Log:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Petr at 2019-06-18 16:38:17
Microsoft Windows 10 Home
System drive C: has 303 GB (64%) free of 477 GB
Total RAM: 4095 MB (43% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:38:19, on 18.06.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Petr\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Adguard\Adguard.exe
C:\Program Files\Zoner\Photo Studio 19\Program32\ZPSTray.exe
C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
C:\Program Files\trend micro\Petr.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Petr\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Adguard] C:\Program Files (x86)\Adguard\Adguard.exe /nosplash
O4 - HKCU\..\Run: [ACDSeeCommanderUltimate12] C:\Program Files\ACD Systems\ACDSee Ultimate\12.0\ACDSeeCommanderUltimate12.exe
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 19\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\RunOnce: [Application Restart #1] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session --flag-switches-begin --flag-switches-end --flag-switches-begin --flag-switches-end --flag-switches-begin --flag-switches-end --flag-switches-begin --flag-switches-end --flag-switches-begin --flag-switches-end
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adguard Service - Adguard Software Ltd - C:\Program Files (x86)\Adguard\AdguardSvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Služba %1!s! Update (avast) (avast) - Unknown owner - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (file missing)
O23 - Service: Služba %1!s! Update (avastm) (avastm) - Unknown owner - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Corel License Validation Service V2, Powered by arvato (PSI_SVC_2) - arvato digital services llc - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\Windows\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\Windows\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\Windows\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\Windows\system32\xbgmsvc.exe (file missing)
--
End of file - 11403 bytes
======Listing Processes======
C:\Windows\system32\lsass.exe
"fontdrvhost.exe"
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\Windows\system32\svchost.exe -k DcomLaunch -p
winlogon.exe
"fontdrvhost.exe"
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k localservice -p -s nsi
"C:\Windows\system32\nvvsvc.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-4e5c81f8-104e-4f76-afee-6581a2fac187 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-cf131ddd-10f3-4ec2-b68c-c45de513392a -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-beb23544-c853-4142-bd3f-46da725debf0 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-7a400fa9-8b52-4d03-b909-aa6e2f8c65e0 -LifetimeId:bf1d5c33-21cf-4946-b80c-57aa841b7112 -DeviceGroupId:WpdFsGroup
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
C:\Windows\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\Windows\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
dashost.exe {635366c5-909d-4764-b8cf2b6e31a29018}
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Adguard\AdguardSvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
"c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
C:\Windows\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"ctfmon.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k netsvcs -p
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /AECBYLISTENTOSTATUS
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
"C:\Program Files\rempl\sedsvc.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k unistacksvcgroup
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19041.16510.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
dummy /ccupdate
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\Windows\System32\smartscreen.exe -Embedding
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\explorer.exe" /LOADSAVEDWINDOWS
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\ACD Systems\ACDSee Ultimate\12.0\acdIDInTouch2.exe"
"C:\Users\Petr\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Adguard\Adguard.exe" /nosplash
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\ACD Systems\ACDSee Ultimate\12.0\ACDSeeCommanderUltimate12.exe"
"C:\Program Files\Zoner\Photo Studio 19\Program32\ZPSTray.exe"
"C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe"
"C:\Windows\System32\Taskmgr.exe" /3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Petr\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Petr\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=74.0.3729.169 --initial-client-data=0x1d4,0x1d8,0x1dc,0x1d0,0x1e0,0x7ffc02658b80,0x7ffc02658b90,0x7ffc02658ba0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=4576 --on-initialized-event-handle=660 --parent-handle=664 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1764,10290126849961075466,10694957232545220223,131072 --gpu-preferences=KAAAAAAAAADgAAAgAQAAAAAAAAAAAGAAAAAAABAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=667371996383771483 --mojo-platform-channel-handle=1788 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1764,10290126849961075466,10694957232545220223,131072 --lang=cs --service-sandbox-type=network --service-request-channel-token=3792795976989844312 --mojo-platform-channel-handle=1872 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1764,10290126849961075466,10694957232545220223,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=5381601996562496446 --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3140 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1764,10290126849961075466,10694957232545220223,131072 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=10266674430505155105 --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3152 /prefetch:1
C:\Windows\system32\svchost.exe -k netsvcs -p -s gpsvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1764,10290126849961075466,10694957232545220223,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=1031839600355279783 --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4968 /prefetch:1
C:\Windows\system32\AUDIODG.EXE 0x500
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1764,10290126849961075466,10694957232545220223,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=8551948224298439804 --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4920 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1764,10290126849961075466,10694957232545220223,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=13593637389557876474 --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5160 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1764,10290126849961075466,10694957232545220223,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=5315541841786600832 --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3476 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1764,10290126849961075466,10694957232545220223,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=7596404602685350478 --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5948 /prefetch:1
"C:\Users\Petr\Downloads\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-01 221664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-01 171704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-01 171704]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-01 141496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-01 141496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-01 171704]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-01 141496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-10 16174352]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-10-07 3242696]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-29 1794888]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-11 509936]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2019-05-04 2849872]
"ACUW12EN"=C:\Program Files\ACD Systems\ACDSee Ultimate\12.0\acdIDInTouch2.exe [2018-08-16 2145752]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Petr\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2019-06-14 1586488]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2018-06-24 18385368]
"AdobeBridge"= []
"Adguard"=C:\Program Files (x86)\Adguard\Adguard.exe [2018-07-09 5727080]
"ACDSeeCommanderUltimate12"=C:\Program Files\ACD Systems\ACDSee Ultimate\12.0\ACDSeeCommanderUltimate12.exe [2018-09-18 4980216]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 19\Program32\ZPSTRAY.EXE [2018-07-12 603592]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #1"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2019-05-21 1723888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [2019-05-03 4992048]
""= []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2019-06-18 16:31:07 ----D---- C:\rsit
2019-06-18 16:31:07 ----D---- C:\Program Files\trend micro
2019-06-12 18:17:58 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2019-06-12 18:17:58 ----A---- C:\Windows\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2019-06-12 18:17:58 ----A---- C:\Windows\system32\MSVideoDSP.dll
2019-06-12 18:17:58 ----A---- C:\Windows\system32\MSPhotography.dll
2019-06-12 18:17:58 ----A---- C:\Windows\system32\AUDIOKSE.dll
2019-06-12 18:17:57 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2019-06-12 18:17:57 ----A---- C:\Windows\system32\WMVCORE.DLL
2019-06-12 18:17:57 ----A---- C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
2019-06-12 18:17:56 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2019-06-12 18:17:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2019-06-12 18:17:56 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2019-06-12 18:17:56 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2019-06-12 18:17:56 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2019-06-12 18:17:56 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2019-06-12 18:17:56 ----A---- C:\Windows\system32\AudioEng.dll
2019-06-12 18:17:55 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2019-06-12 18:17:55 ----A---- C:\Windows\system32\wuuhosdeployment.dll
2019-06-12 18:17:55 ----A---- C:\Windows\system32\urlmon.dll
2019-06-12 18:17:55 ----A---- C:\Windows\system32\TSWorkspace.dll
2019-06-12 18:17:55 ----A---- C:\Windows\system32\EdgeManager.dll
2019-06-12 18:17:55 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2019-06-12 18:17:55 ----A---- C:\Windows\system32\audiosrv.dll
2019-06-12 18:17:55 ----A---- C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-06-12 18:17:54 ----A---- C:\Windows\system32\WebRuntimeManager.dll
2019-06-12 18:17:53 ----A---- C:\Windows\SYSWOW64\win32kfull.sys
2019-06-12 18:17:53 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2019-06-12 18:17:53 ----A---- C:\Windows\system32\drivers\stornvme.sys
2019-06-12 18:17:53 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2019-06-12 18:17:53 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2019-06-12 18:17:53 ----A---- C:\Windows\system32\drivers\clfs.sys
2019-06-12 18:17:52 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2019-06-12 18:17:52 ----A---- C:\Windows\system32\msfeeds.dll
2019-06-12 18:17:51 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2019-06-12 18:17:51 ----A---- C:\Windows\system32\jscript9.dll
2019-06-12 18:17:50 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2019-06-12 18:17:50 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2019-06-12 18:17:50 ----A---- C:\Windows\system32\Chakradiag.dll
2019-06-12 18:17:49 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2019-06-12 18:17:49 ----A---- C:\Windows\SYSWOW64\mf.dll
2019-06-12 18:17:49 ----A---- C:\Windows\system32\wuuhext.dll
2019-06-12 18:17:49 ----A---- C:\Windows\system32\SIHClient.exe
2019-06-12 18:17:49 ----A---- C:\Windows\system32\hvax64.exe
2019-06-12 18:17:49 ----A---- C:\Windows\system32\aadcloudap.dll
2019-06-12 18:17:48 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2019-06-12 18:17:48 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2019-06-12 18:17:48 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2019-06-12 18:17:48 ----A---- C:\Windows\system32\audiodg.exe
2019-06-12 18:17:46 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2019-06-12 18:17:46 ----A---- C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-06-12 18:17:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2019-06-12 18:17:45 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2019-06-12 18:17:45 ----A---- C:\Windows\system32\win32kfull.sys
2019-06-12 18:17:45 ----A---- C:\Windows\system32\vbscript.dll
2019-06-12 18:17:44 ----A---- C:\Windows\system32\ntoskrnl.exe
2019-06-12 18:17:44 ----A---- C:\Windows\system32\KernelBase.dll
2019-06-12 18:17:43 ----A---- C:\Windows\system32\ieframe.dll
2019-06-12 18:17:43 ----A---- C:\Windows\system32\Chakra.dll
2019-06-12 18:17:42 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2019-06-12 18:17:42 ----A---- C:\Windows\system32\mf.dll
2019-06-12 18:17:42 ----A---- C:\Windows\system32\jscript9diag.dll
2019-06-12 18:17:42 ----A---- C:\Windows\system32\CPFilters.dll
2019-06-12 18:17:41 ----A---- C:\Windows\SYSWOW64\MSVPXENC.dll
2019-06-12 18:17:41 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2019-06-12 18:17:41 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2019-06-12 18:17:41 ----A---- C:\Windows\system32\hvix64.exe
2019-06-12 18:17:40 ----A---- C:\Windows\system32\lsasrv.dll
2019-06-12 18:17:40 ----A---- C:\Windows\system32\esent.dll
2019-06-12 18:17:40 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2019-06-12 18:17:39 ----A---- C:\Windows\system32\wuaueng.dll
2019-06-12 18:17:38 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2019-06-12 18:17:38 ----A---- C:\Windows\system32\AudioSes.dll
2019-06-12 18:17:36 ----A---- C:\Windows\system32\win32kbase.sys
2019-06-12 18:17:36 ----A---- C:\Windows\system32\msxml6.dll
2019-06-12 18:17:36 ----A---- C:\Windows\system32\msi.dll
2019-06-12 18:17:36 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2019-06-12 18:17:35 ----A---- C:\Windows\system32\EdgeContent.dll
2019-06-12 18:17:35 ----A---- C:\Windows\system32\credprovhost.dll
2019-06-12 18:17:35 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2019-06-12 18:17:34 ----A---- C:\Windows\system32\wininet.dll
2019-06-12 18:17:34 ----A---- C:\Windows\system32\iertutil.dll
2019-06-12 18:17:34 ----A---- C:\Windows\system32\edgeIso.dll
2019-06-12 18:17:34 ----A---- C:\Windows\system32\drivers\WdiWiFi.sys
2019-06-12 18:17:32 ----A---- C:\Windows\system32\mshtml.dll
2019-06-12 18:17:31 ----A---- C:\Windows\system32\webplatstorageserver.dll
2019-06-12 18:17:29 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2019-06-12 18:17:29 ----A---- C:\Windows\system32\msvproc.dll
2019-06-12 18:17:29 ----A---- C:\Windows\system32\mfcore.dll
2019-06-12 18:17:28 ----A---- C:\Windows\system32\MSVPXENC.dll
2019-06-12 18:17:28 ----A---- C:\Windows\system32\edgehtml.dll
2019-06-12 18:17:27 ----A---- C:\Windows\SYSWOW64\msIso.dll
2019-06-12 18:17:27 ----A---- C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-06-12 18:17:26 ----A---- C:\Windows\SYSWOW64\edgeIso.dll
2019-06-12 18:17:26 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2019-06-12 18:17:25 ----A---- C:\Windows\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-06-12 18:17:24 ----A---- C:\Windows\SYSWOW64\EdgeManager.dll
2019-06-12 18:17:23 ----A---- C:\Windows\SYSWOW64\webplatstorageserver.dll
2019-06-12 18:17:22 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2019-06-12 18:17:21 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2019-06-12 18:17:19 ----A---- C:\Windows\system32\browserbroker.dll
2019-06-12 18:17:18 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2019-06-12 18:17:05 ----A---- C:\Windows\system32\windows.storage.dll
2019-06-12 18:17:03 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2019-06-12 18:17:03 ----A---- C:\Windows\SYSWOW64\shell32.dll
2019-06-12 18:17:02 ----A---- C:\Windows\system32\wpncore.dll
2019-06-12 18:17:01 ----A---- C:\Windows\SYSWOW64\cdp.dll
2019-06-12 18:17:01 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2019-06-12 18:17:01 ----A---- C:\Windows\system32\cdp.dll
2019-06-12 18:17:00 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2019-06-12 18:17:00 ----A---- C:\Windows\system32\wuapi.dll
2019-06-12 18:17:00 ----A---- C:\Windows\system32\diagtrack.dll
2019-06-12 18:16:59 ----A---- C:\Windows\system32\shell32.dll
2019-06-12 18:16:59 ----A---- C:\Windows\system32\ApplyTrustOffline.exe
2019-06-12 18:16:57 ----A---- C:\Windows\system32\winresume.exe
2019-06-12 18:16:57 ----A---- C:\Windows\system32\winload.exe
2019-06-12 18:16:57 ----A---- C:\Windows\system32\tcblaunch.exe
2019-06-12 18:16:57 ----A---- C:\Windows\system32\hvloader.dll
2019-06-12 18:16:57 ----A---- C:\Windows\system32\ci.dll
2019-06-12 18:16:56 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2019-06-12 18:16:56 ----A---- C:\Windows\system32\Windows.CloudStore.dll
2019-06-12 18:16:56 ----A---- C:\Windows\system32\wevtsvc.dll
2019-06-12 18:16:56 ----A---- C:\Windows\system32\ntdll.dll
2019-06-12 18:16:55 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2019-06-12 18:16:55 ----A---- C:\Windows\SYSWOW64\InstallServiceTasks.dll
2019-06-12 18:16:55 ----A---- C:\Windows\SYSWOW64\InstallService.dll
2019-06-12 18:16:55 ----A---- C:\Windows\system32\wpnapps.dll
2019-06-12 18:16:55 ----A---- C:\Windows\system32\InstallServiceTasks.dll
2019-06-12 18:16:55 ----A---- C:\Windows\system32\InstallService.dll
2019-06-12 18:16:55 ----A---- C:\Windows\system32\bcastdvruserservice.dll
2019-06-12 18:16:54 ----A---- C:\Windows\system32\updatehandlers.dll
2019-06-12 18:16:54 ----A---- C:\Windows\system32\updatecsp.dll
2019-06-12 18:16:54 ----A---- C:\Windows\system32\StartTileData.dll
2019-06-12 18:16:54 ----A---- C:\Windows\system32\gdi32full.dll
2019-06-12 18:16:53 ----A---- C:\Windows\SYSWOW64\gdi32full.dll
2019-06-12 18:16:53 ----A---- C:\Windows\system32\usocore.dll
2019-06-12 18:16:52 ----A---- C:\Windows\system32\StorSvc.dll
2019-06-12 18:16:51 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2019-06-12 18:16:51 ----A---- C:\Windows\SYSWOW64\MSPhotography.dll
2019-06-12 18:16:51 ----A---- C:\Windows\system32\twinui.pcshell.dll
2019-06-12 18:16:50 ----A---- C:\Windows\system32\twinui.dll
2019-06-12 18:16:50 ----A---- C:\Windows\system32\drivers\cng.sys
2019-06-12 18:16:50 ----A---- C:\Windows\system32\bcrypt.dll
2019-06-12 18:16:49 ----A---- C:\Windows\SYSWOW64\twinui.dll
2019-06-12 18:16:49 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2019-06-12 18:16:49 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2019-06-12 18:16:48 ----A---- C:\Windows\SYSWOW64\msexcl40.dll
2019-06-12 18:16:48 ----A---- C:\Windows\system32\NotificationController.dll
2019-06-12 18:16:48 ----A---- C:\Windows\system32\iedkcs32.dll
2019-06-12 18:16:48 ----A---- C:\Windows\system32\DWrite.dll
2019-06-12 18:16:48 ----A---- C:\Windows\system32\AppXApplicabilityBlob.dll
2019-06-12 18:16:47 ----A---- C:\Windows\SYSWOW64\esent.dll
2019-06-12 18:16:47 ----A---- C:\Windows\system32\mfps.dll
2019-06-12 18:16:47 ----A---- C:\Windows\system32\FntCache.dll
2019-06-12 18:16:46 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2019-06-12 18:16:46 ----A---- C:\Windows\system32\localspl.dll
2019-06-12 18:16:45 ----A---- C:\Windows\SYSWOW64\msrd3x40.dll
2019-06-12 18:16:45 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2019-06-12 18:16:45 ----A---- C:\Windows\system32\GdiPlus.dll
2019-06-12 18:16:44 ----A---- C:\Windows\system32\schedsvc.dll
2019-06-12 18:16:44 ----A---- C:\Windows\system32\MusUpdateHandlers.dll
2019-06-12 18:16:44 ----A---- C:\Windows\system32\drivers\tcpip.sys
2019-06-12 18:16:43 ----A---- C:\Windows\system32\usermgr.dll
2019-06-12 18:16:42 ----A---- C:\Windows\SYSWOW64\msi.dll
2019-06-12 18:16:42 ----A---- C:\Windows\system32\WWAHost.exe
2019-06-12 18:16:42 ----A---- C:\Windows\system32\usoapi.dll
2019-06-12 18:16:42 ----A---- C:\Windows\system32\MusNotification.exe
2019-06-12 18:16:42 ----A---- C:\Windows\system32\msv1_0.dll
2019-06-12 18:16:41 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2019-06-12 18:16:41 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2019-06-12 18:16:41 ----A---- C:\Windows\system32\schannel.dll
2019-06-12 18:16:41 ----A---- C:\Windows\system32\MusNotificationUx.exe
2019-06-12 18:16:41 ----A---- C:\Windows\system32\kerberos.dll
2019-06-12 18:16:41 ----A---- C:\Windows\system32\ieproxy.dll
2019-06-12 18:16:40 ----A---- C:\Windows\SYSWOW64\userenv.dll
2019-06-12 18:16:40 ----A---- C:\Windows\SYSWOW64\MSVideoDSP.dll
2019-06-12 18:16:40 ----A---- C:\Windows\SYSWOW64\mfps.dll
2019-06-12 18:16:40 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2019-06-12 18:16:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2019-06-12 18:16:40 ----A---- C:\Windows\system32\userenv.dll
2019-06-12 18:16:40 ----A---- C:\Windows\system32\taskcomp.dll
2019-06-12 18:16:40 ----A---- C:\Windows\system32\srvsvc.dll
2019-06-12 18:16:40 ----A---- C:\Windows\system32\rdpcore.dll
2019-06-12 18:16:40 ----A---- C:\Windows\system32\MusNotifyIcon.exe
2019-06-12 18:16:40 ----A---- C:\Windows\system32\mf3216.dll
2019-06-12 18:16:40 ----A---- C:\Windows\system32\LanguageComponentsInstaller.dll
2019-06-12 18:16:40 ----A---- C:\Windows\system32\iemigplugin.dll
2019-06-12 18:16:40 ----A---- C:\Windows\system32\drivers\hvservice.sys
2019-06-12 18:16:40 ----A---- C:\Windows\system32\dot3gpui.dll
2019-06-12 18:16:39 ----A---- C:\Windows\SYSWOW64\wevtapi.dll
2019-06-12 18:16:39 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2019-06-12 18:16:39 ----A---- C:\Windows\SYSWOW64\KerbClientShared.dll
2019-06-12 18:16:39 ----A---- C:\Windows\SYSWOW64\ieproxy.dll
2019-06-12 18:16:39 ----A---- C:\Windows\system32\wmicmiplugin.dll
2019-06-12 18:16:39 ----A---- C:\Windows\system32\wevtapi.dll
2019-06-12 18:16:39 ----A---- C:\Windows\system32\updatepolicy.dll
2019-06-12 18:16:39 ----A---- C:\Windows\system32\KerbClientShared.dll
2019-06-12 18:16:39 ----A---- C:\Windows\system32\ie4uinit.exe
2019-06-12 18:16:39 ----A---- C:\Windows\system32\esentutl.exe
2019-06-12 18:16:39 ----A---- C:\Windows\system32\drivers\winnat.sys
2019-06-12 18:16:39 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2019-06-12 18:16:39 ----A---- C:\Windows\system32\bcryptprimitives.dll
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\wups.dll
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\usoapi.dll
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\updatepolicy.dll
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\tzres.dll
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\msltus40.dll
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\msjet40.dll
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\esentutl.exe
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\dtdump.exe
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\dot3gpui.dll
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\credprovhost.dll
2019-06-12 18:16:38 ----A---- C:\Windows\SYSWOW64\AcSpecfc.dll
2019-06-12 18:16:38 ----A---- C:\Windows\system32\wups2.dll
2019-06-12 18:16:38 ----A---- C:\Windows\system32\wups.dll
2019-06-12 18:16:38 ----A---- C:\Windows\system32\WindowsUpdateElevatedInstaller.exe
2019-06-12 18:16:38 ----A---- C:\Windows\system32\wdigest.dll
2019-06-12 18:16:38 ----A---- C:\Windows\system32\UsoClient.exe
2019-06-12 18:16:38 ----A---- C:\Windows\system32\tzres.dll
2019-06-12 18:16:38 ----A---- C:\Windows\system32\storewuauth.dll
2019-06-12 18:16:38 ----A---- C:\Windows\system32\sscore.dll
2019-06-12 18:16:38 ----A---- C:\Windows\system32\pku2u.dll
2019-06-12 18:16:38 ----A---- C:\Windows\system32\musdialoghandlers.dll
2019-06-12 18:16:38 ----A---- C:\Windows\system32\DuCsps.dll
2019-06-12 18:16:38 ----A---- C:\Windows\system32\AxInstSv.dll
2019-06-11 23:12:15 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2019-06-02 12:50:25 ----D---- C:\ProgramData\StockSubmitterCore
2019-06-02 11:49:24 ----D---- C:\Program Files (x86)\StockSubmitter
======List of files/folders modified in the last 1 month======
2019-06-18 16:38:19 ----D---- C:\Windows\Temp
2019-06-18 16:37:26 ----D---- C:\ProgramData\Adguard
2019-06-18 16:37:09 ----D---- C:\Windows\Prefetch
2019-06-18 16:31:07 ----RD---- C:\Program Files
2019-06-18 16:25:23 ----D---- C:\Windows\system32\sru
2019-06-18 16:23:52 ----D---- C:\Windows\system32\config
2019-06-18 16:23:20 ----RD---- C:\Windows\Microsoft.NET
2019-06-18 16:22:58 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-06-18 16:17:00 ----D---- C:\Windows\System32
2019-06-18 16:17:00 ----D---- C:\Windows\INF
2019-06-18 16:17:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-06-18 16:13:04 ----D---- C:\Windows\AppReadiness
2019-06-18 16:12:57 ----D---- C:\Program Files (x86)\Adguard
2019-06-18 16:12:50 ----D---- C:\Windows\WinSxS
2019-06-18 16:12:48 ----D---- C:\Windows\Logs
2019-06-18 15:49:47 ----D---- C:\Windows\system32\SleepStudy
2019-06-17 22:54:08 ----SHD---- C:\System Volume Information
2019-06-17 18:00:00 ----D---- C:\Windows\system32\LogFiles
2019-06-17 17:16:09 ----HD---- C:\Program Files\WindowsApps
2019-06-16 06:45:05 ----D---- C:\Windows\CbsTemp
2019-06-16 06:45:00 ----D---- C:\Windows\system32\catroot2
2019-06-15 06:17:33 ----SHD---- C:\Windows\Installer
2019-06-14 23:23:03 ----D---- C:\Windows\SysWOW64
2019-06-14 23:10:19 ----SHD---- C:\Boot
2019-06-14 23:10:12 ----D---- C:\Windows\system32\DriverStore
2019-06-14 23:09:06 ----D---- C:\Windows\TextInput
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\zu-ZA
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\yo-NG
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\xh-ZA
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\wo-SN
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\uz-Latn-UZ
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\tn-ZA
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\ti-ET
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\tg-Cyrl-TJ
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\sr-Cyrl-RS
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\sr-Cyrl-BA
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\sd-Arab-PK
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\rw-RW
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\quc-Latn-GT
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\pa-Arab-PK
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\nso-ZA
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\ku-Arab-IQ
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\ig-NG
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\chr-CHER-US
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\ha-Latn-NG
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\cs-CZ
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\ca-ES-valencia
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\bs-Latn-BA
2019-06-14 23:09:06 ----D---- C:\Windows\SYSWOW64\az-Latn-AZ
2019-06-14 23:09:05 ----D---- C:\Windows\system32\zu-ZA
2019-06-14 23:09:05 ----D---- C:\Windows\system32\yo-NG
2019-06-14 23:09:05 ----D---- C:\Windows\system32\xh-ZA
2019-06-14 23:09:05 ----D---- C:\Windows\system32\wo-SN
2019-06-14 23:09:05 ----D---- C:\Windows\system32\uz-Latn-UZ
2019-06-14 23:09:05 ----D---- C:\Windows\system32\tn-ZA
2019-06-14 23:09:05 ----D---- C:\Windows\system32\ti-ET
2019-06-14 23:09:05 ----D---- C:\Windows\system32\tg-Cyrl-TJ
2019-06-14 23:09:05 ----D---- C:\Windows\system32\sr-Cyrl-RS
2019-06-14 23:09:05 ----D---- C:\Windows\system32\sr-Cyrl-BA
2019-06-14 23:09:05 ----D---- C:\Windows\system32\sd-Arab-PK
2019-06-14 23:09:05 ----D---- C:\Windows\system32\rw-RW
2019-06-14 23:09:05 ----D---- C:\Windows\system32\quc-Latn-GT
2019-06-14 23:09:05 ----D---- C:\Windows\system32\pa-Arab-PK
2019-06-14 23:09:05 ----D---- C:\Windows\system32\nso-ZA
2019-06-14 23:09:05 ----D---- C:\Windows\system32\migration
2019-06-14 23:09:05 ----D---- C:\Windows\system32\ku-Arab-IQ
2019-06-14 23:09:05 ----D---- C:\Windows\system32\ig-NG
2019-06-14 23:09:05 ----D---- C:\Windows\system32\chr-CHER-US
2019-06-14 23:09:05 ----D---- C:\Windows\system32\ha-Latn-NG
2019-06-14 23:09:05 ----D---- C:\Windows\system32\drivers
2019-06-14 23:09:05 ----D---- C:\Windows\system32\cs-CZ
2019-06-14 23:09:05 ----D---- C:\Windows\system32\ca-ES-valencia
2019-06-14 23:09:05 ----D---- C:\Windows\system32\bs-Latn-BA
2019-06-14 23:09:05 ----D---- C:\Windows\system32\Boot
2019-06-14 23:09:05 ----D---- C:\Windows\system32\az-Latn-AZ
2019-06-14 23:09:05 ----D---- C:\Windows\ShellExperiences
2019-06-14 23:09:05 ----D---- C:\Windows\Provisioning
2019-06-14 23:09:05 ----D---- C:\Windows\bcastdvr
2019-06-14 23:09:05 ----D---- C:\Windows\apppatch
2019-06-14 23:09:05 ----D---- C:\Program Files\internet explorer
2019-06-14 23:09:05 ----D---- C:\Program Files (x86)\Internet Explorer
2019-06-14 18:01:49 ----D---- C:\Windows\system32\Tasks
2019-06-13 18:01:27 ----D---- C:\Program Files (x86)\Microsoft Office
2019-06-12 18:16:02 ----D---- C:\Windows\system32\MRT
2019-06-12 18:12:54 ----D---- C:\Windows\debug
2019-06-12 18:12:51 ----AC---- C:\Windows\system32\MRT.exe
2019-06-11 23:11:56 ----D---- C:\Windows
2019-06-11 17:01:22 ----D---- C:\Program Files\rempl
2019-06-11 16:54:48 ----D---- C:\ProgramData\NVIDIA
2019-06-11 16:50:11 ----D---- C:\Program Files\NVIDIA Corporation
2019-06-10 15:30:52 ----D---- C:\Windows\system32\drivers\wd
2019-06-02 12:50:25 ----HD---- C:\ProgramData
2019-06-02 11:50:12 ----D---- C:\ProgramData\Package Cache
2019-06-02 11:49:24 ----RD---- C:\Program Files (x86)
2019-05-31 03:57:16 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2019-05-26 12:33:03 ----D---- C:\Users\Petr\AppData\Roaming\inkscape
2019-05-26 10:59:00 ----D---- C:\Users\Petr\AppData\Roaming\TeamViewer
2019-05-26 10:58:50 ----D---- C:\Windows\Panther
2019-05-25 15:36:28 ----D---- C:\ProgramData\Packages
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\Windows\system32\drivers\iorate.sys [2018-12-08 58168]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\Windows\system32\drivers\SgrmAgent.sys [2018-04-12 63896]
R1 adgnetworkwfpdrv;adgnetworkwfpdrv; C:\Windows\system32\drivers\adgnetworkwfpdrv.sys [2018-06-20 84536]
R1 afunix;afunix; C:\Windows\system32\drivers\afunix.sys [2018-04-12 39424]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\Windows\system32\drivers\bam.sys [2018-04-12 60320]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R1 MpKslba07d3aa;MpKslba07d3aa; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{117BF588-45AA-40B2-9D4C-7A89DCAE2396}\MpKslba07d3aa.sys [2019-06-18 58120]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\Windows\system32\drivers\cldflt.sys [2019-03-14 414720]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2018-12-08 43008]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2019-03-14 82432]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\System32\drivers\athwnx.sys [2018-04-12 4233728]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\Windows\System32\drivers\CAD.sys [2018-04-12 60320]
R3 ETD;@oem3.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2015-10-07 525512]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-11-10 4585744]
R3 MTsensor;@oem4.inf,%ATKACPI.DisplayName%;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2007-08-09 13680]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2016-12-09 12914360]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\Windows\System32\drivers\rt640x64.sys [2018-04-12 604160]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\Windows\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 cht4iscsi;cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\Windows\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\Windows\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\Windows\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\Windows\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\Windows\System32\drivers\scmbus.sys [2018-08-03 128920]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2018-06-15 48544]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\Windows\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\Windows\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\Windows\system32\drivers\bindflt.sys [2019-01-09 92704]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2018-04-12 123392]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\Windows\system32\drivers\hvservice.sys [2019-06-07 76304]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\Windows\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\Windows\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\Windows\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\Windows\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\Windows\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\Windows\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\Windows\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\Windows\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\Windows\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\Windows\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\Windows\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\Windows\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2019-03-06 945464]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2016-12-21 40240]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\Windows\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\Windows\System32\drivers\SDFRd.sys [2018-04-12 33176]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\Windows\System32\drivers\SpatialGraphFilter.sys [2018-04-12 57752]
S4 hvcrash;hvcrash; C:\Windows\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Adguard Service;Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [2018-07-09 129896]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-12-16 83984]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2019-05-04 3117648]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2019-05-04 2888272]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
R2 CDPUserSvc_39b25;Uživatelská služba platformy připojených zařízení_39b25; C:\Windows\system32\svchost.exe [2019-01-09 85472]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-06-06 11146224]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2019-01-09 85472]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2019-01-09 85472]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\System32\svchost.exe [2019-01-09 85472]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\Windows\System32\svchost.exe [2019-01-09 85472]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-10-07 144072]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2016-11-14 932728]
R2 OneSyncSvc_39b25;Hostitel synchronizace_39b25; C:\Windows\system32\svchost.exe [2019-01-09 85472]
R2 PSI_SVC_2;Corel License Validation Service V2, Powered by arvato; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2014-04-30 277360]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-11-10 315664]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\Windows\system32\SecurityHealthService.exe [2018-07-14 760888]
R2 sedsvc;Windows Remediation Service; C:\Program Files\rempl\sedsvc.exe [2019-05-11 362296]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\Windows\system32\SgrmBroker.exe [2018-04-12 163336]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2019-01-09 85472]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2019-01-09 85472]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\Windows\system32\svchost.exe [2019-01-09 85472]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2019-01-09 85472]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2019-01-09 85472]
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /svc []
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-18 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /medsvc []
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 BcastDVRUserService_39b25;Uživatelská služba pro GameDVR a vysílání her_39b25; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 BluetoothUserService_39b25;Služba pro podporu uživatelů Bluetooth_39b25; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 DevicePickerUserSvc_39b25;DevicePicker_39b25; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 DevicesFlowUserSvc_39b25;Tok zařízení_39b25; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-05-03 90112]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\elevation_service.exe [2019-05-21 1267696]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-18 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 MessagingService_39b25;Služba zasílání zpráv_39b25; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 ose;Office Source Engine; c:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2019-03-05 223208]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 PimIndexMaintenanceSvc_39b25;Data kontaktů_39b25; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 PrintWorkflowUserSvc_39b25;PrintWorkflow_39b25; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\Windows\system32\svchost.exe [2019-01-09 85472]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\Windows\system32\spectrum.exe [2018-06-19 976384]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\Windows\system32\TieringEngineService.exe [2018-04-12 303616]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\Windows\System32\svchost.exe [2019-01-09 85472]
S4 ssh-agent;OpenSSH Authentication Agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [2018-03-10 495616]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím kontrolu, celkové zpomalení
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím kontrolu, celkové zpomalení
Ahoj 
Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
- Uloz na plochu a ukonci vsetky programy
- Spusti AdwCleaner ako spravca
- Odsuhlas licencne podmienky
- Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
- Nechaj zaskrtnute vsetky nalezy
- Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
- Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
- Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: Prosím kontrolu, celkové zpomalení
# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-06-18.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-18-2019
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1250 octets] - [18/06/2019 17:53:27]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-06-18.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-18-2019
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1250 octets] - [18/06/2019 17:53:27]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Re: Prosím kontrolu, celkové zpomalení
Poprosim o obidva logy z FRST (FRST.txt a Addition.txt) podla tohto navodu: https://forum.viry.cz/viewtopic.php?f=13&t=154679Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Přispějete na provoz fóra?