WMI Provider Host zatěžuje CPU -> Vir?

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Odpovědět
Qvíčala
nováček
Příspěvky: 42
Registrován: říjen 16
Pohlaví: Nespecifikováno
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod Qvíčala » 31 říj 2016 20:50

[2016.10.20 19:40:42 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tzautoupdate.dll
[2016.10.20 19:40:42 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Printers.dll
[2016.10.20 19:40:42 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.System.UserDeviceAssociation.dll
[2016.10.20 19:40:42 | 000,079,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32u.dll
[2016.10.20 19:40:42 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\winhvr.sys
[2016.10.20 19:40:42 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ffbroker.dll
[2016.10.20 19:40:38 | 006,654,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2016.10.20 19:40:38 | 004,557,824 | ---- | C] (Microsoft) -- C:\WINDOWS\SysWow64\dbgeng.dll
[2016.10.20 19:40:38 | 003,369,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepository.dll
[2016.10.20 19:40:38 | 003,105,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstsc.exe
[2016.10.20 19:40:38 | 002,860,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi.dll
[2016.10.20 19:40:38 | 001,456,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2016.10.20 19:40:38 | 001,415,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gdi32full.dll
[2016.10.20 19:40:38 | 001,157,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.appcore.dll
[2016.10.20 19:40:38 | 001,022,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxPackaging.dll
[2016.10.20 19:40:38 | 000,691,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TokenBroker.dll
[2016.10.20 19:40:38 | 000,680,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tdh.dll
[2016.10.20 19:40:38 | 000,620,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll
[2016.10.20 19:40:38 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll
[2016.10.20 19:40:38 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\nshwfp.dll
[2016.10.20 19:40:38 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.SmartCards.dll
[2016.10.20 19:40:38 | 000,554,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdh.dll
[2016.10.20 19:40:38 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\uReFS.dll
[2016.10.20 19:40:38 | 000,518,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ngccredprov.dll
[2016.10.20 19:40:38 | 000,461,312 | ---- | C] (Microsoft) -- C:\WINDOWS\SysWow64\DbgModel.dll
[2016.10.20 19:40:38 | 000,461,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\webio.dll
[2016.10.20 19:40:38 | 000,404,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dsreg.dll
[2016.10.20 19:40:38 | 000,361,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsmf.dll
[2016.10.20 19:40:38 | 000,329,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceaccess.dll
[2016.10.20 19:40:38 | 000,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wevtapi.dll
[2016.10.20 19:40:38 | 000,295,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pdh.dll
[2016.10.20 19:40:38 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincorlib.dll
[2016.10.20 19:40:38 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cryptngc.dll
[2016.10.20 19:40:38 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pdh.dll
[2016.10.20 19:40:38 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinesam.dll
[2016.10.20 19:40:38 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDeviceRegistration.dll
[2016.10.20 19:40:38 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AuthBroker.dll
[2016.10.20 19:40:38 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll
[2016.10.20 19:40:38 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryClient.dll
[2016.10.20 19:40:38 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDeviceRegistration.Ngc.dll
[2016.10.20 19:40:38 | 000,083,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\devenum.dll
[2016.10.20 19:40:38 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.System.UserDeviceAssociation.dll
[2016.10.20 19:40:38 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BackgroundMediaPolicy.dll
[2016.10.20 19:40:38 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spaceman.exe
[2016.10.20 19:40:38 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceassociation.dll
[2016.10.20 19:40:38 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\delegatorprovider.dll
[2016.10.20 19:40:38 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi_passthru.dll
[2016.10.20 19:40:38 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\smphost.dll
[2016.10.20 19:40:38 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\encapi.dll
[2016.10.20 19:40:38 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\smphost.dll
[2016.10.20 19:40:38 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msxml6r.dll
[2016.10.20 19:40:37 | 002,646,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CertEnroll.dll
[2016.10.20 19:40:37 | 002,153,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi.dll
[2016.10.20 19:40:37 | 001,358,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2016.10.20 19:40:37 | 001,112,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxPackaging.dll
[2016.10.20 19:40:37 | 000,764,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CoreMessaging.dll
[2016.10.20 19:40:37 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CoreMessaging.dll
[2016.10.20 19:40:37 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TpmCoreProvisioning.dll
[2016.10.20 19:40:37 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mprapi.dll
[2016.10.20 19:40:37 | 000,437,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Usb.dll
[2016.10.20 19:40:37 | 000,433,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\imapi2.dll
[2016.10.20 19:40:37 | 000,358,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.dll
[2016.10.20 19:40:37 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Usb.dll
[2016.10.20 19:40:37 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CryptoWinRT.dll
[2016.10.20 19:40:37 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.dll
[2016.10.20 19:40:37 | 000,279,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys
[2016.10.20 19:40:37 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.HumanInterfaceDevice.dll
[2016.10.20 19:40:37 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\C_G18030.DLL
[2016.10.20 19:40:37 | 000,218,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tpm.sys
[2016.10.20 19:40:37 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.HumanInterfaceDevice.dll
[2016.10.20 19:40:37 | 000,187,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys
[2016.10.20 19:40:37 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll
[2016.10.20 19:40:37 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.SerialCommunication.dll
[2016.10.20 19:40:37 | 000,130,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storahci.sys
[2016.10.20 19:40:37 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.SerialCommunication.dll
[2016.10.20 19:40:37 | 000,128,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmapi.dll
[2016.10.20 19:40:37 | 000,118,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\EhStorTcgDrv.sys
[2016.10.20 19:40:37 | 000,081,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stornvme.sys
[2016.10.20 19:40:37 | 000,074,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\vpci.sys
[2016.10.20 19:40:37 | 000,064,352 | ---- | C] (Avago Technologies) -- C:\WINDOWS\SysNative\drivers\MegaSas2i.sys
[2016.10.20 19:40:37 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xinputhid.sys
[2016.10.20 19:40:37 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidparse.sys
[2016.10.20 19:40:37 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\odbcconf.dll
[2016.10.20 19:40:37 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\delegatorprovider.dll
[2016.10.20 19:40:37 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi_passthru.dll
[2016.10.20 19:40:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\C_IS2022.DLL
[2016.10.20 19:40:37 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\c_GSM7.DLL
[2016.10.20 19:30:28 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Local\Macromedia
[2016.10.20 19:30:27 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Roaming\Mozilla
[2016.10.20 19:24:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\drivers\sk-SK
[2016.10.20 19:24:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\sk
[2016.10.20 19:23:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\drivers\sk-SK
[2016.10.20 19:23:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\sk-SK
[2016.10.20 19:23:17 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\sk-SK\NdisImPlatform.sys.mui
[2016.10.20 19:23:08 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\NdisImPlatform.sys.mui
[2016.10.20 19:23:02 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\tcpip.sys.mui
[2016.10.20 19:23:02 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\bthport.sys.mui
[2016.10.20 19:23:02 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\hidbth.sys.mui
[2016.10.20 19:23:02 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\BthMini.SYS.mui
[2016.10.20 19:23:02 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\BTHUSB.SYS.mui
[2016.10.20 19:23:02 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\bthenum.sys.mui
[2016.10.20 19:23:01 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\scfilter.sys.mui
[2016.10.20 19:22:53 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\serscan.sys.mui
[2016.10.20 19:18:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft OneDrive
[2016.10.20 19:15:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\Microsoft
[2016.10.20 19:13:40 | 000,000,000 | ---D | C] -- C:\ProgramData\USOShared
[2016.10.20 19:12:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\XPSViewer
[2016.10.20 19:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2016.10.20 19:12:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2016.10.20 19:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2016.10.20 19:12:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2016.10.20 19:11:42 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll
[2016.10.20 19:11:42 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe
[2016.10.20 19:11:41 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2016.10.20 19:11:36 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll
[2016.10.20 19:11:36 | 000,124,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2016.10.20 19:11:36 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe
[2016.10.20 19:11:08 | 000,199,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wof.sys
[2016.10.20 19:01:05 | 000,000,000 | --SD | C] -- C:\Users\Víťa\AppData\Roaming\Microsoft
[2016.10.20 19:01:05 | 000,000,000 | R--D | C] -- C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
[2016.10.20 19:01:05 | 000,000,000 | R--D | C] -- C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2016.10.20 19:01:05 | 000,000,000 | R--D | C] -- C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2016.10.20 19:01:05 | 000,000,000 | R--D | C] -- C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\AppData\Local\Temporary Internet Files
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Šablony
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Soubory cookie
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\SendTo
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Poslední
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Okolní tiskárny
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Okolní síť
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Documents\Obrázky
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Nabídka Start
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Local Settings
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Documents\Hudba
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\AppData\Local\History
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Documents\Filmy
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Dokumenty
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\Data aplikací
[2016.10.20 19:01:05 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\AppData\Local\Data aplikací
[2016.10.20 19:01:05 | 000,000,000 | -H-D | C] -- C:\Users\Víťa\AppData
[2016.10.20 19:01:05 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Local\Microsoft
[2016.10.20 19:01:05 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2016.10.20 18:57:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Dolby
[2016.10.20 18:57:16 | 000,000,000 | ---D | C] -- C:\Program Files\Dolby
[2016.10.20 18:57:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2016.10.20 18:56:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\DAX2
[2016.10.20 18:56:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2016.10.20 18:56:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM
[2016.10.20 18:56:45 | 000,000,000 | ---D | C] -- C:\Program Files\Apoint2K
[2016.10.20 18:56:40 | 000,103,944 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.DLL
[2016.10.20 18:56:40 | 000,099,856 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.DLL
[2016.10.20 18:56:24 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2016.10.20 18:56:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel
[2016.10.20 18:56:09 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2016.10.20 18:56:04 | 006,386,744 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcpl.dll
[2016.10.20 18:56:04 | 002,466,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvc64.dll
[2016.10.20 18:56:04 | 001,762,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvcr.dll
[2016.10.20 18:56:04 | 000,547,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nv3dappshext.dll
[2016.10.20 18:56:04 | 000,393,784 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvmctray.dll
[2016.10.20 18:56:04 | 000,139,712 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\oemdspif.dll
[2016.10.20 18:56:04 | 000,081,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nv3dappshextr.dll
[2016.10.20 18:56:04 | 000,071,224 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvshext.dll
[2016.10.20 18:55:59 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Uninstall Information
[2016.10.20 18:55:51 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2016.10.20 18:55:39 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2016.10.20 18:52:49 | 002,716,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PrintConfig.dll
[2016.10.20 18:49:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\SleepStudy
[2016.10.20 18:49:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServiceProfiles
[2016.10.20 18:49:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2016.10.20 17:45:37 | 000,250,624 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\ibtusb.sys
[2016.10.20 17:45:37 | 000,190,216 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\ibtsiva.exe
[2016.10.20 17:45:36 | 000,387,840 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\ibtproppage.dll
[2016.10.20 17:45:31 | 031,704,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvoglv64.dll
[2016.10.20 17:45:31 | 025,465,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvoglv32.dll
[2016.10.20 17:45:31 | 010,840,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvopencl.dll
[2016.10.20 17:45:31 | 009,151,448 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvopencl.dll
[2016.10.20 17:45:29 | 000,946,112 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFR64.dll
[2016.10.20 17:45:29 | 000,869,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFR.dll
[2016.10.20 17:45:29 | 000,460,224 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFROpenGL.dll
[2016.10.20 17:45:29 | 000,412,216 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFROpenGL.dll
[2016.10.20 17:45:25 | 010,374,488 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuda.dll
[2016.10.20 17:45:25 | 008,737,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuda.dll
[2016.10.20 17:45:25 | 002,889,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuvid.dll
[2016.10.20 17:45:25 | 002,518,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvid.dll
[2016.10.20 17:45:25 | 001,956,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispco6436909.dll
[2016.10.20 17:45:25 | 001,604,152 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispgenco6436909.dll
[2016.10.20 17:45:25 | 001,021,496 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvFBC64.dll
[2016.10.20 17:45:25 | 000,929,848 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvFBC.dll
[2016.10.20 17:45:25 | 000,835,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncMFTH264.dll
[2016.10.20 17:45:25 | 000,673,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvEncMFTH264.dll
[2016.10.20 17:45:25 | 000,438,296 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncodeAPI64.dll
[2016.10.20 17:45:25 | 000,369,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvEncodeAPI.dll
[2016.10.20 17:45:24 | 003,912,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvapi64.dll
[2016.10.20 17:45:24 | 003,460,824 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvapi.dll
[2016.10.20 17:05:17 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Roaming\TeamViewer
[2016.10.20 17:05:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
[2016.10.20 16:38:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\MRT
[2016.10.20 16:21:32 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqrt.dll
[2016.10.20 16:17:40 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Speech.Pal.dll
[2016.10.20 16:14:38 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqsnap.dll
[2016.10.20 16:14:38 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqcertui.dll
[2016.10.20 16:11:46 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Local\Opera Software
[2016.10.20 16:11:45 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Roaming\Opera Software
[2016.10.20 16:10:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
[2016.10.20 15:58:24 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Local\MicrosoftEdge
[2016.10.20 15:52:43 | 002,365,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WudfUpdate_01011.dll
[2016.10.20 15:21:32 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Roaming\LSC
[2016.10.20 15:16:52 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Local\Nvidia Corporation
[2016.10.20 15:12:53 | 000,000,000 | R--D | C] -- C:\Users\Víťa\OneDrive
[2016.10.20 15:12:43 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Roaming\Intel Corporation
[2016.10.20 15:12:05 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Local\Publishers
[2016.10.20 15:11:39 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Local\NVIDIA
[2016.10.20 15:11:22 | 000,000,000 | R--D | C] -- C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2016.10.20 15:11:22 | 000,000,000 | R--D | C] -- C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2016.10.20 15:11:21 | 000,000,000 | R--D | C] -- C:\Users\Víťa\Searches
[2016.10.20 15:11:21 | 000,000,000 | R--D | C] -- C:\Users\Víťa\Contacts
[2016.10.20 15:11:17 | 000,000,000 | -HSD | C] -- C:\Users\Víťa\IntelGraphicsProfiles
[2016.10.20 14:50:00 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Roaming\Macromedia
[2016.10.20 14:50:00 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Roaming\Adobe
[2016.10.20 14:48:20 | 000,000,000 | ---D | C] -- C:\Users\Víťa\REACHit
[2016.10.20 14:48:20 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Local\Lenovo
[2016.10.20 14:47:24 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Local\Packages
[2016.10.20 14:47:21 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Local\TileDataLayer
[2016.10.20 14:47:18 | 000,000,000 | ---D | C] -- C:\Users\Víťa\AppData\Roaming\Intel
[2016.10.20 14:47:16 | 000,000,000 | R--D | C] -- C:\Users\Víťa\Videos
[2016.10.20 14:47:16 | 000,000,000 | R--D | C] -- C:\Users\Víťa\Saved Games
[2016.10.20 14:47:16 | 000,000,000 | R--D | C] -- C:\Users\Víťa\Pictures
[2016.10.20 14:47:16 | 000,000,000 | R--D | C] -- C:\Users\Víťa\Music
[2016.10.20 14:47:16 | 000,000,000 | R--D | C] -- C:\Users\Víťa\Links
[2016.10.20 14:47:16 | 000,000,000 | R--D | C] -- C:\Users\Víťa\Favorites
[2016.10.20 14:47:16 | 000,000,000 | R--D | C] -- C:\Users\Víťa\Downloads
[2016.10.20 14:47:16 | 000,000,000 | R--D | C] -- C:\Users\Víťa\Documents
[2016.10.20 14:47:16 | 000,000,000 | R--D | C] -- C:\Users\Víťa\Desktop
[2016.10.20 14:47:16 | 000,000,000 | ---D | C] -- C:\Users\Víťa\Roaming
[2016.10.20 14:46:17 | 001,816,728 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\iglhsip64.dll
[2016.10.20 14:46:17 | 000,632,848 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\MetroIntelGenericUIFramework.dll
[2016.10.20 14:46:17 | 000,623,072 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelCpHDCPSvc.exe
[2016.10.20 14:46:17 | 000,536,544 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiUMS64.exe
[2016.10.20 14:46:17 | 000,416,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelOpenCL64.dll
[2016.10.20 14:46:17 | 000,350,192 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiMCComp64.dll
[2016.10.20 14:46:17 | 000,318,480 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\IntelOpenCL32.dll
[2016.10.20 14:46:17 | 000,301,536 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
[2016.10.20 14:46:17 | 000,206,864 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxCoIn_v4364.dll
[2016.10.20 14:46:17 | 000,103,944 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\Intel_OpenCL_ICD32.dll
[2016.10.20 14:46:17 | 000,099,856 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\Intel_OpenCL_ICD64.dll
[2016.10.20 14:46:16 | 002,071,056 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxLHM.dll
[2016.10.20 14:46:16 | 001,814,064 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\iglhsip32.dll
[2016.10.20 14:46:16 | 001,576,968 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxcmjit64.dll
[2016.10.20 14:46:16 | 001,167,888 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxcmjit32.dll
[2016.10.20 14:46:16 | 000,751,120 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxDH.dll
[2016.10.20 14:46:16 | 000,435,096 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfx11cmrt64.dll
[2016.10.20 14:46:16 | 000,433,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxcmrt64.dll
[2016.10.20 14:46:16 | 000,390,152 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxOSP.dll
[2016.10.20 14:46:16 | 000,387,088 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxDI.dll
[2016.10.20 14:46:16 | 000,379,792 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxcmrt32.dll
[2016.10.20 14:46:16 | 000,373,728 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxCUIService.exe
[2016.10.20 14:46:16 | 000,354,784 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxEM.exe
[2016.10.20 14:46:16 | 000,269,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxHK.exe
[2016.10.20 14:46:16 | 000,255,504 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxDTCM.dll
[2016.10.20 14:46:16 | 000,242,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\iglhcp64.dll
[2016.10.20 14:46:16 | 000,237,024 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxext.exe
[2016.10.20 14:46:16 | 000,205,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\iglhcp32.dll
[2016.10.20 14:46:16 | 000,055,248 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxexps.dll
[2016.10.20 14:46:16 | 000,052,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxexps32.dll
[2016.10.20 14:46:15 | 032,710,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdumdim64.dll
[2016.10.20 14:46:15 | 031,777,000 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdumdim32.dll
[2016.10.20 14:46:15 | 006,601,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdusc64.dll
[2016.10.20 14:46:15 | 005,685,776 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdmcl64.dll
[2016.10.20 14:46:15 | 005,056,120 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdusc32.dll
[2016.10.20 14:46:15 | 004,642,824 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdrcl64.dll
[2016.10.20 14:46:15 | 004,171,792 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdrcl32.dll
[2016.10.20 14:46:15 | 003,970,064 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdmcl32.dll
[2016.10.20 14:46:15 | 002,160,464 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdmd64.dll
[2016.10.20 14:46:15 | 001,677,872 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdmd32.dll
[2016.10.20 14:46:15 | 000,381,944 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfx11cmrt32.dll
[2016.10.20 14:46:14 | 027,592,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igd11dxva32.dll
[2016.10.20 14:46:14 | 026,305,928 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igd11dxva64.dll
[2016.10.20 14:46:14 | 007,884,776 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\igdkmd64.sys
[2016.10.20 14:46:14 | 004,191,040 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igd12umd64.dll
[2016.10.20 14:46:14 | 004,062,112 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igd12umd32.dll
[2016.10.20 14:46:14 | 000,439,312 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdbcl64.dll
[2016.10.20 14:46:14 | 000,388,624 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdbcl32.dll
[2016.10.20 14:46:14 | 000,266,256 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdfcl64.dll
[2016.10.20 14:46:14 | 000,225,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdfcl32.dll
[2016.10.20 14:46:14 | 000,222,736 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdde64.dll
[2016.10.20 14:46:14 | 000,193,040 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdail64.dll
[2016.10.20 14:46:14 | 000,181,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdde32.dll
[2016.10.20 14:46:14 | 000,173,072 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdail32.dll
[2016.10.20 14:46:13 | 015,477,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igc64.dll
[2016.10.20 14:46:13 | 014,553,192 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igd10iumd64.dll
[2016.10.20 14:46:13 | 013,501,968 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\ig9icd64.dll
[2016.10.20 14:46:13 | 013,450,696 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igc32.dll
[2016.10.20 14:46:13 | 011,841,480 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igd10iumd32.dll
[2016.10.20 14:46:13 | 010,249,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\ig9icd32.dll
[2016.10.20 14:46:13 | 000,312,824 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igd10idpp64.dll
[2016.10.20 14:46:13 | 000,297,176 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igd10idpp32.dll
[2016.10.20 14:46:12 | 029,101,584 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\common_clang64.dll
[2016.10.20 14:46:12 | 019,861,520 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\common_clang32.dll
[2016.10.20 14:46:12 | 005,262,864 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\GfxResources.dll
[2016.10.20 14:46:12 | 000,964,064 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\Gfxv4_0.exe
[2016.10.20 14:46:12 | 000,960,488 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\Gfxv2_0.exe
[2016.10.20 14:46:12 | 000,466,912 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\GfxUIEx.exe
[2016.10.20 14:46:12 | 000,232,416 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\DPTopologyApp.exe
[2016.10.20 14:46:12 | 000,231,904 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\DPTopologyAppv2_0.exe
[2016.10.20 14:46:12 | 000,175,072 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\difx64.exe
[2016.10.20 14:45:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\Firmware
[2016.10.20 14:44:58 | 001,730,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WdfCoInstaller01009.dll
[2016.10.20 14:44:57 | 000,575,784 | ---- | C] (Alps Electric Co., Ltd.) -- C:\WINDOWS\SysNative\drivers\Apfiltr.sys
[2016.10.20 14:44:57 | 000,132,440 | ---- | C] (Alps Electric Co., Ltd.) -- C:\WINDOWS\SysNative\Vxdif.dll
[1 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2016.10.31 20:23:30 | 000,226,615 | ---- | M] () -- C:\WINDOWS\ZAM_Guard.krnl.trace
[2016.10.31 20:23:30 | 000,189,916 | ---- | M] () -- C:\WINDOWS\ZAM.krnl.trace
[2016.10.31 20:15:19 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Víťa\Desktop\OTL.exe
[2016.10.31 20:13:40 | 000,067,584 | ---- | M] () -- C:\WINDOWS\bootstat.dat
[2016.10.31 16:48:04 | 001,789,182 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2016.10.31 16:48:04 | 000,812,442 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2016.10.31 16:48:04 | 000,625,418 | ---- | M] () -- C:\WINDOWS\SysNative\perfh005.dat
[2016.10.31 16:48:04 | 000,212,458 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2016.10.31 16:48:04 | 000,135,898 | ---- | M] () -- C:\WINDOWS\SysNative\perfc005.dat
[2016.10.31 16:44:42 | 000,000,180 | ---- | M] () -- C:\WINDOWS\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
[2016.10.31 16:44:20 | 3349,594,112 | -HS- | M] () -- C:\hiberfil.sys
[2016.10.30 18:42:24 | 000,001,089 | ---- | M] () -- C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_24323256.lnk
[2016.10.30 18:33:26 | 000,203,680 | ---- | M] (Zemana Ltd.) -- C:\WINDOWS\SysNative\drivers\zamguard64.sys
[2016.10.30 18:33:26 | 000,203,680 | ---- | M] (Zemana Ltd.) -- C:\WINDOWS\SysNative\drivers\zam64.sys
[2016.10.30 18:33:25 | 000,001,228 | ---- | M] () -- C:\Users\Public\Desktop\Zemana AntiMalware.lnk
[2016.10.30 18:23:34 | 000,012,568 | ---- | M] () -- C:\Users\Víťa\Documents\záloha registru ccleaner.reg
[2016.10.30 08:56:01 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2016.10.29 18:50:43 | 000,000,045 | ---- | M] () -- C:\WINDOWS\SysWow64\initdebug.nfo
[2016.10.28 12:38:15 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2016.10.28 12:27:58 | 000,194,472 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2016.10.28 12:25:01 | 000,015,425 | ---- | M] () -- C:\WINDOWS\SysNative\OEMDefaultAssociations.xml
[2016.10.27 15:47:49 | 000,002,775 | ---- | M] () -- C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
[2016.10.26 22:02:26 | 000,000,753 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts
[2016.10.26 22:01:43 | 000,024,064 | ---- | M] () -- C:\WINDOWS\zoek-delete.exe
[2016.10.26 21:40:00 | 000,028,272 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\TrueSight.sys
[2016.10.26 21:15:51 | 000,000,982 | ---- | M] () -- C:\Users\Public\Desktop\CPUID HWMonitor.lnk
[2016.10.26 15:18:12 | 000,001,929 | ---- | M] () -- C:\Users\Public\Desktop\BlueStacks.lnk
[2016.10.26 14:24:28 | 000,001,182 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016.10.25 17:58:41 | 000,001,111 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 11.lnk
[2016.10.25 00:30:58 | 000,828,408 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2016.10.25 00:30:58 | 000,176,632 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2016.10.22 12:47:02 | 000,001,316 | ---- | M] () -- C:\Users\Public\Desktop\World of Warcraft.lnk
[2016.10.22 12:39:39 | 000,001,224 | ---- | M] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2016.10.20 21:15:58 | 000,000,870 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016.10.20 19:41:19 | 006,574,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanmm.dll
[2016.10.20 19:41:19 | 004,596,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xpsrchvw.exe
[2016.10.20 19:41:19 | 004,148,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll
[2016.10.20 19:41:19 | 003,520,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xpsrchvw.exe
[2016.10.20 19:41:19 | 002,481,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll
[2016.10.20 19:41:19 | 002,206,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2vdec.dll
[2016.10.20 19:41:19 | 002,049,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpmde.dll
[2016.10.20 19:41:19 | 001,908,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AzureSettingSyncProvider.dll
[2016.10.20 19:41:19 | 001,847,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll
[2016.10.20 19:41:19 | 001,453,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2016.10.20 19:41:19 | 001,403,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Editing.dll
[2016.10.20 19:41:19 | 001,362,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmpmde.dll
[2016.10.20 19:41:19 | 001,360,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2016.10.20 19:41:19 | 001,343,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll
[2016.10.20 19:41:19 | 001,300,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll
[2016.10.20 19:41:19 | 001,300,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSVPXENC.dll
[2016.10.20 19:41:19 | 001,291,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSVPXENC.dll
[2016.10.20 19:41:19 | 001,255,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AzureSettingSyncProvider.dll
[2016.10.20 19:41:19 | 001,220,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Audio.dll
[2016.10.20 19:41:19 | 001,217,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Audio.dll
[2016.10.20 19:41:19 | 001,201,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
[2016.10.20 19:41:19 | 001,087,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Vpn.dll
[2016.10.20 19:41:19 | 001,077,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Editing.dll
[2016.10.20 19:41:19 | 001,071,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll
[2016.10.20 19:41:19 | 001,000,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecConfig.efi
[2016.10.20 19:41:19 | 000,980,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll
[2016.10.20 19:41:19 | 000,963,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WebcamUi.dll
[2016.10.20 19:41:19 | 000,945,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebFilter.dll
[2016.10.20 19:41:19 | 000,864,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnapps.dll
[2016.10.20 19:41:19 | 000,862,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll
[2016.10.20 19:41:19 | 000,857,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mprddm.dll
[2016.10.20 19:41:19 | 000,856,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll
[2016.10.20 19:41:19 | 000,846,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WebcamUi.dll
[2016.10.20 19:41:19 | 000,796,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvewiz.dll
[2016.10.20 19:41:19 | 000,795,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MiracastReceiver.dll
[2016.10.20 19:41:19 | 000,765,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Sensors.dll
[2016.10.20 19:41:19 | 000,730,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nshwfp.dll
[2016.10.20 19:41:19 | 000,730,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2016.10.20 19:41:19 | 000,725,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSVideoDSP.dll
[2016.10.20 19:41:19 | 000,719,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdiWiFi.sys
[2016.10.20 19:41:19 | 000,713,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wpnapps.dll
[2016.10.20 19:41:19 | 000,661,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WpcWebFilter.dll
[2016.10.20 19:41:19 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MCRecvSrc.dll
[2016.10.20 19:41:19 | 000,592,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GamePanel.exe
[2016.10.20 19:41:19 | 000,589,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Sensors.dll
[2016.10.20 19:41:19 | 000,540,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSync.dll
[2016.10.20 19:41:19 | 000,527,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWanAPI.dll
[2016.10.20 19:41:19 | 000,525,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PrintDialogs.dll
[2016.10.20 19:41:19 | 000,512,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSAudDecMFT.dll
[2016.10.20 19:41:19 | 000,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe
[2016.10.20 19:41:19 | 000,468,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanconn.dll
[2016.10.20 19:41:19 | 000,462,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll
[2016.10.20 19:41:19 | 000,460,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Midi.dll
[2016.10.20 19:41:19 | 000,447,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\das.dll
Nahoru
Reklama
Top
Qvíčala
nováček
Příspěvky: 42
Registrován: říjen 16
Pohlaví: Nespecifikováno
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod Qvíčala » 31 říj 2016 20:52

[2016.10.20 19:41:19 | 000,446,124 | ---- | M] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2016.10.20 19:41:19 | 000,444,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSync.dll
[2016.10.20 19:41:19 | 000,433,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWanAPI.dll
[2016.10.20 19:41:19 | 000,431,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\efswrt.dll
[2016.10.20 19:41:19 | 000,412,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll
[2016.10.20 19:41:19 | 000,400,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll
[2016.10.20 19:41:19 | 000,396,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll
[2016.10.20 19:41:19 | 000,395,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dmenrollengine.dll
[2016.10.20 19:41:19 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Midi.dll
[2016.10.20 19:41:19 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToDevice.dll
[2016.10.20 19:41:19 | 000,329,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvecpl.dll
[2016.10.20 19:41:19 | 000,322,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PsmServiceExtHost.dll
[2016.10.20 19:41:19 | 000,313,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanapi.dll
[2016.10.20 19:41:19 | 000,310,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncSettings.dll
[2016.10.20 19:41:19 | 000,298,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Internal.Management.dll
[2016.10.20 19:41:19 | 000,298,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifiprofilessettinghandler.dll
[2016.10.20 19:41:19 | 000,296,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlancfg.dll
[2016.10.20 19:41:19 | 000,295,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudBackupSettings.dll
[2016.10.20 19:41:19 | 000,280,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bdeunlock.exe
[2016.10.20 19:41:19 | 000,279,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveui.dll
[2016.10.20 19:41:19 | 000,248,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlancfg.dll
[2016.10.20 19:41:19 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eapp3hst.dll
[2016.10.20 19:41:19 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SyncSettings.dll
[2016.10.20 19:41:19 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eapphost.dll
[2016.10.20 19:41:19 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudBackupSettings.dll
[2016.10.20 19:41:19 | 000,228,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSAC3ENC.DLL
[2016.10.20 19:41:19 | 000,218,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LsaIso.exe
[2016.10.20 19:41:19 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll
[2016.10.20 19:41:19 | 000,211,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\manage-bde.exe
[2016.10.20 19:41:19 | 000,209,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSAC3ENC.DLL
[2016.10.20 19:41:19 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eappcfg.dll
[2016.10.20 19:41:19 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Scanners.dll
[2016.10.20 19:41:19 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.DeviceEncryptionHandlers.dll
[2016.10.20 19:41:19 | 000,171,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvenotify.exe
[2016.10.20 19:41:19 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BcastDVRHelper.dll
[2016.10.20 19:41:19 | 000,141,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dialclient.dll
[2016.10.20 19:41:19 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Devices.dll
[2016.10.20 19:41:19 | 000,121,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll
[2016.10.20 19:41:19 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BitLockerDeviceEncryption.exe
[2016.10.20 19:41:19 | 000,108,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys
[2016.10.20 19:41:19 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpninprc.dll
[2016.10.20 19:41:19 | 000,094,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dasHost.exe
[2016.10.20 19:41:19 | 000,092,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpudd.dll
[2016.10.20 19:41:19 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eappgnui.dll
[2016.10.20 19:41:19 | 000,090,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devenum.dll
[2016.10.20 19:41:19 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncPolicy.dll
[2016.10.20 19:41:19 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll
[2016.10.20 19:41:19 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncPolicy.dll
[2016.10.20 19:41:19 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TempSignedLicenseExchangeTask.dll
[2016.10.20 19:41:19 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManagerApi.dll
[2016.10.20 19:41:19 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eappprxy.dll
[2016.10.20 19:41:19 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\findnetprinters.dll
[2016.10.20 19:41:19 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceassociation.dll
[2016.10.20 19:41:19 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfdprov.dll
[2016.10.20 19:41:19 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfdprov.dll
[2016.10.20 19:41:19 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cmintegrator.dll
[2016.10.20 19:41:19 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bdeui.dll
[2016.10.20 19:41:19 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiConfigSP.dll
[2016.10.20 19:41:19 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\encapi.dll
[2016.10.20 19:41:19 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansvcpal.dll
[2016.10.20 19:41:19 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanhlp.dll
[2016.10.20 19:41:19 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanhlp.dll
[2016.10.20 19:41:08 | 009,260,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmploc.DLL
[2016.10.20 19:41:08 | 009,260,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmploc.DLL
[2016.10.20 19:41:08 | 001,891,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll
[2016.10.20 19:41:08 | 001,555,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMPDMC.exe
[2016.10.20 19:41:08 | 001,293,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMPDMC.exe
[2016.10.20 19:41:08 | 000,755,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\evr.dll
[2016.10.20 19:41:08 | 000,640,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\evr.dll
[2016.10.20 19:41:08 | 000,411,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsApi.dll
[2016.10.20 19:41:08 | 000,295,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dlnashext.dll
[2016.10.20 19:41:08 | 000,248,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dlnashext.dll
[2016.10.20 19:41:08 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spwmp.dll
[2016.10.20 19:41:08 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdxm.ocx
[2016.10.20 19:41:08 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxmasf.dll
[2016.10.20 19:41:07 | 008,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2016.10.20 19:41:07 | 006,043,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2016.10.20 19:41:07 | 004,747,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2016.10.20 19:41:07 | 002,424,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Perception.dll
[2016.10.20 19:41:07 | 002,213,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KernelBase.dll
[2016.10.20 19:41:07 | 002,095,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2016.10.20 19:41:07 | 002,026,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2016.10.20 19:41:07 | 001,656,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Perception.dll
[2016.10.20 19:41:07 | 001,176,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll
[2016.10.20 19:41:07 | 001,081,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll
[2016.10.20 19:41:07 | 000,822,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakradiag.dll
[2016.10.20 19:41:07 | 000,805,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2016.10.20 19:41:07 | 000,759,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2016.10.20 19:41:07 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkCollectionAgent.dll
[2016.10.20 19:41:07 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2016.10.20 19:41:07 | 000,455,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetworkCollectionAgent.dll
[2016.10.20 19:41:07 | 000,424,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ws2_32.dll
[2016.10.20 19:41:07 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredProvDataModel.dll
[2016.10.20 19:41:07 | 000,387,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpps.dll
[2016.10.20 19:41:07 | 000,379,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Classpnp.sys
[2016.10.20 19:41:07 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.LockScreen.dll
[2016.10.20 19:41:07 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2016.10.20 19:41:07 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\credprovhost.dll
[2016.10.20 19:41:07 | 000,172,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sspicli.dll
[2016.10.20 19:41:07 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakrathunk.dll
[2016.10.20 19:41:07 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\credprovs.dll
[2016.10.20 19:41:07 | 000,121,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakrathunk.dll
[2016.10.20 19:41:07 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2016.10.20 19:41:07 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll
[2016.10.20 19:41:07 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\csrsrv.dll
[2016.10.20 19:41:07 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2016.10.20 19:41:07 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll
[2016.10.20 19:41:07 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spwmp.dll
[2016.10.20 19:41:07 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msdxm.ocx
[2016.10.20 19:41:07 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dxmasf.dll
[2016.10.20 19:41:03 | 006,474,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mspaint.exe
[2016.10.20 19:41:03 | 005,398,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aclui.dll
[2016.10.20 19:41:03 | 003,299,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstsc.exe
[2016.10.20 19:41:03 | 002,682,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netshell.dll
[2016.10.20 19:41:03 | 002,510,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll
[2016.10.20 19:41:03 | 001,656,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2016.10.20 19:41:03 | 001,572,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32full.dll
[2016.10.20 19:41:03 | 001,320,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\comsvcs.dll
[2016.10.20 19:41:03 | 000,998,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWorkspace.dll
[2016.10.20 19:41:03 | 000,965,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgent.dll
[2016.10.20 19:41:03 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.dll
[2016.10.20 19:41:03 | 000,762,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mprddm.dll
[2016.10.20 19:41:03 | 000,719,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsp_sr.dll
[2016.10.20 19:41:03 | 000,691,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsm.dll
[2016.10.20 19:41:03 | 000,650,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXService.dll
[2016.10.20 19:41:03 | 000,603,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContentDeliveryManager.Utilities.dll
[2016.10.20 19:41:03 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIRibbonRes.dll
[2016.10.20 19:41:03 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIRibbonRes.dll
[2016.10.20 19:41:03 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\clusapi.dll
[2016.10.20 19:41:03 | 000,499,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LogonController.dll
[2016.10.20 19:41:03 | 000,466,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sppcext.dll
[2016.10.20 19:41:03 | 000,408,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsmf.dll
[2016.10.20 19:41:03 | 000,321,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppHost.exe
[2016.10.20 19:41:03 | 000,298,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\resutils.dll
[2016.10.20 19:41:03 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\apprepsync.dll
[2016.10.20 19:41:03 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_WorkAccess.dll
[2016.10.20 19:41:03 | 000,255,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\unimdm.tsp
[2016.10.20 19:41:03 | 000,238,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AboveLockAppHost.dll
[2016.10.20 19:41:03 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tcpipcfg.dll
[2016.10.20 19:41:03 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\credprovslegacy.dll
[2016.10.20 19:41:03 | 000,141,824 | ---- | M] (Windows (R) Win 7 DDK provider) -- C:\WINDOWS\SysWow64\DscCoreConfProv.dll
[2016.10.20 19:41:03 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\apprepapi.dll
[2016.10.20 19:41:03 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\setupugc.exe
[2016.10.20 19:41:03 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sppc.dll
[2016.10.20 19:41:03 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adsmsext.dll
[2016.10.20 19:41:03 | 000,071,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pwrshplugin.dll
[2016.10.20 19:41:03 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ConfigureExpandedStorage.dll
[2016.10.20 19:41:03 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offreg.dll
[2016.10.20 19:41:03 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Shell.Search.UriHandler.dll
[2016.10.20 19:41:03 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2016.10.20 19:41:03 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netiougc.exe
[2016.10.20 19:41:03 | 000,023,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\cmimcext.sys
[2016.10.20 19:41:03 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\slcext.dll
[2016.10.20 19:41:03 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msxml6r.dll
[2016.10.20 19:40:59 | 006,664,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mspaint.exe
[2016.10.20 19:40:59 | 005,511,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aclui.dll
[2016.10.20 19:40:59 | 003,753,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bootux.dll
[2016.10.20 19:40:59 | 002,852,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2016.10.20 19:40:59 | 002,800,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netshell.dll
[2016.10.20 19:40:59 | 001,361,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SharedStartModel.dll
[2016.10.20 19:40:59 | 001,349,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll
[2016.10.20 19:40:59 | 001,322,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpx.dll
[2016.10.20 19:40:59 | 001,312,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorDataService.exe
[2016.10.20 19:40:59 | 001,232,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dosvc.dll
[2016.10.20 19:40:59 | 001,130,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2016.10.20 19:40:59 | 001,037,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nettrace.dll
[2016.10.20 19:40:59 | 001,020,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgr.dll
[2016.10.20 19:40:59 | 001,004,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll
[2016.10.20 19:40:59 | 000,833,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2016.10.20 19:40:59 | 000,781,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneService.dll
[2016.10.20 19:40:59 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LogonController.dll
[2016.10.20 19:40:59 | 000,678,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneProviders.dll
[2016.10.20 19:40:59 | 000,628,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uReFS.dll
[2016.10.20 19:40:59 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2016.10.20 19:40:59 | 000,590,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\efswrt.dll
[2016.10.20 19:40:59 | 000,492,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nltest.exe
[2016.10.20 19:40:59 | 000,461,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredProvDataModel.dll
[2016.10.20 19:40:59 | 000,456,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\puiobj.dll
[2016.10.20 19:40:59 | 000,455,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenrollengine.dll
[2016.10.20 19:40:59 | 000,431,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Cortana.Desktop.dll
[2016.10.20 19:40:59 | 000,425,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdedit.exe
[2016.10.20 19:40:59 | 000,423,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifitask.exe
[2016.10.20 19:40:59 | 000,407,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Management.dll
[2016.10.20 19:40:59 | 000,396,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncsi.dll
[2016.10.20 19:40:59 | 000,382,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppHost.exe
[2016.10.20 19:40:59 | 000,368,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OneBackupHandler.dll
[2016.10.20 19:40:59 | 000,366,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXTaskFactory.dll
[2016.10.20 19:40:59 | 000,360,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2016.10.20 19:40:59 | 000,349,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll
[2016.10.20 19:40:59 | 000,347,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rascustom.dll
[2016.10.20 19:40:59 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.LockScreen.dll
[2016.10.20 19:40:59 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usbmon.dll
[2016.10.20 19:40:59 | 000,323,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\domgmt.dll
[2016.10.20 19:40:59 | 000,295,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll
[2016.10.20 19:40:59 | 000,289,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeveloperOptionsSettingsHandlers.dll
[2016.10.20 19:40:59 | 000,284,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AboveLockAppHost.dll
[2016.10.20 19:40:59 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll
[2016.10.20 19:40:59 | 000,266,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ConsoleLogon.dll
[2016.10.20 19:40:59 | 000,259,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Family.SyncEngine.dll
[2016.10.20 19:40:59 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\credprovhost.dll
[2016.10.20 19:40:59 | 000,241,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHost.dll
[2016.10.20 19:40:59 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCore.dll
[2016.10.20 19:40:59 | 000,234,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcpipcfg.dll
[2016.10.20 19:40:59 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\C_G18030.DLL
[2016.10.20 19:40:59 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Scanners.dll
[2016.10.20 19:40:59 | 000,208,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provops.dll
[2016.10.20 19:40:59 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXApplicabilityBlob.dll
[2016.10.20 19:40:59 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll
[2016.10.20 19:40:59 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enrollmentapi.dll
[2016.10.20 19:40:59 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\credprovslegacy.dll
[2016.10.20 19:40:59 | 000,157,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\credprovs.dll
[2016.10.20 19:40:59 | 000,156,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Family.Client.dll
[2016.10.20 19:40:59 | 000,140,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RMapi.dll
[2016.10.20 19:40:59 | 000,137,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wificonnapi.dll
[2016.10.20 19:40:59 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MediaFoundation.DefaultPerceptionProvider.dll
[2016.10.20 19:40:59 | 000,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PrintWSDAHost.dll
[2016.10.20 19:40:59 | 000,128,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rshx32.dll
[2016.10.20 19:40:59 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCsp.dll
[2016.10.20 19:40:59 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Family.Authentication.dll
[2016.10.20 19:40:59 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VPNv2CSP.dll
[2016.10.20 19:40:59 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NFCProvisioningPlugin.dll
[2016.10.20 19:40:59 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provdatastore.dll
[2016.10.20 19:40:59 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BarcodeProvisioningPlugin.dll
[2016.10.20 19:40:59 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProvPluginEng.dll
[2016.10.20 19:40:59 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provtool.exe
[2016.10.20 19:40:59 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemovableMediaProvisioningPlugin.dll
[2016.10.20 19:40:59 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Shell.Search.UriHandler.dll
[2016.10.20 19:40:59 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageUsage.dll
[2016.10.20 19:40:59 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll
[2016.10.20 19:40:59 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe
[2016.10.20 19:40:59 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.Provisioning.ProxyStub.dll
[2016.10.20 19:40:59 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\C_IS2022.DLL
[2016.10.20 19:40:59 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\c_GSM7.DLL
[2016.10.20 19:40:59 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneServiceRes.dll
[2016.10.20 19:40:58 | 000,966,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sbe.dll
[2016.10.20 19:40:58 | 000,775,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GamePanel.exe
[2016.10.20 19:40:58 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qedit.dll
[2016.10.20 19:40:58 | 000,605,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe
[2016.10.20 19:40:58 | 000,434,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll
[2016.10.20 19:40:58 | 000,372,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.MediaControl.dll
[2016.10.20 19:40:58 | 000,295,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\unimdm.tsp
[2016.10.20 19:40:58 | 000,170,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppCapture.dll
[2016.10.20 19:40:58 | 000,128,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tm.sys
[2016.10.20 19:40:58 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netiougc.exe
[2016.10.20 19:40:56 | 001,066,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pidgenx.dll
[2016.10.20 19:40:56 | 001,040,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NaturalLanguage6.dll
[2016.10.20 19:40:56 | 000,939,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pidgenx.dll
[2016.10.20 19:40:56 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dsregcmd.exe
[2016.10.20 19:40:56 | 000,665,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GenValObj.exe
[2016.10.20 19:40:56 | 000,573,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NgcCtnrGidsHandler.dll
[2016.10.20 19:40:56 | 000,538,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppcext.dll
[2016.10.20 19:40:56 | 000,501,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\imapi2.dll
[2016.10.20 19:40:56 | 000,379,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apprepsync.dll
[2016.10.20 19:40:56 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apprepapi.dll
[2016.10.20 19:40:56 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easwrt.dll
[2016.10.20 19:40:56 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppc.dll
[2016.10.20 19:40:56 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slc.dll
[2016.10.20 19:40:56 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adsmsext.dll
[2016.10.20 19:40:56 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\odbcconf.dll
[2016.10.20 19:40:56 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slcext.dll
[2016.10.20 19:40:55 | 008,158,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll
[2016.10.20 19:40:55 | 003,059,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2016.10.20 19:40:55 | 001,817,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ResetEngine.dll
[2016.10.20 19:40:55 | 001,639,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comsvcs.dll
[2016.10.20 19:40:55 | 001,589,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdtctm.dll
[2016.10.20 19:40:55 | 001,388,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Cred.dll
[2016.10.20 19:40:55 | 001,117,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgent.dll
[2016.10.20 19:40:55 | 001,082,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll
[2016.10.20 19:40:55 | 000,947,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsp_sr.dll
[2016.10.20 19:40:55 | 000,866,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Cred.dll
[2016.10.20 19:40:55 | 000,770,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2016.10.20 19:40:55 | 000,627,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SpaceControl.dll
[2016.10.20 19:40:55 | 000,582,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BootMenuUX.dll
[2016.10.20 19:40:55 | 000,471,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DscCore.dll
[2016.10.20 19:40:55 | 000,440,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcfg.dll
[2016.10.20 19:40:55 | 000,418,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.BlockedShutdown.dll
[2016.10.20 19:40:55 | 000,363,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.BioFeedback.dll
[2016.10.20 19:40:55 | 000,354,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\systemreset.exe
[2016.10.20 19:40:55 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.BlockedShutdown.dll
[2016.10.20 19:40:55 | 000,257,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.CredDialogController.dll
[2016.10.20 19:40:55 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.BioFeedback.dll
[2016.10.20 19:40:55 | 000,250,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\discan.dll
[2016.10.20 19:40:55 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinBioDataModel.dll
[2016.10.20 19:40:55 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll
[2016.10.20 19:40:55 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.CredDialogController.dll
[2016.10.20 19:40:55 | 000,204,288 | ---- | M] (Windows (R) Win 7 DDK provider) -- C:\WINDOWS\SysNative\DscCoreConfProv.dll
[2016.10.20 19:40:55 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\biwinrt.dll
[2016.10.20 19:40:55 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RelPost.exe
[2016.10.20 19:40:55 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\biwinrt.dll
[2016.10.20 19:40:55 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SpaceAgent.exe
[2016.10.20 19:40:55 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Background.SystemEventsBroker.dll
[2016.10.20 19:40:55 | 000,094,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browserbroker.dll
[2016.10.20 19:40:55 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
[2016.10.20 19:40:55 | 000,090,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pwrshplugin.dll
[2016.10.20 19:40:55 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offreg.dll
[2016.10.20 19:40:55 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BackgroundMediaPolicy.dll
[2016.10.20 19:40:55 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinBioDataModelOOBE.exe
[2016.10.20 19:40:55 | 000,041,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SysResetErr.exe
[2016.10.20 19:40:55 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ResetEngine.exe
[2016.10.20 19:40:50 | 005,384,192 | ---- | M] (Microsoft) -- C:\WINDOWS\SysNative\dbgeng.dll
[2016.10.20 19:40:50 | 003,435,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapRouter.dll
[2016.10.20 19:40:50 | 002,947,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapGeocoder.dll
[2016.10.20 19:40:50 | 002,820,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll
[2016.10.20 19:40:50 | 002,642,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tquery.dll
[2016.10.20 19:40:50 | 002,360,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapRouter.dll
[2016.10.20 19:40:50 | 002,138,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputService.dll
[2016.10.20 19:40:50 | 002,107,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapGeocoder.dll
[2016.10.20 19:40:50 | 001,859,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll
[2016.10.20 19:40:50 | 001,430,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
[2016.10.20 19:40:50 | 001,292,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll
[2016.10.20 19:40:50 | 001,266,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Input.Inking.dll
[2016.10.20 19:40:50 | 001,145,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EmailApis.dll
[2016.10.20 19:40:50 | 001,105,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MiracastReceiver.dll
[2016.10.20 19:40:50 | 001,078,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Streaming.dll
[2016.10.20 19:40:50 | 001,013,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContactApis.dll
[2016.10.20 19:40:50 | 001,004,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Input.Inking.dll
[2016.10.20 19:40:50 | 000,983,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ngcsvc.dll
[2016.10.20 19:40:50 | 000,949,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.PointOfService.dll
[2016.10.20 19:40:50 | 000,936,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MCRecvSrc.dll
[2016.10.20 19:40:50 | 000,895,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Streaming.dll
[2016.10.20 19:40:50 | 000,860,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll
[2016.10.20 19:40:50 | 000,858,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EmailApis.dll
[2016.10.20 19:40:50 | 000,857,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe
[2016.10.20 19:40:50 | 000,850,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ContactApis.dll
[2016.10.20 19:40:50 | 000,845,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApiPublic.dll
[2016.10.20 19:40:50 | 000,820,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingOnlineServices.dll
[2016.10.20 19:40:50 | 000,782,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe
[2016.10.20 19:40:50 | 000,771,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppointmentApis.dll
[2016.10.20 19:40:50 | 000,748,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChatApis.dll
[2016.10.20 19:40:50 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppointmentApis.dll
[2016.10.20 19:40:50 | 000,671,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mbsmsapi.dll
[2016.10.20 19:40:50 | 000,670,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.PointOfService.dll
[2016.10.20 19:40:50 | 000,654,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApiPublic.dll
[2016.10.20 19:40:50 | 000,650,240 | ---- | M] (Microsoft) -- C:\WINDOWS\SysNative\DbgModel.dll
[2016.10.20 19:40:50 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ngccredprov.dll
[2016.10.20 19:40:50 | 000,595,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll
[2016.10.20 19:40:50 | 000,568,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.UXRes.dll
[2016.10.20 19:40:50 | 000,568,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.UXRes.dll
[2016.10.20 19:40:50 | 000,567,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ChatApis.dll
[2016.10.20 19:40:50 | 000,561,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Wallet.dll
[2016.10.20 19:40:50 | 000,538,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll
[2016.10.20 19:40:50 | 000,536,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingOnlineServices.dll
[2016.10.20 19:40:50 | 000,531,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TpmCoreProvisioning.dll
[2016.10.20 19:40:50 | 000,529,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll
[2016.10.20 19:40:50 | 000,523,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DMRServer.dll
[2016.10.20 19:40:50 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mbsmsapi.dll
[2016.10.20 19:40:50 | 000,484,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDEServer.exe
[2016.10.20 19:40:50 | 000,455,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\securekernel.exe
[2016.10.20 19:40:50 | 000,446,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapConfiguration.dll
[2016.10.20 19:40:50 | 000,442,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToDevice.dll
[2016.10.20 19:40:50 | 000,426,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Wallet.dll
[2016.10.20 19:40:50 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorService.dll
[2016.10.20 19:40:50 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosResource.dll
[2016.10.20 19:40:50 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosResource.dll
[2016.10.20 19:40:50 | 000,408,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NgcCtnr.dll
[2016.10.20 19:40:50 | 000,366,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NmaDirect.dll
[2016.10.20 19:40:50 | 000,331,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapConfiguration.dll
[2016.10.20 19:40:50 | 000,321,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkUXBroker.dll
[2016.10.20 19:40:50 | 000,320,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2016.10.20 19:40:50 | 000,315,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Phoneutil.dll
[2016.10.20 19:40:50 | 000,299,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataAccountApis.dll
[2016.10.20 19:40:50 | 000,289,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NmaDirect.dll
[2016.10.20 19:40:50 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToReceiver.dll
[2016.10.20 19:40:50 | 000,263,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExSMime.dll
[2016.10.20 19:40:50 | 000,260,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Phoneutil.dll
[2016.10.20 19:40:50 | 000,259,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgentUserBroker.exe
[2016.10.20 19:40:50 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2016.10.20 19:40:50 | 000,252,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.Identity.Provider.dll
[2016.10.20 19:40:50 | 000,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafpos.dll
[2016.10.20 19:40:50 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Diagnostics.dll
[2016.10.20 19:40:50 | 000,224,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExSMime.dll
[2016.10.20 19:40:50 | 000,220,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToReceiver.dll
[2016.10.20 19:40:50 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WwaApi.dll
[2016.10.20 19:40:50 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PimIndexMaintenance.dll
[2016.10.20 19:40:50 | 000,187,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VCardParser.dll
[2016.10.20 19:40:50 | 000,187,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dialclient.dll
[2016.10.20 19:40:50 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Security.Authentication.Identity.Provider.dll
[2016.10.20 19:40:50 | 000,169,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\skci.dll
[2016.10.20 19:40:50 | 000,157,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XamlTileRender.dll
[2016.10.20 19:40:50 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvc.dll
[2016.10.20 19:40:50 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VCardParser.dll
[2016.10.20 19:40:50 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppointmentActivation.dll
[2016.10.20 19:40:50 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataTimeUtil.dll
[2016.10.20 19:40:50 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppointmentActivation.dll
[2016.10.20 19:40:50 | 000,116,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapsBtSvc.dll
[2016.10.20 19:40:50 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MapControls.dll
[2016.10.20 19:40:50 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MapControls.dll
[2016.10.20 19:40:50 | 000,104,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CastLaunch.dll
[2016.10.20 19:40:50 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsCSP.dll
[2016.10.20 19:40:50 | 000,094,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataTimeUtil.dll
[2016.10.20 19:40:50 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosStorage.dll
[2016.10.20 19:40:50 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosHostClient.dll
[2016.10.20 19:40:50 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshost.dll
[2016.10.20 19:40:50 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosStorage.dll
[2016.10.20 19:40:50 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AddressParser.dll
[2016.10.20 19:40:50 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\POSyncServices.dll
[2016.10.20 19:40:50 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataPlatformHelperUtil.dll
[2016.10.20 19:40:50 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosHostClient.dll
[2016.10.20 19:40:50 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\POSyncServices.dll
[2016.10.20 19:40:50 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataPlatformHelperUtil.dll
[2016.10.20 19:40:50 | 000,054,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContactActivation.dll
[2016.10.20 19:40:50 | 000,054,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AddressParser.dll
[2016.10.20 19:40:50 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapstoasttask.dll
[2016.10.20 19:40:50 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ContactActivation.dll
[2016.10.20 19:40:50 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataTypeHelperUtil.dll
[2016.10.20 19:40:50 | 000,044,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe
[2016.10.20 19:40:50 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataLanguageUtil.dll
[2016.10.20 19:40:50 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapsupdatetask.dll
[2016.10.20 19:40:50 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataTypeHelperUtil.dll
[2016.10.20 19:40:50 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataLanguageUtil.dll
[2016.10.20 19:40:50 | 000,036,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfpmp.exe
[2016.10.20 19:40:50 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll
[2016.10.20 19:40:50 | 000,026,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2016.10.20 19:40:50 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManagerSvc.dll
[2016.10.20 19:40:50 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nativemap.dll
[2016.10.20 19:40:50 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExtrasXmlParser.dll
[2016.10.20 19:40:50 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExtrasXmlParser.dll
[2016.10.20 19:40:50 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvcProxy.dll
[2016.10.20 19:40:50 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosTrace.dll
[2016.10.20 19:40:50 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosTrace.dll
[2016.10.20 19:40:50 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosHost.dll
[2016.10.20 19:40:50 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosHost.dll
[2016.10.20 19:40:50 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDataAccessRes.dll
[2016.10.20 19:40:50 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataAccessRes.dll
[2016.10.20 19:40:50 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PhoneutilRes.dll
[2016.10.20 19:40:50 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneutilRes.dll
[2016.10.20 19:40:50 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlStringsRes.dll
[2016.10.20 19:40:50 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlStringsRes.dll
[2016.10.20 19:40:49 | 003,405,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tquery.dll
[2016.10.20 19:40:49 | 002,538,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssrch.dll
[2016.10.20 19:40:49 | 001,988,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssrch.dll
[2016.10.20 19:40:49 | 001,100,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvix64.exe
[2016.10.20 19:40:49 | 000,988,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvax64.exe
[2016.10.20 19:40:49 | 000,947,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvloader.efi
[2016.10.20 19:40:49 | 000,811,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvloader.exe
[2016.10.20 19:40:49 | 000,390,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Search.ProtocolHandler.MAPI2.dll
[2016.10.20 19:40:49 | 000,349,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchProtocolHost.exe
[2016.10.20 19:40:49 | 000,291,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Search.ProtocolHandler.MAPI2.dll
[2016.10.20 19:40:49 | 000,206,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2016.10.20 19:40:49 | 000,205,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFilterHost.exe
[2016.10.20 19:40:49 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssprxy.dll
[2016.10.20 19:40:49 | 000,114,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32u.dll
[2016.10.20 19:40:49 | 000,073,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hvservice.sys
[2016.10.20 19:40:49 | 000,020,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kdhvcom.dll
[2016.10.20 19:40:43 | 007,219,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.storage.dll
[2016.10.20 19:40:43 | 005,722,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll
[2016.10.20 19:40:43 | 005,611,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d2d1.dll
[2016.10.20 19:40:43 | 004,136,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepository.dll
[2016.10.20 19:40:43 | 003,196,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cdp.dll
[2016.10.20 19:40:43 | 002,740,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll
[2016.10.20 19:40:43 | 002,681,200 | ---- | M] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll
[2016.10.20 19:40:43 | 002,083,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceFlows.DataModel.dll
[2016.10.20 19:40:43 | 002,048,496 | ---- | M] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2016.10.20 19:40:43 | 001,755,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DeviceFlows.DataModel.dll
[2016.10.20 19:40:43 | 001,738,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsCodecs.dll
[2016.10.20 19:40:43 | 001,534,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Graphics.Printing.3D.dll
[2016.10.20 19:40:43 | 001,424,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Maps.dll
[2016.10.20 19:40:43 | 001,369,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Phone.dll
[2016.10.20 19:40:43 | 001,275,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Bluetooth.dll
[2016.10.20 19:40:43 | 001,247,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Globalization.dll
[2016.10.20 19:40:43 | 001,232,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Maps.dll
[2016.10.20 19:40:43 | 001,170,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Phone.dll
[2016.10.20 19:40:43 | 001,013,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.Http.dll
[2016.10.20 19:40:43 | 000,975,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.appcore.dll
[2016.10.20 19:40:43 | 000,971,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll
[2016.10.20 19:40:43 | 000,901,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Bluetooth.dll
[2016.10.20 19:40:43 | 000,883,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2016.10.20 19:40:43 | 000,873,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aadtb.dll
[2016.10.20 19:40:43 | 000,860,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll
[2016.10.20 19:40:43 | 000,827,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2016.10.20 19:40:43 | 000,819,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppContracts.dll
[2016.10.20 19:40:43 | 000,751,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2016.10.20 19:40:43 | 000,646,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2016.10.20 19:40:43 | 000,642,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.InkControls.dll
[2016.10.20 19:40:43 | 000,634,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll
[2016.10.20 19:40:43 | 000,634,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StructuredQuery.dll
[2016.10.20 19:40:43 | 000,609,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Import.dll
[2016.10.20 19:40:43 | 000,598,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.dll
[2016.10.20 19:40:43 | 000,568,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.LowLevel.dll
[2016.10.20 19:40:43 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ShareHost.dll
[2016.10.20 19:40:43 | 000,560,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\webio.dll
[2016.10.20 19:40:43 | 000,512,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mprapi.dll
[2016.10.20 19:40:43 | 000,509,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncHost.exe
[2016.10.20 19:40:43 | 000,505,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.WiFiDirect.dll
[2016.10.20 19:40:43 | 000,500,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Graphics.Printing.dll
[2016.10.20 19:40:43 | 000,472,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Bluetooth.dll
[2016.10.20 19:40:43 | 000,468,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.InkControls.dll
[2016.10.20 19:40:43 | 000,467,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Gaming.XboxLive.Storage.dll
[2016.10.20 19:40:43 | 000,426,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OneDriveSettingSyncProvider.dll
[2016.10.20 19:40:43 | 000,410,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\facecredentialprovider.dll
[2016.10.20 19:40:43 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Gaming.Input.dll
[2016.10.20 19:40:43 | 000,389,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wevtapi.dll
[2016.10.20 19:40:43 | 000,386,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.WiFiDirect.dll
[2016.10.20 19:40:43 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wincorlib.dll
[2016.10.20 19:40:43 | 000,374,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.LowLevel.dll
[2016.10.20 19:40:43 | 000,343,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.SmartCards.Phone.dll
[2016.10.20 19:40:43 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Picker.dll
[2016.10.20 19:40:43 | 000,332,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Internal.Bluetooth.dll
[2016.10.20 19:40:43 | 000,328,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Storage.ApplicationData.dll
[2016.10.20 19:40:43 | 000,327,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\container.dll
[2016.10.20 19:40:43 | 000,327,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eapp3hst.dll
[2016.10.20 19:40:43 | 000,315,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Gaming.XboxLive.Storage.dll
[2016.10.20 19:40:43 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eapphost.dll
[2016.10.20 19:40:43 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DataExchange.dll
[2016.10.20 19:40:43 | 000,262,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Storage.ApplicationData.dll
[2016.10.20 19:40:43 | 000,262,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Picker.dll
[2016.10.20 19:40:43 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DataExchange.dll
[2016.10.20 19:40:43 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eappcfg.dll
[2016.10.20 19:40:43 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinesam.dll
[2016.10.20 19:40:43 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\container.dll
[2016.10.20 19:40:43 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DisplayManager.dll
[2016.10.20 19:40:43 | 000,178,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostUser.dll
[2016.10.20 19:40:43 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ClipboardServer.dll
[2016.10.20 19:40:43 | 000,146,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostCommon.dll
[2016.10.20 19:40:43 | 000,141,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Radios.dll
[2016.10.20 19:40:43 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DisplayManager.dll
[2016.10.20 19:40:43 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinRtTracing.dll
[2016.10.20 19:40:43 | 000,136,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudExperienceHostUser.dll
[2016.10.20 19:40:43 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Energy.dll
[2016.10.20 19:40:43 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.HostName.dll
[2016.10.20 19:40:43 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll
[2016.10.20 19:40:43 | 000,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryClient.dll
[2016.10.20 19:40:43 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FontProvider.dll
[2016.10.20 19:40:43 | 000,119,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wcifs.sys
[2016.10.20 19:40:43 | 000,116,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudExperienceHostCommon.dll
[2016.10.20 19:40:43 | 000,115,712 | ---- | M] (Microsoft Corporation) --
Nahoru
Qvíčala
nováček
Příspěvky: 42
Registrován: říjen 16
Pohlaví: Nespecifikováno
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod Qvíčala » 31 říj 2016 20:55

[2016.10.20 19:40:43 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Core.dll
[2016.10.20 19:40:43 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll
[2016.10.20 19:40:43 | 000,113,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.ServiceDiscovery.Dnssd.dll
[2016.10.20 19:40:43 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eappgnui.dll
[2016.10.20 19:40:43 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.ServiceDiscovery.Dnssd.dll
[2016.10.20 19:40:43 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryBroker.dll
[2016.10.20 19:40:43 | 000,071,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eappprxy.dll
[2016.10.20 19:40:43 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NfcRadioMedia.dll
[2016.10.20 19:40:42 | 005,111,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdp.dll
[2016.10.20 19:40:42 | 003,202,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll
[2016.10.20 19:40:42 | 003,116,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSAJApi.dll
[2016.10.20 19:40:42 | 002,914,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CertEnroll.dll
[2016.10.20 19:40:42 | 002,423,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSAJApi.dll
[2016.10.20 19:40:42 | 002,390,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\smartscreen.exe
[2016.10.20 19:40:42 | 002,208,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Graphics.Printing.3D.dll
[2016.10.20 19:40:42 | 001,710,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2016.10.20 19:40:42 | 001,586,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Globalization.dll
[2016.10.20 19:40:42 | 001,535,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SpeechPal.dll
[2016.10.20 19:40:42 | 001,507,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.FaceAnalysis.dll
[2016.10.20 19:40:42 | 001,328,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Http.dll
[2016.10.20 19:40:42 | 001,243,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.FaceAnalysis.dll
[2016.10.20 19:40:42 | 001,107,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aadtb.dll
[2016.10.20 19:40:42 | 001,080,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Ocr.dll
[2016.10.20 19:40:42 | 001,062,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll
[2016.10.20 19:40:42 | 001,060,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppContracts.dll
[2016.10.20 19:40:42 | 001,013,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManager.dll
[2016.10.20 19:40:42 | 000,960,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\modernexecserver.dll
[2016.10.20 19:40:42 | 000,924,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll
[2016.10.20 19:40:42 | 000,912,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.SmartCards.dll
[2016.10.20 19:40:42 | 000,896,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.AccountsControl.dll
[2016.10.20 19:40:42 | 000,875,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TokenBroker.dll
[2016.10.20 19:40:42 | 000,852,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Import.dll
[2016.10.20 19:40:42 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.Web.Core.dll
[2016.10.20 19:40:42 | 000,774,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.dll
[2016.10.20 19:40:42 | 000,747,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Ocr.dll
[2016.10.20 19:40:42 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ShareHost.dll
[2016.10.20 19:40:42 | 000,715,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\clusapi.dll
[2016.10.20 19:40:42 | 000,681,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ClipSp.sys
[2016.10.20 19:40:42 | 000,653,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.AccountsControl.dll
[2016.10.20 19:40:42 | 000,651,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.AllJoyn.dll
[2016.10.20 19:40:42 | 000,611,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Graphics.Printing.dll
[2016.10.20 19:40:42 | 000,584,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncHost.exe
[2016.10.20 19:40:42 | 000,560,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppReadiness.dll
[2016.10.20 19:40:42 | 000,547,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Gaming.Input.dll
[2016.10.20 19:40:42 | 000,526,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OneDriveSettingSyncProvider.dll
[2016.10.20 19:40:42 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.AllJoyn.dll
[2016.10.20 19:40:42 | 000,480,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dsreg.dll
[2016.10.20 19:40:42 | 000,458,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RTMediaFrame.dll
[2016.10.20 19:40:42 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AccountsRt.dll
[2016.10.20 19:40:42 | 000,427,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vmrdvcore.dll
[2016.10.20 19:40:42 | 000,424,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aadcloudap.dll
[2016.10.20 19:40:42 | 000,418,304 | ---- | M] () -- C:\WINDOWS\SysNative\Windows.Perception.Stub.dll
[2016.10.20 19:40:42 | 000,376,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CryptoWinRT.dll
[2016.10.20 19:40:42 | 000,374,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\resutils.dll
[2016.10.20 19:40:42 | 000,355,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RTMediaFrame.dll
[2016.10.20 19:40:42 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cloudAP.dll
[2016.10.20 19:40:42 | 000,349,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\icsvcext.dll
[2016.10.20 19:40:42 | 000,305,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\icsvc.dll
[2016.10.20 19:40:42 | 000,265,728 | ---- | M] () -- C:\WINDOWS\SysWow64\Windows.Perception.Stub.dll
[2016.10.20 19:40:42 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.HostName.dll
[2016.10.20 19:40:42 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipboardServer.dll
[2016.10.20 19:40:42 | 000,196,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDeviceRegistration.dll
[2016.10.20 19:40:42 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Radios.dll
[2016.10.20 19:40:42 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Energy.dll
[2016.10.20 19:40:42 | 000,167,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ErrorDetails.dll
[2016.10.20 19:40:42 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ACPBackgroundManagerPolicy.dll
[2016.10.20 19:40:42 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32k.sys
[2016.10.20 19:40:42 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthBroker.dll
[2016.10.20 19:40:42 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\setupugc.exe
[2016.10.20 19:40:42 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDeviceRegistration.Ngc.dll
[2016.10.20 19:40:42 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tzautoupdate.dll
[2016.10.20 19:40:42 | 000,090,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Printers.dll
[2016.10.20 19:40:42 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.System.UserDeviceAssociation.dll
[2016.10.20 19:40:42 | 000,079,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32u.dll
[2016.10.20 19:40:42 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\winhvr.sys
[2016.10.20 19:40:42 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ffbroker.dll
[2016.10.20 19:40:38 | 006,654,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2016.10.20 19:40:38 | 004,557,824 | ---- | M] (Microsoft) -- C:\WINDOWS\SysWow64\dbgeng.dll
[2016.10.20 19:40:38 | 003,369,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepository.dll
[2016.10.20 19:40:38 | 003,105,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstsc.exe
[2016.10.20 19:40:38 | 002,860,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi.dll
[2016.10.20 19:40:38 | 002,153,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi.dll
[2016.10.20 19:40:38 | 001,456,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2016.10.20 19:40:38 | 001,415,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gdi32full.dll
[2016.10.20 19:40:38 | 001,157,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.appcore.dll
[2016.10.20 19:40:38 | 001,022,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxPackaging.dll
[2016.10.20 19:40:38 | 000,691,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TokenBroker.dll
[2016.10.20 19:40:38 | 000,680,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tdh.dll
[2016.10.20 19:40:38 | 000,620,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll
[2016.10.20 19:40:38 | 000,575,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll
[2016.10.20 19:40:38 | 000,575,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\nshwfp.dll
[2016.10.20 19:40:38 | 000,562,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.SmartCards.dll
[2016.10.20 19:40:38 | 000,554,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdh.dll
[2016.10.20 19:40:38 | 000,545,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\uReFS.dll
[2016.10.20 19:40:38 | 000,518,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ngccredprov.dll
[2016.10.20 19:40:38 | 000,461,312 | ---- | M] (Microsoft) -- C:\WINDOWS\SysWow64\DbgModel.dll
[2016.10.20 19:40:38 | 000,461,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\webio.dll
[2016.10.20 19:40:38 | 000,404,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dsreg.dll
[2016.10.20 19:40:38 | 000,361,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsmf.dll
[2016.10.20 19:40:38 | 000,329,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceaccess.dll
[2016.10.20 19:40:38 | 000,297,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wevtapi.dll
[2016.10.20 19:40:38 | 000,295,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pdh.dll
[2016.10.20 19:40:38 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincorlib.dll
[2016.10.20 19:40:38 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cryptngc.dll
[2016.10.20 19:40:38 | 000,262,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pdh.dll
[2016.10.20 19:40:38 | 000,210,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinesam.dll
[2016.10.20 19:40:38 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDeviceRegistration.dll
[2016.10.20 19:40:38 | 000,117,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AuthBroker.dll
[2016.10.20 19:40:38 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll
[2016.10.20 19:40:38 | 000,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryClient.dll
[2016.10.20 19:40:38 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDeviceRegistration.Ngc.dll
[2016.10.20 19:40:38 | 000,083,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\devenum.dll
[2016.10.20 19:40:38 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.System.UserDeviceAssociation.dll
[2016.10.20 19:40:38 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BackgroundMediaPolicy.dll
[2016.10.20 19:40:38 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spaceman.exe
[2016.10.20 19:40:38 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceassociation.dll
[2016.10.20 19:40:38 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\delegatorprovider.dll
[2016.10.20 19:40:38 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi_passthru.dll
[2016.10.20 19:40:38 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\smphost.dll
[2016.10.20 19:40:38 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\encapi.dll
[2016.10.20 19:40:38 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\smphost.dll
[2016.10.20 19:40:38 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msxml6r.dll
[2016.10.20 19:40:37 | 002,646,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CertEnroll.dll
[2016.10.20 19:40:37 | 001,358,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2016.10.20 19:40:37 | 001,112,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxPackaging.dll
[2016.10.20 19:40:37 | 000,764,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CoreMessaging.dll
[2016.10.20 19:40:37 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CoreMessaging.dll
[2016.10.20 19:40:37 | 000,448,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TpmCoreProvisioning.dll
[2016.10.20 19:40:37 | 000,445,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mprapi.dll
[2016.10.20 19:40:37 | 000,437,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Usb.dll
[2016.10.20 19:40:37 | 000,433,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\imapi2.dll
[2016.10.20 19:40:37 | 000,358,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.dll
[2016.10.20 19:40:37 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Usb.dll
[2016.10.20 19:40:37 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CryptoWinRT.dll
[2016.10.20 19:40:37 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.dll
[2016.10.20 19:40:37 | 000,279,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys
[2016.10.20 19:40:37 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.HumanInterfaceDevice.dll
[2016.10.20 19:40:37 | 000,225,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\C_G18030.DLL
[2016.10.20 19:40:37 | 000,218,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tpm.sys
[2016.10.20 19:40:37 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.HumanInterfaceDevice.dll
[2016.10.20 19:40:37 | 000,187,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys
[2016.10.20 19:40:37 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll
[2016.10.20 19:40:37 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.SerialCommunication.dll
[2016.10.20 19:40:37 | 000,130,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storahci.sys
[2016.10.20 19:40:37 | 000,129,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.SerialCommunication.dll
[2016.10.20 19:40:37 | 000,128,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmapi.dll
[2016.10.20 19:40:37 | 000,118,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\EhStorTcgDrv.sys
[2016.10.20 19:40:37 | 000,081,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stornvme.sys
[2016.10.20 19:40:37 | 000,074,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\vpci.sys
[2016.10.20 19:40:37 | 000,064,352 | ---- | M] (Avago Technologies) -- C:\WINDOWS\SysNative\drivers\MegaSas2i.sys
[2016.10.20 19:40:37 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\cs-CZ\spaceport.sys.mui
[2016.10.20 19:40:37 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\spaceport.sys.mui
[2016.10.20 19:40:37 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xinputhid.sys
[2016.10.20 19:40:37 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidparse.sys
[2016.10.20 19:40:37 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\odbcconf.dll
[2016.10.20 19:40:37 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\delegatorprovider.dll
[2016.10.20 19:40:37 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi_passthru.dll
[2016.10.20 19:40:37 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\C_IS2022.DLL
[2016.10.20 19:40:37 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\c_GSM7.DLL
[2016.10.20 19:29:50 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\en-US\NdisImPlatform.sys.mui
[2016.10.20 19:29:48 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\UMDF\en-US\SensorsCx.dll.mui
[2016.10.20 19:29:45 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\NdisImPlatform.sys.mui
[2016.10.20 19:29:44 | 000,109,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\tcpip.sys.mui
[2016.10.20 19:29:44 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\bthport.sys.mui
[2016.10.20 19:29:44 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\hidbth.sys.mui
[2016.10.20 19:29:44 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\BthMini.SYS.mui
[2016.10.20 19:29:44 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\BTHUSB.SYS.mui
[2016.10.20 19:29:44 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\bthenum.sys.mui
[2016.10.20 19:29:44 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\SensorsCx.dll.mui
[2016.10.20 19:29:40 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\scfilter.sys.mui
[2016.10.20 19:29:38 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\serscan.sys.mui
[2016.10.20 19:23:29 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\usbrpm.sys.mui
[2016.10.20 19:23:24 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\netvsc.sys.mui
[2016.10.20 19:23:24 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\synth3dvsc.sys.mui
[2016.10.20 19:23:24 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\vmstorfl.sys.mui
[2016.10.20 19:23:24 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\dmvsc.sys.mui
[2016.10.20 19:23:24 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\vmbus.sys.mui
[2016.10.20 19:23:24 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\rfxvmt.sys.mui
[2016.10.20 19:23:22 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\fvevol.sys.mui
[2016.10.20 19:23:19 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\WpdMtpDr.dll.mui
[2016.10.20 19:23:17 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\sk-SK\NdisImPlatform.sys.mui
[2016.10.20 19:23:15 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\en-US\ndiscap.sys.mui
[2016.10.20 19:23:15 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\en-US\wfplwfs.sys.mui
[2016.10.20 19:23:15 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\UMDF\sk-SK\SensorsCx.dll.mui
[2016.10.20 19:23:08 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\nwifi.sys.mui
[2016.10.20 19:23:08 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\NdisImPlatform.sys.mui
[2016.10.20 19:23:08 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mslldp.sys.mui
[2016.10.20 19:23:08 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wof.sys.mui
[2016.10.20 19:23:08 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\bthpan.sys.mui
[2016.10.20 19:23:08 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\agilevpn.sys.mui
[2016.10.20 19:23:08 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ws2ifsl.sys.mui
[2016.10.20 19:23:07 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\http.sys.mui
[2016.10.20 19:23:07 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\refsv1.sys.mui
[2016.10.20 19:23:07 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\tunnel.sys.mui
[2016.10.20 19:23:07 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\modem.sys.mui
[2016.10.20 19:23:07 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wudfpf.sys.mui
[2016.10.20 19:23:07 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\volmgrx.sys.mui
[2016.10.20 19:23:07 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\NdisVirtualBus.sys.mui
[2016.10.20 19:23:07 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\iorate.sys.mui
[2016.10.20 19:23:02 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\tcpip.sys.mui
[2016.10.20 19:23:02 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ntfs.sys.mui
[2016.10.20 19:23:02 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ndis.sys.mui
[2016.10.20 19:23:02 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\usbport.sys.mui
[2016.10.20 19:23:02 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\afd.sys.mui
[2016.10.20 19:23:02 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\USBHUB3.SYS.mui
[2016.10.20 19:23:02 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\bthport.sys.mui
[2016.10.20 19:23:02 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\USBXHCI.SYS.mui
[2016.10.20 19:23:02 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\usbhub.sys.mui
[2016.10.20 19:23:02 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\BthLEEnum.sys.mui
[2016.10.20 19:23:02 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\i8042prt.sys.mui
[2016.10.20 19:23:02 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\storqosflt.sys.mui
[2016.10.20 19:23:02 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\tpm.sys.mui
[2016.10.20 19:23:02 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\sdbus.sys.mui
[2016.10.20 19:23:02 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\dumpsd.sys.mui
[2016.10.20 19:23:02 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ndiscap.sys.mui
[2016.10.20 19:23:02 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\hidclass.sys.mui
[2016.10.20 19:23:02 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\sermouse.sys.mui
[2016.10.20 19:23:02 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\hidbth.sys.mui
[2016.10.20 19:23:02 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\fltmgr.sys.mui
[2016.10.20 19:23:02 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mouclass.sys.mui
[2016.10.20 19:23:02 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\kbdclass.sys.mui
[2016.10.20 19:23:02 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\HidBthLE.dll.mui
[2016.10.20 19:23:02 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\hidi2c.sys.mui
[2016.10.20 19:23:02 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\BthMini.SYS.mui
[2016.10.20 19:23:02 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wdf01000.sys.mui
[2016.10.20 19:23:02 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\usbehci.sys.mui
[2016.10.20 19:23:02 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\SensorsHid.dll.mui
[2016.10.20 19:23:02 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\sdstor.sys.mui
[2016.10.20 19:23:02 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\BTHUSB.SYS.mui
[2016.10.20 19:23:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\usbstor.sys.mui
[2016.10.20 19:23:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\rfcomm.sys.mui
[2016.10.20 19:23:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\partmgr.sys.mui
[2016.10.20 19:23:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mshidumdf.sys.mui
[2016.10.20 19:23:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mountmgr.sys.mui
[2016.10.20 19:23:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mouhid.sys.mui
[2016.10.20 19:23:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\kbdhid.sys.mui
[2016.10.20 19:23:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\IndirectKmd.sys.mui
[2016.10.20 19:23:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\bthenum.sys.mui
[2016.10.20 19:23:02 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\sk-SK\SensorsCx.dll.mui
[2016.10.20 19:23:01 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\srv2.sys.mui
[2016.10.20 19:23:01 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mrxsmb.sys.mui
[2016.10.20 19:23:01 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mup.sys.mui
[2016.10.20 19:23:01 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\rdbss.sys.mui
[2016.10.20 19:23:01 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ndisuio.sys.mui
[2016.10.20 19:23:01 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\scfilter.sys.mui
[2016.10.20 19:23:00 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\luafv.sys.mui
[2016.10.20 19:22:58 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wfplwfs.sys.mui
[2016.10.20 19:22:58 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\msgpiowin32.sys.mui
[2016.10.20 19:22:55 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\scmdisk0101.sys.mui
[2016.10.20 19:22:55 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\pacer.sys.mui
[2016.10.20 19:22:55 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wmbclass.sys.mui
[2016.10.20 19:22:55 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\processr.sys.mui
[2016.10.20 19:22:55 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\intelppm.sys.mui
[2016.10.20 19:22:55 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\amdppm.sys.mui
[2016.10.20 19:22:55 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\amdk8.sys.mui
[2016.10.20 19:22:55 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\vhdmp.sys.mui
[2016.10.20 19:22:55 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\vdrvroot.sys.mui
[2016.10.20 19:22:55 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\serial.sys.mui
[2016.10.20 19:22:55 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\acpi.sys.mui
[2016.10.20 19:22:55 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\pci.sys.mui
[2016.10.20 19:22:55 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\battc.sys.mui
[2016.10.20 19:22:55 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\ataport.sys.mui
[2016.10.20 19:22:55 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\IPMIDrv.sys.mui
[2016.10.20 19:22:55 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\disk.sys.mui
[2016.10.20 19:22:55 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\scmbus.sys.mui
[2016.10.20 19:22:55 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\parport.sys.mui
[2016.10.20 19:22:55 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\isapnp.sys.mui
[2016.10.20 19:22:55 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\umbus.sys.mui
[2016.10.20 19:22:55 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\mssmbios.sys.mui
[2016.10.20 19:22:55 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\vhf.sys.mui
[2016.10.20 19:22:55 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\qwavedrv.sys.mui
[2016.10.20 19:22:55 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\MTConfig.sys.mui
[2016.10.20 19:22:55 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\volmgr.sys.mui
[2016.10.20 19:22:55 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\pdc.sys.mui
[2016.10.20 19:22:54 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\1394ohci.sys.mui
[2016.10.20 19:22:54 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\wacompen.sys.mui
[2016.10.20 19:22:54 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\usbvideo.sys.mui
[2016.10.20 19:22:54 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\cdrom.sys.mui
[2016.10.20 19:22:53 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\EhStorTcgDrv.sys.mui
[2016.10.20 19:22:53 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\en-US\WUDFUsbccidDriver.dll.mui
[2016.10.20 19:22:53 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\pcmcia.sys.mui
[2016.10.20 19:22:53 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\rndismpx.sys.mui
[2016.10.20 19:22:53 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\rndismp6.sys.mui
[2016.10.20 19:22:53 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\bthhfenum.sys.mui
[2016.10.20 19:22:53 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sk-SK\serscan.sys.mui
[2016.10.20 19:22:53 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\pnpmem.sys.mui
[2016.10.20 19:22:53 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\BthAvrcpTg.sys.mui
[2016.10.20 19:22:53 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\en-US\BthhfHid.sys.mui
[2016.10.20 19:12:39 | 000,007,623 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2016.10.20 19:12:39 | 000,007,623 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2016.10.20 19:11:08 | 000,199,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wof.sys
[2016.10.20 19:08:31 | 000,023,020 | ---- | M] () -- C:\WINDOWS\SysNative\emptyregdb.dat
[2016.10.20 18:57:20 | 000,000,102 | ---- | M] () -- C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
[2016.10.20 18:56:47 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Apfiltr_01009.Wdf
[2016.10.20 18:56:31 | 000,000,200 | ---- | M] () -- C:\WINDOWS\SysNative\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
[2016.10.20 17:45:37 | 000,387,840 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\ibtproppage.dll
[2016.10.20 17:45:37 | 000,250,624 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\ibtusb.sys
[2016.10.20 17:45:37 | 000,190,216 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\ibtsiva.exe
[2016.10.20 17:45:32 | 010,864,440 | ---- | M] () -- C:\WINDOWS\SysNative\nvptxJitCompiler.dll
[2016.10.20 17:45:31 | 031,704,120 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvoglv64.dll
[2016.10.20 17:45:31 | 025,465,280 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvoglv32.dll
[2016.10.20 17:45:31 | 010,840,312 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvopencl.dll
[2016.10.20 17:45:31 | 009,151,448 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvopencl.dll
[2016.10.20 17:45:31 | 008,916,512 | ---- | M] () -- C:\WINDOWS\SysWow64\nvptxJitCompiler.dll
[2016.10.20 17:45:29 | 000,946,112 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFR64.dll
[2016.10.20 17:45:29 | 000,869,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFR.dll
[2016.10.20 17:45:29 | 000,460,224 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFROpenGL.dll
[2016.10.20 17:45:29 | 000,412,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFROpenGL.dll
[2016.10.20 17:45:29 | 000,040,296 | ---- | M] () -- C:\WINDOWS\SysNative\nvinfo.pb
[2016.10.20 17:45:25 | 010,374,488 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuda.dll
[2016.10.20 17:45:25 | 008,737,976 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuda.dll
[2016.10.20 17:45:25 | 002,889,272 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuvid.dll
[2016.10.20 17:45:25 | 002,518,584 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvid.dll
[2016.10.20 17:45:25 | 001,956,408 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispco6436909.dll
[2016.10.20 17:45:25 | 001,604,152 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispgenco6436909.dll
[2016.10.20 17:45:25 | 001,021,496 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvFBC64.dll
[2016.10.20 17:45:25 | 000,929,848 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvFBC.dll
[2016.10.20 17:45:25 | 000,835,096 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncMFTH264.dll
[2016.10.20 17:45:25 | 000,724,376 | ---- | M] () -- C:\WINDOWS\SysNative\nvfatbinaryLoader.dll
[2016.10.20 17:45:25 | 000,673,464 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvEncMFTH264.dll
[2016.10.20 17:45:25 | 000,611,608 | ---- | M] () -- C:\WINDOWS\SysWow64\nvfatbinaryLoader.dll
[2016.10.20 17:45:25 | 000,438,296 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncodeAPI64.dll
[2016.10.20 17:45:25 | 000,369,680 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvEncodeAPI.dll
[2016.10.20 17:45:24 | 039,996,984 | ---- | M] () -- C:\WINDOWS\SysNative\nvcompiler.dll
[2016.10.20 17:45:24 | 035,133,376 | ---- | M] () -- C:\WINDOWS\SysWow64\nvcompiler.dll
[2016.10.20 17:45:24 | 003,912,128 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvapi64.dll
[2016.10.20 17:45:24 | 003,460,824 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvapi.dll
[2016.10.20 17:45:23 | 000,000,594 | ---- | M] () -- C:\WINDOWS\SysNative\nv-vk64.json
[2016.10.20 17:45:23 | 000,000,594 | ---- | M] () -- C:\WINDOWS\SysWow64\nv-vk32.json
[2016.10.20 16:11:39 | 000,001,215 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
[2016.10.20 15:52:44 | 002,365,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WudfUpdate_01011.dll
[2016.10.20 15:52:43 | 000,134,120 | ---- | M] (Lenovo Group Limited) -- C:\WINDOWS\SysNative\drivers\UMDF\iMDriver.dll
[2016.10.20 14:51:59 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
[2016.10.20 14:47:18 | 000,000,568 | ---- | M] () -- C:\WINDOWS\SysNative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
[2016.10.20 14:47:18 | 000,000,486 | ---- | M] () -- C:\WINDOWS\SysNative\{86F549EB-A66B-4D6C-958D-CDDD66410751}.bat
[2016.10.20 14:46:58 | 000,016,148 | ---- | M] () -- C:\WINDOWS\SysNative\DESKTOP-495GEAV_defaultuser0_HistoryPrediction.bin
[2016.10.20 14:46:17 | 002,813,952 | ---- | M] () -- C:\WINDOWS\SysNative\iglhxa64.cpa
[2016.10.20 14:46:17 | 001,816,728 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\iglhsip64.dll
[2016.10.20 14:46:17 | 001,814,064 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\iglhsip32.dll
[2016.10.20 14:46:17 | 000,632,848 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\MetroIntelGenericUIFramework.dll
[2016.10.20 14:46:17 | 000,623,072 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelCpHDCPSvc.exe
[2016.10.20 14:46:17 | 000,536,544 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiUMS64.exe
[2016.10.20 14:46:17 | 000,416,264 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelOpenCL64.dll
[2016.10.20 14:46:17 | 000,403,671 | ---- | M] () -- C:\WINDOWS\SysNative\ImageStabilization.wmv
[2016.10.20 14:46:17 | 000,350,192 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiMCComp64.dll
[2016.10.20 14:46:17 | 000,318,480 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\IntelOpenCL32.dll
[2016.10.20 14:46:17 | 000,301,536 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
[2016.10.20 14:46:17 | 000,206,864 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxCoIn_v4364.dll
[2016.10.20 14:46:17 | 000,103,944 | ---- | M] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.DLL
[2016.10.20 14:46:17 | 000,103,944 | ---- | M] (Khronos Group) -- C:\WINDOWS\SysWow64\Intel_OpenCL_ICD32.dll
[2016.10.20 14:46:17 | 000,099,856 | ---- | M] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.DLL
[2016.10.20 14:46:17 | 000,099,856 | ---- | M] (Khronos Group) -- C:\WINDOWS\SysNative\Intel_OpenCL_ICD64.dll
[2016.10.20 14:46:17 | 000,041,296 | ---- | M] () -- C:\WINDOWS\SysNative\iglhxc64_dev.vp
[2016.10.20 14:46:17 | 000,040,931 | ---- | M] () -- C:\WINDOWS\SysNative\iglhxo64_dev.vp
[2016.10.20 14:46:17 | 000,040,343 | ---- | M] () -- C:\WINDOWS\SysNative\iglhxo64.vp
[2016.10.20 14:46:17 | 000,040,316 | ---- | M] () -- C:\WINDOWS\SysNative\iglhxc64.vp
[2016.10.20 14:46:17 | 000,039,798 | ---- | M] () -- C:\WINDOWS\SysNative\iglhxg64_dev.vp
[2016.10.20 14:46:17 | 000,039,658 | ---- | M] () -- C:\WINDOWS\SysNative\iglhxg64.vp
[2016.10.20 14:46:17 | 000,004,826 | ---- | M] () -- C:\WINDOWS\SysNative\iglhxs64.vp
[2016.10.20 14:46:17 | 000,001,125 | ---- | M] () -- C:\WINDOWS\SysNative\iglhxa64.vp
[2016.10.20 14:46:16 | 002,071,056 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxLHM.dll
[2016.10.20 14:46:16 | 001,576,968 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxcmjit64.dll
[2016.10.20 14:46:16 | 001,167,888 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxcmjit32.dll
[2016.10.20 14:46:16 | 001,027,040 | ---- | M] () -- C:\WINDOWS\SysNative\igfxSDK.exe
[2016.10.20 14:46:16 | 000,751,120 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxDH.dll
[2016.10.20 14:46:16 | 000,435,096 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfx11cmrt64.dll
[2016.10.20 14:46:16 | 000,433,976 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxcmrt64.dll
[2016.10.20 14:46:16 | 000,402,912 | ---- | M] () -- C:\WINDOWS\SysNative\igfxTray.exe
[2016.10.20 14:46:16 | 000,390,152 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxOSP.dll
[2016.10.20 14:46:16 | 000,387,088 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxDI.dll
[2016.10.20 14:46:16 | 000,379,792 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxcmrt32.dll
[2016.10.20 14:46:16 | 000,373,728 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxCUIService.exe
[2016.10.20 14:46:16 | 000,354,784 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxEM.exe
[2016.10.20 14:46:16 | 000,273,424 | ---- | M] () -- C:\WINDOWS\SysNative\igfxCPL.cpl
Nahoru
Qvíčala
nováček
Příspěvky: 42
Registrován: říjen 16
Pohlaví: Nespecifikováno
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod Qvíčala » 31 říj 2016 20:56

[2016.10.20 14:46:16 | 000,269,280 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxHK.exe
[2016.10.20 14:46:16 | 000,255,504 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxDTCM.dll
[2016.10.20 14:46:16 | 000,242,168 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\iglhcp64.dll
[2016.10.20 14:46:16 | 000,237,024 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxext.exe
[2016.10.20 14:46:16 | 000,205,368 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\iglhcp32.dll
[2016.10.20 14:46:16 | 000,111,624 | ---- | M] ( ) -- C:\WINDOWS\SysNative\igfxSDKLibv2_0.dll
[2016.10.20 14:46:16 | 000,103,440 | ---- | M] () -- C:\WINDOWS\SysNative\igfxCUIServicePS.dll
[2016.10.20 14:46:16 | 000,100,872 | ---- | M] ( ) -- C:\WINDOWS\SysNative\igfxSDKLib.dll
[2016.10.20 14:46:16 | 000,095,248 | ---- | M] ( ) -- C:\WINDOWS\SysNative\igfxDHLibv2_0.dll
[2016.10.20 14:46:16 | 000,084,488 | ---- | M] ( ) -- C:\WINDOWS\SysNative\igfxDHLib.dll
[2016.10.20 14:46:16 | 000,055,248 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxexps.dll
[2016.10.20 14:46:16 | 000,052,744 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxexps32.dll
[2016.10.20 14:46:16 | 000,029,200 | ---- | M] ( ) -- C:\WINDOWS\SysNative\igfxDILibv2_0.dll
[2016.10.20 14:46:16 | 000,029,200 | ---- | M] ( ) -- C:\WINDOWS\SysNative\igfxDILib.dll
[2016.10.20 14:46:16 | 000,027,664 | ---- | M] ( ) -- C:\WINDOWS\SysNative\igfxEMLib.dll
[2016.10.20 14:46:16 | 000,027,656 | ---- | M] ( ) -- C:\WINDOWS\SysNative\igfxEMLibv2_0.dll
[2016.10.20 14:46:16 | 000,022,544 | ---- | M] ( ) -- C:\WINDOWS\SysNative\igfxLHMLibv2_0.dll
[2016.10.20 14:46:16 | 000,022,544 | ---- | M] ( ) -- C:\WINDOWS\SysNative\igfxLHMLib.dll
[2016.10.20 14:46:15 | 032,710,184 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdumdim64.dll
[2016.10.20 14:46:15 | 031,777,000 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdumdim32.dll
[2016.10.20 14:46:15 | 007,884,776 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\igdkmd64.sys
[2016.10.20 14:46:15 | 006,601,952 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdusc64.dll
[2016.10.20 14:46:15 | 005,685,776 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdmcl64.dll
[2016.10.20 14:46:15 | 005,056,120 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdusc32.dll
[2016.10.20 14:46:15 | 004,642,824 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdrcl64.dll
[2016.10.20 14:46:15 | 004,171,792 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdrcl32.dll
[2016.10.20 14:46:15 | 003,970,064 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdmcl32.dll
[2016.10.20 14:46:15 | 002,160,464 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdmd64.dll
[2016.10.20 14:46:15 | 001,677,872 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdmd32.dll
[2016.10.20 14:46:15 | 000,381,944 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfx11cmrt32.dll
[2016.10.20 14:46:14 | 027,592,264 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igd11dxva32.dll
[2016.10.20 14:46:14 | 026,305,928 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igd11dxva64.dll
[2016.10.20 14:46:14 | 014,553,192 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igd10iumd64.dll
[2016.10.20 14:46:14 | 005,799,386 | ---- | M] () -- C:\WINDOWS\SysNative\igdclbif.bin
[2016.10.20 14:46:14 | 004,191,040 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igd12umd64.dll
[2016.10.20 14:46:14 | 004,062,112 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igd12umd32.dll
[2016.10.20 14:46:14 | 000,439,312 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdbcl64.dll
[2016.10.20 14:46:14 | 000,388,624 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdbcl32.dll
[2016.10.20 14:46:14 | 000,266,256 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdfcl64.dll
[2016.10.20 14:46:14 | 000,225,296 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdfcl32.dll
[2016.10.20 14:46:14 | 000,222,736 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdde64.dll
[2016.10.20 14:46:14 | 000,193,040 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdail64.dll
[2016.10.20 14:46:14 | 000,181,336 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdde32.dll
[2016.10.20 14:46:14 | 000,173,072 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdail32.dll
[2016.10.20 14:46:13 | 015,477,576 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igc64.dll
[2016.10.20 14:46:13 | 013,501,968 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\ig9icd64.dll
[2016.10.20 14:46:13 | 013,450,696 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igc32.dll
[2016.10.20 14:46:13 | 011,841,480 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igd10iumd32.dll
[2016.10.20 14:46:13 | 010,249,744 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\ig9icd32.dll
[2016.10.20 14:46:13 | 000,312,824 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igd10idpp64.dll
[2016.10.20 14:46:13 | 000,297,176 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igd10idpp32.dll
[2016.10.20 14:46:12 | 029,101,584 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\common_clang64.dll
[2016.10.20 14:46:12 | 019,861,520 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\common_clang32.dll
[2016.10.20 14:46:12 | 005,262,864 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\GfxResources.dll
[2016.10.20 14:46:12 | 000,964,064 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\Gfxv4_0.exe
[2016.10.20 14:46:12 | 000,960,488 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\Gfxv2_0.exe
[2016.10.20 14:46:12 | 000,826,090 | ---- | M] () -- C:\WINDOWS\SysNative\DisplayAudiox64.cab
[2016.10.20 14:46:12 | 000,641,530 | ---- | M] () -- C:\WINDOWS\SysNative\FilmModeDetection.wmv
[2016.10.20 14:46:12 | 000,511,260 | ---- | M] () -- C:\WINDOWS\SysNative\cp_resources.bin
[2016.10.20 14:46:12 | 000,466,912 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\GfxUIEx.exe
[2016.10.20 14:46:12 | 000,375,173 | ---- | M] () -- C:\WINDOWS\SysNative\ColorImageEnhancement.wmv
[2016.10.20 14:46:12 | 000,232,416 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\DPTopologyApp.exe
[2016.10.20 14:46:12 | 000,231,904 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\DPTopologyAppv2_0.exe
[2016.10.20 14:46:12 | 000,175,072 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\difx64.exe
[2016.10.20 14:46:12 | 000,000,935 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxv4_0.exe.config
[2016.10.20 14:46:12 | 000,000,935 | ---- | M] () -- C:\WINDOWS\SysNative\DPTopologyApp.exe.config
[2016.10.20 14:46:12 | 000,000,895 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxv2_0.exe.config
[2016.10.20 14:46:12 | 000,000,895 | ---- | M] () -- C:\WINDOWS\SysNative\DPTopologyAppv2_0.exe.config
[2016.10.20 14:44:58 | 001,730,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WdfCoInstaller01009.dll
[2016.10.20 14:44:57 | 000,575,784 | ---- | M] (Alps Electric Co., Ltd.) -- C:\WINDOWS\SysNative\drivers\Apfiltr.sys
[2016.10.20 14:44:57 | 000,132,440 | ---- | M] (Alps Electric Co., Ltd.) -- C:\WINDOWS\SysNative\Vxdif.dll
[2016.10.15 05:51:51 | 001,051,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2016.10.15 05:51:51 | 000,894,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2016.10.15 05:51:31 | 002,186,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hevcdecoder.dll
[2016.10.15 05:51:24 | 001,637,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll
[2016.10.15 05:51:24 | 001,235,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2016.10.15 05:51:23 | 000,595,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2016.10.15 05:51:23 | 000,584,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2016.10.15 05:51:23 | 000,322,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\invagent.dll
[2016.10.15 05:51:23 | 000,232,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2016.10.15 05:51:23 | 000,137,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll
[2016.10.15 05:51:23 | 000,078,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CompatTelRunner.exe
[2016.10.15 05:51:17 | 000,283,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCensus.exe
[2016.10.15 05:51:13 | 000,590,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2016.10.15 05:48:59 | 000,498,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DolbyDecMFT.dll
[2016.10.15 05:48:42 | 001,354,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2016.10.15 05:48:42 | 001,173,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2016.10.15 05:48:28 | 007,817,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2016.10.15 05:48:21 | 000,773,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleaut32.dll
[2016.10.15 05:47:16 | 001,883,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2016.10.15 05:43:55 | 001,356,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipUp.exe
[2016.10.15 05:38:52 | 000,409,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2016.10.15 05:37:01 | 000,063,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys
[2016.10.15 05:34:46 | 001,969,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\hevcdecoder.dll
[2016.10.15 05:33:21 | 000,455,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DolbyDecMFT.dll
[2016.10.15 05:31:50 | 002,827,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2016.10.15 05:31:48 | 000,402,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2016.10.15 05:31:43 | 000,658,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys
[2016.10.15 05:30:17 | 000,509,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys
[2016.10.15 05:30:16 | 000,557,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\spaceport.sys
[2016.10.15 05:30:16 | 000,341,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll
[2016.10.15 05:30:06 | 001,851,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\crypt32.dll
[2016.10.15 05:30:06 | 000,682,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2016.10.15 05:30:05 | 000,238,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\weretw.dll
[2016.10.15 05:29:46 | 002,913,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2016.10.15 05:29:45 | 000,079,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\crashdmp.sys
[2016.10.15 05:29:44 | 001,267,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2016.10.15 05:29:43 | 000,908,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvstore.dll
[2016.10.15 05:26:59 | 004,129,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2016.10.15 05:26:59 | 001,694,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll
[2016.10.15 05:26:56 | 001,472,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2016.10.15 05:26:56 | 000,691,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvproc.dll
[2016.10.15 05:26:53 | 001,062,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2016.10.15 05:26:52 | 001,990,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2016.10.15 05:26:52 | 000,811,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll
[2016.10.15 05:26:50 | 000,534,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2016.10.15 05:26:43 | 001,274,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll
[2016.10.15 05:26:16 | 000,160,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostBroker.dll
[2016.10.15 05:26:14 | 004,673,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2016.10.15 05:26:03 | 001,600,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppobjs.dll
[2016.10.15 05:25:52 | 000,742,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppwinob.dll
[2016.10.15 05:25:51 | 000,882,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditionUpgradeManagerObj.dll
[2016.10.15 05:22:35 | 001,608,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d9.dll
[2016.10.15 05:22:35 | 001,461,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2016.10.15 05:22:32 | 000,628,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe
[2016.10.15 05:22:29 | 001,418,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2016.10.15 05:21:33 | 000,292,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpeffects.dll
[2016.10.15 05:20:49 | 002,276,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2016.10.15 05:18:59 | 000,576,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2016.10.15 05:18:45 | 000,186,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\weretw.dll
[2016.10.15 05:18:09 | 000,846,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2016.10.15 05:18:06 | 000,749,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drvstore.dll
[2016.10.15 05:18:01 | 002,166,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2016.10.15 05:15:51 | 003,892,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2016.10.15 05:15:48 | 001,853,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2016.10.15 05:15:46 | 001,557,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll
[2016.10.15 05:15:46 | 000,687,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvproc.dll
[2016.10.15 05:15:45 | 001,123,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2016.10.15 05:15:43 | 000,952,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2016.10.15 05:14:42 | 004,311,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2016.10.15 05:11:24 | 000,545,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe
[2016.10.15 05:10:07 | 000,254,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmpeffects.dll
[2016.10.15 05:06:09 | 005,685,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Data.Pdf.dll
[2016.10.15 05:05:48 | 007,216,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Data.Pdf.dll
[2016.10.15 05:02:18 | 022,568,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2016.10.15 05:01:00 | 001,631,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Resources.dll
[2016.10.15 05:00:40 | 001,631,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Resources.dll
[2016.10.15 05:00:30 | 000,323,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.pcshell.dll
[2016.10.15 05:00:11 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2016.10.15 05:00:03 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\stdole2.tlb
[2016.10.15 04:59:51 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stdole2.tlb
[2016.10.15 04:59:49 | 000,187,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfksproxy.dll
[2016.10.15 04:59:22 | 000,272,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfksproxy.dll
[2016.10.15 04:59:08 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\splwow64.exe
[2016.10.15 04:58:43 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\efsext.dll
[2016.10.15 04:58:34 | 000,258,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xboxgip.sys
[2016.10.15 04:58:18 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\efsext.dll
[2016.10.15 04:57:50 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2016.10.15 04:57:46 | 000,186,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe
[2016.10.15 04:57:40 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmpdxm.dll
[2016.10.15 04:57:40 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dtdump.exe
[2016.10.15 04:57:02 | 000,217,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpdxm.dll
[2016.10.15 04:56:51 | 000,306,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\esentutl.exe
[2016.10.15 04:56:49 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HttpsDataSource.dll
[2016.10.15 04:56:41 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OnDemandConnRouteHelper.dll
[2016.10.15 04:56:32 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSrvPolicyManager.dll
[2016.10.15 04:56:15 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.WiFi.dll
[2016.10.15 04:56:14 | 000,339,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\esentutl.exe
[2016.10.15 04:56:14 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll
[2016.10.15 04:56:07 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BthRadioMedia.dll
[2016.10.15 04:56:06 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BluetoothApis.dll
[2016.10.15 04:56:05 | 000,327,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\daxexec.dll
[2016.10.15 04:56:05 | 000,120,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BluetoothApis.dll
[2016.10.15 04:55:50 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidclass.sys
[2016.10.15 04:55:44 | 000,329,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wc_storage.dll
[2016.10.15 04:55:33 | 000,142,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.WiFi.dll
[2016.10.15 04:55:30 | 000,567,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairing.dll
[2016.10.15 04:55:24 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpshell.dll
[2016.10.15 04:55:23 | 000,265,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcore6.dll
[2016.10.15 04:55:15 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FlightSettings.dll
[2016.10.15 04:55:07 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Flights.dll
[2016.10.15 04:55:07 | 000,182,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsensorgroup.dll
[2016.10.15 04:54:55 | 000,717,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskbarcpl.dll
[2016.10.15 04:54:51 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmpshell.dll
[2016.10.15 04:54:49 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe
[2016.10.15 04:54:25 | 000,211,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe
[2016.10.15 04:54:23 | 000,217,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairingFolder.dll
[2016.10.15 04:54:21 | 000,463,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\daxexec.dll
[2016.10.15 04:54:18 | 000,314,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FSClient.dll
[2016.10.15 04:54:18 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autoplay.dll
[2016.10.15 04:54:17 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TpmTasks.dll
[2016.10.15 04:54:11 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsensorgroup.dll
[2016.10.15 04:54:07 | 000,241,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2016.10.15 04:54:05 | 000,555,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll
[2016.10.15 04:54:00 | 000,410,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SndVolSSO.dll
[2016.10.15 04:53:50 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FSClient.dll
[2016.10.15 04:53:38 | 000,313,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshostcore.dll
[2016.10.15 04:53:21 | 000,240,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkDesktopSettings.dll
[2016.10.15 04:53:14 | 000,744,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll
[2016.10.15 04:53:07 | 000,222,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgentUserBroker.exe
[2016.10.15 04:53:05 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionCenterCPL.dll
[2016.10.15 04:53:01 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winsrv.dll
[2016.10.15 04:53:00 | 000,549,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActionCenterCPL.dll
[2016.10.15 04:52:59 | 000,690,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieproxy.dll
[2016.10.15 04:52:59 | 000,306,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieproxy.dll
[2016.10.15 04:52:51 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\systemcpl.dll
[2016.10.15 04:52:51 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2016.10.15 04:52:40 | 000,339,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdpusersvc.dll
[2016.10.15 04:52:37 | 000,632,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sud.dll
[2016.10.15 04:52:26 | 000,506,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DevicePairing.dll
[2016.10.15 04:52:19 | 000,432,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpAXHolder.dll
[2016.10.15 04:52:13 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll
[2016.10.15 04:52:12 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autoplay.dll
[2016.10.15 04:52:10 | 006,285,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2016.10.15 04:52:08 | 000,410,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdpsvc.dll
[2016.10.15 04:52:08 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IdCtrls.dll
[2016.10.15 04:51:47 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dhcpcore6.dll
[2016.10.15 04:51:30 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\indexeddbserver.dll
[2016.10.15 04:51:29 | 000,429,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SndVolSSO.dll
[2016.10.15 04:51:15 | 013,868,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2016.10.15 04:50:56 | 000,896,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontext.dll
[2016.10.15 04:50:54 | 017,188,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2016.10.15 04:50:37 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\updatepolicy.dll
[2016.10.15 04:50:36 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\updatepolicy.dll
[2016.10.15 04:50:26 | 000,198,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\indexeddbserver.dll
[2016.10.15 04:50:21 | 000,310,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2016.10.15 04:50:20 | 000,438,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDec.dll
[2016.10.15 04:50:12 | 000,509,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Bluetooth.dll
[2016.10.15 04:49:47 | 000,388,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\zipfldr.dll
[2016.10.15 04:49:45 | 000,495,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DataSenseHandlers.dll
[2016.10.15 04:49:19 | 001,913,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsp_fs.dll
[2016.10.15 04:49:09 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSManHTTPConfig.exe
[2016.10.15 04:49:07 | 009,131,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2016.10.15 04:49:04 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSManHTTPConfig.exe
[2016.10.15 04:49:02 | 000,838,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JpMapControl.dll
[2016.10.15 04:49:01 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAppInstaller.exe
[2016.10.15 04:48:56 | 001,554,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsp_health.dll
[2016.10.15 04:48:11 | 003,778,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2016.10.15 04:48:01 | 001,323,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsp_fs.dll
[2016.10.15 04:47:56 | 004,612,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2016.10.15 04:47:52 | 000,720,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.BackgroundMediaPlayback.dll
[2016.10.15 04:47:49 | 001,113,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsp_health.dll
[2016.10.15 04:47:48 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnprv.dll
[2016.10.15 04:47:40 | 007,792,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll
[2016.10.15 04:47:07 | 000,369,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msinfo32.exe
[2016.10.15 04:47:04 | 007,626,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2016.10.15 04:46:42 | 000,471,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.BackgroundMediaPlayback.dll
[2016.10.15 04:46:39 | 019,418,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2016.10.15 04:46:18 | 003,287,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mispace.dll
[2016.10.15 04:46:14 | 000,718,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Playback.BackgroundMediaPlayer.dll
[2016.10.15 04:46:14 | 000,336,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msinfo32.exe
[2016.10.15 04:45:57 | 000,337,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2016.10.15 04:45:53 | 001,790,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationFramework.dll
[2016.10.15 04:45:28 | 000,702,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Playback.MediaPlayer.dll
[2016.10.15 04:45:06 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2016.10.15 04:44:48 | 003,307,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2016.10.15 04:44:36 | 000,470,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Playback.BackgroundMediaPlayer.dll
[2016.10.15 04:44:20 | 000,747,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RemoteNaturalLanguage.dll
[2016.10.15 04:44:12 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppBroker.dll
[2016.10.15 04:44:09 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\powercfg.exe
[2016.10.15 04:43:41 | 002,748,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mispace.dll
[2016.10.15 04:43:35 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iscsiwmi.dll
[2016.10.15 04:43:16 | 001,365,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2016.10.15 04:43:15 | 000,574,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\energy.dll
[2016.10.15 04:42:59 | 000,459,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Playback.MediaPlayer.dll
[2016.10.15 04:42:58 | 000,805,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FrameServer.dll
[2016.10.15 04:42:53 | 000,956,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.desktop.dll
[2016.10.15 04:42:47 | 012,349,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll
[2016.10.15 04:42:44 | 000,539,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usocore.dll
[2016.10.15 04:42:24 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\chartv.dll
[2016.10.15 04:42:21 | 000,467,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Geolocation.dll
[2016.10.15 04:42:16 | 006,108,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll
[2016.10.15 04:42:02 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\powercfg.exe
[2016.10.15 04:41:58 | 005,376,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll
[2016.10.15 04:41:55 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditionUpgradeHelper.dll
[2016.10.15 04:41:43 | 000,496,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.UserAccountsHandlers.dll
[2016.10.15 04:41:29 | 007,654,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll
[2016.10.15 04:41:28 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iscsiwmi.dll
[2016.10.15 04:41:25 | 000,940,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontext.dll
[2016.10.15 04:41:16 | 000,655,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sud.dll
[2016.10.15 04:40:38 | 001,690,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.onecore.dll
[2016.10.15 04:39:57 | 000,357,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Geolocation.dll
[2016.10.15 04:39:57 | 000,109,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\chartv.dll
[2016.10.15 04:39:56 | 000,631,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationController.dll
[2016.10.15 04:39:45 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JpMapControl.dll
[2016.10.15 04:39:42 | 001,228,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usercpl.dll
[2016.10.15 04:39:40 | 000,869,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2016.10.15 04:39:38 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shdocvw.dll
[2016.10.15 04:39:35 | 004,474,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_47.dll
[2016.10.15 04:39:26 | 004,749,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2016.10.15 04:39:26 | 001,005,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3D12.dll
[2016.10.15 04:39:08 | 000,806,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3D12.dll
[2016.10.15 04:39:04 | 003,400,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncCenter.dll
[2016.10.15 04:39:00 | 002,266,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2016.10.15 04:38:56 | 013,441,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll
[2016.10.15 04:38:55 | 002,458,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\themecpl.dll
[2016.10.15 04:38:44 | 000,828,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appwiz.cpl
[2016.10.15 04:38:41 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.dll
[2016.10.15 04:38:31 | 007,468,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2016.10.15 04:38:10 | 000,913,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.dll
[2016.10.15 04:38:02 | 000,579,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppBroker.dll
[2016.10.15 04:38:01 | 001,993,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2016.10.15 04:37:58 | 001,029,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll
[2016.10.15 04:37:52 | 001,643,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll
[2016.10.15 04:37:49 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cmifw.dll
[2016.10.15 04:37:47 | 003,733,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_47.dll
[2016.10.15 04:37:46 | 000,709,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CPFilters.dll
[2016.10.15 04:37:37 | 000,715,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlCore.dll
[2016.10.15 04:37:20 | 000,712,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Search.dll
[2016.10.15 04:37:18 | 004,708,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll
[2016.10.15 04:37:16 | 002,611,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gameux.dll
[2016.10.15 04:37:04 | 008,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2016.10.15 04:37:03 | 001,980,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diagtrack.dll
[2016.10.15 04:36:59 | 000,673,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe
[2016.10.15 04:36:56 | 002,484,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gameux.dll
[2016.10.15 04:36:56 | 002,290,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2016.10.15 04:36:56 | 000,909,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll
[2016.10.15 04:36:55 | 004,423,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll
[2016.10.15 04:36:55 | 001,170,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll
[2016.10.15 04:36:46 | 000,542,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll
[2016.10.15 04:36:46 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Display.dll
[2016.10.15 04:36:45 | 001,637,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2016.10.15 04:36:43 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\hgcpl.dll
[2016.10.15 04:36:42 | 000,881,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2016.10.15 04:36:41 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hgcpl.dll
[2016.10.15 04:36:27 | 000,983,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemoteNaturalLanguage.dll
[2016.10.15 04:36:25 | 001,492,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2016.10.15 04:36:25 | 001,359,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usercpl.dll
[2016.10.15 04:36:19 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cmifw.dll
[2016.10.15 04:36:17 | 002,512,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\themecpl.dll
[2016.10.15 04:36:14 | 003,617,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2016.10.15 04:36:14 | 000,338,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcpl.dll
[2016.10.15 04:36:10 | 001,556,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll
[2016.10.15 04:35:59 | 000,760,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NMAA.dll
[2016.10.15 04:35:56 | 000,422,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.dll
[2016.10.15 04:35:56 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stobject.dll
[2016.10.15 04:35:53 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2016.10.15 04:35:49 | 000,483,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.dll
[2016.10.15 04:35:39 | 001,512,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2016.10.15 04:35:36 | 000,701,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll
[2016.10.15 04:35:34 | 002,999,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32kfull.sys
[2016.10.15 04:35:23 | 000,798,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2016.10.15 04:35:18 | 002,708,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\esent.dll
[2016.10.15 04:35:15 | 003,054,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\esent.dll
[2016.10.15 04:35:08 | 000,905,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll
[2016.10.15 04:35:02 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuuhext.dll
[2016.10.15 04:34:54 | 002,476,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWrite.dll
[2016.10.15 04:34:49 | 000,936,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NMAA.dll
[2016.10.15 04:34:37 | 000,842,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntshrui.dll
[2016.10.15 04:34:22 | 001,726,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll
[2016.10.15 04:32:24 | 000,886,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CPFilters.dll
[2016.10.15 04:31:37 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys
[1 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ]

========== Files Created - No Company Name ==========

[2016.10.30 18:42:24 | 000,001,089 | ---- | C] () -- C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_24323256.lnk
[2016.10.30 18:33:31 | 000,225,611 | ---- | C] () -- C:\WINDOWS\ZAM_Guard.krnl.trace
[2016.10.30 18:33:31 | 000,188,960 | ---- | C] () -- C:\WINDOWS\ZAM.krnl.trace
[2016.10.30 18:33:25 | 000,001,228 | ---- | C] () -- C:\Users\Public\Desktop\Zemana AntiMalware.lnk
[2016.10.29 18:50:43 | 000,000,045 | ---- | C] () -- C:\WINDOWS\SysWow64\initdebug.nfo
[2016.10.27 15:47:49 | 000,002,775 | ---- | C] () -- C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
[2016.10.26 22:12:58 | 000,024,064 | ---- | C] () -- C:\WINDOWS\zoek-delete.exe
[2016.10.26 21:15:51 | 000,000,982 | ---- | C] () -- C:\Users\Public\Desktop\CPUID HWMonitor.lnk
[2016.10.26 20:15:32 | 000,028,272 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\TrueSight.sys
[2016.10.26 15:18:12 | 000,001,929 | ---- | C] () -- C:\Users\Public\Desktop\BlueStacks.lnk
[2016.10.26 14:24:28 | 000,001,182 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016.10.25 17:58:41 | 000,001,123 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
[2016.10.25 17:58:41 | 000,001,111 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 11.lnk
[2016.10.23 18:44:50 | 000,012,568 | ---- | C] () -- C:\Users\Víťa\Documents\záloha registru ccleaner.reg
[2016.10.22 12:47:02 | 000,001,316 | ---- | C] () -- C:\Users\Public\Desktop\World of Warcraft.lnk
[2016.10.22 12:39:38 | 000,001,224 | ---- | C] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2016.10.20 21:15:58 | 000,000,870 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016.10.20 19:47:34 | 000,051,814 | ---- | C] () -- C:\WINDOWS\SysWow64\license.rtf
[2016.10.20 19:47:34 | 000,051,814 | ---- | C] () -- C:\WINDOWS\SysNative\license.rtf
[2016.10.20 19:41:19 | 000,446,124 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2016.10.20 19:40:43 | 002,681,200 | ---- | C] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll
[2016.10.20 19:40:43 | 002,048,496 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2016.10.20 19:40:42 | 000,418,304 | ---- | C] () -- C:\WINDOWS\SysNative\Windows.Perception.Stub.dll
[2016.10.20 19:40:42 | 000,265,728 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.Perception.Stub.dll
[2016.10.20 19:12:11 | 000,007,623 | ---- | C] () -- C:\WINDOWS\diagwrn.xml
[2016.10.20 19:12:11 | 000,007,623 | ---- | C] () -- C:\WINDOWS\diagerr.xml
[2016.10.20 19:04:54 | 3349,594,112 | -HS- | C] () -- C:\hiberfil.sys
[2016.10.20 19:03:41 | 000,001,576 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2016.10.20 18:57:20 | 000,000,102 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
[2016.10.20 18:56:47 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Apfiltr_01009.Wdf
[2016.10.20 18:56:31 | 000,000,200 | ---- | C] () -- C:\WINDOWS\SysNative\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
[2016.10.20 18:56:31 | 000,000,180 | ---- | C] () -- C:\WINDOWS\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
[2016.10.20 18:56:04 | 007,242,545 | ---- | C] () -- C:\WINDOWS\SysNative\nvcoproc.bin
[2016.10.20 18:50:57 | 000,067,584 | ---- | C] () -- C:\WINDOWS\bootstat.dat
[2016.10.20 18:49:34 | 000,194,472 | ---- | C] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2016.10.20 17:45:31 | 010,864,440 | ---- | C] () -- C:\WINDOWS\SysNative\nvptxJitCompiler.dll
[2016.10.20 17:45:31 | 008,916,512 | ---- | C] () -- C:\WINDOWS\SysWow64\nvptxJitCompiler.dll
[2016.10.20 17:45:29 | 000,040,296 | ---- | C] () -- C:\WINDOWS\SysNative\nvinfo.pb
[2016.10.20 17:45:25 | 000,724,376 | ---- | C] () -- C:\WINDOWS\SysNative\nvfatbinaryLoader.dll
[2016.10.20 17:45:25 | 000,611,608 | ---- | C] () -- C:\WINDOWS\SysWow64\nvfatbinaryLoader.dll
[2016.10.20 17:45:24 | 039,996,984 | ---- | C] () -- C:\WINDOWS\SysNative\nvcompiler.dll
[2016.10.20 17:45:24 | 035,133,376 | ---- | C] () -- C:\WINDOWS\SysWow64\nvcompiler.dll
[2016.10.20 17:45:23 | 000,000,594 | ---- | C] () -- C:\WINDOWS\SysNative\nv-vk64.json
[2016.10.20 17:45:23 | 000,000,594 | ---- | C] () -- C:\WINDOWS\SysWow64\nv-vk32.json
[2016.10.20 16:11:39 | 000,001,215 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2016.10.20 16:11:39 | 000,001,127 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2016.10.20 15:12:54 | 000,002,395 | ---- | C] () -- C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
[2016.10.20 14:51:59 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
[2016.10.20 14:47:18 | 000,000,568 | ---- | C] () -- C:\WINDOWS\SysNative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
[2016.10.20 14:47:18 | 000,000,486 | ---- | C] () -- C:\WINDOWS\SysNative\{86F549EB-A66B-4D6C-958D-CDDD66410751}.bat
[2016.10.20 14:46:58 | 000,016,148 | ---- | C] () -- C:\WINDOWS\SysNative\DESKTOP-495GEAV_defaultuser0_HistoryPrediction.bin
[2016.10.20 14:46:17 | 002,813,952 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxa64.cpa
[2016.10.20 14:46:17 | 000,403,671 | ---- | C] () -- C:\WINDOWS\SysNative\ImageStabilization.wmv
[2016.10.20 14:46:17 | 000,041,296 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxc64_dev.vp
[2016.10.20 14:46:17 | 000,040,931 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxo64_dev.vp
[2016.10.20 14:46:17 | 000,040,343 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxo64.vp
[2016.10.20 14:46:17 | 000,040,316 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxc64.vp
[2016.10.20 14:46:17 | 000,039,798 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxg64_dev.vp
[2016.10.20 14:46:17 | 000,039,658 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxg64.vp
[2016.10.20 14:46:17 | 000,004,826 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxs64.vp
[2016.10.20 14:46:17 | 000,001,125 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxa64.vp
[2016.10.20 14:46:16 | 001,027,040 | ---- | C] () -- C:\WINDOWS\SysNative\igfxSDK.exe
[2016.10.20 14:46:16 | 000,402,912 | ---- | C] () -- C:\WINDOWS\SysNative\igfxTray.exe
[2016.10.20 14:46:16 | 000,273,424 | ---- | C] () -- C:\WINDOWS\SysNative\igfxCPL.cpl
[2016.10.20 14:46:16 | 000,111,624 | ---- | C] ( ) -- C:\WINDOWS\SysNative\igfxSDKLibv2_0.dll
[2016.10.20 14:46:16 | 000,103,440 | ---- | C] () -- C:\WINDOWS\SysNative\igfxCUIServicePS.dll
[2016.10.20 14:46:16 | 000,100,872 | ---- | C] ( ) -- C:\WINDOWS\SysNative\igfxSDKLib.dll
[2016.10.20 14:46:16 | 000,095,248 | ---- | C] ( ) -- C:\WINDOWS\SysNative\igfxDHLibv2_0.dll
[2016.10.20 14:46:16 | 000,084,488 | ---- | C] ( ) -- C:\WINDOWS\SysNative\igfxDHLib.dll
[2016.10.20 14:46:16 | 000,029,200 | ---- | C] ( ) -- C:\WINDOWS\SysNative\igfxDILibv2_0.dll
[2016.10.20 14:46:16 | 000,029,200 | ---- | C] ( ) -- C:\WINDOWS\SysNative\igfxDILib.dll
[2016.10.20 14:46:16 | 000,027,664 | ---- | C] ( ) -- C:\WINDOWS\SysNative\igfxEMLib.dll
[2016.10.20 14:46:16 | 000,027,656 | ---- | C] ( ) -- C:\WINDOWS\SysNative\igfxEMLibv2_0.dll
[2016.10.20 14:46:16 | 000,022,544 | ---- | C] ( ) -- C:\WINDOWS\SysNative\igfxLHMLibv2_0.dll
[2016.10.20 14:46:16 | 000,022,544 | ---- | C] ( ) -- C:\WINDOWS\SysNative\igfxLHMLib.dll
[2016.10.20 14:46:14 | 005,799,386 | ---- | C] () -- C:\WINDOWS\SysNative\igdclbif.bin
[2016.10.20 14:46:12 | 000,826,090 | ---- | C] () -- C:\WINDOWS\SysNative\DisplayAudiox64.cab
[2016.10.20 14:46:12 | 000,641,530 | ---- | C] () -- C:\WINDOWS\SysNative\FilmModeDetection.wmv
[2016.10.20 14:46:12 | 000,511,260 | ---- | C] () -- C:\WINDOWS\SysNative\cp_resources.bin
[2016.10.20 14:46:12 | 000,375,173 | ---- | C] () -- C:\WINDOWS\SysNative\ColorImageEnhancement.wmv
[2016.10.20 14:46:12 | 000,000,935 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxv4_0.exe.config
[2016.10.20 14:46:12 | 000,000,935 | ---- | C] () -- C:\WINDOWS\SysNative\DPTopologyApp.exe.config
[2016.10.20 14:46:12 | 000,000,895 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxv2_0.exe.config
[2016.10.20 14:46:12 | 000,000,895 | ---- | C] () -- C:\WINDOWS\SysNative\DPTopologyAppv2_0.exe.config
[2016.07.16 12:47:57 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2016.07.16 12:47:57 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2016.07.16 12:43:04 | 000,055,296 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2016.07.16 12:43:00 | 000,019,968 | ---- | C] () -- C:\WINDOWS\SysWow64\GamePanelExternalHook.dll
[2016.07.16 12:42:55 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2016.07.16 12:42:53 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2016.07.16 12:42:49 | 000,304,640 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll
[2016.07.16 12:42:48 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2016.07.16 12:42:43 | 000,002,307 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2016.07.16 12:42:12 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2015.11.15 03:08:40 | 001,762,290 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2015.11.15 03:08:10 | 000,172,097 | ---- | C] () -- C:\WINDOWS\SysWow64\NoMSGuninstall.exe
[2015.11.15 03:08:10 | 000,000,771 | ---- | C] () -- C:\WINDOWS\SysWow64\ProductName.ini

========== ZeroAccess Check ==========

[2016.10.20 19:25:24 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2016.10.20 19:40:43 | 007,219,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2016.10.20 19:40:43 | 005,722,320 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2016.07.16 12:42:31 | 000,977,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2016.07.16 12:42:56 | 000,779,776 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2016.07.16 12:42:31 | 000,518,656 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2016.10.22 12:42:50 | 000,000,000 | ---D | M] -- C:\Users\Víťa\AppData\Roaming\Battle.net
[2016.10.20 15:21:32 | 000,000,000 | ---D | M] -- C:\Users\Víťa\AppData\Roaming\LSC
[2016.10.20 16:11:45 | 000,000,000 | ---D | M] -- C:\Users\Víťa\AppData\Roaming\Opera Software
[2016.10.29 15:25:37 | 000,000,000 | ---D | M] -- C:\Users\Víťa\AppData\Roaming\TeamViewer

========== Purity Check ==========



< End of report >
Nahoru
Qvíčala
nováček
Příspěvky: 42
Registrován: říjen 16
Pohlaví: Nespecifikováno
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod Qvíčala » 31 říj 2016 20:56

OTL Extras logfile created on: 31.10.2016 20:16:25 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Víťa\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.14393.0)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: dd.MM.yyyy

7,80 Gb Total Physical Memory | 4,99 Gb Available Physical Memory | 63,99% Memory free
12,30 Gb Paging File | 8,56 Gb Available in Paging File | 69,58% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 418,41 Gb Total Space | 324,74 Gb Free Space | 77,61% Space Free | Partition Type: NTFS
Drive D: | 25,00 Gb Total Space | 24,93 Gb Free Space | 99,72% Space Free | Partition Type: NTFS

Computer Name: DESKTOP-495GEAV | User Name: Víťa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location '%V' (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location '%V' (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 33 21 A4 9A FD 2A D2 01 [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
"DontEnumerateCommonFilesUpgradeExe" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{468028C1-A452-4C3D-97C8-1B37D9FF857F}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{D95A5A05-D261-4257-99CF-45F05426EDBA}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02042416-ADA4-4FC3-9757-B53ED59ED51B}" = dir=out | name=@{microsoft.3dbuilder_11.1.9.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} |
"{08585D98-7F8A-4D30-BB16-C2E1AA328FDA}" = dir=in | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{0C3356FE-F65D-4933-8686-D79BEA94E281}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{0CD52631-433B-4EAC-8143-F8609380354E}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.7369.40797.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{0CDD9BBA-9323-4CFE-A7CE-508CF809E9A3}" = dir=out | name=windows_ie_ac_001 |
"{18A8C84B-44C8-4F3B-B150-1A30C5C3BDF4}" = dir=out | name=@{microsoft.windows.shellexperiencehost_10.0.14393.206_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{1A798FEC-FD7E-4719-A491-04820C906E78}" = dir=out | name=@{microsoft.windowsmaps_5.1609.2651.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{1AE84EF2-4F98-4C5E-8918-2AC988CCE10A}" = dir=out | name=store purchase app |
"{2020A611-C33F-43B1-A28B-891A6CF18217}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer_service.exe |
"{20B48267-BA9F-4A2A-A996-F93793FBEC63}" = dir=in | name=@{microsoft.zunemusic_10.16092.10311.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{26709FFA-0D93-457A-9CEF-F76178FE88DB}" = dir=out | name=windows_ie_ac_001 |
"{276820E1-12AD-4987-8DB1-7551829A16ED}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{28D1297E-7683-4AB3-B073-05BD34019436}" = dir=out | name=@{microsoft.zunevideo_10.16092.10311.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{2E8C7D2A-463A-4CCC-9A55-A328F6B9A77E}" = dir=out | name=@{microsoft.lockapp_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{31AA0527-C6B1-4550-98B0-BCD8B0379E5D}" = dir=out | name=@{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{3653B396-1EC7-4473-AB97-EC246227633D}" = dir=in | name=@{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{3659BFEA-09B5-4F21-90DD-F848D972FC05}" = dir=in | name=@{microsoft.bingweather_4.16.15.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{37B3CECA-B889-4828-B23C-BFECB09FF3CB}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{41CD5071-B117-48CA-A4CC-EC79DCE7189E}" = dir=out | name=@{microsoft.oneconnect_1.1607.6.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} |
"{41DA507B-B7C0-4A27-85D9-973FD2865B6B}" = dir=out | name=xbox |
"{421376FE-1382-4CC1-8456-B79775CEB4EC}" = dir=out | name=microsoft solitaire collection |
"{47E82B9C-DE56-4139-BC33-2C4526758B50}" = dir=out | name=@{microsoft.windows.cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{4912A7FA-1C44-465A-B593-72CF2A227AAB}" = dir=in | name=microsoft solitaire collection |
"{4DFCC4BE-2A39-46B3-939A-FF45699182F4}" = dir=in | name=xbox |
"{531AE073-10DF-48BA-940A-47A80B4D6D61}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{53E4278F-A0CE-4CD0-AAD7-17F68BEA5F8E}" = dir=in | name=@{microsoft.zunevideo_10.16092.10311.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{567D382D-22F3-43F2-BB7A-15E082789D55}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{56939B39-5D04-4D40-B36A-3ACEED276051}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{5716ED52-E26D-4691-A6DE-26373B3489CF}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{5904D47E-86AE-46B2-A9F5-AC408093C6BA}" = dir=in | name=@{microsoft.oneconnect_1.1607.6.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} |
"{5A912162-0E47-4D35-BAE9-EC409F386255}" = dir=out | name=@{microsoft.microsoftofficehub_17.7420.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{5B704028-9BD9-4851-847B-0587F8AF3BFC}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} |
"{62BB7F17-2EAC-4FD7-A46C-69EEA5ABCD49}" = dir=in | name=@{microsoft.bingnews_4.16.18.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{64249CF0-87B6-4A89-8C9C-C09C287C9503}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{6EB410F9-CACD-4D24-964C-BAEE55758C4C}" = dir=out | name=@{microsoft.windows.photos_16.722.10060.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{70318A16-6170-450F-AD04-A0FD98495E94}" = dir=out | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{7039873F-9C2C-4207-AC80-F12CB247EEB1}" = dir=out | name=@{microsoft.getstarted_4.1.15.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{739C1A01-EB0B-4491-909A-27E844021BDB}" = dir=out | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{75623B89-190B-4167-BA4D-DEE5FF3EEDF7}" = dir=in | name=onenote |
"{78CFDF14-9518-4D35-BA8B-5B522EC27167}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{7A54AA0E-557E-46D4-AE1A-C1DD5C9121E8}" = dir=out | name=@{microsoft.accountscontrol_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{7DD249AC-C544-43D0-8CEE-FBE04CF13318}" = dir=in | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{7FC31D69-692F-496E-86DE-0A1A6202AB8E}" = dir=out | name=@{microsoft.bingweather_4.16.15.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{88287F2C-54A6-4A8B-9ACB-CE5AF04117B0}" = dir=in | name=@{microsoft.windowsstore_11609.1001.29.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{88FD5209-FAD2-4AF0-869C-BC0415087AB9}" = dir=out | name=@{microsoft.lockapp_10.0.14393.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{896904B0-E5C3-4D3A-82B0-534D54B34F5B}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{8BAE5E17-7B0A-48B3-A7BC-8577587C5965}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{8DFA9058-A378-4A8B-B29D-6E0293114E4A}" = dir=out | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{91D74F8C-91CD-4BB0-A5E8-5268B3EDE9B5}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{93673A84-D54F-48B2-8E70-5BA155CD5D6D}" = dir=out | name=onenote |
"{938381B8-D15C-4225-A509-FF7E91EF909A}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{94CFAB11-9B1F-4BF0-8F4F-53C73963369E}" = dir=in | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{951D868B-23E1-4C3D-8F59-B69AAED8E861}" = dir=in | name=@{microsoft.messaging_3.19.1001.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{99FD2BBD-0D6B-479E-A90F-757D8E827830}" = dir=out | name=@{microsoft.windowsphone_10.1609.2561.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} |
"{9AAF2D90-F7B1-4F07-97D9-EDF01D7A6DD0}" = dir=out | name=@{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{A18804B4-84A8-44B4-AC25-C3113F7992B3}" = dir=in | name=@{microsoft.bingsports_4.16.17.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{A5CBA2F5-58DB-460C-9B6A-7B989FAF5536}" = dir=out | name=@{microsoft.bingsports_4.16.17.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{ABC5CDB5-5618-4F0F-B2B1-42993864040B}" = dir=out | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{AE145815-10EB-4420-A6CB-16BFF002B810}" = dir=out | name=@{microsoft.windowsstore_11609.1001.29.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{AF228762-AA87-4DB0-B443-4930182BD21D}" = dir=in | name=@{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{AF3F03BF-DF4A-40AB-8C59-A11A6F0FCDB7}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} |
"{B2AF4C33-69D2-4C88-978A-84193010D39D}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{B978F9E5-BE59-4992-89E6-A39B10B02961}" = dir=out | name=@{microsoft.windowsfeedbackhub_1.1608.2441.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{BB2F6155-5B6A-420D-ACE4-854FCAA4C5EE}" = dir=in | name=@{microsoft.windows.photos_16.722.10060.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{BF08C061-5BAA-4C3C-A18A-F633C938AFE0}" = dir=in | name=@{microsoft.bingfinance_4.16.19.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{C0682AF9-E46B-46FE-8270-31B394C0B2B1}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{C6D8A663-CD34-4763-A486-A611B7B1C419}" = dir=in | name=@{microsoft.skypeapp_11.8.197.0_x64__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/skypevideo_productname} |
"{C858E1F2-5B08-4B73-8774-8593EB40A8DD}" = dir=in | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{C8AE7F76-875E-466B-AEEC-99D17E3AC301}" = dir=out | name=@{microsoft.accountscontrol_10.0.14393.206_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{CABDA19F-CE5C-4F60-8605-CD52450D4071}" = dir=out | name=@{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{CD5AF512-6A40-48B6-A40B-2A1564846279}" = dir=in | name=microsoft sticky notes |
"{CE193D84-1967-4276-8EFB-1288AD08C171}" = dir=out | name=@{microsoft.messaging_3.19.1001.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{CF9ED51D-BA91-44C7-8854-91643C6728D8}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer.exe |
"{D0599162-DE18-4CE7-BAF6-DCA9F82DAA0E}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{D0FFC8DB-A28B-48BB-A01C-1CD4B22F83B6}" = dir=out | name=@{microsoft.bingnews_4.16.18.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{D20C42A0-D517-4AA3-B9DC-5E0E4D0ED813}" = dir=in | name=@{microsoft.windows.cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{D390EEDD-09F6-47FC-8319-CE10CDA85B36}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{D49CA04F-0EF8-4AEB-B928-A3AA20007EFF}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{D9DE467A-3DAC-43D7-A1D6-DB783E6C206F}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} |
"{DE85A6C6-3ADF-49AC-8175-B6E5FFC2EA8A}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer.exe |
"{DFA3151C-71C3-4A8A-9B14-5434C8682E6C}" = dir=out | name=@{microsoft.bingfinance_4.16.19.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{E1B9548E-12FB-48D7-BD3F-D317D1CBADD2}" = dir=in | name=@{microsoft.windowsfeedbackhub_1.1608.2441.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{E3587A6E-7DE8-46D7-8DDD-0653167D3AAD}" = dir=in | name=@{microsoft.microsoftofficehub_17.7420.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{E71DBFAA-6DA0-4EEF-B699-4DD46055FCD2}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.7369.40797.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{E755D0C1-102F-4A8E-AC33-264B2083FBB6}" = dir=out | name=@{microsoft.windows.apprep.chxapp_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} |
"{E776A8B6-58C4-4864-83B9-A083F373D306}" = dir=in | name=@{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{E8A10BA3-8F84-4927-822B-2231584247CB}" = dir=out | name=@{lenovocorporation.lenovoid_2.0.24.0_x86__4642shxvsv8s2?ms-resource://lenovocorporation.lenovoid/resources/displayname} |
"{ECA7E4B0-A25B-4A66-81CF-CAAF312E2D8C}" = dir=out | name=@{microsoft.skypeapp_11.8.197.0_x64__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/skypevideo_productname} |
"{F0DE2A1A-D21B-42D7-AB26-33696DA73F11}" = dir=out | name=@{microsoft.xboxidentityprovider_11.19.19003.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxidentityprovider/resources/displayname} |
"{F1C5DD60-F680-4565-AA96-5A4867C356DF}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer_service.exe |
"{FA56898F-80D8-41CB-A450-E405E7E01538}" = dir=out | name=microsoft sticky notes |
"{FA9F768D-6536-4220-B752-1602FEF166E4}" = dir=out | name=@{microsoft.people_10.0.11902.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{FD37D3A4-060A-447E-9ACB-14AD6B49C8AB}" = dir=out | name=@{microsoft.zunemusic_10.16092.10311.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1CEAC85D-2590-4760-800F-8DE5E91F3700}" = Intel(R) Management Engine Components
"{205AE40D-8AD7-4F29-A430-DD2168DA562D}" = Intel(R) Rapid Storage Technology
"{30E935B2-0DAC-455E-AC76-3C8504DC3D18}" = Intel(R) Serial IO
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{409CB30E-E457-4008-9B1A-ED1B9EA21140}" = Intel(R) Rapid Storage Technology
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{55398EAC-F58E-4F19-B553-BDF8B9EFD839}" = Intel(R) Chipset Device Software
"{61D0924A-4791-4AD5-B6C6-38E3420B6D53}" = Intel® PROSet/Wireless WiFi Software
"{6A478BF2-F67F-4ABC-A7F1-B6B5BA862371}" = Dolby Audio X2 Windows API SDK
"{7DA57EF8-9D20-4126-AF15-D0CC97D0C017}" = Dolby Audio X2 Windows APP
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}" = Intel(R) Serial IO
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 369.09
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 353.54
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.4.5.57
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus Update 2.4.5.57
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.15.0428
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 2.4.5.57
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{CCCB484E-79D5-4398-9377-CA6EEB6B53AE}" = Intel(R) Management Engine Components
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{d653f5cb-d8b1-4045-86ee-afc3c5819f88}" = Intel(R) PRO/Wireless Driver
"{DF17C0DB-76D8-4A45-B26E-674F8455B803}" = Intel(R) ME UninstallLegacy
"CCleaner" = CCleaner
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.30
"LenovoExperienceImprovement" = Lenovo Experience Improvement

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{1720B0E0-C520-43A6-B677-97A1D80F3B99}" = Components
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2FA0176C-3BD1-4FBA-ABA8-17891F8FDC3A}" = Intel(R) Wireless Bluetooth(R)
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}" = LenovoUtility
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1" = Zemana AntiMalware
"{90150000-0138-0409-0000-0000000FF1CE}" = Microsoft Office
"{959B7F35-2819-40C5-A0CD-3C53B5FCC935}" = Genesys USB Mass Storage Device
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B829E117-D072-41EA-9606-9826A38D34C1}" = Sophos Virus Removal Tool
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}" = Metric Collection SDK 35
"{c7f54569-0018-439c-809a-48046a4d4ebc}" = Intel(R) Chipset Device Software
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}" = Lenovo EasyCamera
"{e6f0207e-ac43-48a9-bfff-3d879b45694d}" = Intel® PROSet/Wireless Software
"{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = User Manuals
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"Battle.net" = Battle.net
"BlueStacks" = BlueStacks App Player
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}" = LenovoUtility
"InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = User Manuals
"Lenovo FusionEngine" = Lenovo FusionEngine
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verze 2.2.1.1043
"Opera 41.0.2353.46" = Opera Stable 41.0.2353.46
"TeamViewer" = TeamViewer 11
"World of Warcraft" = World of Warcraft

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 30.10.2016 13:20:04 | Computer Name = DESKTOP-495GEAV | Source = Perflib | ID = 1008
Description =

Error - 30.10.2016 16:26:48 | Computer Name = DESKTOP-495GEAV | Source = Application Error | ID = 1000
Description = Název chybující aplikace: 9681803.exe, verze: 11.0.0.1245, časové
razítko: 0x4d936e61 Název chybujícího modulu: basegui.ppl, verze: 11.0.0.1245, časové
razítko: 0x511a612f Kód výjimky: 0xc0000005 Posun chyby: 0x000611b7 ID chybujícího
procesu: 0x1090 Čas spuštění chybující aplikace: 0x01d232d4f96b90f0 Cesta k chybující
aplikaci: C:\Users\VAFCF2~1\AppData\Local\Temp\3140154\9681803.exe Cesta k chybujícímu
modulu: C:\Users\VAFCF2~1\AppData\Local\Temp\3140154\basegui.ppl ID zprávy: 57a65246-8e3f-4c30-bab7-7b2153718038
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:

Error - 30.10.2016 17:06:28 | Computer Name = DESKTOP-495GEAV | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Aplikaci Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App
se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete
v protokolu Microsoft-Windows-TWinUI/Operational.

Error - 31.10.2016 11:45:04 | Computer Name = DESKTOP-495GEAV | Source = Perflib | ID = 1008
Description =

Error - 31.10.2016 11:45:04 | Computer Name = DESKTOP-495GEAV | Source = Perflib | ID = 1008
Description =

Error - 31.10.2016 11:45:04 | Computer Name = DESKTOP-495GEAV | Source = Perflib | ID = 1008
Description =

Error - 31.10.2016 11:45:05 | Computer Name = DESKTOP-495GEAV | Source = Perflib | ID = 1008
Description =

Error - 31.10.2016 11:45:05 | Computer Name = DESKTOP-495GEAV | Source = PerfNet | ID = 2004
Description =

Error - 31.10.2016 11:45:05 | Computer Name = DESKTOP-495GEAV | Source = Perflib | ID = 1023
Description =

Error - 31.10.2016 11:45:05 | Computer Name = DESKTOP-495GEAV | Source = Perflib | ID = 1008
Description =

[ System Events ]
Error - 30.10.2016 3:57:15 | Computer Name = DESKTOP-495GEAV | Source = DCOM | ID = 10010
Description =

Error - 30.10.2016 3:57:15 | Computer Name = DESKTOP-495GEAV | Source = DCOM | ID = 10010
Description =

Error - 30.10.2016 3:57:15 | Computer Name = DESKTOP-495GEAV | Source = DCOM | ID = 10010
Description =

Error - 30.10.2016 3:57:16 | Computer Name = DESKTOP-495GEAV | Source = DCOM | ID = 10010
Description =

Error - 30.10.2016 3:57:16 | Computer Name = DESKTOP-495GEAV | Source = DCOM | ID = 10010
Description =

Error - 30.10.2016 3:57:16 | Computer Name = DESKTOP-495GEAV | Source = DCOM | ID = 10010
Description =

Error - 30.10.2016 5:42:44 | Computer Name = DESKTOP-495GEAV | Source = Service Control Manager | ID = 7023
Description = Služba CDPUserSvc_c58f0 byla ukončena s následující chybou: %%2147500037

Error - 30.10.2016 13:19:45 | Computer Name = DESKTOP-495GEAV | Source = Service Control Manager | ID = 7023
Description = Služba CDPUserSvc_805ce2 byla ukončena s následující chybou: %%2147500037

Error - 30.10.2016 17:06:28 | Computer Name = DESKTOP-495GEAV | Source = DCOM | ID = 10010
Description =

Error - 31.10.2016 11:44:42 | Computer Name = DESKTOP-495GEAV | Source = Service Control Manager | ID = 7023
Description = Služba CDPUserSvc_1e88dba byla ukončena s následující chybou: %%2147500037


< End of report >
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod jaro3 » 01 lis 2016 09:45

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {CDB26DBF-6848-43C9-920D-27D672895BAD}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{CDB26DBF-6848-43C9-920D-27D672895BAD}: "URL" = http://www.bing.com/search?q={searchTerms}&form=PRLNC1&src=IE11TR&pc=LCTE
IE - HKLM\..\SearchScopes,DefaultScope = {CDB26DBF-6848-43C9-920D-27D672895BAD}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{CDB26DBF-6848-43C9-920D-27D672895BAD}: "URL" = http://www.bing.com/search?q={searchTerms}&form=PRLNC1&src=IE11TR&pc=LCTE
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Reg Error: Value error.
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Reg Error: Value error.
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
O4 - Startup: C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_24323256.lnk = C:\Users\Víťa\AppData\Local\Temp\_uninst_24323256.bat ()
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Program Files\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\SysNative\drivers\*.tmp
C:\Windows\SysWow64\drivers\*.tmp
C:\Program Files (x86)\*.tmp
C:\Windows\SysWow64\*.tmp
C:\Windows\SysNative\*.tmp
C:\Program Files (x86)\*.tmp

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
""=""%1" %*"

:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]


Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\WINDOWS\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\SysNative\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
C:\WINDOWS\SysNative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
C:\WINDOWS\SysNative\{86F549EB-A66B-4D6C-958D-CDDD66410751}.bat
C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_24323256.lnk

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

DRV:64bit: - (ldiagio_uefi) -- C:\Program Files\Lenovo\Lenovo Solution Center\App\ldiag\x64\ldiagio_uefi.sys File not found
chybí tam ovladač , nemáš ten program Lenovo Solution Center někde na CD/DVD k notebooku?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Qvíčala
nováček
Příspěvky: 42
Registrován: říjen 16
Pohlaví: Nespecifikováno
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod Qvíčala » 01 lis 2016 16:41

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CDB26DBF-6848-43C9-920D-27D672895BAD}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CDB26DBF-6848-43C9-920D-27D672895BAD}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CDB26DBF-6848-43C9-920D-27D672895BAD}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CDB26DBF-6848-43C9-920D-27D672895BAD}\ not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Secondary Start Pages| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_24323256.lnk moved successfully.
File C:\Users\Víťa\AppData\Local\Temp\_uninst_24323256.bat not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
File\Folder c:\windows\Tasks\*.job not found.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Program Files\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
C:\Windows\SysNative\drivers\SET9495.tmp moved successfully.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
File\Folder C:\Windows\SysNative\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command\\""|""%1" %*" /E : value set successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default.migrated

User: Public

User: Víťa
->Temp folder emptied: 586269606 bytes
->Temporary Internet Files folder emptied: 2264 bytes
->Flash cache emptied: 492 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 15071 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 559,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 11012016_163744

Files\Folders moved on Reboot...
C:\Users\Víťa\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
Nahoru
Qvíčala
nováček
Příspěvky: 42
Registrován: říjen 16
Pohlaví: Nespecifikováno
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod Qvíčala » 01 lis 2016 16:59

Tak ty soubory, které mám otestovat v tom Virustotal nebo virscan bohužel nevidím. Když je hledám normálně přes průzkumník, tak je najdu, ale přes ty weby ne ....
A ten program od Lenovo nemám.
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod jaro3 » 01 lis 2016 19:27

Tak si je zkopíruj na plochu a odsud dej VT.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Qvíčala
nováček
Příspěvky: 42
Registrován: říjen 16
Pohlaví: Nespecifikováno
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod Qvíčala » 01 lis 2016 20:28

https://www.virustotal.com/cs/file/26aa ... 478027922/

https://www.virustotal.com/cs/file/3bc9 ... 478027970/

https://www.virustotal.com/cs/file/7473 ... 478028139/

https://www.virustotal.com/cs/file/e343 ... 478028381/

Bohužel, ten poslední soubrou jsem nenašel (_uninst_24323256.lnk).

Mám ve StartMenu dvě složky Programy, ale do té jedné mne to nepustí. Napíše mi to: není přístupný. Přístup byl odepřen.
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod jaro3 » 01 lis 2016 21:20

Stáhni si BlitzBlank

Na svojí plochu . Poklepej na Blitzblank.exe. Klikni na OK (pro vzetí na vědomí ,že je to velmi mocný nástroj).
Klikni na „Script“ a poté zkopíruj a vlož do okna pod Script následující text:

Kód: Vybrat vše

CopyFile:
C:\Users\Víťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_24323256.lnk C:\Users\Public\Desktop\


Poté klikni na „Execute Now
Program vyžaduje restart počítače pro provedení úkonu nahrazení souborů.
Po dokončení výpisu se objeví zpráva z programu v adresáři C:\ (systémový disk) pod názvem BlitzBlank(verze) .txt
Zprávu zkopíruj a vlož ji celou sem.

soubor najdeš na svojí ploše a odtud ho dej na VT.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Qvíčala
nováček
Příspěvky: 42
Registrován: říjen 16
Pohlaví: Nespecifikováno
Stav:
Offline

Re: WMI Provider Host zatěžuje CPU -> Vir?

Příspěvekod Qvíčala » 01 lis 2016 21:53

Execute Now nejde.

Syntax error
Syntax error in line 2, Invalid file patch.
Nahoru
Odpovědět

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 58 hostů