 000,518,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2016.05.10 10:11:44 | 000,239,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2016.05.10 10:11:44 | 000,176,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2016.05.10 10:11:44 | 000,077,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2016.05.10 10:11:44 | 000,074,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2016.05.10 10:11:43 | 002,106,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2016.05.10 10:11:43 | 001,907,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2016.05.10 10:11:43 | 001,868,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2016.05.10 10:11:42 | 000,530,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2016.05.10 10:11:42 | 000,528,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2016.05.10 10:11:42 | 000,238,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2016.05.10 10:11:42 | 000,176,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2016.05.10 10:11:42 | 000,078,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2016.05.10 10:11:42 | 000,074,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2016.05.10 10:11:42 | 000,024,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2016.05.10 10:11:41 | 000,517,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2016.05.10 10:11:41 | 000,515,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2016.05.10 10:11:41 | 000,022,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2016.05.10 10:11:40 | 005,554,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2016.05.10 10:11:40 | 005,501,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2016.05.10 10:11:40 | 002,582,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2016.05.10 10:11:40 | 001,974,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2016.05.10 10:11:40 | 000,285,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2016.05.10 10:11:40 | 000,238,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2016.05.10 10:11:40 | 000,235,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2016.05.10 10:11:40 | 000,176,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2016.05.10 10:11:39 | 005,425,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2016.05.10 10:11:39 | 004,178,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2016.05.10 10:11:39 | 002,475,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2016.05.10 10:11:39 | 002,430,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2016.05.10 10:11:39 | 001,892,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2016.05.10 10:11:39 | 001,846,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2016.05.10 10:11:39 | 000,523,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2016.05.10 10:11:39 | 000,520,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2016.05.10 10:11:39 | 000,453,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2016.05.10 10:11:39 | 000,453,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2016.05.10 10:11:38 | 000,521,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2016.05.10 10:11:38 | 000,517,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2016.05.10 10:11:38 | 000,235,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2016.05.10 10:11:38 | 000,174,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2016.05.10 10:11:38 | 000,073,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2016.05.10 10:11:38 | 000,069,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2016.05.10 10:11:38 | 000,024,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2016.05.10 10:11:37 | 005,631,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2016.05.10 10:11:37 | 004,379,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2016.05.10 10:11:37 | 002,605,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2016.05.10 10:11:37 | 002,036,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2016.05.10 10:11:37 | 000,519,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2016.05.10 10:11:37 | 000,518,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2016.05.10 10:11:37 | 000,452,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2016.05.10 10:11:37 | 000,074,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2016.05.10 10:11:37 | 000,022,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2016.05.10 10:11:36 | 000,514,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2016.05.10 10:11:36 | 000,235,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2016.05.10 10:11:36 | 000,175,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2016.05.10 10:11:36 | 000,070,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2016.05.10 10:11:36 | 000,025,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2016.05.10 10:11:36 | 000,023,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2016.05.10 10:11:35 | 001,942,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2016.05.10 10:11:35 | 001,493,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2016.05.10 10:11:35 | 000,540,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2016.05.10 10:11:35 | 000,513,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2016.05.10 10:11:35 | 000,509,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2016.05.10 10:11:35 | 000,467,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2016.05.10 10:11:35 | 000,238,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2016.05.10 10:11:35 | 000,177,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2016.05.10 10:11:35 | 000,072,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2016.05.10 10:11:35 | 000,068,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2016.05.10 10:11:34 | 004,992,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2016.05.10 10:11:34 | 003,851,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2016.05.10 10:11:34 | 000,511,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2016.05.10 10:11:34 | 000,507,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2016.05.10 10:11:34 | 000,068,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2016.05.10 10:11:34 | 000,065,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2016.05.10 10:11:33 | 004,991,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2016.05.10 10:11:33 | 003,850,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2016.05.10 10:11:33 | 001,941,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2016.05.10 10:11:33 | 001,491,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2016.05.10 10:11:33 | 000,540,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2016.05.10 10:11:33 | 000,467,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2016.05.10 10:11:33 | 000,238,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2016.05.10 10:11:33 | 000,177,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2016.05.10 10:11:33 | 000,028,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2016.05.10 10:11:33 | 000,025,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2016.05.10 10:11:32 | 000,489,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2016.05.10 10:11:32 | 000,479,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2016.05.10 10:11:32 | 000,238,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2016.05.10 10:11:32 | 000,177,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2016.05.10 10:11:31 | 004,910,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2016.05.10 10:11:31 | 003,786,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2016.05.10 10:11:31 | 001,860,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2016.05.10 10:11:31 | 001,420,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2016.05.10 10:11:31 | 000,529,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2016.05.10 10:11:31 | 000,462,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2016.05.10 10:11:31 | 000,028,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2016.05.10 10:11:31 | 000,025,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2016.05.10 10:11:30 | 005,081,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2016.05.10 10:11:30 | 003,734,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2016.05.10 10:11:30 | 002,006,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2016.05.10 10:11:30 | 001,374,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2016.05.10 10:11:30 | 000,508,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2016.05.10 10:11:30 | 000,444,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2016.05.10 10:11:30 | 000,411,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2016.05.10 10:11:30 | 000,267,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2016.05.10 10:11:30 | 000,021,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2016.05.10 10:11:30 | 000,017,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2016.05.10 10:11:29 | 005,073,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2016.05.10 10:11:29 | 001,358,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2016.05.10 10:11:29 | 000,508,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2016.05.10 10:11:29 | 000,444,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2016.05.10 10:11:29 | 000,411,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2016.05.10 10:11:29 | 000,267,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2016.05.10 10:11:28 | 004,496,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2016.05.10 10:11:28 | 003,727,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll

[flowem]

[2016.05.10 10:11:28 | 001,401,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2016.05.10 10:11:28 | 001,124,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2016.05.10 10:11:28 | 000,506,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2016.05.10 10:11:28 | 000,443,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2016.05.10 10:11:28 | 000,409,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2016.05.10 10:11:28 | 000,266,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2016.05.10 10:11:27 | 003,497,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2016.05.10 10:11:27 | 001,400,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2016.05.10 10:11:27 | 000,506,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2016.05.10 10:11:27 | 000,403,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2016.05.10 10:11:27 | 000,261,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2016.05.10 10:11:27 | 000,107,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2016.05.10 10:11:27 | 000,081,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2016.05.10 10:11:26 | 004,494,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2016.05.10 10:11:26 | 003,495,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2016.05.10 10:11:26 | 001,123,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2016.05.10 10:11:26 | 000,443,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2016.05.10 10:11:26 | 000,393,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2016.05.10 10:11:26 | 000,255,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2016.05.10 10:11:25 | 004,398,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2016.05.10 10:11:25 | 000,469,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2016.05.10 10:11:25 | 000,440,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2016.05.10 10:11:25 | 000,390,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2016.05.10 10:11:25 | 000,251,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2016.05.10 10:11:24 | 003,977,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2016.05.10 10:11:24 | 003,426,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2016.05.10 10:11:24 | 002,414,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2016.05.10 10:11:24 | 000,364,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2016.05.10 10:11:24 | 000,237,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2016.05.10 10:11:24 | 000,017,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2016.05.10 10:11:24 | 000,015,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2016.05.10 10:11:23 | 000,363,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2016.05.10 10:11:23 | 000,354,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2016.05.10 10:11:23 | 000,236,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2016.05.10 10:11:23 | 000,230,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2016.05.10 10:11:23 | 000,083,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2016.05.10 10:11:23 | 000,083,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2016.05.10 10:11:23 | 000,062,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2016.05.10 10:11:23 | 000,062,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2016.05.10 10:11:22 | 000,352,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2016.05.10 10:11:22 | 000,229,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2016.05.10 10:11:21 | 003,927,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2016.05.10 10:11:21 | 003,830,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2016.05.10 10:11:21 | 002,388,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2016.05.10 10:11:21 | 002,332,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2016.05.10 10:11:21 | 000,355,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2016.05.10 10:11:21 | 000,230,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2016.05.10 10:11:21 | 000,016,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2016.05.10 10:11:21 | 000,014,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2016.05.10 10:11:20 | 003,815,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2016.05.10 10:11:20 | 003,807,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2016.05.10 10:11:20 | 003,767,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2016.05.10 10:11:20 | 002,323,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2016.05.10 10:11:20 | 002,319,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2016.05.10 10:11:20 | 002,297,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2016.05.10 10:11:19 | 003,823,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2016.05.10 10:11:19 | 003,544,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2016.05.10 10:11:19 | 002,337,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2016.05.10 10:11:19 | 002,222,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2016.05.10 10:10:15 | 000,778,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationNative_v0300.dll
[2016.05.10 10:10:15 | 000,103,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2016.05.10 10:10:15 | 000,035,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\TsWpfWrp.exe
[2016.05.10 10:10:14 | 001,166,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationNative_v0300.dll
[2016.05.10 10:10:14 | 000,124,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2016.05.10 10:10:14 | 000,035,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsWpfWrp.exe
[2016.05.10 08:57:08 | 000,097,856 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2016.05.10 08:11:14 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\UMDF\en-GB\SensorsCx.dll.mui
[2016.05.10 08:11:12 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\en-GB\NdisImPlatform.sys.mui
[2016.05.10 08:11:12 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\en-US\ndiscap.sys.mui
[2016.05.10 08:11:12 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\en-US\wfplwfs.sys.mui
[2016.05.10 08:11:11 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\volsnap.sys.mui
[2016.05.10 08:11:11 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\spaceport.sys.mui
[2016.05.10 08:11:11 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\usbport.sys.mui
[2016.05.10 08:11:11 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\USBHUB3.SYS.mui
[2016.05.10 08:11:11 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\USBXHCI.SYS.mui
[2016.05.10 08:11:11 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\usbhub.sys.mui
[2016.05.10 08:11:11 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\vhdmp.sys.mui
[2016.05.10 08:11:11 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\vdrvroot.sys.mui
[2016.05.10 08:11:11 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UMDF\en-US\SensorsHid.dll.mui
[2016.05.10 08:11:11 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\tpm.sys.mui
[2016.05.10 08:11:11 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\rdvgkmd.sys.mui
[2016.05.10 08:11:11 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\netvsc.sys.mui
[2016.05.10 08:11:11 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UMDF\en-US\WUDFUsbccidDriver.dll.mui
[2016.05.10 08:11:11 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\sdbus.sys.mui
[2016.05.10 08:11:11 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\dumpsd.sys.mui
[2016.05.10 08:11:11 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\vmstorfl.sys.mui
[2016.05.10 08:11:11 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\portcls.sys.mui
[2016.05.10 08:11:11 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\dmvsc.sys.mui
[2016.05.10 08:11:11 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\BthA2DP.sys.mui
[2016.05.10 08:11:11 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\usbehci.sys.mui
[2016.05.10 08:11:11 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\umbus.sys.mui
[2016.05.10 08:11:11 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\sdstor.sys.mui
[2016.05.10 08:11:11 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UMDF\en-US\WpdMtpDr.dll.mui
[2016.05.10 08:11:11 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\usbvideo.sys.mui
[2016.05.10 08:11:11 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\USBSTOR.SYS.mui
[2016.05.10 08:11:11 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\USBAUDIO.sys.mui
[2016.05.10 08:11:11 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\serscan.sys.mui
[2016.05.10 08:11:11 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\rfxvmt.sys.mui
[2016.05.10 08:11:11 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\rfcomm.sys.mui
[2016.05.10 08:11:11 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\volmgr.sys.mui
[2016.05.10 08:11:10 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\afd.sys.mui
[2016.05.10 08:11:10 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\wmbclass.sys.mui
[2016.05.10 08:11:10 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\serial.sys.mui
[2016.05.10 08:11:10 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\pci.sys.mui
[2016.05.10 08:11:10 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\ataport.sys.mui
[2016.05.10 08:11:10 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\sermouse.sys.mui
[2016.05.10 08:11:10 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\pcmcia.sys.mui
[2016.05.10 08:11:10 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\mouclass.sys.mui
[2016.05.10 08:11:10 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\parport.sys.mui
[2016.05.10 08:11:10 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\rndismpx.sys.mui
[2016.05.10 08:11:10 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\rndismp6.sys.mui
[2016.05.10 08:11:10 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\mssmbios.sys.mui
[2016.05.10 08:11:10 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\MTConfig.sys.mui
[2016.05.10 08:11:10 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\mouhid.sys.mui
[2016.05.10 08:11:10 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\msgpiowin32.sys.mui
[2016.05.10 08:11:09 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\tcpip.sys.mui
[2016.05.10 08:11:09 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\srv2.sys.mui
[2016.05.10 08:11:09 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\mrxsmb.sys.mui
[2016.05.10 08:11:09 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\fvevol.sys.mui
[2016.05.10 08:11:09 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\storqosflt.sys.mui
[2016.05.10 08:11:09 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\synth3dvsc.sys.mui
[2016.05.10 08:11:09 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\refsv1.sys.mui
[2016.05.10 08:11:09 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\tunnel.sys.mui
[2016.05.10 08:11:09 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\rdbss.sys.mui
[2016.05.10 08:11:09 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\modem.sys.mui
[2016.05.10 08:11:09 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\wdf01000.sys.mui
[2016.05.10 08:11:09 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\scfilter.sys.mui
[2016.05.10 08:11:09 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\ws2ifsl.sys.mui
[2016.05.10 08:11:09 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\usbrpm.sys.mui
[2016.05.10 08:11:09 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UMDF\en-GB\SensorsCx.dll.mui
[2016.05.10 08:11:08 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\ntfs.sys.mui
[2016.05.10 08:11:08 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\nwifi.sys.mui
[2016.05.10 08:11:08 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\wof.sys.mui
[2016.05.10 08:11:08 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\agilevpn.sys.mui
[2016.05.10 08:11:08 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\qwavedrv.sys.mui
[2016.05.10 08:11:08 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\partmgr.sys.mui
[2016.05.10 08:11:08 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\pdc.sys.mui
[2016.05.10 08:11:07 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\ndis.sys.mui
[2016.05.10 08:11:07 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\pacer.sys.mui
[2016.05.10 08:11:07 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\mup.sys.mui
[2016.05.10 08:11:07 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\NdisImPlatform.sys.mui
[2016.05.10 08:11:07 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\mslldp.sys.mui
[2016.05.10 08:11:07 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\luafv.sys.mui
[2016.05.10 08:11:07 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\ndiscap.sys.mui
[2016.05.10 08:11:07 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\wfplwfs.sys.mui
[2016.05.10 08:11:07 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\ndisuio.sys.mui
[2016.05.10 08:11:07 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\mshidumdf.sys.mui
[2016.05.10 08:11:07 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\mountmgr.sys.mui
[2016.05.10 08:11:07 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\NdisVirtualBus.sys.mui
[2016.05.10 08:11:06 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\http.sys.mui
[2016.05.10 08:11:06 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\fltmgr.sys.mui
[2016.05.10 08:11:06 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\wudfpf.sys.mui
[2016.05.10 08:11:06 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\volmgrx.sys.mui
[2016.05.10 08:11:06 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\vhf.sys.mui
[2016.05.10 08:11:05 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\pnpmem.sys.mui
[2016.05.10 08:11:04 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\bthport.sys.mui
[2016.05.10 08:11:04 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\processr.sys.mui
[2016.05.10 08:11:04 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\intelppm.sys.mui
[2016.05.10 08:11:04 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\amdppm.sys.mui
[2016.05.10 08:11:04 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\amdk8.sys.mui
[2016.05.10 08:11:04 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\BthLEEnum.sys.mui
[2016.05.10 08:11:04 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\1394ohci.sys.mui
[2016.05.10 08:11:04 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\i8042prt.sys.mui
[2016.05.10 08:11:04 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\acpi.sys.mui
[2016.05.10 08:11:04 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\EhStorTcgDrv.sys.mui
[2016.05.10 08:11:04 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\battc.sys.mui
[2016.05.10 08:11:04 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\hidclass.sys.mui
[2016.05.10 08:11:04 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\IPMIDrv.sys.mui
[2016.05.10 08:11:04 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\disk.sys.mui
[2016.05.10 08:11:04 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\hidbth.sys.mui
[2016.05.10 08:11:04 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\bthpan.sys.mui
[2016.05.10 08:11:04 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\wacompen.sys.mui
[2016.05.10 08:11:04 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\kbdclass.sys.mui
[2016.05.10 08:11:04 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UMDF\en-US\HidBthLE.dll.mui
[2016.05.10 08:11:04 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\hdaudbus.sys.mui
[2016.05.10 08:11:04 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\isapnp.sys.mui
[2016.05.10 08:11:04 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\hidi2c.sys.mui
[2016.05.10 08:11:04 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\BthMini.SYS.mui
[2016.05.10 08:11:04 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\HdAudio.sys.mui
[2016.05.10 08:11:04 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\BTHUSB.SYS.mui
[2016.05.10 08:11:04 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\bthhfenum.sys.mui
[2016.05.10 08:11:04 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\ULIAGPKX.SYS.mui
[2016.05.10 08:11:04 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\UAGP35.sys.mui
[2016.05.10 08:11:04 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\NV_AGP.SYS.mui
[2016.05.10 08:11:04 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\kbdhid.sys.mui
[2016.05.10 08:11:04 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\GAGP30KX.sys.mui
[2016.05.10 08:11:04 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\cdrom.sys.mui
[2016.05.10 08:11:04 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-GB\bthenum.sys.mui
[2016.05.10 08:11:04 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\BthAvrcpTg.sys.mui
[2016.05.10 08:11:04 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\AGP440.sys.mui
[2016.05.10 08:11:04 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\BthhfHid.sys.mui
[2016.05.10 08:10:18 | 006,359,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\NlsData0009.dll
[2016.05.10 08:10:18 | 005,739,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\prm0009.dll
[2016.05.10 08:10:18 | 002,629,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\NlsLexicons0009.dll
[2016.05.10 07:53:34 | 000,194,416 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2016.05.10 07:46:26 | 000,462,848 | ---- | M] (WZT) -- C:\Users\fLow\Desktop\DWS_Lite.exe
[2016.05.10 07:22:23 | 000,050,242 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2016.05.10 07:22:23 | 000,050,242 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2016.05.10 07:21:56 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2016.05.05 21:41:24 | 000,051,400 | ---- | M] (SteelSeries ApS) -- C:\Windows\SysNative\drivers\sshid.sys
[2016.04.27 22:10:14 | 000,032,224 | ---- | M] (COMODO) -- C:\Windows\SysNative\drivers\cmderd.sys
[2016.04.27 22:05:12 | 000,051,800 | ---- | M] (COMODO) -- C:\Windows\SysNative\cmdcsr.dll
[2016.04.27 22:04:48 | 000,461,648 | ---- | M] (COMODO) -- C:\Windows\SysWow64\guard32.dll
[2016.04.27 22:04:36 | 000,596,232 | ---- | M] (COMODO) -- C:\Windows\SysNative\guard64.dll
[2016.04.27 22:00:48 | 000,365,752 | ---- | M] (COMODO) -- C:\Windows\SysNative\cmdvrt64.dll
[2016.04.27 21:59:00 | 000,051,896 | ---- | M] (COMODO) -- C:\Windows\SysNative\cmdkbd64.dll
[2016.04.27 21:55:12 | 000,296,120 | ---- | M] (COMODO) -- C:\Windows\SysWow64\cmdvrt32.dll
[2016.04.27 21:53:24 | 000,046,776 | ---- | M] (COMODO) -- C:\Windows\SysWow64\cmdkbd32.dll
[2016.04.27 16:33:47 | 042,921,920 | ---- | M] () -- C:\Windows\SysNative\nvcompiler.dll
[2016.04.27 16:33:47 | 037,567,424 | ---- | M] () -- C:\Windows\SysWow64\nvcompiler.dll
[2016.04.27 16:33:47 | 031,598,136 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2016.04.27 16:33:47 | 025,350,712 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2016.04.27 16:33:47 | 021,365,048 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2016.04.27 16:33:47 | 020,906,872 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2016.04.27 16:33:47 | 020,079,168 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2016.04.27 16:33:47 | 017,756,440 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2016.04.27 16:33:47 | 017,369,768 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2016.04.27 16:33:47 | 017,350,288 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2016.04.27 16:33:47 | 017,333,344 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2016.04.27 16:33:47 | 014,227,888 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2016.04.27 16:33:47 | 010,550,736 | ---- | M] () -- C:\Windows\SysNative\nvptxJitCompiler.dll
[2016.04.27 16:33:47 | 008,659,472 | ---- | M] () -- C:\Windows\SysWow64\nvptxJitCompiler.dll
[2016.04.27 16:33:47 | 003,685,280 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2016.04.27 16:33:47 | 003,262,784 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2016.04.27 16:33:47 | 002,614,208 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2016.04.27 16:33:47 | 002,258,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2016.04.27 16:33:47 | 001,922,496 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6436510.dll
[2016.04.27 16:33:47 | 001,767,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspcap64.dll
[2016.04.27 16:33:47 | 001,756,424 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspbridge64.dll
[2016.04.27 16:33:47 | 001,573,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6436510.dll
[2016.04.27 16:33:47 | 001,373,864 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspcap.dll
[2016.04.27 16:33:47 | 001,316,000 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspbridge.dll
[2016.04.27 16:33:47 | 000,960,056 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2016.04.27 16:33:47 | 000,887,744 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2016.04.27 16:33:47 | 000,786,872 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncMFTH264.dll
[2016.04.27 16:33:47 | 000,753,208 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2016.04.27 16:33:47 | 000,694,208 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2016.04.27 16:33:47 | 000,678,704 | ---- | M] () -- C:\Windows\SysNative\nvfatbinaryLoader.dll
[2016.04.27 16:33:47 | 000,632,152 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncMFTH264.dll
[2016.04.27 16:33:47 | 000,571,912 | ---- | M] () -- C:\Windows\SysWow64\nvfatbinaryLoader.dll
[2016.04.27 16:33:47 | 000,546,328 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2016.04.27 16:33:47 | 000,448,824 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2016.04.27 16:33:47 | 000,425,016 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFROpenGL.dll
[2016.04.27 16:33:47 | 000,385,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvDecMFTMjpeg.dll
[2016.04.27 16:33:47 | 000,379,480 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll
[2016.04.27 16:33:47 | 000,379,448 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFROpenGL.dll
[2016.04.27 16:33:47 | 000,348,216 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvDecMFTMjpeg.dll
[2016.04.27 16:33:47 | 000,317,472 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll
[2016.04.27 16:33:47 | 000,175,880 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2016.04.27 16:33:47 | 000,153,392 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2016.04.27 16:33:47 | 000,151,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll
[2016.04.27 16:33:47 | 000,129,024 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll
[2016.04.27 16:33:47 | 000,112,032 | ---- | M] () -- C:\Windows\SysNative\NvRtmpStreamer64.dll
[2016.04.27 16:33:47 | 000,109,632 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvaudcap64v.dll
[2016.04.27 16:33:47 | 000,100,416 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvaudcap32v.dll
[2016.04.27 16:33:47 | 000,056,384 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvad64v.sys
[2016.04.27 16:33:47 | 000,038,050 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2016.04.27 16:33:47 | 000,000,139 | ---- | M] () -- C:\Windows\SysNative\nv-vk64.json
[2016.04.27 16:33:47 | 000,000,139 | ---- | M] () -- C:\Windows\SysWow64\nv-vk32.json
[2016.04.27 14:18:03 | 006,369,728 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2016.04.27 14:18:03 | 002,994,744 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2016.04.27 14:18:01 | 002,563,128 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2016.04.27 14:18:01 | 000,393,784 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2016.04.27 14:18:01 | 000,071,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2016.04.27 14:18:00 | 000,530,880 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshext.dll
[2016.04.27 14:18:00 | 000,081,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshextr.dll
[2016.04.25 07:33:03 | 006,381,278 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2016.04.22 09:40:48 | 000,532,384 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2016.04.22 09:40:48 | 000,221,968 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2016.04.22 09:40:48 | 000,209,536 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2016.04.22 09:40:48 | 000,166,208 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2016.04.22 09:40:46 | 003,199,232 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2016.04.22 09:40:46 | 002,895,104 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2016.04.22 09:40:44 | 000,343,712 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2016.04.22 09:40:42 | 003,283,240 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2016.04.22 09:40:42 | 000,689,888 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll
[2016.04.22 09:40:42 | 000,387,320 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2016.04.22 09:40:42 | 000,214,832 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2016.04.22 09:40:42 | 000,192,984 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2016.04.22 09:40:42 | 000,110,984 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2016.04.22 09:40:42 | 000,088,352 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2016.04.22 09:40:42 | 000,023,696 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll
[2016.04.22 09:40:40 | 005,672,954 | ---- | M] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2016.04.22 09:40:40 | 003,092,624 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RltkAPO64.dll
[2016.04.22 09:40:40 | 001,355,616 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2016.04.22 09:40:40 | 000,321,720 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2016.04.22 09:40:40 | 000,321,720 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2016.04.22 09:40:38 | 002,058,496 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
[2016.04.22 09:40:36 | 001,978,608 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBAPO264.dll
[2016.04.22 09:40:36 | 001,745,160 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBAPO232.dll
[2016.04.22 09:40:36 | 000,410,040 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBWrp64.dll
[2016.04.22 09:40:36 | 000,041,088 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\SysNative\drivers\MBfilt64.sys
[2016.04.22 09:40:32 | 002,050,176 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ64.dll
[2016.04.22 09:40:32 | 000,330,560 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2016.04.22 09:40:28 | 003,282,544 | ---- | M] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2016.04.22 09:40:24 | 000,574,760 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2016.04.22 09:40:24 | 000,122,320 | ---- | M] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll
[2016.04.22 09:40:24 | 000,118,600 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2016.04.16 00:53:42 | 000,130,328 | ---- | M] () -- C:\Windows\SysWow64\vulkan-1-1-0-8-1.dll
[2016.04.16 00:53:42 | 000,130,328 | ---- | M] () -- C:\Windows\SysWow64\vulkan-1.dll
[2016.04.16 00:53:06 | 000,040,216 | ---- | M] () -- C:\Windows\SysWow64\vulkaninfo-1-1-0-8-1.exe
[2016.04.16 00:53:06 | 000,040,216 | ---- | M] () -- C:\Windows\SysWow64\vulkaninfo.exe
[2016.04.16 00:52:48 | 000,130,840 | ---- | M] () -- C:\Windows\SysNative\vulkan-1-1-0-8-1.dll
[2016.04.16 00:52:48 | 000,130,840 | ---- | M] () -- C:\Windows\SysNative\vulkan-1.dll
[2016.04.16 00:52:10 | 000,045,336 | ---- | M] () -- C:\Windows\SysNative\vulkaninfo-1-1-0-8-1.exe
[2016.04.16 00:52:10 | 000,045,336 | ---- | M] () -- C:\Windows\SysNative\vulkaninfo.exe
[2016.04.11 13:38:26 | 002,838,232 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll

========== Files Created - No Company Name ==========

[2016.05.10 21:57:14 | 000,000,512 | ---- | C] () -- C:\Users\fLow\Desktop\MBR.dat
[2016.05.10 19:51:46 | 000,024,064 | ---- | C] () -- C:\Windows\zoek-delete.exe
[2016.05.10 19:15:54 | 001,309,184 | ---- | C] () -- C:\Users\fLow\Desktop\zoek.exe
[2016.05.10 19:08:13 | 024,080,968 | ---- | C] () -- C:\Users\fLow\Desktop\RogueKillerX64 (1).exe
[2016.05.10 12:19:45 | 000,028,272 | ---- | C] () -- C:\Windows\SysNative\drivers\TrueSight.sys
[2016.05.10 10:43:10 | 003,640,384 | ---- | C] () -- C:\Users\fLow\Desktop\AdwCleaner.exe
[2016.05.10 10:37:24 | 000,001,159 | ---- | C] () -- C:\Users\fLow\Desktop\MSI Afterburner.lnk
[2016.05.10 10:16:40 | 000,001,175 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016.05.10 10:07:31 | 000,003,786 | ---- | C] () -- C:\Windows\SysNative\drivers\fvstore.dat
[2016.05.10 09:06:39 | 000,001,239 | ---- | C] () -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
[2016.05.10 08:42:44 | 000,002,348 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
[2016.05.10 08:42:17 | 000,000,962 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2016.05.10 08:42:17 | 000,000,958 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2016.05.10 08:21:46 | 000,001,051 | ---- | C] () -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk
[2016.05.10 08:10:07 | 000,001,051 | ---- | C] () -- C:\Users\fLow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Volitelné funkce.lnk
[2016.05.10 08:05:17 | 001,474,832 | ---- | C] () -- C:\Windows\SysNative\drivers\sfi.dat
[2016.05.10 08:01:08 | 005,672,954 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2016.05.10 07:57:59 | 000,112,032 | ---- | C] () -- C:\Windows\SysNative\NvRtmpStreamer64.dll
[2016.05.10 07:57:47 | 000,130,840 | ---- | C] () -- C:\Windows\SysNative\vulkan-1.dll
[2016.05.10 07:57:47 | 000,130,328 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1.dll
[2016.05.10 07:57:47 | 000,045,336 | ---- | C] () -- C:\Windows\SysNative\vulkaninfo.exe
[2016.05.10 07:57:47 | 000,040,216 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo.exe
[2016.05.10 07:56:54 | 042,921,920 | ---- | C] () -- C:\Windows\SysNative\nvcompiler.dll
[2016.05.10 07:56:54 | 037,567,424 | ---- | C] () -- C:\Windows\SysWow64\nvcompiler.dll
[2016.05.10 07:56:54 | 010,550,736 | ---- | C] () -- C:\Windows\SysNative\nvptxJitCompiler.dll
[2016.05.10 07:56:54 | 008,659,472 | ---- | C] () -- C:\Windows\SysWow64\nvptxJitCompiler.dll
[2016.05.10 07:56:54 | 000,678,704 | ---- | C] () -- C:\Windows\SysNative\nvfatbinaryLoader.dll
[2016.05.10 07:56:54 | 000,571,912 | ---- | C] () -- C:\Windows\SysWow64\nvfatbinaryLoader.dll
[2016.05.10 07:56:54 | 000,000,139 | ---- | C] () -- C:\Windows\SysNative\nv-vk64.json
[2016.05.10 07:56:54 | 000,000,139 | ---- | C] () -- C:\Windows\SysWow64\nv-vk32.json
[2016.05.10 07:39:06 | 002,656,952 | ---- | C] () -- C:\Windows\SysNative\CoreUIComponents.dll
[2016.05.10 07:39:06 | 001,862,008 | ---- | C] () -- C:\Windows\SysWow64\CoreUIComponents.dll
[2016.05.10 07:38:57 | 000,235,008 | ---- | C] () -- C:\Windows\SysNative\MTF.dll
[2016.05.10 07:38:57 | 000,162,816 | ---- | C] () -- C:\Windows\SysWow64\MTF.dll
[2016.05.10 07:36:25 | 006,381,278 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2016.05.10 07:27:49 | 002,105,488 | ---- | C] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2016.05.10 07:23:16 | 3397,357,568 | -HS- | C] () -- C:\hiberfil.sys
[2016.05.10 07:22:23 | 000,050,242 | ---- | C] () -- C:\Windows\SysWow64\license.rtf
[2016.05.10 07:22:23 | 000,050,242 | ---- | C] () -- C:\Windows\SysNative\license.rtf
[2016.05.10 07:21:56 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2016.05.10 07:21:42 | 016,777,216 | -HS- | C] () -- C:\swapfile.sys
[2016.04.16 00:53:42 | 000,130,328 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1-1-0-8-1.dll
[2016.04.16 00:53:06 | 000,040,216 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo-1-1-0-8-1.exe
[2016.04.16 00:52:48 | 000,130,840 | ---- | C] () -- C:\Windows\SysNative\vulkan-1-1-0-8-1.dll
[2016.04.16 00:52:10 | 000,045,336 | ---- | C] () -- C:\Windows\SysNative\vulkaninfo-1-1-0-8-1.exe
[2016.02.13 15:08:16 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2015.10.30 09:24:43 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2015.10.30 09:24:43 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2015.10.30 09:18:39 | 000,164,224 | ---- | C] () -- C:\Windows\SysWow64\weretw.dll
[2015.10.30 09:18:36 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2015.10.30 09:18:36 | 000,047,104 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2015.10.30 09:18:34 | 000,019,968 | ---- | C] () -- C:\Windows\SysWow64\GamePanelExternalHook.dll
[2015.10.30 09:18:31 | 000,252,928 | ---- | C] () -- C:\Windows\SysWow64\Windows.Perception.Stub.dll
[2015.10.30 09:18:31 | 000,029,184 | ---- | C] () -- C:\Windows\SysWow64\dtdump.exe
[2015.10.30 09:18:29 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2015.10.30 09:18:29 | 000,293,376 | ---- | C] () -- C:\Windows\SysWow64\HrtfApo.dll
[2015.10.30 09:18:26 | 000,022,528 | ---- | C] () -- C:\Windows\SysWow64\efsext.dll
[2015.10.30 09:18:25 | 000,002,269 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2015.10.30 09:18:23 | 000,167,640 | ---- | C] () -- C:\Windows\SysWow64\chs_singlechar_pinyin.dat
[2015.10.30 09:17:40 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin

========== ZeroAccess Check ==========

[2016.05.10 10:11:15 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2016.02.24 10:46:25 | 006,607,080 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2016.02.24 10:06:39 | 005,242,496 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2015.10.30 09:17:43 | 000,987,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2015.10.30 09:18:21 | 000,765,440 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2015.10.30 09:17:45 | 000,518,656 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2016.05.10 10:19:45 | 000,000,000 | ---D | M] -- C:\Users\fLow\AppData\Roaming\AB91F728-9699-4E2B-9D85-9EF4B62758A0
[2016.05.10 09:07:55 | 000,000,000 | ---D | M] -- C:\Users\fLow\AppData\Roaming\TS3Client

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 64 bytes -> C:\Windows\zoek-delete.exe:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xinput1_3.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xinput1_2.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xinput1_1.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAudio2_7.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAudio2_6.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAudio2_5.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAudio2_4.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAudio2_3.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAudio2_2.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAudio2_1.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAudio2_0.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAPOFX1_5.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAPOFX1_4.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAPOFX1_3.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAPOFX1_2.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAPOFX1_1.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\XAPOFX1_0.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine3_7.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine3_6.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine3_5.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine3_4.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine3_3.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine3_2.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine3_1.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine3_0.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine2_9.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine2_8.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine2_7.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine2_6.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine2_5.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine2_4.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine2_3.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine2_2.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine2_10.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine2_1.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\xactengine2_0.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\X3DAudio1_7.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\X3DAudio1_6.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\X3DAudio1_5.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\X3DAudio1_4.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\X3DAudio1_3.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\X3DAudio1_2.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\x3daudio1_1.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\x3daudio1_0.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\TsWpfWrp.exe:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\PresentationNative_v0300.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\NlsLexicons0009.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\NlsData0009.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\drivers\UMDF\en-GB\SensorsCx.dll.mui:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\drivers\en-US\wfplwfs.sys.mui:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\drivers\en-US\ndiscap.sys.mui:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\drivers\en-GB\NdisImPlatform.sys.mui:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DX9_42.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DX9_41.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DX9_40.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DX9_39.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DX9_38.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DX9_37.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_36.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_35.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_34.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_33.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_32.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_31.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_30.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_29.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_28.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_27.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_26.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_25.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx9_24.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx11_42.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx10_42.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx10_41.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx10_40.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx10_39.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx10_38.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx10_37.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx10_36.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx10_35.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx10_34.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx10_33.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dx10.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dcsx_43.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\d3dcsx_42.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DCompiler_43.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DCompiler_42.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DCompiler_41.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DCompiler_40.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DCompiler_39.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DCompiler_38.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DCompiler_37.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DCompiler_36.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DCompiler_35.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DCompiler_34.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Windows\SysWow64\D3DCompiler_33.dll:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Users\fLow\Desktop\zoek.exe:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Users\fLow\Desktop\TFC.exe:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Users\fLow\Desktop\RogueKillerX64 (1).exe:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Users\fLow\Desktop\procexp.exe:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Users\fLow\Desktop\OTL.exe:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Users\fLow\Desktop\JRT.exe:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Users\fLow\Desktop\hijackthis.exe:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Users\fLow\Desktop\aswmbr.exe:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Users\fLow\Desktop\AdwCleaner.exe:$CmdTcID
@Alternate Data Stream - 64 bytes -> C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe:$CmdTcID
@Alternate Data Stream - 26 bytes -> C:\Users\fLow\Desktop\zoek.exe:$CmdZnID
@Alternate Data Stream - 26 bytes -> C:\Users\fLow\Desktop\TFC.exe:$CmdZnID
@Alternate Data Stream - 26 bytes -> C:\Users\fLow\Desktop\RogueKillerX64 (1).exe:$CmdZnID
@Alternate Data Stream - 26 bytes -> C:\Users\fLow\Desktop\OTL.exe:$CmdZnID
@Alternate Data Stream - 26 bytes -> C:\Users\fLow\Desktop\JRT.exe:$CmdZnID
@Alternate Data Stream - 26 bytes -> C:\Users\fLow\Desktop\hijackthis.exe:$CmdZnID
@Alternate Data Stream - 26 bytes -> C:\Users\fLow\Desktop\aswmbr.exe:$CmdZnID
@Alternate Data Stream - 26 bytes -> C:\Users\fLow\Desktop\AdwCleaner.exe:$CmdZnID

< End of report >

[flowem]

Tak, OTL máme, teď tady Extras:

OTL Extras logfile created on: 10.05.2016 22:00:19 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\fLow\Desktop
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10586.0)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: dd.MM.yyyy

7,91 Gb Total Physical Memory | 6,35 Gb Available Physical Memory | 80,27% Memory free
9,79 Gb Paging File | 8,04 Gb Available in Paging File | 82,18% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,24 Gb Total Space | 71,67 Gb Free Space | 64,43% Space Free | Partition Type: NTFS
Drive D: | 596,07 Gb Total Space | 292,61 Gb Free Space | 49,09% Space Free | Partition Type: NTFS

Computer Name: FLOWPC | User Name: fLow | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = F1 9F 40 34 60 66 D1 01 [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
"DontEnumerateCommonFilesUpgradeExe" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{26A77295-C508-4807-9883-1396384D6503}" = lport=47995 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{440BE832-9A8E-4CB1-B6AB-E5E600CC6E8E}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{47E5C956-A8DA-4D44-ACE1-7491F7AAD268}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{6429CAF5-5A3D-4F86-A496-E7E4F2FB5FE8}" = lport=47998 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamuseragent.exe |
"{73B958BF-3AC6-47DD-A215-EE4E6C8367DA}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{75F949E6-1DEF-4AEB-9554-62C6ACBD72D7}" = lport=35043 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{85140935-30DE-48BB-96C4-FFCB425AF041}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{BF220E61-A743-489D-9EFC-F3E197BE7E0B}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{009E8CC8-C98E-4A1B-8575-019C50A30C09}" = dir=out | name=65.39.117.230_block |
"{01785976-3258-403B-82E0-D2126844F896}" = dir=out | name=65.55.138.186_block |
"{0358959E-6499-4DA6-A718-B43CB41EAA3D}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{0361CF49-CB7A-477E-A73F-8FBFC8550736}" = dir=out | name=64.4.6.100_block |
"{0963421D-DBEE-4839-8573-82633A8794B0}" = dir=out | name=23.223.20.82_block |
"{096D295C-7B41-4F78-A60C-DC4667B2F914}" = dir=out | name=64.4.23.0-64.4.23.255_block |
"{0CA4AF3C-0955-4AB4-B85C-7010397A8866}" = dir=out | name=157.56.124.87_block |
"{13D974CC-2939-4CA5-8541-BD661CB949A5}" = dir=out | name=134.170.30.202_block |
"{13DDBC42-3C63-4F50-AF67-0B0B83380B86}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{15A0CC60-CC1B-4FF3-BF9B-3EA5237B855D}" = dir=out | name=212.30.134.205_block |
"{15D5F2ED-9765-4C05-9E4A-BF75720594D5}" = dir=out | name=@{microsoft.lockapp_10.0.10586.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{164FB434-1C43-44E4-BF7D-4F3F172D5DE6}" = dir=out | name=77.67.29.176_block |
"{1E981A60-C269-4125-9390-C79D082148BC}" = dir=out | name=65.52.108.29_block |
"{1F26BAA6-DF3C-43CE-A441-10AD4083E9C7}" = dir=out | name=111.221.29.177_block |
"{2329C0C8-BAD4-409B-93DB-2B7EA74260B1}" = dir=out | name=111.221.29.253_block |
"{23AD30CF-5B59-46E7-ADE8-1567255C4ED3}" = dir=out | name=207.46.101.29_block |
"{269B4F9F-2C80-4DFA-90AA-F5540DF28E6A}" = dir=out | name=65.52.100.93_block |
"{2BA85B79-8FCC-4EF6-BE5C-399BDF5DDE19}" = dir=out | name=207.46.114.58_block |
"{2BC48839-7872-4F97-8C93-D693AFA917D2}" = dir=out | name=@{microsoft.windows.cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{2C73D51F-931E-43B3-BB0A-DAE9DF2CBC5F}" = dir=out | name=191.232.80.58_block |
"{2D7761F7-A650-4D80-9D2B-57630FA6B7E1}" = dir=in | name=@{microsoft.windows.cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{2F569AC4-5709-4EB3-AE22-6D2B4CD6048C}" = dir=out | name=23.218.212.69_block |
"{2FA9242C-7621-42C4-9EA0-1396127BBBD1}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{3124129A-B47F-4BA8-963A-7DD5F9AAD7AA}" = dir=out | name=157.56.96.54_block |
"{35C0F8A9-B052-462A-BCAC-A6C88FD07689}" = dir=out | name=65.55.252.93_block |
"{39B0671E-AE84-47D3-84AD-757C6B165E55}" = dir=out | name=157.55.235.0-157.55.235.255_block |
"{3B230F0F-511A-4925-A284-1791FE5E2890}" = dir=out | name=@{microsoft.accountscontrol_10.0.10586.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{3CE0ACAC-1666-45F0-B75A-30933010FCB8}" = dir=out | name=157.56.121.89_block |
"{3D399EAB-C51C-4243-B904-DD299D2C6AEB}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{3DD32B87-A7CE-445B-BCCD-64687B472EE9}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{3EC72C0C-126D-4C74-B4A0-91A4066EEC9B}" = dir=out | name=@{microsoft.windows.cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{40324CC1-DE31-4BA6-9735-F744445E1BAC}" = dir=out | name=@{microsoft.windows.featureondemand.insiderhub_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.featureondemand.insiderhub/resources/appstorename} |
"{40AEBF25-B8D3-46E6-84B3-BE80F61BD0DD}" = dir=out | name=@{microsoft.lockapp_10.0.10586.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{410FB5AB-080C-4F51-A2B2-B7BE889DB38F}" = dir=out | name=65.52.108.33_block |
"{41986AC3-A404-45A0-9C99-27D2506B653B}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{41B48B29-7093-4500-B613-23496C74D213}" = dir=out | name=65.55.29.238_block |
"{41BE03DB-19E7-4A7A-9820-9FEFA5B7A315}" = dir=in | name=@{microsoft.microsoftedge_25.10586.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{46CD1FDF-F2C4-4EE2-AA58-24B4F8012B5D}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} |
"{4944AC91-B7B6-4A35-AD74-B6B395F3FEFE}" = dir=out | name=23.57.107.27_block |
"{4C4D833C-BEFC-4760-88AA-C0FC5315E36A}" = dir=out | name=65.55.108.23_block |
"{4E33CFD6-D6D2-4C77-8616-15368E3A39B3}" = dir=out | name=111.221.64.0-111.221.127.255_block |
"{5089A367-17C0-4B33-845F-4D5B4B97CD08}" = dir=out | name=157.55.236.0-157.55.236.255_block |
"{50FE31DB-2F68-4D4D-8485-4F339C11C125}" = dir=out | name=207.68.166.254_block |
"{5497D1DB-8933-405B-8A0C-D6C29B455E2D}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{55016A6A-B3BC-4F66-84D7-18537D390D24}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{58E05759-F33A-457F-9F72-3D55FC907289}" = dir=out | name=157.55.56.0-157.55.56.255_block |
"{58EE19C2-EEA3-4CB0-AE76-8EA6EF16A408}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{59F95A14-63CE-49AC-BB1C-68633026F0DB}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{5A6759EA-1127-467E-83A3-9B09D8716452}" = dir=out | name=137.116.81.24_block |
"{5B350F38-EB87-44BF-A0D6-BBF7BC84C4D5}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{5BD037A5-A17A-444B-A646-30981CB76251}" = dir=out | name=204.79.197.200_block |
"{5DCD4134-B2AD-4F5F-BD1C-E07BC554849E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5F3351F1-D876-4EBA-87A2-545D0166A5CA}" = dir=out | name=212.30.134.204_block |
"{60D043DB-17A2-47A2-9E63-6621A9DD7059}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{669D2D07-AB4C-41E5-BEA2-9E63EB96AD81}" = dir=out | name=65.52.100.7_block |
"{6735317B-7CF3-4C9D-8219-21D9C70797F6}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} |
"{67555EA6-B4BC-488B-80B4-353CD32252E6}" = dir=in | name=@{microsoft.windows.cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{6B970634-8211-4C98-A6AC-5A6D7CA98DF7}" = dir=out | name=131.253.40.37_block |
"{6D65E477-E468-441D-A561-AA5C796F834C}" = dir=out | name=191.232.139.254_block |
"{71377C95-86A4-4DBB-9A49-C6A6F4F54CDF}" = dir=out | name=134.170.165.248_block |
"{7170CD9B-54ED-4573-87ED-452ADE8804EA}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{76C545E6-73B0-47CA-B3B4-FA98D18A245F}" = dir=out | name=64.4.54.22_block |
"{78238F04-6512-4C0C-AB2B-F584353EB321}" = dir=out | name=134.170.165.253_block |
"{7BA4CC75-0790-4355-8C6E-55B96CC62952}" = dir=out | name=@{microsoft.microsoftedge_25.10586.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{7D701DE3-615C-4306-B115-27CC6C0C2DDB}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{7ECB18FA-CD45-4EB0-AC9A-8D55A89E4679}" = dir=out | name=157.55.52.0-157.55.52.255_block |
"{80D650B6-643A-4AF9-AC06-334DDC9BEB73}" = dir=out | name=191.232.80.62_block |
"{815595EC-7468-44E5-9B5A-E9C4D13142C7}" = dir=out | name=64.4.54.32_block |
"{83BAA6CC-DE50-415E-9A24-FC617E47F62C}" = dir=out | name=windows_ie_ac_001 |
"{841DD9CA-AFD5-46CB-BB5A-47E490ECB421}" = dir=out | name=@{microsoft.microsoftedge_25.10586.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{852FC894-E321-4EA8-A46E-9B8B0EDD08DC}" = dir=out | name=23.57.101.163_block |
"{85D39C68-B7C1-4AFF-A7E6-1A03D45CB639}" = dir=out | svc=wuauserv | name=windowsupdateblock |
"{8775DD86-8DAD-4C05-87D5-E62D3537E4EA}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{87DE284E-D37C-4EF8-93F9-E72214EBEB28}" = dir=out | name=137.117.235.16_block |
"{8B83CDF5-DD6F-4F09-B3ED-53C25C285076}" = dir=out | name=104.96.147.3_block |
"{8BB56C08-229B-45B2-AD57-B0C99BB983E0}" = dir=in | name=@{microsoft.windows.featureondemand.insiderhub_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.featureondemand.insiderhub/resources/appstorename} |
"{8E2629F7-70AD-4CCB-980B-3079CFF9D1C0}" = dir=out | app=c:\windows\explorer.exe |
"{8F8599EF-2373-4F46-9C9F-3BFD3D034EFC}" = dir=in | name=@{microsoft.windows.featureondemand.insiderhub_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.featureondemand.insiderhub/resources/appstorename} |
"{90CD1E2D-4E6A-4EFC-B0CD-7DDC3FCB4C35}" = dir=out | name=@{windows.contactsupport_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{90EAE3F2-E749-451D-8110-295F56943133}" = dir=out | name=23.102.21.4_block |
"{9282EF7E-F9F5-4E16-BF94-57A4886988E3}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} |
"{939B6119-9181-4890-90EB-10BD95C9AFD2}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{950A616D-8B21-41AB-AABF-6C803F530E3C}" = dir=out | name=191.237.208.126_block |
"{9903164D-BF96-4D59-8ED6-180771142494}" = dir=out | name=2.22.61.43_block |
"{9938FF1E-550E-4C2B-99FE-5BAF27212670}" = dir=in | name=@{windows.contactsupport_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{A36E7A21-A08F-4580-8F78-9C3F137D29A1}" = dir=out | name=65.52.100.9_block |
"{A6437AD7-A51D-45EF-A6AE-3785214E1491}" = dir=out | name=65.55.138.126_block |
"{A898C9B6-1019-4629-A6E9-4C428DF6E059}" = dir=out | name=157.56.106.189_block |
"{AD4F70DD-55CF-4670-B2BE-555FE21E2942}" = dir=out | name=191.232.139.2_block |
"{ADA2ECAC-2D0E-4523-B3C6-281040A8428D}" = dir=out | svc=wsearch | name=wsearch_block |
"{AE73E905-EADB-42E8-B489-D772284585F6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{AEF1A9F6-95FF-471B-A97A-80B7E8BF7C8C}" = dir=out | name=2.22.61.66_block |
"{AFFB7F7C-C8E6-4605-83A3-CB1431B3957D}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} |
"{B049BDB3-FD49-40A2-8DD9-EC85CD7D7E76}" = dir=out | name=23.57.107.163_block |
"{B0F4B4E1-46A1-44C9-8E95-7D05FCA39CC2}" = dir=out | name=168.63.108.233_block |
"{B5E4A954-EBFD-4021-AF6F-B2022D772949}" = dir=out | name=65.55.252.63_block |
"{BC5D5D95-2F13-4872-8772-8DBF1A9FDE13}" = dir=out | name=@{microsoft.connectivitystore_1.1509.1.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.connectivitystore/mswifiresources/appstorename} |
"{BE7F17DF-BE7A-474D-A6D1-5748B0301BF6}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{C3306840-EF59-470D-8555-1D3F8CF773CC}" = dir=out | name=134.170.185.70_block |
"{C8E9BC03-594D-4486-AB94-A99B4DD8579A}" = dir=out | name=157.55.130.0-157.55.130.255_block |
"{C92D89A1-8664-44C1-A319-4741855CF96D}" = dir=in | name=@{microsoft.windowsstore_2015.10.13.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{D14BFC5B-79E9-4F1F-9228-82C6DF8EC977}" = dir=out | name=195.138.255.0-195.138.255.255_block |
"{D16F3BED-4A13-4F1E-97DE-3C84BC4700C7}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{D3185BCE-D236-43AC-BC06-A2AE64E74644}" = dir=in | name=@{microsoft.microsoftedge_25.10586.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{D5A21C69-E563-4632-8F67-66A3A603AF25}" = dir=out | name=65.55.252.92_block |
"{DA86637B-9CFD-46B2-A421-57448E0D93DE}" = dir=out | name=65.55.252.71_block |
"{DAA3B61A-12DA-4C8B-B813-5EB7E0D0DC46}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{DAA74E2B-7077-4FFD-803A-BC8B1DF45B03}" = dir=out | name=157.55.129.21_block |
"{DB9D8B30-88E3-4D72-9794-9DA14EC58742}" = dir=out | name=@{windows.contactsupport_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{DC86C908-F064-4F20-A518-C966E066C700}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} |
"{DFDBE6B5-A4E6-40A7-A1E4-E24D2D642554}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{DFF8E11A-F261-4487-B2D1-FA837966C28C}" = dir=in | name=@{windows.contactsupport_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{E096C277-64F4-4216-A811-37BC510F2E3B}" = dir=out | name=213.199.179.0-213.199.179.255_block |
"{E14F71F4-9D0B-4335-931B-BE45DBC8FEB2}" = dir=out | name=65.52.100.11_block |
"{E4512C7C-BCA3-41B6-BC76-696654469621}" = dir=out | name=134.170.115.60_block |
"{E5A7DE52-CECA-4D14-8DA8-236D116655AA}" = dir=out | name=@{microsoft.accountscontrol_10.0.10586.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{E79D087C-D2A7-4554-995C-C5DC40F48A4B}" = dir=out | name=65.55.138.114_block |
"{EC4CDE2B-3E6B-4610-B4AB-55C41FD843AC}" = dir=out | name=65.55.39.10_block |
"{EC60E184-DAA3-4AE4-B2BC-A01DFB15380F}" = dir=out | name=23.99.10.11_block |
"{EDFD2A25-0DEB-4310-BD9B-3BC5AB453D48}" = dir=out | name=157.55.240.220_block |
"{EE75C096-61BA-4259-A132-CBAB9C17DB28}" = dir=out | name=157.56.91.77_block |
"{F03C3CA1-4093-4E2B-ACCA-3A871F1080C9}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{F0780E23-BD07-456A-9252-2EF7F2E88FE3}" = dir=out | name=157.55.133.204_block |
"{F158E4C9-C463-41C1-85E5-ED6BF1A43AC1}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{F4A16F80-0036-41E0-8459-2408939C2F8A}" = dir=out | name=65.55.223.0-65.55.223.255_block |
"{F6EE5EB0-5BD6-4397-A0AF-D2B3B2A9744C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{F98FA217-9788-4C94-91B6-003EDEF56F22}" = dir=out | name=65.52.100.94_block |
"{FB1EA930-C036-4CC8-878C-01062BB05818}" = dir=out | name=65.52.100.92_block |
"{FBC93123-DF13-4F10-A83C-BC7DFC8BB7E9}" = dir=out | name=65.52.100.91_block |
"{FE9E1844-8991-4DE2-A1FA-6B0DB6509058}" = dir=out | name=@{microsoft.windows.featureondemand.insiderhub_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.featureondemand.insiderhub/resources/appstorename} |
"{FF0FD067-B2AE-452F-B454-519CFF6C1E52}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{FF209EC0-D9D0-44A2-9403-52B93BB756B9}" = dir=out | name=207.46.223.94_block |
"{FF574DA8-0628-41C7-BCFD-3D9FE52321BD}" = dir=out | name=@{microsoft.windowsstore_2015.10.13.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{FFEDFD3A-B0E9-4AD0-BF7A-7DD507B15817}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1CEAC85D-2590-4760-800F-8DE5E91F3700}" = Intel(R) Management Engine Components
"{1EBC6C6F-7D31-4897-B241-DC7052F3E7A5}" = COMODO Internet Security Premium
"{3D6D679B-3ECE-48DD-85D6-8ECE8D497080}" = Intel(R) Management Engine Components
"{55398EAC-F58E-4F19-B553-BDF8B9EFD839}" = Intel(R) Chipset Device Software
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{7D84E343-A23D-451C-B123-0195B2D903A6}" = Intel® Trusted Connect Service Client
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 365.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 365.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.11.2.66
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.15.0428
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 2.11.2.66
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 2.11.2.66
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.37
"{BCD55758-61DB-426D-BC56-72C9ADB2092F}" = Intel(R) Management Engine Components
"{D2E7A6EE-AB1A-4D68-8E1C-FFE2B4B5429B}" = Intel(R) ME UninstallLegacy
"{DD20EECC-5CAA-4658-B15D-2A5DCE686321}" = Intel(R) Management Engine Components
"7-Zip" = 7-Zip 15.14 (x64)
"CCleaner" = CCleaner
"VulkanRT1.0.8.1" = Vulkan Run Time Libraries 1.0.8.1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{26A24AE4-039D-4CA4-87B4-2F83218091F0}" = Java 8 Update 91
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B230374-6475-4A73-BA6E-41015E9C5013}" = Intel® Security Assist
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{c7f54569-0018-439c-809a-48046a4d4ebc}" = Intel® Chipset Device Software
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.23
"Adobe Flash Player NPAPI" = Adobe Flash Player 21 NPAPI
"Adobe Flash Player PPAPI" = Adobe Flash Player 21 PPAPI
"Adobe Shockwave Player" = Adobe Shockwave Player 12.2
"Afterburner" = MSI Afterburner 4.2.0
"Google Chrome" = Google Chrome
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verze 2.2.1.1043
"Mozilla Firefox 46.0.1 (x86 cs)" = Mozilla Firefox 46.0.1 (x86 cs)
"RTSS" = RivaTuner Statistics Server 6.4.1
"Steam" = Steam

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"TeamSpeak 3 Client" = TeamSpeak 3 Client

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 10.05.2016 2:05:19 | Computer Name = DESKTOP-CRG404A | Source = Microsoft-Windows-WMI | ID = 24
Description = Zprostředkovatel událostí CisWmi se pokusil zaregistrovat dotaz SELECT
* FROM CisFileRatingChange, jehož cílová třída CisFileRatingChange v oboru názvů
//./root/cis neexistuje. Dotaz bude ignorován.

Error - 10.05.2016 2:10:20 | Computer Name = DESKTOP-CRG404A | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Aplikaci Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App se
nepovedlo aktivovat, protože došlo k chybě: -2147024770. Další informace najdete
v protokolu Microsoft-Windows-TWinUI/Operational.

Error - 10.05.2016 2:17:40 | Computer Name = FLOWPC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Aplikaci Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App se
nepovedlo aktivovat, protože došlo k chybě: -2147024770. Další informace najdete
v protokolu Microsoft-Windows-TWinUI/Operational.

Error - 10.05.2016 2:22:40 | Computer Name = FLOWPC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Aplikaci Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App se
nepovedlo aktivovat, protože došlo k chybě: -2147024770. Další informace najdete
v protokolu Microsoft-Windows-TWinUI/Operational.

Error - 10.05.2016 3:01:03 | Computer Name = FLOWPC | Source = Steam Client Service | ID = 1
Description = Error: Failed to copy new service file to temp location

Error - 10.05.2016 4:37:25 | Computer Name = FLOWPC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
se nezdařilo. Závislé sestavení Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 10.05.2016 4:37:28 | Computer Name = FLOWPC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
se nezdařilo. Závislé sestavení Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 10.05.2016 5:50:04 | Computer Name = FLOWPC | Source = ESENT | ID = 908
Description = svchost (1888) Proces se ukončuje kvůli neopravitelnému selhání: PV:
10.0.10586.0 SV: 10.0.10586.0 GLE: 0 ERR: -1603(fucb.cxx:359): dllentry.cxx(103)
(ESENT[10.0.10586.0] RETAIL RTM MBCS).

Error - 10.05.2016 5:50:04 | Computer Name = FLOWPC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe, verze: 10.0.10586.0, časové
razítko: 0x5632d7ba Název chybujícího modulu: ESENT.dll, verze: 10.0.10586.212,
časové razítko: 0x56fa1686 Kód výjimky: 0xc0000602 Posun chyby: 0x000000000022885f
ID
chybujícího procesu: 0x760 Čas spuštění chybující aplikace: 0x01d1aa97b06dc90b Cesta
k chybující aplikaci: C:\Windows\system32\svchost.exe Cesta k chybujícímu modulu:
c:\windows\system32\ESENT.dll ID zprávy: 7ed70b55-1689-4392-ab5a-dfdf215bacbd Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:

Error - 10.05.2016 13:18:50 | Computer Name = FLOWPC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala při volání OnIdentity() v objektu System
Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protokol
Microsoft LLDP (Link-Layer Discovery Protocol). System Error: Přístup byl odepřen.
.

[ System Events ]
Error - 10.05.2016 5:52:23 | Computer Name = FLOWPC | Source = Service Control Manager | ID = 7034
Description = Služba NVIDIA Display Driver Service byla neočekávaně ukončena. Tento
stav nastal již 1krát.

Error - 10.05.2016 6:45:02 | Computer Name = FLOWPC | Source = DCOM | ID = 10016
Description =

Error - 10.05.2016 6:45:02 | Computer Name = FLOWPC | Source = Service Control Manager | ID = 7031
Description = Služba Hostitel synchronizace_43734 byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat
službu.

Error - 10.05.2016 13:44:03 | Computer Name = FLOWPC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 10.05.2016 13:44:04 | Computer Name = FLOWPC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 10.05.2016 13:44:05 | Computer Name = FLOWPC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 10.05.2016 13:44:06 | Computer Name = FLOWPC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 10.05.2016 13:44:06 | Computer Name = FLOWPC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 10.05.2016 14:04:04 | Computer Name = FLOWPC | Source = DCOM | ID = 10016
Description =

Error - 10.05.2016 14:04:04 | Computer Name = FLOWPC | Source = Service Control Manager | ID = 7031
Description = Služba Hostitel synchronizace_f79719 byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat
službu.


< End of report >

[jerabina]

Poklepej na ikonu OTL na ploše. Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SYSTEM32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.com/search?q={searchTerms}
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
[2016.05.10 21:07:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\fLow\AppData\Roaming\Mozilla\Extensions
[2016.05.10 21:17:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\fLow\AppData\Roaming\Mozilla\Firefox\Profiles\pnx553c9.default\extensions
[2016.05.10 21:07:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\
CHR - Extension: No name found = C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Oracle Corporation)
O13 - gopher Prefix: missing

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Program Files\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\SysNative\drivers\*.tmp
C:\Windows\SysWow64\drivers\*.tmp
C:\Program Files (x86)\*.tmp
C:\Windows\SysWow64\*.tmp
C:\Windows\SysNative\*.tmp
C:\Program Files (x86)\*.tmp

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
""=""%1" %*"
:commands
[Purity]
[Emptytemp]
[Emptyjava]
[Emptyflash]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.


V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému.

Toto otestuj na Virustotal
C:\Windows\SysWow64\vulkan-1-1-0-8-1.dll
C:\Windows\SysWow64\vulkan-1.dll
C:\Windows\SysWow64\vulkaninfo-1-1-0-8-1.exe
C:\Windows\SysWow64\vulkaninfo.exe
C:\Windows\SysNative\vulkan-1-1-0-8-1.dll
C:\Windows\SysNative\vulkan-1.dll
C:\Windows\SysNative\vulkaninfo-1-1-0-8-1.exe
C:\Windows\SysNative\vulkaninfo.exe

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

[flowem]

All processes killed
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Extensions Off Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Security Risk Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Extensions Off Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Security Risk Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy| /E : value set successfully!
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{012E1000-F331-11DB-8314-0800200C9A66}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
File C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll not found.
C:\Users\fLow\AppData\Roaming\Mozilla\Extensions folder moved successfully.
C:\Users\fLow\AppData\Roaming\Mozilla\Firefox\Profiles\pnx553c9.default\extensions folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_metadata folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\zu folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\zh_TW folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\zh_HK folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\zh_CN folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\vi folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ur folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\uk folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\tr folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\th folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\te folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ta folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\sw folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\sv folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\sr folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\sl folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\sk folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\si folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ru folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ro folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\pt_PT folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\pt_BR folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\pl folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\no folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\nl folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ne folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ms folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\mr folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\mn folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ml folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\lv folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\lt folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\lo folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ko folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\kn folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\km folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ka folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ja folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\iw folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\it folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\is folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\id folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\hy folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\hu folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\hr folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\hi folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\gu folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\gl folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\fr_CA folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\fr folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\fil folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\fi folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\fa folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\eu folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\et folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\es_419 folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\es folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\en_US folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\en_GB folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\el folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\de folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\da folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\cs folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ca folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\bn folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\bg folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\az folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\ar folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\am folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales\af folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\_locales folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1 folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_metadata folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\zh_TW folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\zh_CN folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\vi folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\uk folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\tr folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\th folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\sv folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\sr folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\sl folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\sk folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\ru folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\ro folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\pt_PT folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\pt_BR folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\pl folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\nl folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\nb folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\lv folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\lt folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\ko folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\ja folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\it folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\id folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\hu folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\hr folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\hi folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\fr folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\fil folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\fi folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\et folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\es_419 folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\es folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\en_GB folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\en folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\el folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\de folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\da folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\cs folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\ca folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales\bg folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\_locales folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\images folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\html folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\css folder moved successfully.
C:\Users\fLow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1 folder moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Program Files\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder C:\Windows\SysNative\drivers\*.tmp not found.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
File\Folder C:\Windows\SysNative\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command\\""|""%1" %*" /E : value set successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: fLow
->Temp folder emptied: 72417921 bytes
->Temporary Internet Files folder emptied: 1491300 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 30875248 bytes
->Google Chrome cache emptied: 145387138 bytes
->Flash cache emptied: 717 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 239,00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: fLow
->Java cache emptied: 0 bytes

User: Public

Total Java Files Cleaned = 0,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: fLow
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 05112016_222944

Files\Folders moved on Reboot...
C:\Users\fLow\AppData\Local\Temp\aswMBR.sys moved successfully.
C:\Users\fLow\AppData\Local\Temp\aswVmm.sys moved successfully.
C:\Users\fLow\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...