V Google Chroome ma kazdu chvilku redirektuje na "UPC" reklamu

[Lukas666]

Dobrý deň,

poprosil by som o kontrolu logu, v Google chrome ma kazdu chvilku redirektuje na "UPC" reklamu. Nerobí to pri všetkých stránkach, len pri niektorých.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Lukas at 2020-06-07 11:23:16
Microsoft Windows 10 Home
System drive C: has 88 GB (39%) free of 229 GB
Total RAM: 16178 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:23:19 AM, on 6/7/2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Users\Lukas\AppData\Local\Programs\Autodesk\Genuine Service\GenuineService.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
D:\Programy\Winamp\winamp.exe
D:\Programy\Last.fm\Last.fm Scrobbler.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\trend micro\Lukas.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell17win10.msn.com/?pc=DCTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
O4 - HKLM\..\Run: [Autodesk Genuine Service ] %localappdata%\Programs\Autodesk\Genuine Service\GenuineService.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "D:\Programy\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Steam] "D:\Hry\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype for Desktop] C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: SteelSeries Engine 3.lnk = C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {62789780-B744-11D0-986B-00609731A21D} (Autodesk MapGuide ActiveX Control) - https://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
O23 - Service: Autodesk Desktop Licensing Service (AdskLicensingService) - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe
O23 - Service: Intel® SGX AESM (AESMService) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_10d045798a3d667e\aesm_service.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apache2.4 - Apache Software Foundation - C:\xampp\apache\bin\httpd.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\ki127123.inf_amd64_8e84273d56763f28\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\ki127123.inf_amd64_8e84273d56763f28\IntelCpHDCPSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_5832f - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: Dell Command | Power Manager Notify (dcpm-notify) - Dell Inc. - C:\Program Files\Dell\CommandPowerManager\NotifyService.exe
O23 - Service: Dell Data Vault Service API (DDVCollectorSvcApi) - Dell Technologies Inc. - C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
O23 - Service: Dell Data Vault Collector (DDVDataCollector) - Dell Technologies Inc. - C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
O23 - Service: Dell Data Vault Processor (DDVRulesProcessor) - Dell Technologies Inc. - C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
O23 - Service: Dell Digital Delivery Services - Unknown owner - C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
O23 - Service: Dell Hardware Support - PC-Doctor, Inc. - C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7106.1428\DSAPI.exe
O23 - Service: Dell SupportAssist Remediation - Dell Inc. - C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
O23 - Service: Dell Client Management Service (DellClientManagementService) - Unknown owner - C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - D:\Programy\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @oem67.inf,%ServiceDisplayName%;Intel(R) Dynamic Platform and Thermal Framework service (esifsvc) - Unknown owner - C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service - Flexera - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.97\elevation_service.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem75.inf,%iaStorAfsWindowsService.Name%;Intel(R) Optane(TM) Memory Service (iaStorAfsService) - Unknown owner - C:\WINDOWS\System32\iaStorAfsService.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\ki127123.inf_amd64_8e84273d56763f28\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service: Intel(R) TPM Provisioning Service - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @oem13.inf,%Killer_Service%;Killer Network Service (Killer Network Service) - Unknown owner - C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe (file missing)
O23 - Service: @oem13.inf,%KNDBWMService%;KNDBWM (KNDBWM) - Unknown owner - C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\VSCore_18_5\McApExe.exe
O23 - Service: McNeel Update Service 5.0 (McNeelUpdate) - Robert McNeel & Associates - c:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, LLC - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, LLC - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: McAfee Module Core Service (ModuleCoreService) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
O23 - Service: MongoDB Server (MongoDB) (MongoDB) - MongoDB, Inc - C:\Program Files\MongoDB\Server\4.2\bin\mongod.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - C:\xampp\mysql\bin\mysqld.exe
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: McAfee PEF Service (PEFService) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Rivet Dynamic Bandwidth Management (RNDBWM) - CloudBees, Inc. - C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @oem75.inf,%RstMwService.Name%;Intel(R) Storage Middleware Service (RstMwService) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\iastorac.inf_amd64_f881c4be237ce854\RstMwService.exe
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Unknown owner - C:\WINDOWS\System32\RtkAudUService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: SmartByte Network Service (SmartByte Network Service x64) - Rivet Networks - C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Dell SupportAssist (SupportAssistAgent) - Dell Inc. - C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service: Thunderbolt(TM) Service (ThunderboltService) - Intel Corporation - c:\Program Files (x86)\Intel\Thunderbolt Software\tbtsvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: Waves Audio Services (WavesSysSvc) - Waves Audio Ltd. - C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo.inf_amd64_043a570d84e7e965\WavesSysSvc64.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @oem13.inf,%xTendSoftAPService%;xTendSoftAPService (xTendSoftAPService) - Unknown owner - C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe (file missing)
O23 - Service: @oem13.inf,%xTendUtilityService%;xTendUtilityService (xTendUtilityService) - Unknown owner - C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 19279 bytes

======Listing Processes======









C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-ebcb83d4-1fbb-4aa2-a569-59d49cc02062 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-ff7d297a-dd41-428e-a606-59dfc58081e5 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-188c0c1b-d9ce-45de-9d65-134c2fda956c -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-31090a68-fef6-4f91-8555-dbda6d233107 -LifetimeId:09ff9b55-7ed4-463a-9b58-e27791c0eb59 -DeviceGroupId: -HostArg:0
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
winlogon.exe
"fontdrvhost.exe"
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
dashost.exe {7024cdf4-4db0-43ff-b95474a27e10a790}
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem

C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository

C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DevQueryBroker
C:\WINDOWS\System32\DriverStore\FileRepository\ki127123.inf_amd64_8e84273d56763f28\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\AUDIODG.EXE 0x4f4
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection

C:\WINDOWS\system32\WLANExt.exe 1596321496608
\??\C:\WINDOWS\system32\conhost.exe 0x4

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
"C:\WINDOWS\System32\DriverStore\FileRepository\ki127123.inf_amd64_8e84273d56763f28\igfxEM.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager

C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
"c:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe"
"C:\xampp\apache\bin\httpd.exe" -k runservice
C:\WINDOWS\System32\DriverStore\FileRepository\ki127123.inf_amd64_8e84273d56763f28\IntelCpHDCPSvc.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s Netman
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe"
C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe
"C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo.inf_amd64_043a570d84e7e965\WavesSysSvc64.exe
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
C:\WINDOWS\System32\DriverStore\FileRepository\iastorac.inf_amd64_f881c4be237ce854\RstMwService.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe"
"C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe"
"C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe"
"C:\WINDOWS\System32\RtkAudUService64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe"

"C:\Program Files\MongoDB\Server\4.2\bin\mongod.exe" --config "C:\Program Files\MongoDB\Server\4.2\bin\mongod.cfg" --service
C:\xampp\mysql\bin\mysqld.exe --defaults-file=c:\xampp\mysql\bin\my.ini mysql
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\System32\DriverStore\FileRepository\ki127123.inf_amd64_8e84273d56763f28\IntelCpHeciSvc.exe
C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Windows\system32\mfevtps.exe"
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
"C:\WINDOWS\System32\RtkAudUService64.exe" -admin
"C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.EXE" MMSCOM mcbootdelaystartsvc
"C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe
"C:\Windows\system32\mfevtps.exe" -mms
C:\WINDOWS\System32\vds.exe
"RNDBWM.exe"
"xTendUtility.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -c
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\xampp\apache\bin\httpd.exe -d C:/xampp/apache
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="E5033F50-EA89-0A9C-3663-7766F21B20D1" /binpath="C:\Program Files\AVAST Software\Avast"
"C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe" -mms
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20051.93.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca

"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
C:\WINDOWS\System32\svchost.exe -k netsvcs -p

\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"

"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\RtkAudUService64.exe" -background
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe" -dataPath="C:\ProgramData\SteelSeries\SteelSeries Engine 3" -dbEnv=production -auto=true
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --approot=SOFTWARE\Autodesk --appAgent=/AUTODESKDESKTOPAPP/8.0.0.46/en-US/0001 --lang=en-US --cache-path="C:\Users\Lukas\AppData\Local\Autodesk\Autodesk Desktop App\BrowserCache" --peerPid=14372
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=gpu-process --channel="8184.0.4478083\103845786" --no-sandbox --lang=en-US --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=14372 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,13,25,46,54 --gpu-vendor-id=0x8086 --gpu-device-id=0x3e9b --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=23.20.16.4973 --lang=en-US --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=14372 --mojo-platform-channel-handle=1320 /prefetch:2
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s XblAuthManager
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=renderer --no-sandbox --primordial-pipe-token=C4CF4BC58B05DA76BDBF3E20A062C3D8 --lang=en-US --lang=en-US --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=14372 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="8184.1.213331358\1898357609" --mojo-platform-channel-handle=1964 /prefetch:1
"C:\Users\Lukas\AppData\Local\Programs\Autodesk\Genuine Service\GenuineService.exe"
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --disable-gpu-compositing --no-sandbox --service-pipe-token=ED6D1B84A11E16423760B460843D2BE5 --lang=en-US --lang=en-US --log-file="C:\Users\Lukas\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\debug.log" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --disable-accelerated-video-decode --disable-gpu-compositing --enable-gpu-async-worker-context --service-request-channel-token=ED6D1B84A11E16423760B460843D2BE5 --renderer-client-id=2 --mojo-platform-channel-handle=1856 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc

"C:\Program Files\Common Files\McAfee\VSCore_18_5\McApExe.exe"
"C:\Program Files\McAfee\MfeAV\MFEAvSvc.exe"
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=8256,6721163508923737481,14123975988492836552,131072 --no-sandbox --log-file="C:\Users\Lukas\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.3.2405)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --force-device-scale-factor=1.25 --pack_loading_disabled=1 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAAAAAAAMAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --use-gl=swiftshader-webgl --service-request-channel-token=17606943855470131707 --mojo-platform-channel-handle=8344 /prefetch:2
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BDESVC
ModuleCoreService.exe /startUserModeHosting=1_TIME_TO_DIE
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-530487e3-3c74-4ba5-bf2d-b492d8186192 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-e2f0419c-2bcf-4be6-aedf-e884ab405c68 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-3bf1227c-3a01-4739-955d-aafc2a46d7b4 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-3f799d6f-6165-45f7-a2b9-e8e179803419 -LifetimeId:81695daa-a2e8-4db7-9b69-42269cc85662 -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_10d045798a3d667e\aesm_service.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
"C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe"
"C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe"
"C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe"
"C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7106.1428\DSAPI.exe"
"C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe"
"C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe"
C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
C:\WINDOWS\System32\msdtc.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"

"C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe"
"C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe"
"C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe"
"C:\Program Files (x86)\Dell\UpdateService\Service\InvColPC.exe" -outc=C:\ProgramData\Dell\UpdateService\Temp\Inventory.xml
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\TEMP\inv4721_tmp\.\invcol.exe -bdir="C:\WINDOWS\system32" "-outc=C:\ProgramData\Dell\UpdateService\Temp\Inventory.xml"
C:\WINDOWS\system32\cmd.exe /c C:\WINDOWS\TEMP\inv4721_tmp\Intel_LOM\\Intel_LOM.cmd ..\Intel_LOM.xml
C:\WINDOWS\Sysnative\cscript /nologo IntelLOM_Inv.vbs ..\Intel_LOM.xml
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files\Dell\DellDataVault\nvapiw.exe" -p 2 -continuous
"D:\Programy\DAEMON Tools Lite\DTShellHlp.exe"
"D:\Programy\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Lukas\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Lukas\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=83.0.4103.97 --initial-client-data=0xd4,0xd8,0xdc,0xb0,0xe0,0x7ffb7bf8bd28,0x7ffb7bf8bd38,0x7ffb7bf8bd48
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1576,14712664518320758268,5694359069625224564,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1584 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1576,14712664518320758268,5694359069625224564,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1992 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,14712664518320758268,5694359069625224564,131072 --lang=en-US --extension-process --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3656 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,14712664518320758268,5694359069625224564,131072 --lang=en-US --extension-process --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3964 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,14712664518320758268,5694359069625224564,131072 --lang=en-US --extension-process --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4556 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,14712664518320758268,5694359069625224564,131072 --lang=en-US --extension-process --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4684 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,14712664518320758268,5694359069625224564,131072 --lang=en-US --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5564 /prefetch:1
"C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\SwReporter\83.236.200\software_reporter_tool.exe" --engine=2 --scan-locations=1,2,3,4,5,6,7,8,10 --disabled-locations=9,11 --session-id=YS1SU0IQjruNaJc3f3OIgEpcOPyBRvqdtJHSuAHY --registry-suffix=ESET --srt-field-trial-group-name=NewCleanerUIExperiment
"c:\users\lukas\appdata\local\google\chrome\user data\swreporter\83.236.200\software_reporter_tool.exe" --crash-handler "--database=c:\users\lukas\appdata\local\Google\Software Reporter Tool" --url=https://clients2.google.com/cr/report --annotation=plat=Win32 --annotation=prod=ChromeFoil --annotation=ver=83.236.200 --initial-client-data=0x264,0x268,0x26c,0x240,0x270,0x7ff6075e9928,0x7ff6075e9938,0x7ff6075e9948
"c:\users\lukas\appdata\local\google\chrome\user data\swreporter\83.236.200\software_reporter_tool.exe" --use-crash-handler-with-id="\\.\pipe\crashpad_19716_JFKKGHJRMVNXGSKN" --sandboxed-process-id=2 --init-done-notifier=740 --sandbox-mojo-pipe-token=8789704840578976981 --mojo-platform-channel-handle=716 --engine=2
"c:\users\lukas\appdata\local\google\chrome\user data\swreporter\83.236.200\software_reporter_tool.exe" --use-crash-handler-with-id="\\.\pipe\crashpad_19716_JFKKGHJRMVNXGSKN" --sandboxed-process-id=3 --init-done-notifier=976 --sandbox-mojo-pipe-token=9350206712863315656 --mojo-platform-channel-handle=972
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"D:\Programy\Winamp\winamp.exe"
"D:\Programy\Last.fm\Last.fm Scrobbler.exe" --tray
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,14712664518320758268,5694359069625224564,131072 --lang=en-US --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6656 /prefetch:1
"C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,14712664518320758268,5694359069625224564,131072 --lang=en-US --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7404 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k smphost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,14712664518320758268,5694359069625224564,131072 --lang=en-US --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6584 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"D:\Downloads\RSITx64.exe"

=========Mozilla firefox=========

ProfilePath - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\p585s8ix.dev-edition-default

"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.201.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.201.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2018-07-17 199648]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-28 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-03-17 480120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-28 339872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2018-07-17 167480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-03-17 194424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-28 339872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-28 339872]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-02-13 84992]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2018-02-13 79360]
"RtkAudUService"=C:\WINDOWS\System32\RtkAudUService64.exe [2019-02-26 834336]
"WavesSvc"=C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo.inf_amd64_043a570d84e7e965\WavesSvc64.exe [2018-03-09 1229072]
"DellMobileConnectWelcome"=C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWelcome.exe [2017-11-06 127480]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2020-05-20 108728]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2020-05-22 1591656]
"DAEMON Tools Lite Automount"=D:\Programy\DAEMON Tools Lite\DTAgent.exe [2018-06-20 729704]
"Steam"=D:\Hry\Steam\steam.exe [2020-04-04 3371296]
"Skype for Desktop"=C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [2020-02-14 91512680]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-09-28 937920]
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2011-09-28 36760]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2011-09-28 815512]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-12-16 601424]
"Autodesk Desktop App"=C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [2020-03-04 664872]
"Autodesk Genuine Service "=C:\Users\Lukas\AppData\Local\Programs\Autodesk\Genuine Service\GenuineService.exe [2020-01-02 1077864]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
SteelSeries Engine 3.lnk - C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2020-06-07 11:23:16 ----D---- C:\Program Files\trend micro
2020-06-07 11:23:15 ----D---- C:\rsit
2020-06-06 22:26:32 ----A---- C:\WINDOWS\system32\aswBoot.exe
2020-05-27 21:47:20 ----D---- C:\Users\Lukas\AppData\Roaming\MongoDB Compass Community
2020-05-27 21:45:27 ----D---- C:\Program Files\MongoDB
2020-05-27 21:45:09 ----D---- C:\data
2020-05-21 22:26:21 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2020-05-21 22:26:21 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2020-05-21 22:26:21 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2020-05-21 22:26:21 ----A---- C:\WINDOWS\system32\drivers\aswNetHub.sys
2020-05-21 22:26:21 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2020-05-21 22:26:21 ----A---- C:\WINDOWS\system32\drivers\aswbidsdriver.sys
2020-05-21 22:26:21 ----A---- C:\WINDOWS\system32\drivers\aswArPot.sys
2020-05-20 22:26:00 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2020-05-20 22:26:00 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2020-05-19 01:36:36 ----D---- C:\Program Files\Google
2020-05-14 21:52:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2020-05-14 21:52:39 ----A---- C:\WINDOWS\SYSWOW64\ConsoleLogon.dll
2020-05-14 21:52:39 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2020-05-14 21:52:39 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-05-14 21:52:39 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2020-05-14 21:52:39 ----A---- C:\WINDOWS\system32\wbengine.exe
2020-05-14 21:52:39 ----A---- C:\WINDOWS\system32\wbadmin.exe
2020-05-14 21:52:39 ----A---- C:\WINDOWS\system32\TSSessionUX.dll
2020-05-14 21:52:39 ----A---- C:\WINDOWS\system32\RDXService.dll
2020-05-14 21:52:39 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2020-05-14 21:52:38 ----A---- C:\WINDOWS\SYSWOW64\AccountsRt.dll
2020-05-14 21:52:38 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2020-05-14 21:52:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2020-05-14 21:52:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2020-05-14 21:52:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2020-05-14 21:52:37 ----A---- C:\WINDOWS\SYSWOW64\MixedRealityRuntime.dll
2020-05-14 21:52:37 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2020-05-14 21:52:37 ----A---- C:\WINDOWS\SYSWOW64\HoloShellRuntime.dll
2020-05-14 21:52:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2020-05-14 21:52:33 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2020-05-14 21:52:33 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2020-05-14 21:52:33 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2020-05-14 21:52:33 ----A---- C:\WINDOWS\system32\MixedRealityRuntime.dll
2020-05-14 21:52:33 ----A---- C:\WINDOWS\system32\MixedReality.Broker.dll
2020-05-14 21:52:33 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-05-14 21:52:33 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-05-14 21:52:32 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-05-14 21:52:32 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2020-05-14 21:52:32 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2020-05-14 21:52:32 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2020-05-14 21:52:32 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-05-14 21:52:32 ----A---- C:\WINDOWS\system32\HoloShellRuntime.dll
2020-05-14 21:52:32 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-05-14 21:52:32 ----A---- C:\WINDOWS\system32\DMRServer.dll
2020-05-14 21:52:31 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-05-14 21:52:31 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2020-05-14 21:52:31 ----A---- C:\WINDOWS\system32\mfplat.dll
2020-05-14 21:52:31 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-05-14 21:52:31 ----A---- C:\WINDOWS\system32\mfds.dll
2020-05-14 21:52:31 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\wkspbrokerAx.dll
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\tapi32.dll
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\RdpSaProxy.exe
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\RdpSa.exe
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\rdpendp.dll
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\pla.dll
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-05-14 21:52:28 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2020-05-14 21:52:27 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-05-14 21:52:27 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-05-14 21:52:27 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2020-05-14 21:52:27 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-05-14 21:52:27 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-05-14 21:52:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-05-14 21:52:27 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-05-14 21:52:27 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-05-14 21:52:27 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-05-14 21:52:26 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2020-05-14 21:52:26 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-05-14 21:52:26 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2020-05-14 21:52:26 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2020-05-14 21:52:26 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-05-14 21:52:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2020-05-14 21:52:25 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2020-05-14 21:52:25 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2020-05-14 21:52:25 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2020-05-14 21:52:25 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-05-14 21:52:25 ----A---- C:\WINDOWS\SYSWOW64\fdWSD.dll
2020-05-14 21:52:25 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-05-14 21:52:25 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2020-05-14 21:52:25 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2020-05-14 21:52:25 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\wkspbrokerAx.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\wkspbroker.exe
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\Windows.Internal.PredictionUnit.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\tsmf.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\tsgqec.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\termsrv.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\SIHClient.exe
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\RdpSaProxy.exe
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\RdpSa.exe
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\plasrv.exe
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\pla.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\DiagSvc.dll
2020-05-14 21:52:24 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\umrdp.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\tapi32.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\rdpinput.exe
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\rdpendp.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\rdpcore.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\rdpclip.exe
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\msi.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-05-14 21:52:23 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-05-14 21:52:22 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-05-14 21:52:22 ----A---- C:\WINDOWS\system32\ieproxy.dll
2020-05-14 21:52:22 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-05-14 21:52:19 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2020-05-14 21:52:19 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-05-14 21:52:19 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\werui.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\jscript.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\fdWSD.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\easwrt.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\dialclient.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\DataExchangeHost.exe
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\ConsentUxClient.dll
2020-05-14 21:52:18 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2020-05-14 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2020-05-14 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-05-14 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2020-05-14 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2020-05-14 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2020-05-14 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2020-05-14 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2020-05-14 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2020-05-14 21:52:17 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-05-14 21:52:17 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-05-14 21:52:17 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-05-14 21:52:17 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-05-14 21:52:17 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-05-14 21:52:17 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\scesrv.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\printui.exe
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\nlmsprep.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\nlmproxy.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\msimg32.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\ddrawex.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\ddraw.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2020-05-14 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\compstui.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2020-05-14 21:52:12 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Profile.RetailInfo.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Compression.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Management.Workplace.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Devices.Sensors.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.AI.MachineLearning.Preview.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\PickerPlatform.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\DiagnosticInvoker.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2020-05-14 21:52:11 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\TaskApis.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\socialapis.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\PhoneOm.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\PeopleAPIs.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\mbussdapi.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2020-05-14 21:52:10 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Preview.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\windows.applicationmodel.datatransfer.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\useractivitybroker.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\coloradapterclient.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2020-05-14 21:52:09 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2020-05-14 21:52:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2020-05-14 21:52:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Printers.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Haptics.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\gamingtcui.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\ffbroker.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\dsregtask.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\DataExchange.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRClient.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRBroker.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\AssignedAccessRuntime.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\AppExtension.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2020-05-14 21:52:05 ----A---- C:\WINDOWS\SYSWOW64\aadWamExtension.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\winsta.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\SystemSettings.DataModel.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\slcext.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\RADCUI.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\msutb.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\DeviceReactivation.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2020-05-14 21:52:04 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\SYSWOW64\VoipRT.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\usbmon.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\TSpkg.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\tcpmon.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\scrrun.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\scesrv.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\rasdlg.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\puiobj.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\puiapi.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\printui.exe
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\LsaIso.exe
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\localui.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\findnetprinters.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\Family.Client.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\efswrt.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\credssp.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\compstui.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\comdlg32.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\comctl32.dll
2020-05-14 21:52:03 ----A---- C:\WINDOWS\system32\APMon.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\urlmon.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\pnidui.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\msIso.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\MrmIndexer.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\iertutil.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-05-14 21:52:00 ----A---- C:\WINDOWS\system32\edgeIso.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\winsrvext.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\usermgr.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\t2embed.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\policymanager.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\omadmclient.exe
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\msimg32.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\mf3216.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\lpk.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\LogonController.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\KernelBase.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\fontsub.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\ddrawex.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\ddraw.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\dciman32.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2020-05-14 21:51:59 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\WinTypes.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\wincorlib.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\WerFault.exe
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\weretw.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\wer.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\utcutil.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\tzres.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\runexehelper.exe
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\oleaut32.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\ntdll.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\mswsock.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\Faultrep.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\dnsapi.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\diagtrack.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\CoreShell.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\ComposerFramework.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\combase.dll
2020-05-14 21:51:58 ----A---- C:\WINDOWS\system32\ci.dll
2020-05-14 21:51:57 ----A---- C:\WINDOWS\system32\wksprt.exe
2020-05-14 21:51:57 ----A---- C:\WINDOWS\system32\winsta.dll
2020-05-14 21:51:57 ----A---- C:\WINDOWS\system32\twinui.dll
2020-05-14 21:51:57 ----A---- C:\WINDOWS\system32\twinapi.dll
2020-05-14 21:51:57 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2020-05-14 21:51:57 ----A---- C:\WINDOWS\system32\TabSvc.dll
2020-05-14 21:51:57 ----A---- C:\WINDOWS\system32\schedsvc.dll
2020-05-14 21:51:57 ----A---- C:\WINDOWS\system32\RADCUI.dll
2020-05-14 21:51:57 ----A---- C:\WINDOWS\system32\msutb.dll
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\sppcommdlg.dll
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\sppcext.dll
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\sppc.dll
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\slui.exe
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\slcext.dll
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\slc.dll
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\phoneactivate.exe
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\LicensingUI.exe
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\DeviceReactivation.dll
2020-05-14 21:51:53 ----A---- C:\WINDOWS\system32\changepk.exe
2020-05-14 21:51:52 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-05-14 21:51:52 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2020-05-14 21:51:52 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-05-14 21:51:52 ----A---- C:\WINDOWS\system32\shell32.dll
2020-05-14 21:51:52 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2020-05-14 21:51:52 ----A---- C:\WINDOWS\system32\dcomp.dll
2020-05-14 21:51:52 ----A---- C:\WINDOWS\system32\CredDialogBroker.dll
2020-05-14 21:51:52 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2020-05-14 21:51:52 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-05-14 21:51:52 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2020-05-14 21:51:52 ----A---- C:\WINDOWS\system32\CaptureService.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\usoapi.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\SwitcherDataModel.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\SHCore.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\PickerPlatform.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\NotificationController.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\MusNotification.exe
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\MtcModel.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-05-14 21:51:51 ----A---- C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\wpnprv.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\wpnapps.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\win32u.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\win32k.sys
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\wcimage.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\user32.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\rdpbase.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\psmsrv.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\propsys.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\Geolocation.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\daxexec.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\bthserv.dll
2020-05-14 21:51:50 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\WindowManagement.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\WaaSAssessment.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\UserDataService.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\TaskApis.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\socialapis.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\rdpsharercom.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\PhoneOm.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\PeopleAPIs.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\mbussdapi.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\ISM.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\InstallService.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\InputHost.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\EmailApis.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\ContactApis.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\ChatApis.dll
2020-05-14 21:51:49 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\SEMgrSvc.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\mscms.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\icm32.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\FntCache.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\dxgi.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\DWrite.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\coloradapterclient.dll
2020-05-14 21:51:45 ----A---- C:\WINDOWS\system32\BingMaps.dll
2020-05-14 21:51:44 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-05-14 21:51:37 ----A---- C:\WINDOWS\system32\wups2.dll
2020-05-14 21:51:37 ----A---- C:\WINDOWS\system32\wuauclt.exe
2020-05-14 21:51:37 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-05-14 21:51:37 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2020-05-14 21:51:37 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2020-05-14 21:51:37 ----A---- C:\WINDOWS\system32\vaultcli.dll
2020-05-14 21:51:37 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-05-14 21:51:37 ----A---- C:\WINDOWS\system32\msxml6.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\wups.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\wuaueng.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\wuapi.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Storage.Compression.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Internal.Devices.Sensors.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\Windows.AI.MachineLearning.Preview.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\cdd.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-05-14 21:51:36 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\wlidprov.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Devices.Haptics.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\useractivitybroker.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\tbauth.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\smartscreen.exe
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\ShareHost.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\gamingtcui.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\ffbroker.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\DataExchange.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\cdprt.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\AppExtension.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\AppContracts.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\aadWamExtension.dll
2020-05-14 21:51:35 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\WwaApi.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\BcastDVRClient.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\BcastDVRBroker.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-05-14 21:51:31 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\Wpc.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\Windows.Internal.Signals.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\vdsbas.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\UtcDecoderHost.exe
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\StartTileData.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\printfilterpipelineprxy.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\localspl.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\dsregtask.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\dsreg.dll
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-05-14 21:51:30 ----A---- C:\WINDOWS\system32\CloudNotifications.exe
2020-05-14 21:51:30 ----A---- C:\WINDOWS\explorer.exe
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\XblGameSaveTask.exe
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\wwansvc.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\VoipRT.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\TsUsbGDCoInstaller.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\PhoneService.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\drivers\TsUsbGD.sys
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\drivers\KNetPwrDepBroker.sys
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\BTAGService.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\autopilot.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\AudioSes.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\AudioEng.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-05-14 21:51:29 ----A---- C:\WINDOWS\system32\audiodg.exe
2020-05-14 21:51:28 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2020-05-10 23:49:03 ----D---- C:\WINDOWS\Minidump
2020-05-10 14:06:47 ----D---- C:\WINDOWS\{0D091F8E-637D-48E3-AAAB-AF0CB0B89B8C}

======List of files/folders modified in the last 1 month======

2020-06-07 11:23:19 ----D---- C:\WINDOWS\Temp
2020-06-07 11:23:19 ----D---- C:\WINDOWS\Prefetch
2020-06-07 11:23:18 ----D---- C:\WINDOWS\system32\drivers\etc
2020-06-07 11:23:16 ----RD---- C:\Program Files
2020-06-07 11:20:52 ----D---- C:\WINDOWS\System32
2020-06-07 11:20:52 ----D---- C:\WINDOWS\INF
2020-06-07 11:20:52 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-06-07 11:18:36 ----D---- C:\WINDOWS\system32\drivers
2020-06-07 11:18:36 ----D---- C:\WINDOWS\Registration
2020-06-07 11:18:35 ----D---- C:\WINDOWS\system32\DriverStore
2020-06-07 11:18:33 ----D---- C:\Program Files (x86)\Dell Digital Delivery Services
2020-06-07 11:17:14 ----D---- C:\WINDOWS\AppReadiness
2020-06-07 11:17:13 ----HD---- C:\Program Files\WindowsApps
2020-06-07 11:16:49 ----D---- C:\ProgramData\NVIDIA
2020-06-07 11:16:29 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-06-07 11:16:20 ----D---- C:\Program Files\Firefox Developer Edition
2020-06-07 11:16:20 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2020-06-07 11:15:52 ----D---- C:\WINDOWS\system32\sru
2020-06-07 10:45:45 ----D---- C:\WINDOWS\system32\SleepStudy
2020-06-07 09:36:55 ----D---- C:\Users\Lukas\AppData\Roaming\Spotify
2020-06-06 23:36:11 ----RD---- C:\WINDOWS\Microsoft.NET
2020-06-06 23:36:10 ----D---- C:\WINDOWS\system32\config
2020-06-06 22:26:37 ----D---- C:\WINDOWS\system32\Tasks
2020-06-06 22:26:32 ----HD---- C:\WINDOWS\ELAMBKUP
2020-06-06 13:05:37 ----SHD---- C:\System Volume Information
2020-06-06 11:33:28 ----D---- C:\Users\Lukas\AppData\Roaming\npm-cache
2020-06-05 06:27:04 ----D---- C:\WINDOWS\system32\NDF
2020-06-04 18:32:06 ----D---- C:\WINDOWS\system32\drivers\wd
2020-06-01 22:36:44 ----D---- C:\WINDOWS\Logs
2020-05-31 00:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2020-05-29 18:10:59 ----D---- C:\Program Files\UNP
2020-05-27 21:47:23 ----SHD---- C:\WINDOWS\Installer
2020-05-20 19:53:55 ----D---- C:\WINDOWS\WinSxS
2020-05-20 19:53:41 ----D---- C:\WINDOWS\system32\catroot2
2020-05-16 19:47:33 ----D---- C:\WINDOWS\apppatch
2020-05-16 18:20:14 ----D---- C:\ProgramData\boost_interprocess
2020-05-16 17:51:57 ----RSD---- C:\WINDOWS\assembly
2020-05-16 13:03:02 ----D---- C:\ProgramData\AVAST Software
2020-05-16 01:35:55 ----D---- C:\Program Files (x86)\McAfee
2020-05-16 01:34:36 ----D---- C:\WINDOWS\TextInput
2020-05-16 01:34:36 ----D---- C:\WINDOWS\SYSWOW64\migration
2020-05-16 01:34:36 ----D---- C:\WINDOWS\SYSWOW64\en-US
2020-05-16 01:34:36 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-05-16 01:34:36 ----D---- C:\WINDOWS\SysWOW64
2020-05-16 01:34:35 ----D---- C:\WINDOWS\SystemResources
2020-05-16 01:34:35 ----D---- C:\WINDOWS\system32\wbem
2020-05-16 01:34:35 ----D---- C:\WINDOWS\system32\oobe
2020-05-16 01:34:35 ----D---- C:\WINDOWS\system32\migration
2020-05-16 01:34:35 ----D---- C:\WINDOWS\system32\en-US
2020-05-16 01:34:35 ----D---- C:\WINDOWS\system32\drivers\en-US
2020-05-16 01:34:35 ----D---- C:\WINDOWS\system32\Dism
2020-05-16 01:34:34 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2020-05-16 01:34:34 ----D---- C:\WINDOWS\ShellExperiences
2020-05-16 01:34:34 ----D---- C:\WINDOWS\Provisioning
2020-05-16 01:34:34 ----D---- C:\WINDOWS\bcastdvr
2020-05-16 01:34:34 ----D---- C:\Windows
2020-05-16 01:34:33 ----D---- C:\PerfLogs
2020-05-16 01:34:31 ----D---- C:\WINDOWS\system32\drivers\UMDF
2020-05-14 21:57:10 ----D---- C:\WINDOWS\CbsTemp
2020-05-14 21:56:25 ----D---- C:\WINDOWS\system32\MRT
2020-05-14 21:54:32 ----AC---- C:\WINDOWS\system32\MRT.exe
2020-05-14 21:51:29 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2020-05-11 09:30:00 ----D---- C:\ProgramData\Goodix
2020-05-10 23:51:29 ----D---- C:\ProgramData\Dell

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2020-05-20 37136]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2020-05-20 178760]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2020-05-20 60480]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2020-02-25 16304]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2020-05-20 84856]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2020-05-28 319112]
R0 iaStorAC;@oem75.inf,%iaStorAC.DeviceDesc%;Intel(R) Chipset SATA/PCIe RST Premium Controller; C:\WINDOWS\System32\drivers\iaStorAC.sys [2020-01-02 1034208]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2018-05-16 954784]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2018-05-16 252832]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-03-11 40960]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2020-05-20 205880]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2020-05-20 234560]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2020-05-20 42784]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2020-05-20 501472]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2020-05-20 109272]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2020-05-20 851592]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2020-05-20 460992]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2020-05-20 175704]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2020-05-20 235488]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-05-14 457216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-03-11 114688]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2019-03-19 133120]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-03-11 99328]
R3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2018-05-16 77216]
R3 DDDriver;DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [2020-01-03 35704]
R3 dptf_acpi;dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [2018-02-08 76696]
R3 dptf_cpu;dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [2018-02-08 70040]
R3 dtlitescsibus;@oem53.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2018-08-05 30264]
R3 dtliteusbbus;@oem35.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2018-08-05 47672]
R3 e2xw10x64;@oem1.inf,%RIVET.Service.DispName%;NDIS Miniport Driver for Killer PCI-E Gigabit Ethernet Controller; C:\WINDOWS\System32\drivers\e2xw10x64.sys [2017-10-31 165608]
R3 esif_lf;esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [2018-02-08 399264]
R3 HfAudio;@oem14.inf,%HfAudio.SVCDESC%;HfAudio; C:\WINDOWS\System32\drivers\HfAudio.sys [2018-06-08 65008]
R3 HidEventFilter;@oem6.inf,%HidEventFilter%;Intel(R) HID Event Filter; C:\WINDOWS\System32\drivers\HidEventFilter.sys [2017-11-30 85064]
R3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
R3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
R3 ibtusb;@oem38.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\System32\drivers\ibtusb.sys [2018-01-11 198080]
R3 igfx;igfx; C:\WINDOWS\System32\DriverStore\FileRepository\ki127123.inf_amd64_8e84273d56763f28\igdkmd64.sys [2018-03-19 12809640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2018-03-15 6114248]
R3 IntcDAud;@oem32.inf,%IntcAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\System32\drivers\IntcDAud.sys [2018-03-09 820168]
R3 KfeCoSvc;@oem13.inf,%RivetCoServiceName%;KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [2019-03-08 151688]
R3 MEIx64;@oem36.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2018-02-01 227456]
R3 mfeaack;McAfee Inc. mfeaack; C:\WINDOWS\system32\drivers\mfeaack.sys [2018-05-16 497568]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2018-05-16 361888]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2018-05-16 533408]
R3 mfencbdc;McAfee LLC. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2018-05-03 550288]
R3 mfeplk;McAfee Inc. mfeplk; C:\WINDOWS\system32\drivers\mfeplk.sys [2018-05-16 115616]
R3 Netwtw08;___ Intel(R) Wireless Adapter Driver for Windows 10 - 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwtw08.sys [2019-10-25 9214968]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvdmi.inf_amd64_945f3411f285793e\nvlddmkm.sys [2018-08-01 17211376]
R3 nvvad_WaveExtensible;@oem30.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-12-15 59240]
R3 nvvhci;@oem56.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2018-07-30 65792]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2018-05-16 83952]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S3 acdrv;AC driver; \??\C:\WINDOWS\system32\drivers\acdrv.sys [2019-09-29 4600696]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-03-11 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-11-13 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-02-13 117264]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-09-11 231936]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-03-11 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-03-11 1428992]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 DellProf;DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [2018-05-08 41208]
S3 dg_ssudbus;@oem73.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2019-09-26 136040]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-11 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-10-04 64000]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2018-05-02 226984]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-04-16 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2_SPI;Intel(R) Serial IO SPI Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2_SPI.sys [2017-10-16 160408]
S3 iaLPSS2_UART2;Intel(R) Serial IO UART Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys [2017-10-16 315544]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 iaStorAfs;@oem75.inf,%iaStorAfs.DisplayName%;iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [2020-01-02 74208]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-13 359424]
S3 mfeavfk01;McAfee Inc.; C:\WINDOWS\system32\drivers\mfeavfk01.sys []
S3 mfencrk;McAfee LLC. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2018-05-03 108944]
S3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-02-14 111608]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 Netwtw06;___ Intel(R) Wireless Adapter Driver for Windows 10 - 64 Bit; C:\WINDOWS\System32\drivers\Netwtw06.sys [2018-03-23 8742976]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2018-01-11 30280]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

[Lukas666]

R2 AdAppMgrSvc;Autodesk Desktop App Service; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2020-03-04 1046904]
R2 AdskLicensingService;Autodesk Desktop Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [2019-12-18 16930616]
R2 AESMService;Intel® SGX AESM; C:\WINDOWS\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_10d045798a3d667e\aesm_service.exe [2018-11-28 3367272]
R2 Apache2.4;Apache2.4; C:\xampp\apache\bin\httpd.exe [2019-08-11 29696]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2020-05-20 348968]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2020-05-20 58048]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_5832f;CDPUserSvc_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 cplspcon;Intel(R) Content Protection HDCP Service; C:\WINDOWS\System32\DriverStore\FileRepository\ki127123.inf_amd64_8e84273d56763f28\IntelCpHDCPSvc.exe [2018-03-19 487856]
R2 DDVCollectorSvcApi;Dell Data Vault Service API; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [2020-01-22 248376]
R2 DDVDataCollector;Dell Data Vault Collector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [2020-01-22 3359288]
R2 DDVRulesProcessor;Dell Data Vault Processor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [2020-01-22 271416]
R2 Dell Digital Delivery Services;Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [2020-01-24 38096]
R2 Dell Hardware Support;Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7106.1428\DSAPI.exe [2020-05-06 965104]
R2 Dell SupportAssist Remediation;Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [2017-11-03 119840]
R2 DellClientManagementService;Dell Client Management Service; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [2020-04-17 36544]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 esifsvc;@oem67.inf,%ServiceDisplayName%;Intel(R) Dynamic Platform and Thermal Framework service; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [2018-02-08 1646120]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2019-02-13 689248]
R2 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2020-05-06 2657616]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2018-02-13 17992]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\System32\DriverStore\FileRepository\ki127123.inf_amd64_8e84273d56763f28\igfxCUIService.exe [2018-03-19 423856]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2018-02-01 214672]
R2 Killer Network Service;@oem13.inf,%Killer_Service%;Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2019-03-08 2671216]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2018-02-01 622736]
R2 McAPExe;McAfee AP Service; C:\Program Files\Common Files\McAfee\VSCore_18_5\McApExe.exe [2018-06-12 728808]
R2 McNeelUpdate;McNeel Update Service 5.0; c:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe [2018-01-23 66416]
R2 mfemms;McAfee Service Controller; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [2018-04-24 519120]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2018-04-24 473552]
R2 ModuleCoreService;McAfee Module Core Service; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [2018-06-05 1689952]
R2 MongoDB;MongoDB Server (MongoDB); C:\Program Files\MongoDB\Server\4.2\bin\mongod.exe [2020-05-21 36280320]
R2 mysql;mysql; C:\xampp\mysql\bin\mysqld.exe [2019-12-10 15850408]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-11 519240]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2018-07-30 767184]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2018-01-11 460872]
R2 OneSyncSvc_5832f;OneSyncSvc_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 PEFService;McAfee PEF Service; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [2018-05-30 1047448]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2020-05-20 6350752]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_5832f;cbdhsvc_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\System32\DriverStore\FileRepository\ki127123.inf_amd64_8e84273d56763f28\IntelCpHeciSvc.exe [2018-03-19 509360]
R3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; D:\Programy\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2018-06-20 3606632]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-08-23 43704]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [2017-11-17 743728]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_5832f;PimIndexMaintenanceSvc_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-06 153168]
S2 Intel(R) TPM Provisioning Service;Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [2017-11-17 720184]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_5832f;AarSvc_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_5832f;BcastDVRUserService_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_5832f;BluetoothUserService_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_5832f;CaptureService_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_5832f;ConsentUxUserSvc_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-14 380632]
S3 CredentialEnrollmentManagerUserSvc_5832f;CredentialEnrollmentManagerUserSvc_5832f; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-14 380632]
S3 dcpm-notify;Dell Command | Power Manager Notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [2017-07-20 312864]
S3 Dell.CommandPowerManager.Service;Dell.CommandPowerManager.Service; C:\Windows\system32\dllhost.exe [2019-03-19 21304]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_5832f;DeviceAssociationBrokerSvc_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_5832f;DevicePickerUserSvc_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_5832f;DevicesFlowUserSvc_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-03-11 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2018-08-05 1431888]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.97\elevation_service.exe [2020-06-02 1287152]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-06 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 iaStorAfsService;@oem75.inf,%iaStorAfsWindowsService.Name%;Intel(R) Optane(TM) Memory Service; C:\WINDOWS\System32\iaStorAfsService.exe [2020-01-02 2876896]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 KNDBWM;@oem13.inf,%KNDBWMService%;KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [2019-03-08 72800]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_5832f;MessagingService_5832f; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [2018-04-24 359888]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2020-04-13 244424]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2019-02-13 310880]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-11 519240]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
S4 ClientAnalyticsService;ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [2018-05-31 1508656]
S4 HfcDisableService;@oem75.inf,%HfcDisableService.DisplayName%;Intel(R) RST HFC Disable Service; C:\WINDOWS\System32\DriverStore\FileRepository\iastorac.inf_amd64_f881c4be237ce854\HfcDisableService.exe [2020-01-02 1881568]
S4 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2018-07-17 604824]
S4 McAWFwk;McAfee Activation Service; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [2017-01-17 454560]
S4 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\2.9.175.0\\McCSPServiceHost.exe [2018-04-06 2141912]

-----------------EOF-----------------

[Rudy]

Zdravím!
Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . RSIT není s desítkami plně kompatibilní.

[Lukas666]

Jasne, nech sa páčim, posielam log z FRST:

https://we.tl/t-7PY06KadS4

[Rudy]

OK. Teď spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[Lukas666]

Vyčistené. Mám pocit, že už je to vporiadku. Predtým to redirektlo do minúty po zapnutí určitých stránok, od vyčistenia a reštartu to zatiaľ nespraivlo ani raz. Je to teda všetko alebo ešte niečo je potreba? Prikladám log:

# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-05-26.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-07-2020
# Duration: 00:00:04
# OS: Windows 10 Home
# Cleaned: 47
# Failed: 3


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

Deleted C:\Windows\restoro.ini

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Conduit
Deleted HKCU\Software\Local AppWizard-Generated Applications\Restoro
Deleted HKCU\Software\Restoro
Deleted HKCU\Software\csastats
Deleted HKLM\Software\Classes\CLSID\{AE198C69-7358-4856-9029-F4C0FAD524C1}
Deleted HKLM\Software\Classes\CLSID\{BA827421-E282-479E-AE60-34796877B8AE}
Deleted HKLM\Software\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted HKLM\Software\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted HKLM\Software\Classes\Restoro.Engine
Deleted HKLM\Software\Restoro
Deleted HKLM\Software\Wow6432Node\Conduit
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}

***** [ Chromium (and derivatives) ] *****

Deleted paddiapjbnmknhhobfcjnnmhgihnpgne

***** [ Chromium URLs ] *****

Deleted initialpage123
Deleted initialpage123
Deleted initialpage123
Deleted initialpage123
Deleted initialpage123
Deleted initialpage123

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.DellCommand|PowerManager Folder C:\Program Files\DELL\COMMANDPOWERMANAGER
Deleted Preinstalled.DellCommand|PowerManager Folder C:\ProgramData\DELL\COMMANDPOWERMANAGER
Deleted Preinstalled.DellCommand|PowerManager Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18469ED8-8C36-4CF7-BD43-0FC9B1931AF8}
Deleted Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\AGENT
Deleted Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\AUDIT
Deleted Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\PLUGIN
Deleted Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\DELL\SAREMEDIATION\AGENT
Deleted Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\DELL\SAREMEDIATION\PLUGIN
Deleted Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DELL\SUPPORTASSIST
Deleted Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\SUPPORTASSIST\CLIENT\TECHNICIANTOOLKIT
Deleted Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E7CDDD42-5214-4255-A968-75A0C92E7180}
Deleted Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E7CDDD42-5214-4255-A968-75A0C92E7180}
Deleted Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dell SupportAssistAgent AutoUpdate
Deleted Preinstalled.DellSupportAssistAgent Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{9C32DD4A-3321-4BD5-BD11-C4B18ECE6AE7}
Deleted Preinstalled.DellSupportAssistAgent Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AB1A407B-E492-4DA1-B024-F96606D1B0B7}
Deleted Preinstalled.DellSupportAssistAgent Task C:\Windows\System32\Tasks\DELL SUPPORTASSISTAGENT AUTOUPDATE
Deleted Preinstalled.DellUpdateforWindows10 Folder C:\Program Files (x86)\DELL\UPDATE
Deleted Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\DELL\UPDATE
Deleted Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DELL\UPDATE
Deleted Preinstalled.DellUpdateforWindows10 Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{5EBBC1DA-975F-44A0-B438-F325BCD45577}
Deleted Preinstalled.SmartByte Folder C:\Program Files\RIVET NETWORKS
Deleted Preinstalled.SmartByte Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RIVET NETWORKS
Deleted Preinstalled.SmartByte Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{54DAE0CF-FEBE-40C2-A115-8CC10487FC8B}
Deleted Preinstalled.SmartByte Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartByte Telemetry
Deleted Preinstalled.SmartByte Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{01F01829-4C5A-41B0-8198-0BDD02B34C47}
Deleted Preinstalled.SmartByte Task C:\Windows\System32\Tasks\SMARTBYTE TELEMETRY
Not Deleted Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SUPPORTASSISTAGENT
Not Deleted Preinstalled.DellUpdateforWindows10 Folder C:\Program Files (x86)\DELL\UPDATESERVICE
Not Deleted Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\DELL\UPDATESERVICE


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [6013 octets] - [07/06/2020 16:48:10]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Rudy]

Dejte nové logy FRST+Addition.

[Lukas666]

https://we.tl/t-iSbylIHWIn

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-152176594-3405707176-703294341-1001\...\Policies\Explorer: []
HKU\S-1-5-21-152176594-3405707176-703294341-1001\...\MountPoints2: {b521847f-98b4-11e8-8e74-b46bfcd9d32e} - "E:\setup.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2018-09-20]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {31E7AAE8-AC84-4436-9AD8-3C10C8614266} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-06] (Google Inc -> Google Inc.)
Task: {EA70F036-7949-4268-9498-8759A3D27C65} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-06] (Google Inc -> Google Inc.)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [UDP Query User{3C6D7333-DA59-45AB-982F-FC1D86EE9130}D:\hry\mass effect 2\binaries\masseffect2.exe] => (Allow) D:\hry\mass effect 2\binaries\masseffect2.exe => No File
FirewallRules: [TCP Query User{FCA13E8A-6FC1-4D54-A44D-305DFF60E08A}D:\hry\mass effect 2\binaries\masseffect2.exe] => (Allow) D:\hry\mass effect 2\binaries\masseffect2.exe => No File
FirewallRules: [UDP Query User{6AB3E4C7-B493-48CE-9F45-C9C6F2D10153}D:\hry\counter-strike 1.6\hl.exe] => (Allow) D:\hry\counter-strike 1.6\hl.exe => No File
FirewallRules: [TCP Query User{D8B13740-5020-429B-9114-E1CD6C688B5E}D:\hry\counter-strike 1.6\hl.exe] => (Allow) D:\hry\counter-strike 1.6\hl.exe => No File
FirewallRules: [{D88521E8-9F26-489B-942F-58745D67EA80}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{C967FF19-9315-4CD5-A9BB-14B4F1964F4A}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{15A9AD53-2E80-419E-8AC8-0AD0F781B8D5}D:\programy\utorrent.exe] => (Allow) D:\programy\utorrent.exe => No File
FirewallRules: [UDP Query User{5EF03EEE-BA5C-4552-9411-67E09CA4509E}D:\programy\utorrent.exe] => (Allow) D:\programy\utorrent.exe => No File

EmptyTemp:
Hosts:
End

Uložte do D:\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Lukas666]

Hotovo,

Fix result of Farbar Recovery Scan Tool (x64) Version: 06-06-2020
Ran by Lukas (07-06-2020 22:45:07) Run:1
Running from D:\Downloads
Loaded Profiles: Lukas
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-152176594-3405707176-703294341-1001\...\Policies\Explorer: []
HKU\S-1-5-21-152176594-3405707176-703294341-1001\...\MountPoints2: {b521847f-98b4-11e8-8e74-b46bfcd9d32e} - "E:\setup.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2018-09-20]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {31E7AAE8-AC84-4436-9AD8-3C10C8614266} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-06] (Google Inc -> Google Inc.)
Task: {EA70F036-7949-4268-9498-8759A3D27C65} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-06] (Google Inc -> Google Inc.)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [UDP Query User{3C6D7333-DA59-45AB-982F-FC1D86EE9130}D:\hry\mass effect 2\binaries\masseffect2.exe] => (Allow) D:\hry\mass effect 2\binaries\masseffect2.exe => No File
FirewallRules: [TCP Query User{FCA13E8A-6FC1-4D54-A44D-305DFF60E08A}D:\hry\mass effect 2\binaries\masseffect2.exe] => (Allow) D:\hry\mass effect 2\binaries\masseffect2.exe => No File
FirewallRules: [UDP Query User{6AB3E4C7-B493-48CE-9F45-C9C6F2D10153}D:\hry\counter-strike 1.6\hl.exe] => (Allow) D:\hry\counter-strike 1.6\hl.exe => No File
FirewallRules: [TCP Query User{D8B13740-5020-429B-9114-E1CD6C688B5E}D:\hry\counter-strike 1.6\hl.exe] => (Allow) D:\hry\counter-strike 1.6\hl.exe => No File
FirewallRules: [{D88521E8-9F26-489B-942F-58745D67EA80}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{C967FF19-9315-4CD5-A9BB-14B4F1964F4A}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{15A9AD53-2E80-419E-8AC8-0AD0F781B8D5}D:\programy\utorrent.exe] => (Allow) D:\programy\utorrent.exe => No File
FirewallRules: [UDP Query User{5EF03EEE-BA5C-4552-9411-67E09CA4509E}D:\programy\utorrent.exe] => (Allow) D:\programy\utorrent.exe => No File

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
"HKU\S-1-5-21-152176594-3405707176-703294341-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => removed successfully
HKU\S-1-5-21-152176594-3405707176-703294341-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b521847f-98b4-11e8-8e74-b46bfcd9d32e} => removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{31E7AAE8-AC84-4436-9AD8-3C10C8614266}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{31E7AAE8-AC84-4436-9AD8-3C10C8614266}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EA70F036-7949-4268-9498-8759A3D27C65}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EA70F036-7949-4268-9498-8759A3D27C65}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3C6D7333-DA59-45AB-982F-FC1D86EE9130}D:\hry\mass effect 2\binaries\masseffect2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FCA13E8A-6FC1-4D54-A44D-305DFF60E08A}D:\hry\mass effect 2\binaries\masseffect2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6AB3E4C7-B493-48CE-9F45-C9C6F2D10153}D:\hry\counter-strike 1.6\hl.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D8B13740-5020-429B-9114-E1CD6C688B5E}D:\hry\counter-strike 1.6\hl.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D88521E8-9F26-489B-942F-58745D67EA80}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C967FF19-9315-4CD5-A9BB-14B4F1964F4A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{15A9AD53-2E80-419E-8AC8-0AD0F781B8D5}D:\programy\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5EF03EEE-BA5C-4552-9411-67E09CA4509E}D:\programy\utorrent.exe" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 12607488 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 46885383 B
Java, Flash, Steam htmlcache => 415205302 B
Windows/system/drivers => 3475012 B
Edge => 1320629 B
Chrome => 2558163044 B
Firefox => 80144159 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 10852844 B
systemprofile32 => 10852844 B
LocalService => 11054100 B
NetworkService => 11196924 B
Lukas => 74976755 B

RecycleBin => 428754725 B
EmptyTemp: => 3.4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 22:52:18 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[Lukas666]

Áno. Vyzerá to už byť všetko vporiadku. Tak teda super, ďakujem opäť za pomoc!

[Rudy]

Nemáte zač!