Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivní kontrola.

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
vrbickyjaroslav
Návštěvník
Návštěvník
Příspěvky: 33
Registrován: 07 led 2007 20:51

Preventivní kontrola.

#1 Příspěvek od vrbickyjaroslav »

Dobrý den,
prosím o preventivní kontrolu. Předem díky.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jaryn01 at 2018-05-09 17:50:46
Microsoft Windows 10 Pro
System drive C: has 76 GB (32%) free of 238 GB
Total RAM: 4094 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:50:53, on 9.5.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0371)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe
C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Gaming Keyboard\OSD.exe
C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_watchdog.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\plugin-nm-server.exe
C:\Program Files\trend micro\Jaryn01.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE01DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {93BC2EA7-2F17-4729-948A-D2E03FFB2412} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll
O2 - BHO: Safe Money Plugin - {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [VICTORY Gaming Keyboard] "C:\Program Files (x86)\Gaming Keyboard\Monitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] C:\Users\Jaryn01\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Wargaming.net Game Center] "C:\ProgramData\Wargaming.net\GameCenter\wgc.exe" --background ''
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: O&O Defrag Tray.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Virtuální klávesnice - {5547CE1F-74E9-41E5-9CBF-5211ECC37341} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Služba Kaspersky Anti-Virus 15.0.2 (AVP15.0.2) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: O&O CleverCache (OOCleverCache) - O&O Software GmbH - C:\Program Files\OO Software\CleverCache\ooccag.exe
O23 - Service: O&O Defrag (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 11092 bytes

======Listing Processes======









winlogon.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s CscService
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s netprofm

c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localservice -p -s SEMgrSvc
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe" -r
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
C:\WINDOWS\system32\mqsvc.exe
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
"C:\Program Files\OO Software\CleverCache\ooccag.exe"
"C:\Program Files\OO Software\Defrag\oodag.exe"
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc

C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k localservice -s W32Time
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k netsvcs
dashost.exe {7f7f1643-48fc-4565-87322db9ef80f178}
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe" -hidden
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\Windows\System32\smartscreen.exe -Embedding
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\OO Software\CleverCache\ooccctrl.exe" /tasktray
"C:\Program Files\OO Software\Defrag\oodtray.exe"
"C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
"C:\ProgramData\Wargaming.net\GameCenter\wgc.exe" --background ''
"C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Gaming Keyboard\OSD.exe"
"C:\\ProgramData\\Wargaming.net\\GameCenter\\dlls\\wgc_watchdog.exe" --id "2492_306481" --root "C:\ProgramData\Wargaming.net\GameCenter" --server "http://wgcrs.wargaming.net/upload/"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Jaryn01\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Jaryn01\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Jaryn01\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=66.0.3359.139 --initial-client-data=0x1d0,0x1d4,0x1d8,0x1cc,0x1dc,0x7ff90dd83218,0x7ff90dd83228,0x7ff90dd83238
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=956 --on-initialized-event-handle=648 --parent-handle=652 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1380,4001807665506919347,4263889291591218775,131072 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=67FB89AAF44DAE61BD185311E94F4991 --mojo-platform-channel-handle=1368 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1380,4001807665506919347,4263889291591218775,131072 --service-pipe-token=965F4E0D416BA7376539500FF124BB6F --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=965F4E0D416BA7376539500FF124BB6F --renderer-client-id=3 --mojo-platform-channel-handle=2028 /prefetch:1
C:\WINDOWS\system32\cmd.exe /d /c "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\plugin-nm-server.exe" chrome-extension://dbhjdbfgekjfcfkkfjjmlmojhbllhbho/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.9c364fcebe602883 > \\.\pipe\chrome.nativeMessaging.out.9c364fcebe602883
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\plugin-nm-server.exe" chrome-extension://dbhjdbfgekjfcfkkfjjmlmojhbllhbho/ --parent-window=0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1380,4001807665506919347,4263889291591218775,131072 --service-pipe-token=A1D9F667D4CFB692FCCA1D46B89A4F0D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=A1D9F667D4CFB692FCCA1D46B89A4F0D --renderer-client-id=8 --mojo-platform-channel-handle=3472 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1380,4001807665506919347,4263889291591218775,131072 --service-pipe-token=CD3C59F16B039FF1A042CB71EE37AD08 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=CD3C59F16B039FF1A042CB71EE37AD08 --renderer-client-id=11 --mojo-platform-channel-handle=3376 /prefetch:1
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1380,4001807665506919347,4263889291591218775,131072 --lang=cs --service-sandbox-type=utility --service-request-channel-token=CBB6B22F1809EC7D9BD6B9675B5C5B2A --mojo-platform-channel-handle=1160 --ignored=" --type=renderer " /prefetch:8
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
taskhostw.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\WmiApSrv.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 736 740 748 8192 744
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"C:\Users\Jaryn01\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2017-12-14 528440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2016-03-24 1871864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{93BC2EA7-2F17-4729-948A-D2E03FFB2412}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2016-03-24 1871864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2016-03-24 1871864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2017-12-14 453688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2016-03-24 1705976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-04-21 480200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{93BC2EA7-2F17-4729-948A-D2E03FFB2412}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2016-03-24 1705976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2016-03-24 1705976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-21 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]
"ooccctrl.exe"=C:\Program Files\OO Software\CleverCache\ooccctrl.exe [2010-12-08 4346696]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2017-11-06 5126720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Jaryn01\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe [2017-11-14 601680]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 912480]
"Wargaming.net Game Center"=C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2018-04-25 2119544]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"VICTORY Gaming Keyboard"=C:\Program Files (x86)\Gaming Keyboard\Monitor.exe [2013-04-09 270336]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-03-28 588704]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O&O Defrag Tray.lnk - C:\WINDOWS\Installer\{24101C5E-D049-4E8E-8B12-C90B7DB38C0A}\app_icon.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=28

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-04-10 20:48:47 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2018-04-10 20:08:37 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2018-04-10 20:08:37 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-04-10 20:08:37 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-04-10 20:08:37 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-04-10 20:08:36 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2018-04-10 20:08:35 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-04-10 20:08:35 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-04-10 20:08:35 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2018-04-10 20:08:35 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2018-04-10 20:08:35 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2018-04-10 20:08:35 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2018-04-10 20:08:35 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-04-10 20:08:35 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2018-04-10 20:08:34 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\SYSWOW64\AppVClientPS.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\system32\rdpbase.dll
2018-04-10 20:08:31 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-04-10 20:08:30 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-04-10 20:08:30 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2018-04-10 20:08:30 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-04-10 20:08:30 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-04-10 20:08:30 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2018-04-10 20:08:30 ----A---- C:\WINDOWS\system32\drivers\vmbkmclr.sys
2018-04-10 20:08:29 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-04-10 20:08:29 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2018-04-10 20:08:28 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2018-04-10 20:08:28 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2018-04-10 20:08:28 ----A---- C:\WINDOWS\SYSWOW64\rfxvmt.dll
2018-04-10 20:08:28 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2018-04-10 20:08:28 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2018-04-10 20:08:28 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2018-04-10 20:08:28 ----A---- C:\WINDOWS\system32\WcnApi.dll
2018-04-10 20:08:28 ----A---- C:\WINDOWS\system32\t2embed.dll
2018-04-10 20:08:28 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-04-10 20:08:28 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-04-10 20:08:28 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-04-10 20:08:27 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2018-04-10 20:08:27 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-04-10 20:08:27 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2018-04-10 20:08:27 ----A---- C:\WINDOWS\system32\ieproxy.dll
2018-04-10 20:08:27 ----A---- C:\WINDOWS\system32\actxprxy.dll
2018-04-10 20:08:26 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-04-10 20:08:26 ----A---- C:\WINDOWS\system32\virtdisk.dll
2018-04-10 20:08:26 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-04-10 20:08:25 ----A---- C:\WINDOWS\system32\hal.dll
2018-04-10 20:08:25 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2018-04-10 20:08:25 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-04-10 20:08:25 ----A---- C:\WINDOWS\system32\drivers\netbios.sys
2018-04-10 20:08:25 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-04-10 20:08:24 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-04-10 20:08:24 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2018-04-10 20:08:24 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2018-04-10 20:08:24 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2018-04-10 20:08:23 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-04-10 20:08:23 ----A---- C:\WINDOWS\system32\advapi32.dll
2018-04-10 20:08:22 ----A---- C:\WINDOWS\system32\drivers\vmbkmcl.sys
2018-04-10 20:08:22 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2018-04-10 20:08:22 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2018-04-10 20:08:21 ----A---- C:\WINDOWS\system32\wow64.dll
2018-04-10 20:08:21 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-04-10 20:08:21 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2018-04-10 20:08:21 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-04-10 20:08:20 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-04-10 20:08:20 ----A---- C:\WINDOWS\system32\msfeeds.dll
2018-04-10 20:08:19 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2018-04-10 20:08:19 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-04-10 20:08:19 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2018-04-10 20:08:19 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-04-10 20:08:19 ----A---- C:\WINDOWS\system32\dxtrans.dll
2018-04-10 20:08:18 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2018-04-10 20:08:18 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-04-10 20:08:18 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-04-10 20:08:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-04-10 20:08:17 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2018-04-10 20:08:17 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-04-10 20:08:17 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2018-04-10 20:08:17 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2018-04-10 20:08:17 ----A---- C:\WINDOWS\system32\fontsub.dll
2018-04-10 20:08:17 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2018-04-10 20:08:16 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2018-04-10 20:08:16 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2018-04-10 20:08:16 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-04-10 20:08:16 ----A---- C:\WINDOWS\system32\taskcomp.dll
2018-04-10 20:08:16 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2018-04-10 20:08:16 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2018-04-10 20:08:15 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2018-04-10 20:08:15 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2018-04-10 20:08:15 ----A---- C:\WINDOWS\system32\winhttp.dll
2018-04-10 20:08:15 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2018-04-10 20:08:15 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2018-04-10 20:08:15 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2018-04-10 20:08:15 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2018-04-10 20:08:15 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2018-04-10 20:08:15 ----A---- C:\WINDOWS\system32\drivers\bam.sys
2018-04-10 20:08:14 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-04-10 20:08:14 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2018-04-10 20:08:14 ----A---- C:\WINDOWS\system32\wifitask.exe
2018-04-10 20:08:14 ----A---- C:\WINDOWS\system32\wcncsvc.dll
2018-04-10 20:08:14 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2018-04-10 20:08:14 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-04-10 20:08:14 ----A---- C:\WINDOWS\system32\rasapi32.dll
2018-04-10 20:08:14 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-04-10 20:08:14 ----A---- C:\WINDOWS\system32\davclnt.dll
2018-04-10 20:08:13 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-04-10 20:08:13 ----A---- C:\WINDOWS\system32\InputService.dll
2018-04-10 20:08:13 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-04-10 20:08:12 ----A---- C:\WINDOWS\system32\mqqm.dll
2018-04-10 20:08:12 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-04-10 20:08:11 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-04-10 20:08:11 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-04-10 20:08:11 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-04-10 20:08:10 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-04-10 20:08:10 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-04-10 20:08:09 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-04-10 20:08:08 ----A---- C:\WINDOWS\system32\webcheck.dll
2018-04-10 20:08:07 ----A---- C:\WINDOWS\system32\mshtmled.dll
2018-04-10 20:08:07 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-04-10 20:08:07 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-04-10 20:08:07 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2018-04-10 20:08:06 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2018-04-10 20:08:06 ----A---- C:\WINDOWS\system32\jscript.dll
2018-04-10 20:08:06 ----A---- C:\WINDOWS\system32\iepeers.dll
2018-04-10 20:08:05 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-04-10 20:08:05 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\drivers\RfxVmt.sys
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2018-04-10 20:08:05 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2018-04-10 20:08:04 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-04-10 20:08:04 ----A---- C:\WINDOWS\system32\dnsapi.dll
2018-04-10 20:08:04 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-04-10 20:08:03 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-04-10 20:08:03 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-04-10 20:08:03 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-04-10 20:08:02 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-04-10 20:08:02 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-04-10 20:08:01 ----A---- C:\WINDOWS\system32\UserDataService.dll
2018-04-10 20:08:01 ----A---- C:\WINDOWS\system32\Unistore.dll
2018-04-10 20:08:01 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-04-10 20:08:01 ----A---- C:\WINDOWS\system32\bisrv.dll
2018-04-10 20:08:00 ----A---- C:\WINDOWS\system32\schedsvc.dll
2018-04-10 20:08:00 ----A---- C:\WINDOWS\system32\PhoneService.dll
2018-04-10 20:08:00 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2018-04-10 20:07:59 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-04-10 20:07:58 ----A---- C:\WINDOWS\system32\usermgr.dll
2018-04-10 20:07:58 ----A---- C:\WINDOWS\system32\ole32.dll
2018-04-10 20:07:58 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-04-10 20:07:58 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2018-04-10 20:07:57 ----A---- C:\WINDOWS\system32\wininet.dll
2018-04-10 20:07:57 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2018-04-10 20:07:57 ----A---- C:\WINDOWS\system32\msIso.dll
2018-04-10 20:07:57 ----A---- C:\WINDOWS\system32\inetcomm.dll
2018-04-10 20:07:56 ----A---- C:\WINDOWS\system32\wwansvc.dll
2018-04-10 20:07:56 ----A---- C:\WINDOWS\system32\WebClnt.dll
2018-04-10 20:07:56 ----A---- C:\WINDOWS\system32\sysmain.dll
2018-04-10 20:07:56 ----A---- C:\WINDOWS\system32\NaturalAuth.dll
2018-04-10 20:07:55 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-04-10 20:07:55 ----A---- C:\WINDOWS\system32\wlansec.dll
2018-04-10 20:07:54 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-04-10 20:07:53 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-04-10 20:07:52 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-04-10 20:07:52 ----A---- C:\WINDOWS\system32\PeerDistSvc.dll
2018-04-10 20:07:52 ----A---- C:\WINDOWS\system32\drivers\mqac.sys
2018-04-10 20:07:51 ----A---- C:\WINDOWS\system32\p2psvc.dll
2018-04-10 20:07:50 ----A---- C:\WINDOWS\system32\SyncController.dll
2018-04-10 20:07:50 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-04-10 20:07:50 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-04-10 20:07:50 ----A---- C:\WINDOWS\system32\APHostService.dll
2018-04-10 20:07:49 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-04-10 20:07:49 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-04-10 20:07:49 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-04-10 20:07:45 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2018-04-10 20:07:45 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2018-04-10 20:07:44 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2018-04-10 20:07:44 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2018-04-10 20:07:44 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2018-04-10 20:07:43 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2018-04-10 20:07:43 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-04-10 20:07:43 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-04-10 20:07:42 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-04-10 20:07:42 ----A---- C:\WINDOWS\system32\pcalua.exe
2018-04-10 20:07:41 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-04-10 20:07:41 ----A---- C:\WINDOWS\system32\wuapi.dll
2018-04-10 20:07:41 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-04-10 20:07:41 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2018-04-10 20:07:41 ----A---- C:\WINDOWS\system32\iumdll.dll
2018-04-10 20:07:41 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-04-10 20:07:40 ----A---- C:\WINDOWS\system32\nlasvc.dll
2018-04-10 20:07:40 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-04-10 20:07:40 ----A---- C:\WINDOWS\system32\icfupgd.dll
2018-04-10 20:07:39 ----A---- C:\WINDOWS\system32\twinui.dll
2018-04-10 20:07:39 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-04-10 20:07:38 ----A---- C:\WINDOWS\system32\winlogon.exe
2018-04-10 20:07:38 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-04-10 20:07:38 ----A---- C:\WINDOWS\system32\LogonController.dll
2018-04-10 20:07:37 ----A---- C:\WINDOWS\system32\SettingSync.dll
2018-04-10 20:07:37 ----A---- C:\WINDOWS\system32\localspl.dll
2018-04-10 20:07:37 ----A---- C:\WINDOWS\system32\appinfo.dll
2018-04-10 20:07:36 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2018-04-10 20:07:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2018-04-10 20:07:35 ----A---- C:\WINDOWS\system32\shell32.dll
2018-04-10 20:07:34 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-04-10 20:07:33 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-04-10 20:07:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-04-10 20:07:31 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-04-10 20:07:28 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-04-10 20:07:27 ----A---- C:\WINDOWS\system32\VSSVC.exe
2018-04-10 20:07:27 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-04-10 20:07:15 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-04-10 20:07:15 ----A---- C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-04-10 20:07:15 ----A---- C:\WINDOWS\system32\SensorService.dll
2018-04-10 20:07:15 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-04-10 20:07:14 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-04-10 20:07:14 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-04-10 20:07:13 ----A---- C:\WINDOWS\system32\cdp.dll
2018-04-10 20:07:11 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-04-10 20:07:11 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-04-10 20:07:10 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-04-10 20:07:09 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-04-10 20:07:09 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-04-10 20:07:07 ----A---- C:\WINDOWS\system32\runexehelper.exe
2018-04-10 20:07:07 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2018-04-10 20:07:06 ----A---- C:\WINDOWS\system32\convertvhd.exe
2018-04-10 20:07:06 ----A---- C:\WINDOWS\system32\container.dll
2018-04-10 20:07:05 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2018-04-10 20:07:04 ----A---- C:\WINDOWS\system32\wscapi.dll
2018-04-10 20:07:04 ----A---- C:\WINDOWS\system32\systemreset.exe
2018-04-10 20:07:04 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2018-04-10 20:07:02 ----A---- C:\WINDOWS\system32\winresume.exe
2018-04-10 20:07:02 ----A---- C:\WINDOWS\system32\winload.exe
2018-04-10 20:07:02 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-04-10 20:07:00 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2018-04-10 20:07:00 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-04-10 20:07:00 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-04-10 20:07:00 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-04-10 20:07:00 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-04-10 20:06:59 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-04-10 20:06:59 ----A---- C:\WINDOWS\system32\invagent.dll
2018-04-10 20:06:59 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-04-10 20:06:59 ----A---- C:\WINDOWS\system32\devinv.dll
2018-04-10 20:06:59 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2018-04-10 20:06:59 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-04-10 20:06:59 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-04-10 20:06:59 ----A---- C:\WINDOWS\system32\aepic.dll
2018-04-10 20:06:59 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-04-10 20:06:59 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-04-10 20:06:58 ----A---- C:\WINDOWS\system32\reseteng.dll
2018-04-10 20:06:58 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2018-04-10 20:06:58 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2018-04-10 20:06:58 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-04-10 20:06:57 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-04-10 20:06:56 ----A---- C:\WINDOWS\system32\usocore.dll
2018-04-10 20:06:56 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-04-10 20:06:56 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-04-10 20:06:56 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-04-10 20:06:56 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-04-10 20:06:56 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2018-04-10 20:06:56 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-04-10 20:06:56 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-04-10 20:06:55 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-04-10 20:06:55 ----A---- C:\WINDOWS\system32\FntCache.dll
2018-04-10 20:06:55 ----A---- C:\WINDOWS\system32\atmfd.dll
2018-04-10 20:06:55 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2018-04-10 20:06:54 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2018-04-10 20:06:54 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2018-04-10 20:06:53 ----A---- C:\WINDOWS\system32\skci.dll
2018-04-10 20:06:53 ----A---- C:\WINDOWS\system32\ci.dll
2018-04-10 20:06:53 ----A---- C:\WINDOWS\system32\BingMaps.dll
2018-04-10 20:06:52 ----A---- C:\WINDOWS\system32\mos.dll
2018-04-10 20:06:50 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2018-04-10 20:06:50 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2018-04-10 20:06:50 ----A---- C:\WINDOWS\system32\spoolsv.exe
2018-04-10 20:06:50 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2018-04-10 20:06:50 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2018-04-10 20:06:50 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2018-04-10 20:06:50 ----A---- C:\WINDOWS\system32\AppVClientPS.dll
2018-04-10 20:06:50 ----A---- C:\WINDOWS\system32\AppVClient.exe
2018-04-10 20:06:48 ----A---- C:\WINDOWS\system32\msra.exe
2018-04-10 20:06:47 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2018-04-10 20:06:47 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-04-10 20:06:47 ----A---- C:\WINDOWS\system32\ieui.dll
2018-04-10 20:06:46 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2018-04-10 20:06:45 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2018-04-10 20:06:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2018-04-10 20:06:44 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2018-04-10 20:06:44 ----A---- C:\WINDOWS\system32\MapRouter.dll
2018-04-10 20:06:43 ----A---- C:\WINDOWS\system32\DWrite.dll
2018-04-10 20:06:41 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2018-04-10 20:06:40 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2018-04-10 20:06:40 ----A---- C:\WINDOWS\system32\sspicli.dll
2018-04-10 20:06:39 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2018-04-10 20:06:38 ----A---- C:\WINDOWS\system32\qmgr.dll
2018-04-10 20:06:37 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2018-04-10 20:06:36 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2018-04-10 20:06:35 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2018-04-10 20:06:35 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2018-04-10 20:06:34 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2018-04-10 20:06:34 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2018-04-10 20:06:33 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2018-04-10 20:06:32 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2018-04-10 20:06:32 ----A---- C:\WINDOWS\system32\racpldlg.dll
2018-04-10 20:06:32 ----A---- C:\WINDOWS\system32\propsys.dll
2018-04-10 20:06:32 ----A---- C:\WINDOWS\system32\MapsStore.dll
2018-04-10 20:06:30 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2018-04-10 20:06:30 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2018-04-10 20:06:30 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2018-04-10 20:06:25 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2018-04-10 20:06:24 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-04-10 20:06:23 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2018-04-10 20:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2018-04-10 20:06:22 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2018-04-10 20:06:22 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2018-04-10 20:06:21 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2018-04-10 20:06:21 ----A---- C:\WINDOWS\system32\puiobj.dll
2018-04-10 20:06:21 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2018-04-10 20:06:20 ----A---- C:\WINDOWS\SYSWOW64\msvcp110_win.dll
2018-04-10 20:06:20 ----A---- C:\WINDOWS\system32\WinSCard.dll
2018-04-10 20:06:20 ----A---- C:\WINDOWS\system32\vpnike.dll
2018-04-10 20:06:19 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2018-04-10 20:06:19 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2018-04-10 20:06:19 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2018-04-10 20:06:19 ----A---- C:\WINDOWS\system32\RTWorkQ.dll
2018-04-10 20:06:19 ----A---- C:\WINDOWS\system32\ninput.dll
2018-04-10 20:06:18 ----A---- C:\WINDOWS\SYSWOW64\RTWorkQ.dll
2018-04-10 20:06:18 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2018-04-10 20:06:18 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-04-10 20:06:17 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2018-04-10 20:06:17 ----A---- C:\WINDOWS\system32\win32spl.dll
2018-04-10 20:06:17 ----A---- C:\WINDOWS\system32\newdev.dll
2018-04-10 20:06:17 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2018-04-10 20:06:16 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2018-04-10 20:06:16 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2018-04-10 20:06:16 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2018-04-10 20:06:16 ----A---- C:\WINDOWS\system32\DolbyHrtfEnc.dll
2018-04-10 20:06:16 ----A---- C:\WINDOWS\system32\basecsp.dll
2018-04-10 20:06:15 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2018-04-10 20:06:15 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2018-04-10 20:06:15 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2018-04-10 20:06:15 ----A---- C:\WINDOWS\system32\wwapi.dll
2018-04-10 20:06:15 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2018-04-10 20:06:15 ----A---- C:\WINDOWS\system32\NMAA.dll
2018-04-10 20:06:15 ----A---- C:\WINDOWS\system32\moshostcore.dll
2018-04-10 20:06:15 ----A---- C:\WINDOWS\system32\LsaIso.exe
2018-04-10 20:06:15 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2018-04-10 20:06:15 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2018-04-10 20:06:15 ----A---- C:\WINDOWS\system32\drivers\pcw.sys
2018-04-10 20:06:15 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2018-04-10 20:06:15 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2018-04-10 20:06:14 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2018-04-10 20:06:14 ----A---- C:\WINDOWS\system32\TtlsExt.dll
2018-04-10 20:06:14 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2018-04-10 20:06:14 ----A---- C:\WINDOWS\system32\IumSdk.dll
2018-04-10 20:06:14 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2018-04-10 20:06:14 ----A---- C:\WINDOWS\system32\drivers\winhv.sys
2018-04-10 20:06:14 ----A---- C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
2018-04-10 20:06:14 ----A---- C:\WINDOWS\system32\drivers\vmstorfl.sys
2018-04-10 20:06:14 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2018-04-10 20:06:14 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2018-04-10 20:06:13 ----A---- C:\WINDOWS\system32\vertdll.dll
2018-04-10 20:06:13 ----A---- C:\WINDOWS\system32\SDFHost.dll
2018-04-10 20:06:13 ----A---- C:\WINDOWS\system32\rmclient.dll
2018-04-10 20:06:13 ----A---- C:\WINDOWS\system32\msvcp110_win.dll
2018-04-10 20:06:13 ----A---- C:\WINDOWS\system32\logoncli.dll
2018-04-10 20:06:13 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2018-04-10 20:06:13 ----A---- C:\WINDOWS\system32\iumbase.dll
2018-04-10 20:06:13 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2018-04-10 20:06:13 ----A---- C:\WINDOWS\system32\drivers\vdrvroot.sys
2018-04-10 20:06:13 ----A---- C:\WINDOWS\system32\drivers\storvsc.sys
2018-04-10 20:06:13 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2018-04-10 20:06:12 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2018-04-10 20:06:12 ----A---- C:\WINDOWS\SYSWOW64\wshhyperv.dll
2018-04-10 20:06:12 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2018-04-10 20:06:12 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2018-04-10 20:06:12 ----A---- C:\WINDOWS\system32\wlanapi.dll
2018-04-10 20:06:12 ----A---- C:\WINDOWS\system32\vmbuspipe.dll
2018-04-10 20:06:12 ----A---- C:\WINDOWS\system32\icm32.dll
2018-04-10 20:06:12 ----A---- C:\WINDOWS\system32\hvhostsvc.dll
2018-04-10 20:06:12 ----A---- C:\WINDOWS\system32\gpapi.dll
2018-04-10 20:06:11 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2018-04-10 20:06:11 ----A---- C:\WINDOWS\system32\wshhyperv.dll
2018-04-10 20:06:11 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2018-04-10 20:06:11 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2018-04-10 20:06:11 ----A---- C:\WINDOWS\system32\drivers\fs_rec.sys
2018-04-10 20:06:10 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2018-04-10 20:06:10 ----A---- C:\WINDOWS\system32\scksp.dll
2018-04-10 20:06:10 ----A---- C:\WINDOWS\system32\puiapi.dll
2018-04-10 20:06:10 ----A---- C:\WINDOWS\system32\mscms.dll
2018-04-10 20:06:10 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2018-04-10 20:06:10 ----A---- C:\WINDOWS\system32\certprop.dll
2018-04-10 20:06:09 ----A---- C:\WINDOWS\system32\printfilterpipelineprxy.dll
2018-04-10 20:06:09 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2018-04-10 20:06:09 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2018-04-10 20:06:09 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2018-04-10 20:06:08 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2018-04-10 20:06:08 ----A---- C:\WINDOWS\SYSWOW64\wlgpclnt.dll
2018-04-10 20:06:08 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2018-04-10 20:06:08 ----A---- C:\WINDOWS\system32\wudriver.dll
2018-04-10 20:06:08 ----A---- C:\WINDOWS\system32\gpsvc.dll
2018-04-10 20:06:08 ----A---- C:\WINDOWS\system32\adhsvc.dll
2018-04-10 20:06:07 ----A---- C:\WINDOWS\SYSWOW64\wsnmp32.dll
2018-04-10 20:06:07 ----A---- C:\WINDOWS\system32\wlgpclnt.dll
2018-04-10 20:06:07 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2018-04-10 20:06:07 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2018-04-10 20:06:07 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2018-04-10 20:06:07 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2018-04-10 20:06:06 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2018-04-10 20:06:05 ----A---- C:\WINDOWS\system32\wups.dll
2018-04-10 20:06:05 ----A---- C:\WINDOWS\system32\wsnmp32.dll
2018-04-10 20:06:05 ----A---- C:\WINDOWS\system32\tcpmon.dll
2018-04-10 20:06:05 ----A---- C:\WINDOWS\system32\imgutil.dll
2018-04-10 20:06:05 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2018-04-10 20:06:05 ----A---- C:\WINDOWS\system32\drivers\storqosflt.sys
2018-04-10 20:06:05 ----A---- C:\WINDOWS\system32\drivers\msfs.sys
2018-04-10 20:06:04 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-04-10 20:06:04 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2018-04-10 20:06:04 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2018-04-10 20:06:04 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2018-04-10 20:06:04 ----A---- C:\WINDOWS\system32\drivers\ndisuio.sys
2018-04-10 20:06:04 ----A---- C:\WINDOWS\system32\drivers\lltdio.sys
2018-04-10 20:06:03 ----A---- C:\WINDOWS\system32\TtlsCfg.dll
2018-04-10 20:06:03 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2018-04-10 20:06:03 ----A---- C:\WINDOWS\system32\drivers\rdpbus.sys
2018-04-10 20:06:03 ----A---- C:\WINDOWS\system32\drivers\dmvsc.sys
2018-04-10 20:06:02 ----A---- C:\WINDOWS\system32\drivers\irda.sys
2018-04-10 20:06:02 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2018-04-10 20:06:01 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-04-10 20:06:01 ----A---- C:\WINDOWS\system32\ncbservice.dll
2018-04-10 20:06:01 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-04-10 20:06:01 ----A---- C:\WINDOWS\system32\drivers\Synth3dVsc.sys
2018-04-10 20:06:00 ----A---- C:\WINDOWS\SYSWOW64\TtlsCfg.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\SYSWOW64\compstui.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\system32\wscsvc.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\system32\wfdprov.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\system32\TtlsAuth.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\system32\occache.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\system32\NetDriverInstall.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\system32\compstui.dll
2018-04-10 20:06:00 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2018-04-10 20:05:59 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2018-04-10 20:05:59 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2018-04-10 20:05:59 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2018-04-10 20:05:59 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2018-04-10 20:05:59 ----A---- C:\WINDOWS\system32\WcnEapPeerProxy.dll
2018-04-10 20:05:59 ----A---- C:\WINDOWS\system32\WcnEapAuthProxy.dll
2018-04-10 20:05:59 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2018-04-10 20:05:59 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2018-04-10 20:05:59 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2018-04-10 20:05:59 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2018-04-10 20:05:59 ----A---- C:\WINDOWS\system32\drivers\rasacd.sys
2018-04-10 20:05:59 ----A---- C:\WINDOWS\system32\drivers\HyperVideo.sys
2018-04-10 20:05:59 ----A---- C:\WINDOWS\system32\drivers\hyperkbd.sys
2018-04-10 20:05:58 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2018-04-10 20:05:58 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2018-04-10 20:05:58 ----A---- C:\WINDOWS\system32\url.dll
2018-04-10 20:05:58 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2018-04-10 20:05:58 ----A---- C:\WINDOWS\system32\drivers\vmgencounter.sys
2018-04-10 20:05:58 ----A---- C:\WINDOWS\system32\drivers\beep.sys
2018-04-10 20:05:58 ----A---- C:\WINDOWS\system32\appidtel.exe
2018-04-10 20:05:57 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2018-04-10 20:05:57 ----A---- C:\WINDOWS\system32\jsproxy.dll
2018-04-10 20:05:56 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2018-04-10 20:05:56 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2018-04-10 20:05:56 ----A---- C:\WINDOWS\system32\drivers\vmgid.sys
2018-04-10 20:05:56 ----A---- C:\WINDOWS\system32\drivers\VMBusHID.sys
2018-04-10 20:05:55 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2018-04-10 20:05:55 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2018-04-10 20:05:55 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2018-04-10 20:05:55 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2018-04-10 20:05:55 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2018-04-10 20:05:55 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2018-04-10 20:05:55 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2018-04-10 20:05:55 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2018-04-10 20:05:55 ----A---- C:\WINDOWS\system32\iesysprep.dll
2018-04-10 20:05:55 ----A---- C:\WINDOWS\system32\drivers\vms3cap.sys
2018-04-10 20:05:55 ----A---- C:\WINDOWS\system32\drivers\null.sys
2018-04-10 20:05:54 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2018-04-10 20:05:54 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2018-04-10 20:05:54 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2018-04-10 20:05:54 ----A---- C:\WINDOWS\system32\wextract.exe
2018-04-10 20:05:54 ----A---- C:\WINDOWS\system32\pngfilt.dll
2018-04-10 20:05:54 ----A---- C:\WINDOWS\system32\inseng.dll
2018-04-10 20:05:54 ----A---- C:\WINDOWS\system32\iesetup.dll
2018-04-10 20:05:54 ----A---- C:\WINDOWS\system32\drivers\gpuenergydrv.sys
2018-04-10 20:05:53 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-04-10 20:05:53 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2018-04-10 20:05:53 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2018-04-10 20:05:53 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2018-04-10 20:05:53 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2018-04-10 20:05:53 ----A---- C:\WINDOWS\system32\tzres.dll
2018-04-10 20:05:53 ----A---- C:\WINDOWS\system32\licmgr10.dll
2018-04-10 20:05:53 ----A---- C:\WINDOWS\system32\iexpress.exe
2018-04-10 20:05:53 ----A---- C:\WINDOWS\system32\iernonce.dll
2018-04-10 20:05:52 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2018-04-10 20:05:52 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2018-04-10 20:05:52 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2018-04-10 20:05:52 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2018-04-10 20:05:52 ----A---- C:\WINDOWS\system32\mshta.exe
2018-04-10 20:05:52 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2018-04-10 20:05:52 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2018-04-10 20:05:51 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2018-04-10 20:05:51 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2018-04-10 20:05:51 ----A---- C:\WINDOWS\system32\kerberos.dll
2018-04-10 20:05:50 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2018-04-10 20:05:50 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2018-04-10 20:05:50 ----A---- C:\WINDOWS\system32\WSDMon.dll
2018-04-10 20:05:50 ----A---- C:\WINDOWS\system32\srvsvc.dll
2018-04-10 20:05:50 ----A---- C:\WINDOWS\system32\SessEnv.dll
2018-04-10 20:05:50 ----A---- C:\WINDOWS\system32\icsvcext.dll
2018-04-10 20:05:50 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2018-04-10 20:05:50 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-04-10 20:05:49 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2018-04-10 20:05:49 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2018-04-10 20:05:49 ----A---- C:\WINDOWS\system32\usbmon.dll
2018-04-10 20:05:49 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2018-04-10 20:05:48 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2018-04-10 20:05:48 ----A---- C:\WINDOWS\system32\wkssvc.dll
2018-04-10 20:05:48 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-04-10 20:05:48 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2018-04-10 20:05:48 ----A---- C:\WINDOWS\system32\psmsrv.dll
2018-04-10 20:05:48 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2018-04-10 20:05:48 ----A---- C:\WINDOWS\system32\icsvc.dll
2018-04-10 20:05:48 ----A---- C:\WINDOWS\system32\dssvc.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\SYSWOW64\PimIndexMaintenanceClient.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\SYSWOW64\fdPnp.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\system32\wc_storage.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\system32\offreg.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\system32\efslsaext.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\system32\dot3svc.dll
2018-04-10 20:05:47 ----A---- C:\WINDOWS\system32\BrokerLib.dll
2018-04-10 20:05:46 ----A---- C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2018-04-10 20:05:46 ----A---- C:\WINDOWS\system32\LicenseManagerSvc.dll
2018-04-10 20:05:46 ----A---- C:\WINDOWS\system32\keyiso.dll
2018-04-10 20:05:46 ----A---- C:\WINDOWS\system32\httpprxm.dll
2018-04-10 20:05:46 ----A---- C:\WINDOWS\system32\hlink.dll
2018-04-10 20:05:46 ----A---- C:\WINDOWS\system32\fdPnp.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\SYSWOW64\wmiprop.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\SYSWOW64\perfhost.exe
2018-04-10 20:05:45 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\SYSWOW64\msdtcprx.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\SYSWOW64\keyiso.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\SYSWOW64\fdWNet.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\system32\wmiprop.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\system32\vmictimeprovider.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\system32\sysntfy.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\system32\nsisvc.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\system32\nrpsrv.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\system32\fdWNet.dll
2018-04-10 20:05:45 ----A---- C:\WINDOWS\system32\efssvc.dll
2018-04-10 20:05:44 ----A---- C:\WINDOWS\system32\msrating.dll

======List of files/folders modified in the last 1 month======

2018-05-09 17:50:52 ----D---- C:\WINDOWS\Temp
2018-05-09 17:50:52 ----D---- C:\Program Files\trend micro
2018-05-09 17:45:33 ----D---- C:\WINDOWS\Prefetch
2018-05-09 17:42:18 ----D---- C:\WINDOWS\system32\config
2018-05-09 17:40:55 ----D---- C:\WINDOWS\system32\MRT
2018-05-09 17:40:45 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-05-09 17:40:32 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-05-09 17:40:17 ----D---- C:\WINDOWS\WinSxS
2018-05-09 17:40:17 ----D---- C:\WINDOWS\SysWOW64
2018-05-09 17:40:11 ----D---- C:\WINDOWS\system32\catroot2
2018-05-09 17:39:57 ----SHD---- C:\WINDOWS\Installer
2018-05-09 17:39:40 ----D---- C:\ProgramData\Microsoft Help
2018-05-09 17:38:19 ----D---- C:\Program Files\Common Files\microsoft shared
2018-05-09 17:33:53 ----D---- C:\WINDOWS\CbsTemp
2018-05-09 17:17:36 ----D---- C:\WINDOWS\system32\Tasks
2018-05-09 17:16:10 ----D---- C:\ProgramData\Kaspersky Lab
2018-05-09 17:15:49 ----D---- C:\ProgramData\NVIDIA
2018-05-09 17:15:28 ----D---- C:\WINDOWS\Logs
2018-05-09 17:15:27 ----SHD---- C:\System Volume Information
2018-05-09 17:15:27 ----D---- C:\Windows
2018-05-09 17:14:16 ----D---- C:\WINDOWS\system32\sru
2018-05-09 17:12:06 ----D---- C:\AdwCleaner
2018-05-09 14:50:37 ----D---- C:\WINDOWS\DeliveryOptimization
2018-05-09 14:39:43 ----HD---- C:\Program Files\WindowsApps
2018-05-09 14:38:39 ----D---- C:\WINDOWS\AppReadiness
2018-05-08 12:20:09 ----D---- C:\WINDOWS\system32\SleepStudy
2018-05-08 06:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2018-05-08 02:26:21 ----RD---- C:\WINDOWS\Microsoft.NET
2018-04-25 14:19:37 ----D---- C:\ProgramData\boost_interprocess
2018-04-21 08:30:33 ----D---- C:\Program Files (x86)\Java
2018-04-21 08:30:13 ----D---- C:\Program Files (x86)\Common Files
2018-04-21 08:28:54 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2018-04-18 18:49:11 ----D---- C:\WINDOWS\System32
2018-04-18 18:49:11 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-04-17 16:55:12 ----D---- C:\WINDOWS\Minidump
2018-04-15 21:03:38 ----D---- C:\WINDOWS\INF
2018-04-15 13:43:25 ----D---- C:\WINDOWS\system32\DriverStore
2018-04-14 11:31:01 ----D---- C:\WINDOWS\rescache
2018-04-14 11:28:18 ----RSD---- C:\WINDOWS\assembly
2018-04-12 14:28:59 ----D---- C:\WINDOWS\debug
2018-04-10 20:46:34 ----D---- C:\WINDOWS\system32\drivers
2018-04-10 20:43:16 ----SD---- C:\WINDOWS\SYSWOW64\F12
2018-04-10 20:43:16 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-04-10 20:43:16 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-04-10 20:43:10 ----SD---- C:\WINDOWS\system32\F12
2018-04-10 20:43:10 ----D---- C:\WINDOWS\system32\migration
2018-04-10 20:43:10 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-04-10 20:43:10 ----D---- C:\WINDOWS\system32\cs-CZ
2018-04-10 20:43:10 ----D---- C:\WINDOWS\system32\Boot
2018-04-10 20:43:10 ----D---- C:\WINDOWS\system32\appraiser
2018-04-10 20:43:02 ----D---- C:\WINDOWS\ShellExperiences
2018-04-10 20:43:02 ----D---- C:\WINDOWS\apppatch
2018-04-10 20:43:02 ----D---- C:\Program Files\internet explorer
2018-04-10 20:43:02 ----D---- C:\Program Files (x86)\Internet Explorer
2018-04-10 20:43:01 ----D---- C:\WINDOWS\system32\CodeIntegrity
2018-04-10 20:15:28 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 cm_km_w;Kaspersky Lab Crypto Module (FDE PDK); C:\WINDOWS\system32\DRIVERS\cm_km_w.sys [2015-07-03 247016]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2016-03-24 478392]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2017-09-30 293272]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-03-30 59808]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-09-29 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-03-30 8192]
R1 KLHK;Kaspersky Lab service driver; C:\WINDOWS\system32\DRIVERS\klhk.sys [2016-05-26 238000]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2016-05-26 834992]
R1 KLIM6;@oem1.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2016-05-26 49240]
R1 klpd;klpd; C:\WINDOWS\system32\DRIVERS\klpd.sys [2015-07-03 24944]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2016-03-24 77680]
R1 Klwtp;Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [2016-03-24 89272]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2015-10-08 190648]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-02-10 385536]
R2 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2018-03-01 226032]
R2 kldisk;kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [2016-05-26 64368]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-09-29 43520]
R2 npf;NetGroup Packet Filter Driver; \??\C:\WINDOWS\system32\drivers\npf.sys [2017-08-03 36600]
R2 speedfan;speedfan; \??\C:\WINDOWS\SysWoW64\speedfan.sys [2012-12-29 28664]
R3 klflt;Kaspersky Lab Kernel DLL; C:\WINDOWS\system32\DRIVERS\klflt.sys [2015-07-03 159960]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2016-03-24 49008]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2016-03-24 48504]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2018-03-30 176128]
R3 MTsensor;@oem4.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2013-05-17 17280]
R3 NVHDA;@oem36.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-11-09 233904]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95d88c9d04436846\nvlddmkm.sys [2018-03-16 17526688]
R3 NVNET;@netnvm64.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\System32\drivers\nvmf6264.sys [2017-09-29 344192]
R3 nvvad_WaveExtensible;@oem3.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2018-03-16 59240]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2012-07-27 29616]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-09-29 123800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-09-29 103320]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-09-29 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-09-29 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2017-09-30 126872]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2017-09-30 158616]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2017-09-30 143768]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-29 39424]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-09-29 122368]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-09-29 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-09-29 50584]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-03-30 73120]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-09-29 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-09-29 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-09-29 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-03-30 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-09-29 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-09-29 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-09-29 936856]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-09-30 56216]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2017-02-26 173472]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-02-09 83984]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 AVP15.0.2;Služba Kaspersky Anti-Virus 15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [2015-07-03 194000]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CDPUserSvc_465f7;Uživatelská služba platformy připojených zařízení_465f7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2017-09-30 26112]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2018-03-16 464272]
R2 OneSyncSvc_465f7;Hostitel synchronizace_465f7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 OOCleverCache;O&O CleverCache; C:\Program Files\OO Software\CleverCache\ooccag.exe [2010-12-08 850760]
R2 OODefragAgent;O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2017-10-19 1733696]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-03-01 519152]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
S2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2018-03-16 469952]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc_465f7;Tok zařízení_465f7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-09-29 85504]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-12-10 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-13 136120]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService_465f7;Služba zasílání zpráv_465f7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-04-11 185528]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PimIndexMaintenanceSvc_465f7;Data kontaktů_465f7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc_465f7;PrintWorkflow_465f7; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-12-10 4329952]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-09-29 1288704]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2018-03-30 956416]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2018-03-30 819104]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-09-29 52856]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]

-----------------EOF-----------------
Obrázek

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola.

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Odpovědět