Zasekaný a zpomalený ntb
Napsal: 10 črc 2018 18:43
Dobrý den,
měla jsem notebook v opravě kvůli přehřívání a opakovaným restartům. Notebook mi vyčistili s tím, že byl zanesený. Každopádně hned po zapnutí mi to ukazovalo CPU 100 %. Notebook je zpomalený a navíc se seká, takže než tu něco udělám, trvá to dlouho. Předtím se notebook přehříval především při hraní her, teď už je to pořád. CPU navíc pořád skáče, nějakou dobu je to 100 %, pak to z ničeho nic skočí na 40 %, hned na to to zase skočí na 90 % a takto pořád dokola, nikdy to moc dlouho nevydrží u jednoho čísla. Tak mě napadlo, jestli nemám ntb třeba zavirovaný a prosím vás o pomoc. Děkuji!
Logfile of random's system information tool 1.10 (written by random/random)
Run by Barbora at 2018-07-10 19:31:32
Microsoft Windows 10 Home
System drive C: has 836 GB (88%) free of 952 GB
Total RAM: 7647 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:31:48, on 10.07.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\Barbora.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O4 - HKCU\..\Run: [Advanced SystemCare 10] "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: AdaptiveSleepService - Unknown owner - C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 10 (AdvancedSystemCareService10) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: Realtek Bluetooth Device Manager Service (RtkBtManServ) - Realtek Semiconductor Corp. - C:\Windows\RtkBtManServ.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 10106 bytes
======Listing Processes======
winlogon.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k appmodel -p -s camsvc
c:\windows\system32\svchost.exe -k localservice -p -s nsi
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 2350991784752
\??\C:\WINDOWS\system32\conhost.exe 0x4
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe" /Task
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NgcSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s NgcCtnrSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
C:\WINDOWS\system32\browser_broker.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
AvastUI.exe /nogui
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Barbora\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Barbora\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Barbora\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=67.0.3396.87 --initial-client-data=0x1dc,0x1e0,0x1e4,0x1d8,0x1e8,0x7ffffbae3228,0x7ffffbae3238,0x7ffffbae3248
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=7772 --on-initialized-event-handle=680 --parent-handle=684 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=E92FA0DD0F9AC611F42C84DA7A03F867 --mojo-platform-channel-handle=1784 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=2300A995A6355F344EA3C7CB0B0D5648 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2300A995A6355F344EA3C7CB0B0D5648 --renderer-client-id=3 --mojo-platform-channel-handle=3224 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=E91EBBC8DDB7FB75118BD242A04E5C1F --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=E91EBBC8DDB7FB75118BD242A04E5C1F --renderer-client-id=4 --mojo-platform-channel-handle=3412 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=63AF0C1C28C3D41AE5B30452E35FDEF2 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=63AF0C1C28C3D41AE5B30452E35FDEF2 --renderer-client-id=5 --mojo-platform-channel-handle=3448 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=6EF3874B7F7E3394F71F44CAC4ED3B60 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=6EF3874B7F7E3394F71F44CAC4ED3B60 --renderer-client-id=9 --mojo-platform-channel-handle=5488 /prefetch:1
C:\WINDOWS\system32\cmd.exe /d /c "C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.59d55393a0f28eb8 > \\.\pipe\chrome.nativeMessaging.out.59d55393a0f28eb8
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
c:\windows\system32\svchost.exe -k netsvcs -p
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=48FBB66FD5D40BB94185542AF365B28C --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=48FBB66FD5D40BB94185542AF365B28C --renderer-client-id=26 --mojo-platform-channel-handle=6112 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=37895623715FFEB816FC88A24A178F67 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=37895623715FFEB816FC88A24A178F67 --renderer-client-id=30 --mojo-platform-channel-handle=7668 /prefetch:1
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
C:\WINDOWS\system32\AUDIODG.EXE 0x528
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=FFA092480F91BB44B8EABE29FA043F7E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=FFA092480F91BB44B8EABE29FA043F7E --renderer-client-id=78 --mojo-platform-channel-handle=8024 /prefetch:1
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=11A80C91AD88DEF901DD01DBF0185D5C --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=11A80C91AD88DEF901DD01DBF0185D5C --renderer-client-id=104 --mojo-platform-channel-handle=8088 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=C65E868D86A51D4631982AB52DB9A333 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=C65E868D86A51D4631982AB52DB9A333 --renderer-client-id=113 --mojo-platform-channel-handle=9192 /prefetch:1
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18052.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1668269071-3916291943-658507147-10034_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1668269071-3916291943-658507147-10034 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=renderer --disable-gpu-compositing --disable-pinch --no-sandbox --primordial-pipe-token=6CC412637D25278E4E57C09D75DA31F7 --lang=en-US --lang=en-US --log-file="C:\Users\Barbora\AppData\Roaming\AVAST Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.3.2987.1601 Safari/537.36 Avastium (18.5.2342)" --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=6CC412637D25278E4E57C09D75DA31F7 --renderer-client-id=11 --mojo-platform-channel-handle=7344 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=24A749ED1B953C391930EA81106059C2 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=24A749ED1B953C391930EA81106059C2 --renderer-client-id=115 --mojo-platform-channel-handle=1176 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=41439934AC46E39B212A78D304695D6D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=41439934AC46E39B212A78D304695D6D --renderer-client-id=116 --mojo-platform-channel-handle=6644 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=2AA6119BB53114AFB8CC49DFBFB53A6D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2AA6119BB53114AFB8CC49DFBFB53A6D --renderer-client-id=118 --mojo-platform-channel-handle=10672 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 724 728 736 8192 732
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\Barbora\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\Uninstaller_SkipUac_Barbora.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-07-10 202424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\siteadvisor\x64\mcieplg.dll [2018-06-05 199640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-07-10 149168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll [2018-06-05 167480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-06-24 242904]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 10"=C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2016-12-16 2913568]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AUpdate.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BigUpgrade_IU.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DSPut.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Feedback.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Install_PintoStartMenu.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IObitDownloader.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IObitRegister.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IUDM.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IUPluginNotice.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IUService.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IU_InstallBeforWork.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\McChHost.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mcsacore.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NoteIcon.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\saUI.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\saUpd.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ScreenShot.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SendBugReportNew.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-07-10 19:31:33 ----D---- C:\Program Files\trend micro
2018-07-10 19:31:32 ----D---- C:\rsit
2018-07-10 19:25:33 ----D---- C:\FRST
2018-07-10 18:58:05 ----D---- C:\ProgramData\Packages
2018-06-28 12:25:30 ----D---- C:\WINDOWS\system32\ ‰ó+
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswHdsKe.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswElam.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswbuniva.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswbloga.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswbidsha.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswbidsdrivera.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswArPot.sys
2018-06-24 11:50:12 ----A---- C:\WINDOWS\system32\aswBoot.exe
2018-06-13 13:06:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-06-13 13:06:18 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-06-13 13:06:17 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-06-13 13:06:15 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-06-13 13:06:12 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-06-13 13:06:09 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-06-13 13:06:06 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-06-13 13:06:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-06-13 13:06:05 ----A---- C:\WINDOWS\system32\cdp.dll
2018-06-13 13:06:04 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2018-06-13 13:06:03 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-06-13 13:06:02 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-06-13 13:06:02 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-06-13 13:06:02 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2018-06-13 13:06:02 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-06-13 13:06:02 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-06-13 13:06:01 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2018-06-13 13:06:01 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2018-06-13 13:06:00 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-06-13 13:06:00 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-06-13 13:05:59 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-06-13 13:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2018-06-13 13:05:58 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-06-13 13:05:58 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2018-06-13 13:05:57 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2018-06-13 13:05:57 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2018-06-13 13:05:56 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-06-13 13:05:56 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-06-13 13:05:56 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-06-13 13:05:56 ----A---- C:\WINDOWS\system32\combase.dll
2018-06-13 13:05:55 ----A---- C:\WINDOWS\system32\OpcServices.dll
2018-06-13 13:05:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2018-06-13 13:05:54 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-06-13 13:05:54 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-06-13 13:05:54 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-06-13 13:05:54 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2018-06-13 13:05:53 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2018-06-13 13:05:52 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2018-06-13 13:05:52 ----A---- C:\WINDOWS\system32\CoreShell.dll
2018-06-13 13:05:51 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2018-06-13 13:05:51 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2018-06-13 13:05:51 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-06-13 13:05:50 ----A---- C:\WINDOWS\system32\wininet.dll
2018-06-13 13:05:50 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-06-13 13:05:50 ----A---- C:\WINDOWS\system32\d2d1.dll
2018-06-13 13:05:49 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-06-13 13:05:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2018-06-13 13:05:47 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-06-13 13:05:47 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2018-06-13 13:05:46 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2018-06-13 13:05:46 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-06-13 13:05:46 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-06-13 13:05:46 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-06-13 13:05:45 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-06-13 13:05:45 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2018-06-13 13:05:44 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-06-13 13:05:44 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-06-13 13:05:44 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2018-06-13 13:05:44 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-06-13 13:05:44 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-06-13 13:05:43 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-06-13 13:05:43 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2018-06-13 13:05:43 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2018-06-13 13:05:42 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-06-13 13:05:41 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2018-06-13 13:05:41 ----A---- C:\WINDOWS\system32\usocore.dll
2018-06-13 13:05:41 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2018-06-13 13:05:41 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-06-13 13:05:41 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-06-13 13:05:40 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2018-06-13 13:05:40 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-06-13 13:05:39 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2018-06-13 13:05:39 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-06-13 13:05:39 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-06-13 13:05:38 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2018-06-13 13:05:38 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-06-13 13:05:38 ----A---- C:\WINDOWS\system32\mf.dll
2018-06-13 13:05:38 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-06-13 13:05:37 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2018-06-13 13:05:37 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2018-06-13 13:05:37 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-06-13 13:05:37 ----A---- C:\WINDOWS\system32\msftedit.dll
2018-06-13 13:05:37 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-06-13 13:05:36 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2018-06-13 13:05:36 ----A---- C:\WINDOWS\system32\ISM.dll
2018-06-13 13:05:36 ----A---- C:\WINDOWS\system32\dxgi.dll
2018-06-13 13:05:36 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-06-13 13:05:36 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-06-13 13:05:35 ----A---- C:\WINDOWS\system32\jscript.dll
2018-06-13 13:05:35 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-06-13 13:05:35 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-06-13 13:05:35 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2018-06-13 13:05:34 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-06-13 13:05:34 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-06-13 13:05:34 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-06-13 13:05:34 ----A---- C:\WINDOWS\system32\mfsvr.dll
2018-06-13 13:05:34 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\propsys.dll
2018-06-13 13:05:32 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-06-13 13:05:32 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2018-06-13 13:05:32 ----A---- C:\WINDOWS\system32\rpcss.dll
2018-06-13 13:05:32 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-06-13 13:05:31 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2018-06-13 13:05:31 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2018-06-13 13:05:31 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-06-13 13:05:31 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-06-13 13:05:30 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2018-06-13 13:05:30 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2018-06-13 13:05:30 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2018-06-13 13:05:30 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-06-13 13:05:30 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-06-13 13:05:30 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-06-13 13:05:30 ----A---- C:\WINDOWS\system32\dui70.dll
2018-06-13 13:05:29 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2018-06-13 13:05:29 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-06-13 13:05:29 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-06-13 13:05:28 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2018-06-13 13:05:28 ----A---- C:\WINDOWS\system32\mfds.dll
2018-06-13 13:05:28 ----A---- C:\WINDOWS\system32\esent.dll
2018-06-13 13:05:28 ----A---- C:\WINDOWS\system32\AcGenral.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\WinTypes.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\winload.exe
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\webservices.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\SHCore.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2018-06-13 13:05:26 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2018-06-13 13:05:26 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-06-13 13:05:26 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2018-06-13 13:05:26 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2018-06-13 13:05:26 ----A---- C:\WINDOWS\system32\winresume.exe
2018-06-13 13:05:26 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-06-13 13:05:26 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2018-06-13 13:05:26 ----A---- C:\WINDOWS\system32\ci.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\system32\ReAgent.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-06-13 13:05:25 ----A---- C:\WINDOWS\system32\CPFilters.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-06-13 13:05:23 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2018-06-13 13:05:23 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-06-13 13:05:23 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2018-06-13 13:05:23 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-06-13 13:05:23 ----A---- C:\WINDOWS\system32\credprovs.dll
2018-06-13 13:05:22 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-06-13 13:05:21 ----A---- C:\WINDOWS\system32\systemreset.exe
2018-06-13 13:05:21 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2018-06-13 13:05:21 ----A---- C:\WINDOWS\system32\msdtctm.dll
2018-06-13 13:05:21 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-06-13 13:05:21 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\system32\LanguageOverlayUtil.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\system32\DXP.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-06-13 13:05:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\SYSWOW64\LanguageOverlayUtil.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\skci.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\FrameServer.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-06-13 13:05:18 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\SYSWOW64\kernel.appcore.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\wimgapi.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\vertdll.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\reseteng.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\msfeeds.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\mfps.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\kernel.appcore.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-06-13 13:05:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\wimserv.exe
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\GenValObj.exe
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\drivers\uefi.sys
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2018-06-13 13:05:16 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2018-06-13 13:05:16 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\mstsc.exe
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\drivers\Ucx01000.sys
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\ClipUp.exe
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\bcrypt.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\FSClient.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\sppcext.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\easwrt.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2018-06-13 13:05:12 ----A---- C:\WINDOWS\SYSWOW64\msdt.exe
2018-06-13 13:05:12 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\Windows.Globalization.PhoneNumberFormatting.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\usoapi.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\msdt.exe
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\MDEServer.exe
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\dssvc.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2018-06-13 13:05:11 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\tbauth.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\SIHClient.exe
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\edpnotify.exe
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\drivers\mpsdrv.sys
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-06-12 10:48:38 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of files/folders modified in the last 1 month======
2018-07-10 19:31:33 ----RD---- C:\Program Files
2018-07-10 19:31:32 ----D---- C:\WINDOWS\Prefetch
2018-07-10 19:31:13 ----D---- C:\WINDOWS\Temp
2018-07-10 19:25:38 ----D---- C:\Windows
2018-07-10 19:21:05 ----D---- C:\WINDOWS\system32\sru
2018-07-10 19:02:55 ----HD---- C:\Program Files\WindowsApps
2018-07-10 19:01:31 ----D---- C:\WINDOWS\AppReadiness
2018-07-10 18:58:05 ----HD---- C:\ProgramData
2018-07-10 18:49:10 ----SHDC---- C:\WINDOWS\Installer
2018-07-10 18:49:10 ----SHD---- C:\Config.Msi
2018-07-10 18:49:04 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-07-10 18:48:00 ----RD---- C:\WINDOWS\Microsoft.NET
2018-07-10 18:47:26 ----D---- C:\Program Files (x86)\Common Files
2018-07-10 18:39:39 ----AD---- C:\Program Files (x86)\Microsoft Office
2018-07-10 18:28:53 ----D---- C:\WINDOWS\System32
2018-07-10 18:28:53 ----D---- C:\WINDOWS\INF
2018-07-10 18:28:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-06-28 14:21:13 ----D---- C:\WINDOWS\system32\SleepStudy
2018-06-28 12:52:12 ----D---- C:\WINDOWS\system32\catroot2
2018-06-28 12:52:11 ----SHD---- C:\System Volume Information
2018-06-28 12:51:37 ----D---- C:\WINDOWS\Logs
2018-06-28 12:27:31 ----D---- C:\WINDOWS\system32\config
2018-06-28 12:25:38 ----D---- C:\WINDOWS\system32\LogFiles
2018-06-28 12:25:36 ----D---- C:\WINDOWS\SoftwareDistribution
2018-06-27 12:02:02 ----D---- C:\ProgramData\ProductData
2018-06-27 11:21:26 ----SHD---- C:\$Recycle.Bin
2018-06-27 07:22:57 ----D---- C:\Program Files (x86)\McAfee
2018-06-27 07:22:41 ----D---- C:\WINDOWS\debug
2018-06-27 07:22:38 ----D---- C:\WINDOWS\system32\drivers
2018-06-24 22:52:29 ----AD---- C:\Program Files (x86)\World of Warcraft
2018-06-24 22:51:50 ----AD---- C:\Program Files (x86)\Blizzard App
2018-06-24 15:50:38 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-06-24 11:51:05 ----D---- C:\WINDOWS\system32\Tasks
2018-06-24 11:50:12 ----HD---- C:\WINDOWS\ELAMBKUP
2018-06-22 17:56:39 ----AD---- C:\Program Files (x86)\Hearthstone
2018-06-22 12:37:01 ----D---- C:\WINDOWS\WinSxS
2018-06-22 10:33:08 ----D---- C:\ProgramData\AMD
2018-06-16 12:12:08 ----D---- C:\WINDOWS\appcompat
2018-06-15 21:08:12 ----D---- C:\Users\Barbora\AppData\Roaming\uTorrent
2018-06-14 17:36:28 ----RD---- C:\WINDOWS\assembly
2018-06-14 11:58:55 ----AD---- C:\Program Files (x86)\Opera
2018-06-14 11:34:59 ----D---- C:\WINDOWS\system32\WDI
2018-06-14 11:31:05 ----D---- C:\WINDOWS\system32\DriverStore
2018-06-14 01:01:12 ----D---- C:\WINDOWS\TextInput
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\oobe
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\Dism
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SysWOW64
2018-06-14 01:01:09 ----D---- C:\WINDOWS\system32\zu-ZA
2018-06-14 01:01:09 ----D---- C:\WINDOWS\system32\yo-NG
2018-06-14 01:01:09 ----D---- C:\WINDOWS\system32\xh-ZA
2018-06-14 01:01:09 ----D---- C:\WINDOWS\system32\wo-SN
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\tn-ZA
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\ti-ET
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\rw-RW
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\oobe
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\nso-ZA
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\ig-NG
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\en-US
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\Dism
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\Boot
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\appraiser
2018-06-14 01:01:05 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-06-14 01:01:05 ----D---- C:\WINDOWS\ShellExperiences
2018-06-14 01:01:05 ----D---- C:\WINDOWS\bcastdvr
2018-06-14 01:01:05 ----D---- C:\WINDOWS\apppatch
2018-06-14 01:01:05 ----D---- C:\Program Files\Windows Photo Viewer
2018-06-14 01:01:05 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2018-06-13 21:43:33 ----DC---- C:\WINDOWS\Panther
2018-06-13 21:43:32 ----D---- C:\Program Files (x86)\Steam
2018-06-13 16:05:03 ----D---- C:\WINDOWS\CbsTemp
2018-06-13 13:22:49 ----D---- C:\WINDOWS\system32\MRT
2018-06-13 13:12:01 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-06-13 13:11:54 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-06-12 10:46:55 ----D---- C:\WINDOWS\system32\restore
2018-06-12 10:42:11 ----D---- C:\WINDOWS\system32\Macromed
2018-06-12 10:42:04 ----D---- C:\WINDOWS\SYSWOW64\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem14.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2017-04-03 87856]
R0 amdpsp;@oem11.inf,%amdpsp.SVCDESC%;AMD PSP Service; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [2017-06-16 243048]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2018-06-24 201328]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2018-06-24 346664]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2018-06-24 59592]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-06-24 85968]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-06-24 381584]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-04-12 58272]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-04-12 63896]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2016-03-22 21360]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-06-24 197160]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2018-06-24 229392]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2018-06-24 239680]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2018-06-24 111872]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2018-06-24 1027728]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-06-24 463080]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2017-04-03 27552]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-06-24 159640]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2018-06-24 211160]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-04-12 414208]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-04-12 43520]
R3 AmdAS4;@oem16.inf,%AmdAS4.SVCDESC%;AmdAS4 service; C:\WINDOWS\System32\drivers\AmdAS4.sys [2017-04-01 27016]
R3 amdgpio2;@oem4.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2017-04-03 34704]
R3 amdi2c;@oem6.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2017-04-03 54160]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0307840.inf_amd64_2d7ce5e36533f4c7\atikmdag.sys [2017-04-03 26565648]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0307840.inf_amd64_2d7ce5e36533f4c7\atikmpag.sys [2017-04-03 527264]
R3 amduart;@oem15.inf,%amduart.SVCDESC%;AMD UART Service; C:\WINDOWS\System32\drivers\amduart.sys [2017-05-12 91640]
R3 AtiHDAudioService;@oem10.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2017-11-21 111112]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2018-04-12 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-10-04 5337608]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2018-04-12 604160]
R3 RtkBtFilter;@oem9.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2017-07-20 723920]
R3 RTWlanE;@oem3.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\System32\drivers\rtwlane.sys [2017-08-18 6895984]
R3 SmbDrv;SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [2017-08-18 53848]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-04-12 128416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 amdkmcsp;@oem11.inf,%amdkmcsp.SVCDESC%;AMD Kernel Mode CSP Service; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [2017-06-16 101232]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2018-06-24 15360]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-06-24 46976]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-04-12 92056]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2018-04-12 1069056]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-04-12 73632]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-02-14 111608]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-06-08 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2015-07-06 33960]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2018-04-12 57752]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdvancedSystemCareService10;Advanced SystemCare Service 10; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [2016-12-12 462624]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-06-24 322464]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_433b7;Uživatelská služba platformy připojených zařízení_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-06-20 8765104]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 OneSyncSvc_433b7;Hostitel synchronizace_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-04-12 761440]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2018-04-12 163336]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-06-24 7780400]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 PimIndexMaintenanceSvc_433b7;Data kontaktů_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AdaptiveSleepService;AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [2016-10-06 155016]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-06-12 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2017-04-03 295840]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_433b7;Uživatelská služba pro GameDVR a vysílání her_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_433b7;Služba pro podporu uživatelů Bluetooth_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_433b7;DevicePicker_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_433b7;Tok zařízení_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-04-12 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-06-05 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-04-05 152216]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-04-05 152216]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_433b7;Služba zasílání zpráv_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-06-20 212152]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_433b7;PrintWorkflow_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-10-04 317960]
S3 RtkBtManServ;Realtek Bluetooth Device Manager Service; C:\Windows\RtkBtManServ.exe [2017-01-22 207360]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2018-06-08 976384]
S4 IObitUnSvr;IObit Uninstaller Service; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [2016-10-28 360736]
S4 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2018-06-05 604824]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S4 ssh-agent;OpenSSH Authentication Agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [2018-03-10 495616]
-----------------EOF-----------------
měla jsem notebook v opravě kvůli přehřívání a opakovaným restartům. Notebook mi vyčistili s tím, že byl zanesený. Každopádně hned po zapnutí mi to ukazovalo CPU 100 %. Notebook je zpomalený a navíc se seká, takže než tu něco udělám, trvá to dlouho. Předtím se notebook přehříval především při hraní her, teď už je to pořád. CPU navíc pořád skáče, nějakou dobu je to 100 %, pak to z ničeho nic skočí na 40 %, hned na to to zase skočí na 90 % a takto pořád dokola, nikdy to moc dlouho nevydrží u jednoho čísla. Tak mě napadlo, jestli nemám ntb třeba zavirovaný a prosím vás o pomoc. Děkuji!
Logfile of random's system information tool 1.10 (written by random/random)
Run by Barbora at 2018-07-10 19:31:32
Microsoft Windows 10 Home
System drive C: has 836 GB (88%) free of 952 GB
Total RAM: 7647 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:31:48, on 10.07.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\Barbora.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O4 - HKCU\..\Run: [Advanced SystemCare 10] "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: AdaptiveSleepService - Unknown owner - C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 10 (AdvancedSystemCareService10) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: Realtek Bluetooth Device Manager Service (RtkBtManServ) - Realtek Semiconductor Corp. - C:\Windows\RtkBtManServ.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 10106 bytes
======Listing Processes======
winlogon.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k appmodel -p -s camsvc
c:\windows\system32\svchost.exe -k localservice -p -s nsi
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 2350991784752
\??\C:\WINDOWS\system32\conhost.exe 0x4
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe" /Task
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NgcSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s NgcCtnrSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
C:\WINDOWS\system32\browser_broker.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
AvastUI.exe /nogui
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Barbora\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Barbora\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Barbora\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=67.0.3396.87 --initial-client-data=0x1dc,0x1e0,0x1e4,0x1d8,0x1e8,0x7ffffbae3228,0x7ffffbae3238,0x7ffffbae3248
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=7772 --on-initialized-event-handle=680 --parent-handle=684 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=E92FA0DD0F9AC611F42C84DA7A03F867 --mojo-platform-channel-handle=1784 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=2300A995A6355F344EA3C7CB0B0D5648 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2300A995A6355F344EA3C7CB0B0D5648 --renderer-client-id=3 --mojo-platform-channel-handle=3224 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=E91EBBC8DDB7FB75118BD242A04E5C1F --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=E91EBBC8DDB7FB75118BD242A04E5C1F --renderer-client-id=4 --mojo-platform-channel-handle=3412 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=63AF0C1C28C3D41AE5B30452E35FDEF2 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=63AF0C1C28C3D41AE5B30452E35FDEF2 --renderer-client-id=5 --mojo-platform-channel-handle=3448 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=6EF3874B7F7E3394F71F44CAC4ED3B60 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=6EF3874B7F7E3394F71F44CAC4ED3B60 --renderer-client-id=9 --mojo-platform-channel-handle=5488 /prefetch:1
C:\WINDOWS\system32\cmd.exe /d /c "C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.59d55393a0f28eb8 > \\.\pipe\chrome.nativeMessaging.out.59d55393a0f28eb8
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
c:\windows\system32\svchost.exe -k netsvcs -p
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=48FBB66FD5D40BB94185542AF365B28C --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=48FBB66FD5D40BB94185542AF365B28C --renderer-client-id=26 --mojo-platform-channel-handle=6112 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=37895623715FFEB816FC88A24A178F67 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=37895623715FFEB816FC88A24A178F67 --renderer-client-id=30 --mojo-platform-channel-handle=7668 /prefetch:1
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
C:\WINDOWS\system32\AUDIODG.EXE 0x528
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=FFA092480F91BB44B8EABE29FA043F7E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=FFA092480F91BB44B8EABE29FA043F7E --renderer-client-id=78 --mojo-platform-channel-handle=8024 /prefetch:1
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=11A80C91AD88DEF901DD01DBF0185D5C --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=11A80C91AD88DEF901DD01DBF0185D5C --renderer-client-id=104 --mojo-platform-channel-handle=8088 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=C65E868D86A51D4631982AB52DB9A333 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=C65E868D86A51D4631982AB52DB9A333 --renderer-client-id=113 --mojo-platform-channel-handle=9192 /prefetch:1
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18052.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1668269071-3916291943-658507147-10034_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1668269071-3916291943-658507147-10034 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=renderer --disable-gpu-compositing --disable-pinch --no-sandbox --primordial-pipe-token=6CC412637D25278E4E57C09D75DA31F7 --lang=en-US --lang=en-US --log-file="C:\Users\Barbora\AppData\Roaming\AVAST Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.3.2987.1601 Safari/537.36 Avastium (18.5.2342)" --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=6CC412637D25278E4E57C09D75DA31F7 --renderer-client-id=11 --mojo-platform-channel-handle=7344 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=24A749ED1B953C391930EA81106059C2 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=24A749ED1B953C391930EA81106059C2 --renderer-client-id=115 --mojo-platform-channel-handle=1176 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=41439934AC46E39B212A78D304695D6D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=41439934AC46E39B212A78D304695D6D --renderer-client-id=116 --mojo-platform-channel-handle=6644 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1772,399461473308999900,17074531194267664095,131072 --service-pipe-token=2AA6119BB53114AFB8CC49DFBFB53A6D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2AA6119BB53114AFB8CC49DFBFB53A6D --renderer-client-id=118 --mojo-platform-channel-handle=10672 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 724 728 736 8192 732
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\Barbora\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\Uninstaller_SkipUac_Barbora.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-07-10 202424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\siteadvisor\x64\mcieplg.dll [2018-06-05 199640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-07-10 149168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll [2018-06-05 167480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-06-24 242904]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 10"=C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2016-12-16 2913568]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AUpdate.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BigUpgrade_IU.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DSPut.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Feedback.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Install_PintoStartMenu.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IObitDownloader.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IObitRegister.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IUDM.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IUPluginNotice.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IUService.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\IU_InstallBeforWork.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\McChHost.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mcsacore.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NoteIcon.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\saUI.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\saUpd.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ScreenShot.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SendBugReportNew.exe]
"Debugger="C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-07-10 19:31:33 ----D---- C:\Program Files\trend micro
2018-07-10 19:31:32 ----D---- C:\rsit
2018-07-10 19:25:33 ----D---- C:\FRST
2018-07-10 18:58:05 ----D---- C:\ProgramData\Packages
2018-06-28 12:25:30 ----D---- C:\WINDOWS\system32\ ‰ó+
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswHdsKe.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswElam.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswbuniva.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswbloga.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswbidsha.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswbidsdrivera.sys
2018-06-24 11:50:43 ----A---- C:\WINDOWS\system32\drivers\aswArPot.sys
2018-06-24 11:50:12 ----A---- C:\WINDOWS\system32\aswBoot.exe
2018-06-13 13:06:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-06-13 13:06:18 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-06-13 13:06:17 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-06-13 13:06:15 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-06-13 13:06:12 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-06-13 13:06:09 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-06-13 13:06:06 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-06-13 13:06:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-06-13 13:06:05 ----A---- C:\WINDOWS\system32\cdp.dll
2018-06-13 13:06:04 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2018-06-13 13:06:03 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-06-13 13:06:02 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-06-13 13:06:02 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-06-13 13:06:02 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2018-06-13 13:06:02 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-06-13 13:06:02 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-06-13 13:06:01 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2018-06-13 13:06:01 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2018-06-13 13:06:00 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-06-13 13:06:00 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-06-13 13:05:59 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-06-13 13:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2018-06-13 13:05:58 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-06-13 13:05:58 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2018-06-13 13:05:57 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2018-06-13 13:05:57 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2018-06-13 13:05:56 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-06-13 13:05:56 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-06-13 13:05:56 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-06-13 13:05:56 ----A---- C:\WINDOWS\system32\combase.dll
2018-06-13 13:05:55 ----A---- C:\WINDOWS\system32\OpcServices.dll
2018-06-13 13:05:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2018-06-13 13:05:54 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-06-13 13:05:54 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-06-13 13:05:54 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-06-13 13:05:54 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2018-06-13 13:05:53 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2018-06-13 13:05:52 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2018-06-13 13:05:52 ----A---- C:\WINDOWS\system32\CoreShell.dll
2018-06-13 13:05:51 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2018-06-13 13:05:51 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2018-06-13 13:05:51 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-06-13 13:05:50 ----A---- C:\WINDOWS\system32\wininet.dll
2018-06-13 13:05:50 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-06-13 13:05:50 ----A---- C:\WINDOWS\system32\d2d1.dll
2018-06-13 13:05:49 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-06-13 13:05:48 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-06-13 13:05:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2018-06-13 13:05:47 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-06-13 13:05:47 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2018-06-13 13:05:46 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2018-06-13 13:05:46 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-06-13 13:05:46 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-06-13 13:05:46 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-06-13 13:05:45 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-06-13 13:05:45 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2018-06-13 13:05:44 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-06-13 13:05:44 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-06-13 13:05:44 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2018-06-13 13:05:44 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-06-13 13:05:44 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-06-13 13:05:43 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-06-13 13:05:43 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2018-06-13 13:05:43 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2018-06-13 13:05:42 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-06-13 13:05:41 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2018-06-13 13:05:41 ----A---- C:\WINDOWS\system32\usocore.dll
2018-06-13 13:05:41 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2018-06-13 13:05:41 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-06-13 13:05:41 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-06-13 13:05:40 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2018-06-13 13:05:40 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-06-13 13:05:39 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2018-06-13 13:05:39 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-06-13 13:05:39 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-06-13 13:05:38 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2018-06-13 13:05:38 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-06-13 13:05:38 ----A---- C:\WINDOWS\system32\mf.dll
2018-06-13 13:05:38 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-06-13 13:05:37 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2018-06-13 13:05:37 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2018-06-13 13:05:37 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-06-13 13:05:37 ----A---- C:\WINDOWS\system32\msftedit.dll
2018-06-13 13:05:37 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-06-13 13:05:36 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2018-06-13 13:05:36 ----A---- C:\WINDOWS\system32\ISM.dll
2018-06-13 13:05:36 ----A---- C:\WINDOWS\system32\dxgi.dll
2018-06-13 13:05:36 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-06-13 13:05:36 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-06-13 13:05:35 ----A---- C:\WINDOWS\system32\jscript.dll
2018-06-13 13:05:35 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-06-13 13:05:35 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-06-13 13:05:35 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2018-06-13 13:05:34 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-06-13 13:05:34 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-06-13 13:05:34 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-06-13 13:05:34 ----A---- C:\WINDOWS\system32\mfsvr.dll
2018-06-13 13:05:34 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-06-13 13:05:33 ----A---- C:\WINDOWS\system32\propsys.dll
2018-06-13 13:05:32 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-06-13 13:05:32 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2018-06-13 13:05:32 ----A---- C:\WINDOWS\system32\rpcss.dll
2018-06-13 13:05:32 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-06-13 13:05:31 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2018-06-13 13:05:31 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2018-06-13 13:05:31 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-06-13 13:05:31 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-06-13 13:05:30 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2018-06-13 13:05:30 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2018-06-13 13:05:30 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2018-06-13 13:05:30 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-06-13 13:05:30 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-06-13 13:05:30 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-06-13 13:05:30 ----A---- C:\WINDOWS\system32\dui70.dll
2018-06-13 13:05:29 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2018-06-13 13:05:29 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-06-13 13:05:29 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-06-13 13:05:28 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2018-06-13 13:05:28 ----A---- C:\WINDOWS\system32\mfds.dll
2018-06-13 13:05:28 ----A---- C:\WINDOWS\system32\esent.dll
2018-06-13 13:05:28 ----A---- C:\WINDOWS\system32\AcGenral.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\WinTypes.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\winload.exe
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\webservices.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\SHCore.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-06-13 13:05:27 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2018-06-13 13:05:26 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2018-06-13 13:05:26 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-06-13 13:05:26 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2018-06-13 13:05:26 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2018-06-13 13:05:26 ----A---- C:\WINDOWS\system32\winresume.exe
2018-06-13 13:05:26 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-06-13 13:05:26 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2018-06-13 13:05:26 ----A---- C:\WINDOWS\system32\ci.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\system32\ReAgent.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-06-13 13:05:25 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-06-13 13:05:25 ----A---- C:\WINDOWS\system32\CPFilters.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2018-06-13 13:05:24 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-06-13 13:05:23 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2018-06-13 13:05:23 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-06-13 13:05:23 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2018-06-13 13:05:23 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-06-13 13:05:23 ----A---- C:\WINDOWS\system32\credprovs.dll
2018-06-13 13:05:22 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-06-13 13:05:21 ----A---- C:\WINDOWS\system32\systemreset.exe
2018-06-13 13:05:21 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2018-06-13 13:05:21 ----A---- C:\WINDOWS\system32\msdtctm.dll
2018-06-13 13:05:21 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-06-13 13:05:21 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\system32\LanguageOverlayUtil.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\system32\DXP.dll
2018-06-13 13:05:20 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-06-13 13:05:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\SYSWOW64\LanguageOverlayUtil.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\skci.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\FrameServer.dll
2018-06-13 13:05:19 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-06-13 13:05:18 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\SYSWOW64\kernel.appcore.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\wimgapi.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\vertdll.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\reseteng.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\msfeeds.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\mfps.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\kernel.appcore.dll
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2018-06-13 13:05:18 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-06-13 13:05:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\wimserv.exe
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\GenValObj.exe
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\drivers\uefi.sys
2018-06-13 13:05:17 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2018-06-13 13:05:16 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2018-06-13 13:05:16 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\mstsc.exe
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-06-13 13:05:16 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\drivers\Ucx01000.sys
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\ClipUp.exe
2018-06-13 13:05:15 ----A---- C:\WINDOWS\system32\bcrypt.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\FSClient.dll
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-06-13 13:05:14 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\sppcext.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\easwrt.dll
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-06-13 13:05:13 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2018-06-13 13:05:12 ----A---- C:\WINDOWS\SYSWOW64\msdt.exe
2018-06-13 13:05:12 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\Windows.Globalization.PhoneNumberFormatting.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\usoapi.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\msdt.exe
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\MDEServer.exe
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\dssvc.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-06-13 13:05:12 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2018-06-13 13:05:11 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\tbauth.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\SIHClient.exe
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\edpnotify.exe
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\drivers\mpsdrv.sys
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2018-06-13 13:05:11 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-06-12 10:48:38 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of files/folders modified in the last 1 month======
2018-07-10 19:31:33 ----RD---- C:\Program Files
2018-07-10 19:31:32 ----D---- C:\WINDOWS\Prefetch
2018-07-10 19:31:13 ----D---- C:\WINDOWS\Temp
2018-07-10 19:25:38 ----D---- C:\Windows
2018-07-10 19:21:05 ----D---- C:\WINDOWS\system32\sru
2018-07-10 19:02:55 ----HD---- C:\Program Files\WindowsApps
2018-07-10 19:01:31 ----D---- C:\WINDOWS\AppReadiness
2018-07-10 18:58:05 ----HD---- C:\ProgramData
2018-07-10 18:49:10 ----SHDC---- C:\WINDOWS\Installer
2018-07-10 18:49:10 ----SHD---- C:\Config.Msi
2018-07-10 18:49:04 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-07-10 18:48:00 ----RD---- C:\WINDOWS\Microsoft.NET
2018-07-10 18:47:26 ----D---- C:\Program Files (x86)\Common Files
2018-07-10 18:39:39 ----AD---- C:\Program Files (x86)\Microsoft Office
2018-07-10 18:28:53 ----D---- C:\WINDOWS\System32
2018-07-10 18:28:53 ----D---- C:\WINDOWS\INF
2018-07-10 18:28:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-06-28 14:21:13 ----D---- C:\WINDOWS\system32\SleepStudy
2018-06-28 12:52:12 ----D---- C:\WINDOWS\system32\catroot2
2018-06-28 12:52:11 ----SHD---- C:\System Volume Information
2018-06-28 12:51:37 ----D---- C:\WINDOWS\Logs
2018-06-28 12:27:31 ----D---- C:\WINDOWS\system32\config
2018-06-28 12:25:38 ----D---- C:\WINDOWS\system32\LogFiles
2018-06-28 12:25:36 ----D---- C:\WINDOWS\SoftwareDistribution
2018-06-27 12:02:02 ----D---- C:\ProgramData\ProductData
2018-06-27 11:21:26 ----SHD---- C:\$Recycle.Bin
2018-06-27 07:22:57 ----D---- C:\Program Files (x86)\McAfee
2018-06-27 07:22:41 ----D---- C:\WINDOWS\debug
2018-06-27 07:22:38 ----D---- C:\WINDOWS\system32\drivers
2018-06-24 22:52:29 ----AD---- C:\Program Files (x86)\World of Warcraft
2018-06-24 22:51:50 ----AD---- C:\Program Files (x86)\Blizzard App
2018-06-24 15:50:38 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-06-24 11:51:05 ----D---- C:\WINDOWS\system32\Tasks
2018-06-24 11:50:12 ----HD---- C:\WINDOWS\ELAMBKUP
2018-06-22 17:56:39 ----AD---- C:\Program Files (x86)\Hearthstone
2018-06-22 12:37:01 ----D---- C:\WINDOWS\WinSxS
2018-06-22 10:33:08 ----D---- C:\ProgramData\AMD
2018-06-16 12:12:08 ----D---- C:\WINDOWS\appcompat
2018-06-15 21:08:12 ----D---- C:\Users\Barbora\AppData\Roaming\uTorrent
2018-06-14 17:36:28 ----RD---- C:\WINDOWS\assembly
2018-06-14 11:58:55 ----AD---- C:\Program Files (x86)\Opera
2018-06-14 11:34:59 ----D---- C:\WINDOWS\system32\WDI
2018-06-14 11:31:05 ----D---- C:\WINDOWS\system32\DriverStore
2018-06-14 01:01:12 ----D---- C:\WINDOWS\TextInput
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\oobe
2018-06-14 01:01:12 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\Dism
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-06-14 01:01:11 ----D---- C:\WINDOWS\SysWOW64
2018-06-14 01:01:09 ----D---- C:\WINDOWS\system32\zu-ZA
2018-06-14 01:01:09 ----D---- C:\WINDOWS\system32\yo-NG
2018-06-14 01:01:09 ----D---- C:\WINDOWS\system32\xh-ZA
2018-06-14 01:01:09 ----D---- C:\WINDOWS\system32\wo-SN
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\tn-ZA
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\ti-ET
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\rw-RW
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\oobe
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\nso-ZA
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\ig-NG
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\en-US
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\Dism
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\Boot
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-06-14 01:01:08 ----D---- C:\WINDOWS\system32\appraiser
2018-06-14 01:01:05 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-06-14 01:01:05 ----D---- C:\WINDOWS\ShellExperiences
2018-06-14 01:01:05 ----D---- C:\WINDOWS\bcastdvr
2018-06-14 01:01:05 ----D---- C:\WINDOWS\apppatch
2018-06-14 01:01:05 ----D---- C:\Program Files\Windows Photo Viewer
2018-06-14 01:01:05 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2018-06-13 21:43:33 ----DC---- C:\WINDOWS\Panther
2018-06-13 21:43:32 ----D---- C:\Program Files (x86)\Steam
2018-06-13 16:05:03 ----D---- C:\WINDOWS\CbsTemp
2018-06-13 13:22:49 ----D---- C:\WINDOWS\system32\MRT
2018-06-13 13:12:01 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-06-13 13:11:54 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-06-12 10:46:55 ----D---- C:\WINDOWS\system32\restore
2018-06-12 10:42:11 ----D---- C:\WINDOWS\system32\Macromed
2018-06-12 10:42:04 ----D---- C:\WINDOWS\SYSWOW64\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem14.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2017-04-03 87856]
R0 amdpsp;@oem11.inf,%amdpsp.SVCDESC%;AMD PSP Service; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [2017-06-16 243048]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2018-06-24 201328]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2018-06-24 346664]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2018-06-24 59592]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-06-24 85968]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-06-24 381584]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-04-12 58272]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-04-12 63896]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2016-03-22 21360]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-06-24 197160]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2018-06-24 229392]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2018-06-24 239680]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2018-06-24 111872]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2018-06-24 1027728]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-06-24 463080]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2017-04-03 27552]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-06-24 159640]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2018-06-24 211160]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-04-12 414208]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-04-12 43520]
R3 AmdAS4;@oem16.inf,%AmdAS4.SVCDESC%;AmdAS4 service; C:\WINDOWS\System32\drivers\AmdAS4.sys [2017-04-01 27016]
R3 amdgpio2;@oem4.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2017-04-03 34704]
R3 amdi2c;@oem6.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2017-04-03 54160]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0307840.inf_amd64_2d7ce5e36533f4c7\atikmdag.sys [2017-04-03 26565648]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0307840.inf_amd64_2d7ce5e36533f4c7\atikmpag.sys [2017-04-03 527264]
R3 amduart;@oem15.inf,%amduart.SVCDESC%;AMD UART Service; C:\WINDOWS\System32\drivers\amduart.sys [2017-05-12 91640]
R3 AtiHDAudioService;@oem10.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2017-11-21 111112]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2018-04-12 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-10-04 5337608]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2018-04-12 604160]
R3 RtkBtFilter;@oem9.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2017-07-20 723920]
R3 RTWlanE;@oem3.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\System32\drivers\rtwlane.sys [2017-08-18 6895984]
R3 SmbDrv;SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [2017-08-18 53848]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-04-12 128416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 amdkmcsp;@oem11.inf,%amdkmcsp.SVCDESC%;AMD Kernel Mode CSP Service; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [2017-06-16 101232]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2018-06-24 15360]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-06-24 46976]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-04-12 92056]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2018-04-12 1069056]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-04-12 73632]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-02-14 111608]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-06-08 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2015-07-06 33960]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2018-04-12 57752]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdvancedSystemCareService10;Advanced SystemCare Service 10; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [2016-12-12 462624]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-06-24 322464]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_433b7;Uživatelská služba platformy připojených zařízení_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-06-20 8765104]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 OneSyncSvc_433b7;Hostitel synchronizace_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-04-12 761440]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2018-04-12 163336]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-06-24 7780400]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 PimIndexMaintenanceSvc_433b7;Data kontaktů_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AdaptiveSleepService;AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [2016-10-06 155016]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-06-12 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2017-04-03 295840]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_433b7;Uživatelská služba pro GameDVR a vysílání her_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_433b7;Služba pro podporu uživatelů Bluetooth_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_433b7;DevicePicker_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_433b7;Tok zařízení_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-04-12 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-06-05 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-04-05 152216]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-04-05 152216]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_433b7;Služba zasílání zpráv_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-06-20 212152]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_433b7;PrintWorkflow_433b7; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-10-04 317960]
S3 RtkBtManServ;Realtek Bluetooth Device Manager Service; C:\Windows\RtkBtManServ.exe [2017-01-22 207360]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2018-06-08 976384]
S4 IObitUnSvr;IObit Uninstaller Service; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [2016-10-28 360736]
S4 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2018-06-05 604824]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S4 ssh-agent;OpenSSH Authentication Agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [2018-03-10 495616]
-----------------EOF-----------------