﻿Logfile of random's system information tool 1.10 (written by random/random)
Run by PC at 2020-10-18 16:59:52
Microsoft Windows 7 Professional  Service Pack 1
System drive C: has 92 GB (30%) free of 305 GB
Total RAM: 4001 MB (19% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:59:55, on 18.10.2020
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\trend micro\PC.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp-006&q={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp-006&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL
O4 - HKCU\..\Run: [uTorrent] "C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Opera Browser Assistant] C:\Users\PC\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O15 - Trusted Zone: http://*.webcompanion.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{159E690B-63AF-4607-A3BE-8CC04F639C6D}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{23928CA9-AC57-4EA3-BF5F-F4C928FD49F4}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{32C6A2CA-C440-4040-8834-48E95521B006}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{64F69195-42BD-4FC2-BC01-75C72274AC93}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{8DF6513F-1A2B-40E7-A0A4-5D0C0B72CA1B}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{AF856969-F0A1-4428-9226-2573CA16620F}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{BEF961F4-20C8-4A91-8DE0-0037DFD18F7E}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{E102C147-C967-4761-870C-F482B1352DA6}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{E9240FEF-E6FE-456C-B2CF-D649BD7E09A1}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{ED639C1C-8F24-4BD7-8084-CD21385E0559}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{FEED90F3-D64C-4C1A-B310-E2BC6838DF53}: NameServer = 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{159E690B-63AF-4607-A3BE-8CC04F639C6D}: NameServer = 8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\..\{159E690B-63AF-4607-A3BE-8CC04F639C6D}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: WSWSVCUchrome - (no CLSID) - (no file)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\adminservice.exe
O23 - Service: Qualcomm Atheros Net Agent (AthNetAgent) - Quacomm Atheros, Inc. - C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Agent\AthNetAgent.exe
O23 - Service: Služba %1!s! Update (avg) (avg) - Unknown owner - C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe (file missing)
O23 - Service: Služba %1!s! Update (avgm) (avgm) - Unknown owner - C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe (file missing)
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: DCDhcpService - Qualcomm Atheros Inc. - C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCDhcpService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Intel Bluetooth Service (iBtSiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service: Intel(R) TPM Provisioning Service - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\Windows\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\DRIVERS\o2flash.exe (file missing)
O23 - Service: O2SDIOAssist - Unknown owner - C:\Windows\SysWOW64\srvany.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SDIOAssist - TODO: <???> - C:\Windows\System32\SDIOAssist.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\Windows\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files (x86)\Wondershare\WAF\2.1.6.0\WsAppService.exe

--
End of file - 11867 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\WLANExt.exe 23603536
\??\C:\Windows\system32\conhost.exe "15005455598988848596204785341166456408-9882278481190482551-1104584814-1495363479
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\BtvStack.exe" 
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" /s
"C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe" 
"C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe"
C:\Windows\system32\mqsvc.exe
"C:\ProgramData\O2 Internet\OnlineUpdate\ouc.exe"  "C:/Program Files (x86)/O2 Internet/UpdateDog/"
C:\Windows\system32\DRIVERS\o2flash.exe
C:\Windows\System32\SDIOAssist.exe
C:\Windows\System32\snmp.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\valWBFPolicyService.exe
"C:\Program Files (x86)\Wondershare\WAF\2.1.6.0\WsAppService.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
C:\Windows\System32\alg.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
igfxEM.exe 
igfxHK.exe 
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\ESET\ESET Security\ekrn.exe"
"C:\Program Files\ESET\ESET Security\eguiproxy.exe" 
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-fa24940a-73d4-43d9-b480-eff8e893407f -SystemEventPortName:HostProcess-a274a05c-8447-4ccb-a06c-93bb0992b2cf -IoCancelEventPortName:HostProcess-f2d7d3a0-b7c0-4b1b-a826-24fb07e7bfdb -NonStateChangingEventPortName:HostProcess-2810715b-133b-4ed2-a76b-e48860b6f0a7 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:f5825074-80fe-4bd4-950b-6f8889b567d4
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
taskeng.exe {4C388C1F-9BF5-47C7-9A78-24C0AB6522DE}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe10_ Global\UsGthrCtrlFltPipeMssGthrPipe10 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532 
"C:\Users\PC\Desktop\RSITx64.exe" 

======Scheduled tasks folder======

C:\Windows\tasks\Reimage-Post-Reboot.job - C:\ReimageUndo\PostReboot\PostRebootExecuter.exe  /Product:Restoro string_for_first_run 

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-27 221664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2019-08-02 971384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files (x86)\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll [2003-11-04 54248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-07-27 166360]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2019-08-02 685176]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2017-11-06 9230296]
"WavesSvc"=C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [2017-01-26 723928]
""= []
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2020-08-10 185648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\BtvStack.exe [2016-05-24 137184]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe [2020-09-14 2117080]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2020-09-21 365760]
""= []
"Opera Browser Assistant"=C:\Users\PC\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [2020-10-14 3085336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2017-05-10 7953576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadwin PrintScreen]
C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [2007-05-15 475136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NUSB3MON]
C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-01-22 106496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProductUpdater]
C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe [2020-09-14 2117080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files (x86)\Winamp\winampa.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""= []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\BtvStack.exe [2016-05-24 137184]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"shell"=explorer.exe

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2020-10-18 16:54:26 ----D---- C:\Program Files\trend micro
2020-10-18 16:54:25 ----D---- C:\rsit
2020-10-18 14:09:07 ----D---- C:\Program Files\RogueKiller
2020-10-18 13:36:27 ----D---- C:\ProgramData\ESET
2020-10-18 13:36:27 ----D---- C:\Program Files\ESET
2020-10-18 12:45:42 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2020-10-18 12:45:42 ----A---- C:\Windows\system32\poqexec.exe
2020-10-18 12:43:52 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2020-10-18 12:43:52 ----A---- C:\Windows\system32\cryptbase.dll
2020-10-18 12:43:51 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2020-10-18 12:43:51 ----A---- C:\Windows\system32\pcadm.dll
2020-10-18 12:43:51 ----A---- C:\Windows\system32\cryptnet.dll
2020-10-18 12:43:50 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2020-10-18 12:43:50 ----A---- C:\Windows\system32\sspisrv.dll
2020-10-18 12:43:50 ----A---- C:\Windows\system32\AUDIOKSE.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2020-10-18 12:43:49 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2020-10-18 12:43:49 ----A---- C:\Windows\SYSWOW64\sscore.dll
2020-10-18 12:43:49 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2020-10-18 12:43:49 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2020-10-18 12:43:49 ----A---- C:\Windows\SYSWOW64\mssign32.dll
2020-10-18 12:43:49 ----A---- C:\Windows\SYSWOW64\mferror.dll
2020-10-18 12:43:49 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2020-10-18 12:43:49 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2020-10-18 12:43:49 ----A---- C:\Windows\system32\sscore.dll
2020-10-18 12:43:49 ----A---- C:\Windows\system32\pcasvc.dll
2020-10-18 12:43:49 ----A---- C:\Windows\system32\pcaevts.dll
2020-10-18 12:43:49 ----A---- C:\Windows\system32\ntvdm64.dll
2020-10-18 12:43:49 ----A---- C:\Windows\system32\mferror.dll
2020-10-18 12:43:49 ----A---- C:\Windows\system32\cryptsp.dll
2020-10-18 12:43:49 ----A---- C:\Windows\system32\bcrypt.dll
2020-10-18 12:43:49 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2020-10-18 12:43:48 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2020-10-18 12:43:48 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2020-10-18 12:43:48 ----A---- C:\Windows\system32\wdigest.dll
2020-10-18 12:43:48 ----A---- C:\Windows\system32\TSpkg.dll
2020-10-18 12:43:47 ----A---- C:\Windows\SYSWOW64\mfps.dll
2020-10-18 12:43:47 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2020-10-18 12:43:47 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2020-10-18 12:43:47 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2020-10-18 12:43:47 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2020-10-18 12:43:47 ----A---- C:\Windows\system32\winsrv.dll
2020-10-18 12:43:47 ----A---- C:\Windows\system32\spwmp.dll
2020-10-18 12:43:47 ----A---- C:\Windows\system32\mssign32.dll
2020-10-18 12:43:47 ----A---- C:\Windows\system32\mfps.dll
2020-10-18 12:43:47 ----A---- C:\Windows\system32\mfplat.dll
2020-10-18 12:43:47 ----A---- C:\Windows\system32\dxmasf.dll
2020-10-18 12:43:47 ----A---- C:\Windows\system32\conhost.exe
2020-10-18 12:43:47 ----A---- C:\Windows\system32\AudioSes.dll
2020-10-18 12:43:47 ----A---- C:\Windows\system32\AudioEng.dll
2020-10-18 12:43:47 ----A---- C:\Windows\system32\audiodg.exe
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2020-10-18 12:43:46 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2020-10-18 12:43:46 ----A---- C:\Windows\SYSWOW64\wow32.dll
2020-10-18 12:43:46 ----A---- C:\Windows\SYSWOW64\user.exe
2020-10-18 12:43:46 ----A---- C:\Windows\SYSWOW64\srclient.dll
2020-10-18 12:43:46 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2020-10-18 12:43:46 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2020-10-18 12:43:46 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2020-10-18 12:43:46 ----A---- C:\Windows\system32\srclient.dll
2020-10-18 12:43:46 ----A---- C:\Windows\system32\rstrui.exe
2020-10-18 12:43:46 ----A---- C:\Windows\system32\rrinstaller.exe
2020-10-18 12:43:46 ----A---- C:\Windows\system32\pcawrk.exe
2020-10-18 12:43:46 ----A---- C:\Windows\system32\pcalua.exe
2020-10-18 12:43:46 ----A---- C:\Windows\system32\mfpmp.exe
2020-10-18 12:43:46 ----A---- C:\Windows\system32\KernelBase.dll
2020-10-18 12:43:46 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2020-10-18 12:43:46 ----A---- C:\Windows\system32\audiosrv.dll
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\schannel.dll
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\setup16.exe
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\secur32.dll
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\instnm.exe
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\credssp.dll
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\certcli.dll
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2020-10-18 12:43:45 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2020-10-18 12:43:45 ----A---- C:\Windows\system32\secur32.dll
2020-10-18 12:43:45 ----A---- C:\Windows\system32\msv1_0.dll
2020-10-18 12:43:45 ----A---- C:\Windows\system32\msmmsp.dll
2020-10-18 12:43:45 ----A---- C:\Windows\system32\drivers\appid.sys
2020-10-18 12:43:45 ----A---- C:\Windows\system32\credssp.dll
2020-10-18 12:43:45 ----A---- C:\Windows\system32\certcli.dll
2020-10-18 12:43:45 ----A---- C:\Windows\system32\auditpol.exe
2020-10-18 12:43:45 ----A---- C:\Windows\system32\appidsvc.dll
2020-10-18 12:43:45 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2020-10-18 12:43:45 ----A---- C:\Windows\system32\appidapi.dll
2020-10-18 12:43:45 ----A---- C:\Windows\system32\apisetschema.dll
2020-10-18 12:43:44 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2020-10-18 12:43:44 ----A---- C:\Windows\system32\wow64cpu.dll
2020-10-18 12:43:44 ----A---- C:\Windows\system32\wow64.dll
2020-10-18 12:43:44 ----A---- C:\Windows\system32\sspicli.dll
2020-10-18 12:43:44 ----A---- C:\Windows\system32\srvsvc.dll
2020-10-18 12:43:44 ----A---- C:\Windows\system32\smss.exe
2020-10-18 12:43:44 ----A---- C:\Windows\system32\msaudite.dll
2020-10-18 12:43:44 ----A---- C:\Windows\system32\lsass.exe
2020-10-18 12:43:44 ----A---- C:\Windows\system32\hal.dll
2020-10-18 12:43:44 ----A---- C:\Windows\system32\drivers\processr.sys
2020-10-18 12:43:44 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2020-10-18 12:43:44 ----A---- C:\Windows\system32\drivers\intelppm.sys
2020-10-18 12:43:44 ----A---- C:\Windows\system32\drivers\amdppm.sys
2020-10-18 12:43:44 ----A---- C:\Windows\system32\drivers\amdk8.sys
2020-10-18 12:43:44 ----A---- C:\Windows\system32\csrsrv.dll
2020-10-18 12:43:43 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2020-10-18 12:43:43 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2020-10-18 12:43:43 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2020-10-18 12:43:43 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2020-10-18 12:43:43 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2020-10-18 12:43:43 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2020-10-18 12:43:43 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2020-10-18 12:43:43 ----A---- C:\Windows\system32\wintrust.dll
2020-10-18 12:43:43 ----A---- C:\Windows\system32\winresume.exe
2020-10-18 12:43:43 ----A---- C:\Windows\system32\srcore.dll
2020-10-18 12:43:43 ----A---- C:\Windows\system32\setbcdlocale.dll
2020-10-18 12:43:43 ----A---- C:\Windows\system32\rpchttp.dll
2020-10-18 12:43:43 ----A---- C:\Windows\system32\qdvd.dll
2020-10-18 12:43:43 ----A---- C:\Windows\system32\msobjs.dll
2020-10-18 12:43:43 ----A---- C:\Windows\system32\EncDump.dll
2020-10-18 12:43:43 ----A---- C:\Windows\system32\drivers\videoprt.sys
2020-10-18 12:43:43 ----A---- C:\Windows\system32\drivers\srvnet.sys
2020-10-18 12:43:43 ----A---- C:\Windows\system32\drivers\srv2.sys
2020-10-18 12:43:43 ----A---- C:\Windows\system32\drivers\srv.sys
2020-10-18 12:43:43 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2020-10-18 12:43:43 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2020-10-18 12:43:43 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2020-10-18 12:43:43 ----A---- C:\Windows\system32\cryptui.dll
2020-10-18 12:43:43 ----A---- C:\Windows\system32\cryptsvc.dll
2020-10-18 12:43:43 ----A---- C:\Windows\system32\ci.dll
2020-10-18 12:43:42 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2020-10-18 12:43:42 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2020-10-18 12:43:42 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2020-10-18 12:43:42 ----A---- C:\Windows\system32\winload.exe
2020-10-18 12:43:42 ----A---- C:\Windows\system32\schannel.dll
2020-10-18 12:43:42 ----A---- C:\Windows\system32\ncrypt.dll
2020-10-18 12:43:42 ----A---- C:\Windows\system32\kerberos.dll
2020-10-18 12:43:42 ----A---- C:\Windows\system32\drivers\npfs.sys
2020-10-18 12:43:42 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2020-10-18 12:43:42 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2020-10-18 12:43:42 ----A---- C:\Windows\system32\drivers\cng.sys
2020-10-18 12:43:42 ----A---- C:\Windows\system32\crypt32.dll
2020-10-18 12:43:42 ----A---- C:\Windows\system32\bcryptprimitives.dll
2020-10-18 12:43:42 ----A---- C:\Windows\system32\adtschema.dll
2020-10-18 12:43:41 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2020-10-18 12:43:41 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2020-10-18 12:43:41 ----A---- C:\Windows\system32\rpcrt4.dll
2020-10-18 12:43:41 ----A---- C:\Windows\system32\ntdll.dll
2020-10-18 12:43:41 ----A---- C:\Windows\system32\lsasrv.dll
2020-10-18 12:43:41 ----A---- C:\Windows\system32\advapi32.dll
2020-10-18 12:43:40 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2020-10-18 12:43:40 ----A---- C:\Windows\system32\wow64win.dll
2020-10-18 12:43:40 ----A---- C:\Windows\system32\kernel32.dll
2020-10-18 12:43:39 ----A---- C:\Windows\SYSWOW64\quartz.dll
2020-10-18 12:43:39 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2020-10-18 12:43:39 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2020-10-18 12:43:39 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2020-10-18 12:43:39 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2020-10-18 12:43:39 ----A---- C:\Windows\SYSWOW64\evr.dll
2020-10-18 12:43:39 ----A---- C:\Windows\system32\quartz.dll
2020-10-18 12:43:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2020-10-18 12:43:39 ----A---- C:\Windows\system32\evr.dll
2020-10-18 12:43:38 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2020-10-18 12:43:38 ----A---- C:\Windows\SYSWOW64\msscp.dll
2020-10-18 12:43:38 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2020-10-18 12:43:38 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2020-10-18 12:43:38 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2020-10-18 12:43:38 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2020-10-18 12:43:38 ----A---- C:\Windows\system32\wmploc.DLL
2020-10-18 12:43:38 ----A---- C:\Windows\system32\msnetobj.dll
2020-10-18 12:43:38 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2020-10-18 12:43:37 ----A---- C:\Windows\SYSWOW64\wmp.dll
2020-10-18 12:43:37 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2020-10-18 12:43:37 ----A---- C:\Windows\SYSWOW64\mf.dll
2020-10-18 12:43:37 ----A---- C:\Windows\system32\blackbox.dll
2020-10-18 12:43:36 ----A---- C:\Windows\system32\wmp.dll
2020-10-18 12:43:36 ----A---- C:\Windows\system32\mf.dll
2020-10-18 12:43:36 ----A---- C:\Windows\system32\drmv2clt.dll
2020-10-18 12:43:36 ----A---- C:\Windows\system32\drmmgrtn.dll
2020-10-18 12:43:35 ----A---- C:\Windows\system32\wmdrmsdk.dll
2020-10-18 12:43:35 ----A---- C:\Windows\system32\msscp.dll
2020-10-18 11:50:14 ----D---- C:\ProgramData\SecuritySuite
2020-10-17 20:39:36 ----D---- C:\ProgramData\GridinSoft
2020-10-17 20:39:29 ----D---- C:\Program Files\GridinSoft Anti-Malware
2020-10-17 20:06:21 ----D---- C:\Program Files (x86)\Avira
2020-10-17 20:06:18 ----D---- C:\ProgramData\Avira
2020-10-13 20:27:46 ----D---- C:\ProgramData\Malwarebytes
2020-10-13 17:58:40 ----D---- C:\ProgramData\Avast Software
2020-10-13 02:27:55 ----D---- C:\ProgramData\DirectX
2020-10-13 02:26:42 ----D---- C:\ProgramData\Vengeance
2020-10-13 01:46:08 ----RD---- C:\ProgramData\Arturia
2020-10-13 01:46:08 ----RD---- C:\Program Files\Arturia
2020-10-13 01:46:08 ----D---- C:\Program Files\Common Files\VST3
2020-10-13 01:42:23 ----D---- C:\Program Files (x86)\ASIO4ALL v2
2020-10-13 01:42:12 ----D---- C:\Program Files\VstPlugins
2020-10-13 01:42:11 ----D---- C:\Program Files\Common Files\Propellerhead Software
2020-10-13 01:42:11 ----D---- C:\Program Files (x86)\VstPlugins
2020-10-13 01:37:25 ----D---- C:\Program Files (x86)\Image-Line
2020-10-13 01:08:20 ----A---- C:\Windows\vcruntime140_1.dll
2020-10-12 23:07:18 ----D---- C:\Program Files (x86)\Arturia
2020-09-21 18:57:00 ----D---- C:\ProgramData\GOG.com
2020-09-21 18:55:54 ----D---- C:\GOG Games
2020-09-21 10:05:47 ----D---- C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
2020-09-21 10:04:35 ----D---- C:\Users\PC\AppData\Roaming\Disc-Soft
2020-09-21 10:01:17 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2020-09-21 10:00:35 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2020-09-21 10:00:15 ----D---- C:\Program Files\DAEMON Tools Lite
2020-09-21 10:00:06 ----D---- C:\ProgramData\Disc-Soft
2020-09-21 09:42:43 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2020-09-21 09:42:43 ----A---- C:\Windows\system32\D3DCompiler_47.dll

======List of files/folders modified in the last 1 month======

2020-10-18 16:59:06 ----D---- C:\Windows\Temp
2020-10-18 16:54:26 ----D---- C:\Program Files
2020-10-18 15:50:14 ----HD---- C:\ProgramData
2020-10-18 15:48:46 ----D---- C:\Windows\system32\drivers
2020-10-18 14:44:50 ----RD---- C:\Program Files (x86)
2020-10-18 14:41:21 ----D---- C:\ProgramData\Synaptics
2020-10-18 14:35:20 ----D---- C:\Windows\Tasks
2020-10-18 14:16:22 ----SHD---- C:\Windows\Installer
2020-10-18 13:38:54 ----SHD---- C:\Config.Msi
2020-10-18 13:37:39 ----D---- C:\Windows\system32\DriverStore
2020-10-18 13:37:39 ----D---- C:\Windows\inf
2020-10-18 13:30:58 ----HD---- C:\Users\PC\AppData\Roaming\uTorrent
2020-10-18 13:30:17 ----D---- C:\Windows\System32
2020-10-18 13:30:09 ----D---- C:\Windows\system32\Tasks
2020-10-18 13:24:20 ----D---- C:\ProgramData\Package Cache
2020-10-18 13:13:56 ----D---- C:\Windows\system32\config
2020-10-18 12:55:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2020-10-18 12:53:18 ----D---- C:\Windows\Prefetch
2020-10-18 12:52:54 ----D---- C:\Windows\SysWOW64
2020-10-18 12:52:48 ----D---- C:\Windows\winsxs
2020-10-18 12:46:28 ----D---- C:\Program Files\Windows Media Player
2020-10-18 12:46:28 ----D---- C:\Program Files (x86)\Windows Media Player
2020-10-18 12:46:27 ----D---- C:\Windows\SYSWOW64\Dism
2020-10-18 12:46:27 ----D---- C:\Windows\SYSWOW64\cs-CZ
2020-10-18 12:46:26 ----D---- C:\Windows\system32\en-US
2020-10-18 12:46:26 ----D---- C:\Windows\system32\drivers\en-US
2020-10-18 12:46:26 ----D---- C:\Windows\system32\Dism
2020-10-18 12:46:26 ----D---- C:\Windows\system32\cs-CZ
2020-10-18 12:46:23 ----D---- C:\Windows\AppPatch
2020-10-18 12:46:22 ----D---- C:\Windows\system32\CodeIntegrity
2020-10-18 12:46:22 ----D---- C:\Windows\system32\Boot
2020-10-18 12:46:04 ----D---- C:\Windows
2020-10-18 12:45:57 ----D---- C:\Windows\system32\catroot2
2020-10-18 12:45:32 ----SHD---- C:\System Volume Information
2020-10-17 20:07:38 ----D---- C:\Windows\Microsoft.NET
2020-10-17 20:06:53 ----RSD---- C:\Windows\Fonts
2020-10-17 16:03:01 ----D---- C:\Program Files (x86)\P2PEnhance
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\xercgsouaq3
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\Windows RTL Handler
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\w5hcxhoft3u
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\rwqe04mdpsj
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\nvkxg21s0rx
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\kw1qexeg2ci
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\jdks40rhzpa
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\igv24vh11uk
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\egpodfntuxn
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\cqhk2b2mvaq
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\bzo3okmy2tc
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\2ziao1vea5u
2020-10-17 16:00:15 ----HD---- C:\Users\PC\AppData\Roaming\2tmhfzktybe
2020-10-17 10:32:00 ----HD---- C:\Users\PC\AppData\Roaming\vlc
2020-10-14 08:37:29 ----D---- C:\Users\PC\AppData\Roaming\BiglyBT
2020-10-13 22:06:45 ----D---- C:\Program Files\Common Files
2020-10-13 21:01:07 ----D---- C:\Program Files\BiglyBT
2020-10-13 20:57:47 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2020-10-13 20:57:44 ----D---- C:\Windows\system32\Macromed
2020-10-13 20:57:42 ----D---- C:\Windows\SYSWOW64\Macromed
2020-10-13 20:51:15 ----D---- C:\ProgramData\Nero
2020-10-13 20:23:15 ----D---- C:\Windows\SYSWOW64\drivers
2020-10-13 01:42:11 ----D---- C:\Program Files (x86)\Common Files
2020-09-23 17:13:23 ----D---- C:\Windows\system32\catroot
2020-09-21 17:09:32 ----D---- C:\Windows\system32\wfp
2020-09-21 17:09:31 ----D---- C:\Windows\system32\wbem
2020-09-21 17:08:31 ----D---- C:\Windows\system32\NDF
2020-09-21 17:08:30 ----D---- C:\Windows\system32\drivers\etc
2020-09-21 17:08:02 ----D---- C:\Windows\registration
2020-09-21 09:44:22 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2020-09-21 09:42:12 ----D---- C:\Windows\Logs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 BTATH_BUS;Qualcomm Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2016-05-24 35016]
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2020-08-10 106640]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2017-05-11 23552]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2011-07-15 22128]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2020-08-10 158512]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2020-08-10 195976]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2020-08-10 79552]
R1 EpfwLWF;ESET Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2020-08-10 64008]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2020-08-10 116488]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 athr;Dell Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2016-05-23 4181000]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2020-09-21 42256]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2020-09-23 59360]
R3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d62x64.sys [2018-02-04 545224]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2013-11-30 91648]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2016-06-29 4932072]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTDVHD64.sys [2017-11-06 2682848]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2017-05-11 401408]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2017-05-11 816640]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2017-10-07 201296]
R3 MQAC;@mqutil.dll,-6101; C:\Windows\system32\drivers\mqac.sys [2009-07-14 189440]
R3 NIWinCDEmu;ISO Mounter driver; C:\Windows\system32\DRIVERS\NIWinCDEmu.sys [2015-08-24 112408]
R3 O2FJ2RDR;O2FJ2RDR; C:\Windows\system32\DRIVERS\bhtscpcrx64.sys [2015-12-16 201400]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-10-25 34544]
R3 ST_ACCEL;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2014-04-21 75952]
R3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2019-07-26 27136]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2020-08-10 53064]
S3 avgTap;AVG TAP Adapter v3; C:\Windows\system32\DRIVERS\avgTap.sys [2018-03-16 54888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 14976]
S3 hwusb_cdcacm;hwusb_cdcacm; C:\Windows\system32\DRIVERS\ew_cdcacm.sys [2014-07-25 125952]
S3 hwusb_wwanecm;hwusb_wwanecm; C:\Windows\system32\DRIVERS\ew_wwanecm.sys [2014-09-30 380672]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2016-06-29 460048]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-01-22 77824]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-01-22 180224]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2009-07-14 19968]
S3 usbrndis6;Adaptér USB RNDIS6; C:\Windows\system32\DRIVERS\usb80236.sys [2009-07-14 19968]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S4 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\adminservice.exe [2016-05-24 325600]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2017-05-10 1201896]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2017-05-10 1865448]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2017-05-10 1189608]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-07-26 11469920]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2020-08-10 2371760]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 iBtSiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [2017-05-27 506536]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2016-06-29 344184]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2017-11-22 213648]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2017-11-22 419984]
R2 MSMQ;@mqutil.dll,-6102; C:\Windows\system32\mqsvc.exe [2009-07-14 9216]
R2 O2FLASH;O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [2015-12-16 82088]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2017-11-06 310000]
R2 SDIOAssist;SDIOAssist; C:\Windows\System32\SDIOAssist.exe [2016-01-07 816128]
R2 SNMP;@%SystemRoot%\system32\snmp.exe,-3; C:\Windows\System32\snmp.exe [2010-11-21 49664]
R2 valWBFPolicyService;Synaptics FP WBF Policy Service; C:\Windows\system32\valWBFPolicyService.exe [2017-12-12 82904]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2020-09-21 4581568]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Security\ekrn.exe [2020-08-10 2371760]
S2 avg;Služba %1!s! Update (avg); C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe /svc []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
S2 Intel(R) TPM Provisioning Service;Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [2017-11-08 720184]
S2 MicroService;MicroService; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 O2 Internet. RunOuc;O2 Internet. OUC; C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe [2013-10-26 651856]
S2 O2SDIOAssist;O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [2012-03-09 8192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2020-10-13 335416]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S3 AthNetAgent;Qualcomm Atheros Net Agent; C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Agent\AthNetAgent.exe [2015-08-07 169040]
S3 avgm;Služba %1!s! Update (avgm); C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe /medsvc []
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2016-06-29 279160]
S3 DCDhcpService;DCDhcpService; C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCDhcpService.exe [2015-08-07 198224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [2017-11-08 743728]
S3 ose;Office  Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 226752]
S3 osppsvc;Office Software Protection Platform; c:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2002-02-01 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------
