Prosim o preventivku, bratr klikl na nejakou reklamu
Napsal: 26 pro 2018 22:23
Dobrý den, prosil bych o kontrolu logu, bratr kliknul na nějakou reklamu. Žadný problém z PC to nezpůsobilo a MBAM taky nic nenasel, jen bych se chtěl ujistit, zda je opravdu vše vpořadku. děkuji. Jen si nejsem uplně jistý tou seznam lištičkou. Sice sem ji odintaloval, ale zdá se, že tam něco zůstalo.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Stanislav at 2018-12-26 22:20:51
Microsoft Windows 10 Pro
System drive C: has 41 GB (28%) free of 149 GB
Total RAM: 8084 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:20:52, on 26.12.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Program Files\trend micro\Stanislav.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://go.microsoft.com/fwlink/p/?Link ... id=UE01DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Discord] C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
O4 - HKCU\..\Run: [EpicGamesLauncher] "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Stanislav\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Stanislav\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atiesrxx.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Logitech Gaming Registry Service (LogiRegistryService) - Logitech Inc. - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 13 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 10934 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s gpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
c:\windows\system32\svchost.exe -k appmodel -p -s camsvc
"C:\WINDOWS\system32\nvvsvc.exe"
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s CscService
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
atieclxx
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
c:\windows\system32\svchost.exe -k netsvcs -p
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
dashost.exe {0ef26b80-f7dc-4ed0-bb50798eb8686bd4}
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
"C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe"
C:\WINDOWS\SysWOW64\PnkBstrB.exe
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
C:\WINDOWS\system32\mqsvc.exe
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
sihost.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"ctfmon.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
igfxEM.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s NgcCtnrSvc
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\WINDOWS\system32\AUDIODG.EXE 0x578
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe" -ServerName:Microsoft.MicrosoftOfficeHub.AppX6an27ssxm1kq22j0wm54a996rsgjh8an.mca
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
"C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized
"C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe"
"C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
"C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
"C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe"
"C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe" --type=gpu-process --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,19,20,23,26,40,71 --gpu-vendor-id=0x1002 --gpu-device-id=0x67df --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=25.20.14007.1000 --gpu-driver-date=10-19-2018 --gpu-secondary-vendor-ids=0x8086 --gpu-secondary-device-ids=0x0412 --service-request-channel-token=6A3017589EBE3D037E378575EB2C768E --mojo-platform-channel-handle=1568 /prefetch:2
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\AMD\CNext\CNext\amddvr.exe"
"C:\Program Files\AMD\CNext\CNext\amddvr.exe"
"C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe" --type=renderer --no-sandbox --primordial-pipe-token=BDAAD7A755FCB809AA9460E6644E9EFE --lang=cs --app-user-model-id=com.squirrel.Discord.Discord --app-path="C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\resources\app.asar" --node-integration=false --preload="C:\Users\Stanislav\AppData\Roaming\discord\0.0.301\modules\discord_desktop_core\core.asar\app\mainScreenPreload.js" --background-color=#2f3136 --enable-blink-features=EnumerateDevices,AudioOutputDevices --hidden-page --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=BDAAD7A755FCB809AA9460E6644E9EFE --renderer-client-id=6 --mojo-platform-channel-handle=2580 /prefetch:1
"C:\Program Files\AMD\CNext\CNext\amdow.exe" 4960
"C:\Program Files\AMD\CNext\CNext\amdow.exe" 6880
"C:/Program Files (x86)/Epic Games/Launcher/Engine/Binaries/Win64/UnrealCEFSubProcess.exe" --type=renderer --disable-gpu-compositing --no-sandbox --disable-databases --primordial-pipe-token=0E72EBA54662F46C4ECA287A161C87AC --lang=en-US --lang=en --locales-dir-path="C:/Program Files (x86)/Epic Games/Launcher/Engine/Binaries/ThirdParty/CEF3/Win64/Resources/locales" --log-file=C:/Users/Stanislav/AppData/Local/EpicGamesLauncher/Saved/Logs/cef3.log --log-severity=warning --product-version="EpicGamesLauncher/9.4.0-4657245+++Portal+Release-Next UnrealEngine/4.21.0-4657245+++Portal+Release-Next" --resources-dir-path="C:/Program Files (x86)/Epic Games/Launcher/Engine/Binaries/ThirdParty/CEF3/Win64/Resources" --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --disable-accelerated-video-decode --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=0E72EBA54662F46C4ECA287A161C87AC --renderer-client-id=2 --mojo-platform-channel-handle=2540 /prefetch:1
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe --overlay-host
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\rempl\sedsvc.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s XblAuthManager
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 752 756 764 8192 760
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Stanislav\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\update-S-1-5-21-3391450833-3303722570-559582778-1000.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
C:\WINDOWS\tasks\update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
=========Mozilla firefox=========
ProfilePath - C:\Users\Stanislav\AppData\Roaming\Mozilla\Firefox\Profiles\rel0zp6h.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.181.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Users\Stanislav\AppData\Roaming\Mozilla\Firefox\Profiles\rel0zp6h.default\extensions\
sko-extension@firma.seznam.cz
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-09-20 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-09-20 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
"egui"=C:\Program Files\ESET\ESET Security\ecmdS.exe [2018-12-13 177928]
"Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2017-10-20 17987704]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-01-27 16418560]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2018-11-26 3131680]
"Discord"=C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe [2018-04-30 57816920]
"EpicGamesLauncher"=C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [2018-12-14 35149712]
"cz.seznam.software.autoupdate"=C:\Users\Stanislav\AppData\Roaming\Seznam.cz\szninstall.exe -c []
"cz.seznam.software.szndesktop"=C:\Users\Stanislav\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-04-11 36352]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend]
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShadowPlay]
C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2018-11-26 3131680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB3MON]
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Lightshot"=C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [2017-04-11 225944]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"VIDC.FPS1"=frapsv64.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-12-26 21:39:33 ----A---- C:\WINDOWS\system32\drivers\MbamChameleon.sys
2018-12-26 21:39:18 ----A---- C:\WINDOWS\system32\drivers\mbae64.sys
2018-12-26 21:10:27 ----D---- C:\Users\Stanislav\AppData\Roaming\Nero
2018-12-26 21:09:17 ----D---- C:\ProgramData\Nero
2018-12-26 21:07:25 ----D---- C:\Program Files (x86)\Nero Free
2018-12-20 16:04:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-12-20 16:04:32 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-12-20 16:04:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-12-20 16:04:29 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-12-20 16:04:29 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-12-20 16:04:29 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-20 16:04:28 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2018-12-20 16:04:28 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-12-20 16:04:28 ----A---- C:\WINDOWS\system32\d2d1.dll
2018-12-20 16:04:28 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-20 16:04:27 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2018-12-20 16:04:27 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-12-20 16:04:27 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-12-20 16:04:27 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-20 16:04:26 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-12-20 16:04:26 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-12-20 16:04:26 ----A---- C:\WINDOWS\system32\winresume.exe
2018-12-20 16:04:26 ----A---- C:\WINDOWS\system32\winload.exe
2018-12-20 16:04:26 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-12-20 16:04:26 ----A---- C:\WINDOWS\system32\jscript.dll
2018-12-20 16:04:26 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-20 16:04:25 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2018-12-20 16:04:25 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-12-20 16:04:25 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2018-12-20 16:04:25 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-12-20 16:04:25 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2018-12-20 16:04:24 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-12-20 16:04:24 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-12-16 22:47:16 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2018-12-16 17:26:47 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-12-16 17:26:46 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-12-16 17:26:46 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2018-12-16 17:26:45 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-12-16 17:26:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2018-12-16 17:26:41 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2018-12-16 17:26:40 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-12-16 17:26:39 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-12-16 17:26:39 ----A---- C:\WINDOWS\system32\shell32.dll
2018-12-16 17:26:38 ----A---- C:\WINDOWS\system32\wininet.dll
2018-12-16 17:26:37 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-12-16 17:26:37 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-12-16 17:26:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-12-16 17:26:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-12-16 17:26:35 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-12-16 17:26:35 ----A---- C:\WINDOWS\system32\ClipUp.exe
2018-12-16 17:26:34 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2018-12-16 17:26:34 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-12-16 17:26:34 ----A---- C:\WINDOWS\system32\combase.dll
2018-12-16 17:26:33 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-12-16 17:26:33 ----A---- C:\WINDOWS\system32\sppobjs.dll
2018-12-16 17:26:32 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2018-12-16 17:26:32 ----A---- C:\WINDOWS\system32\cdp.dll
2018-12-16 17:26:31 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2018-12-16 17:26:31 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-12-16 17:26:31 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-12-16 17:26:31 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2018-12-16 17:26:30 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2018-12-16 17:26:30 ----A---- C:\WINDOWS\system32\wmp.dll
2018-12-16 17:26:30 ----A---- C:\WINDOWS\system32\mos.dll
2018-12-16 17:26:30 ----A---- C:\WINDOWS\system32\DWrite.dll
2018-12-16 17:26:30 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-12-16 17:26:29 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-12-16 17:26:29 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-12-16 17:26:29 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2018-12-16 17:26:29 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\SYSWOW64\xpsservices.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\twinui.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\tquery.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\rpcss.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\cdprt.dll
2018-12-16 17:26:26 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-12-16 17:26:26 ----A---- C:\WINDOWS\system32\msctf.dll
2018-12-16 17:26:26 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-12-16 17:26:26 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\system32\usocore.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\system32\OpcServices.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\system32\localspl.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2018-12-16 17:26:23 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\ole32.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\dosvc.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\bisrv.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\BingMaps.dll
2018-12-16 17:26:22 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-12-16 17:26:22 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-12-16 17:26:22 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2018-12-16 17:26:22 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2018-12-16 17:26:22 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-12-16 17:26:22 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-12-16 17:26:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\system32\FntCache.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-12-16 17:26:19 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\system32\lpasvc.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\schedsvc.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\schannel.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\nettrace.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2018-12-16 17:26:17 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\CPFilters.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\coml2.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\AcGenral.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\SYSWOW64\coml2.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\xpsservices.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\user32.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\ubpm.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\tdh.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\ShareHost.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\MapRouter.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\BthAvrcp.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\WinTypes.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\winhttp.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\Windows.Data.Activities.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\msxml3.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\dafBth.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\wlansec.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\nshwfp.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\NMAA.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\mf.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\nltest.exe
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-12-16 17:26:12 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2018-12-16 17:26:12 ----A---- C:\WINDOWS\system32\WWAHost.exe
2018-12-16 17:26:11 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-12-16 17:26:11 ----A---- C:\WINDOWS\system32\MapsStore.dll
2018-12-16 17:26:11 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-12-16 17:26:11 ----A---- C:\WINDOWS\system32\BthAvctpSvc.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\system32\wwansvc.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-12-16 17:26:09 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2018-12-16 17:26:09 ----A---- C:\WINDOWS\system32\wpx.dll
2018-12-16 17:26:09 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2018-12-16 17:26:09 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-12-16 17:26:09 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\psmsrv.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\officecsp.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\dnsapi.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\ci.dll
2018-12-16 17:26:07 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-12-16 17:26:07 ----A---- C:\WINDOWS\system32\sspicli.dll
2018-12-16 17:26:07 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2018-12-16 17:26:07 ----A---- C:\WINDOWS\system32\defragsvc.dll
2018-12-16 17:26:07 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\WinSCard.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\wer.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\osk.exe
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\ofdeploy.exe
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\ninput.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\eeprov.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\BTAGService.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\AppResolver.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\rmclient.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\mfps.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\advapi32.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\spacebridge.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\webio.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\wc_storage.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\wbengine.exe
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\vertdll.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\thumbcache.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\spacebridge.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\scrrun.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\rdpshell.exe
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\hal.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\dssvc.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\vhf.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\wisp.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\weretw.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\seclogon.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\rdpinit.exe
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\fontsub.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\drivers\mssecflt.sys
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\drivers\iorate.sys
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\dab.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\bthserv.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\atmfd.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\appsruprov.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\SYSWOW64\scecli.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeManagerObj.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\xbgmengine.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\offreg.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\msisip.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\moshostcore.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\lsass.exe
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\browser_broker.exe
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\bcdedit.exe
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVStreamMap.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVStreamingUX.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVNice.exe
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVDllSurrogate.exe
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\fdBth.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\wpnsruprov.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\t2embed.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\sspisrv.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\sppcext.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\scecli.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\prnntfy.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\mssprxy.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\mssph.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\fdBth.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\energyprov.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\drivers\ndiswan.sys
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\drivers\mmcss.sys
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2018-12-16 17:26:00 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2018-12-16 17:26:00 ----A---- C:\WINDOWS\system32\PhoneService.dll
2018-12-16 17:26:00 ----A---- C:\WINDOWS\system32\drivers\storqosflt.sys
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\winhttpcom.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\INETRES.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.SecureAssessment.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\utcutil.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\tzres.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\RMapi.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\msscntrs.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\INETRES.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\dusmtask.exe
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\dusmapi.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\domgmt.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\DataUsageHandlers.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\BthAvrcpAppSvc.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2018-12-14 17:24:29 ----D---- C:\Users\Stanislav\AppData\Roaming\Warner Bros. Interactive Entertainment
2018-12-08 20:33:59 ----D---- C:\Program Files (x86)\Epic Games
2018-12-06 14:00:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
2018-12-01 21:30:15 ----ASH---- C:\pagefile.sys
2018-12-01 18:20:16 ----D---- C:\Users\Stanislav\AppData\Roaming\Tencent
======List of files/folders modified in the last 1 month======
2018-12-26 22:20:51 ----D---- C:\Program Files\trend micro
2018-12-26 22:20:40 ----D---- C:\WINDOWS\System32
2018-12-26 22:20:40 ----D---- C:\WINDOWS\INF
2018-12-26 22:20:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-26 22:20:21 ----AD---- C:\WINDOWS\Temp
2018-12-26 22:16:28 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-12-26 22:16:06 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-12-26 22:15:17 ----D---- C:\ProgramData\NVIDIA
2018-12-26 22:14:34 ----D---- C:\WINDOWS\system32\sru
2018-12-26 22:11:29 ----D---- C:\Program Files (x86)\Steam
2018-12-26 22:09:44 ----RD---- C:\Program Files (x86)
2018-12-26 21:53:20 ----D---- C:\WINDOWS\system32\LogFiles
2018-12-26 21:52:43 ----SHD---- C:\Config.Msi
2018-12-26 21:51:58 ----D---- C:\WINDOWS\system32\catroot2
2018-12-26 21:40:39 ----D---- C:\WINDOWS\system32\drivers
2018-12-26 21:39:22 ----HD---- C:\ProgramData
2018-12-26 21:12:53 ----SHDC---- C:\WINDOWS\Installer
2018-12-26 21:12:06 ----SHD---- C:\System Volume Information
2018-12-26 21:11:14 ----D---- C:\WINDOWS\system32\config
2018-12-26 21:09:17 ----D---- C:\Program Files (x86)\Common Files
2018-12-26 21:09:12 ----D---- C:\WINDOWS\WinSxS
2018-12-26 21:09:05 ----D---- C:\WINDOWS\SysWOW64
2018-12-26 10:41:45 ----RD---- C:\WINDOWS\Microsoft.NET
2018-12-25 09:43:07 ----D---- C:\WINDOWS\system32\SleepStudy
2018-12-24 19:03:06 ----D---- C:\WINDOWS\Logs
2018-12-20 22:24:39 ----D---- C:\WINDOWS\TextInput
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\zu-ZA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\yo-NG
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\xh-ZA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\wo-SN
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\tn-ZA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\ti-ET
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\rw-RW
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\nso-ZA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\migration
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\ig-NG
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-12-20 22:24:34 ----D---- C:\WINDOWS\system32\Boot
2018-12-20 22:24:34 ----D---- C:\WINDOWS\bcastdvr
2018-12-20 22:24:32 ----D---- C:\WINDOWS\system32\DriverStore
2018-12-20 16:10:04 ----D---- C:\WINDOWS\CbsTemp
2018-12-19 11:54:25 ----D---- C:\WINDOWS\AppReadiness
2018-12-18 22:54:15 ----RD---- C:\WINDOWS\assembly
2018-12-18 15:22:27 ----HD---- C:\Program Files\WindowsApps
2018-12-16 22:57:32 ----D---- C:\WINDOWS\LiveKernelReports
2018-12-16 22:41:27 ----SD---- C:\WINDOWS\SYSWOW64\F12
2018-12-16 22:41:27 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-12-16 22:41:27 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-12-16 22:41:17 ----SD---- C:\WINDOWS\system32\F12
2018-12-16 22:41:17 ----SD---- C:\WINDOWS\system32\DiagSvcs
2018-12-16 22:41:17 ----D---- C:\WINDOWS\system32\ShellExperiences
2018-12-16 22:41:17 ----D---- C:\WINDOWS\system32\en-US
2018-12-16 22:41:17 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-12-16 22:41:17 ----D---- C:\WINDOWS\system32\cs-CZ
2018-12-16 22:41:07 ----D---- C:\WINDOWS\ShellExperiences
2018-12-16 22:41:07 ----D---- C:\WINDOWS\ShellComponents
2018-12-16 22:40:59 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-12-16 22:40:59 ----D---- C:\WINDOWS\apppatch
2018-12-16 17:35:42 ----D---- C:\WINDOWS\system32\MRT
2018-12-16 17:33:59 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-12-16 17:17:29 ----D---- C:\Program Files\rempl
2018-12-16 11:44:13 ----AD---- C:\Program Files (x86)\Battle.net
2018-12-14 19:12:04 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-14 19:12:04 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2018-12-14 16:26:04 ----D---- C:\Program Files (x86)\TopCD
2018-12-09 15:24:38 ----D---- C:\Users\Stanislav\AppData\Roaming\discord
2018-12-08 20:35:39 ----D---- C:\ProgramData\Epic
2018-12-06 14:00:27 ----D---- C:\WINDOWS\system32\Macromed
2018-12-06 14:00:23 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2018-12-01 18:20:24 ----RSD---- C:\WINDOWS\Fonts
2018-12-01 18:20:24 ----D---- C:\WINDOWS\twain_32
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2018-11-03 107896]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-04-11 645480]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-12-08 58168]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2018-12-08 304144]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2018-11-03 143448]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2018-11-03 188832]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2018-11-03 82304]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2018-11-03 109864]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-07-28 414720]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2018-11-03 50144]
R2 LGCoreTemp;Logitech CPU Core Tempurature; \??\C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [2015-06-21 14184]
R2 MBAMChameleon;MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [2018-12-26 200232]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-12-08 43008]
R2 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2018-04-12 178688]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atikmdag.sys [2018-10-25 47503976]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atikmpag.sys [2018-10-25 589920]
R3 AtiHDAudioService;@oem17.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2018-07-17 107496]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-10-20 7963632]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-01-27 4779776]
R3 IntcDAud;@oem54.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-05-12 481768]
R3 ladfGSS;@oem48.inf,%ladfGSS.SvcDesc%;Logitech USB Surround Filter Driver (LGS); C:\WINDOWS\system32\drivers\ladfGSS.sys [2017-10-20 45192]
R3 LGBusEnum;@oem15.inf,%LGBusEnum.SVCDESC%;Logitech Gaming Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\LGBusEnum.sys [2017-10-20 36496]
R3 LGJoyXlCore;@oem15.inf,%LGJoyXlCore.SVCDESC%;Logitech Translation Layer Driver (LGS); C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [2017-10-20 67736]
R3 LGVirHid;@oem50.inf,%LGVirHid.SVCDESC%;Logitech Gamepanel Virtual HID Device Driver; C:\WINDOWS\system32\drivers\LGVirHid.sys [2017-10-20 26008]
R3 MEIx64;@oem30.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-07-27 206496]
R3 rt640x64;@oem51.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-08-08 895256]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2018-02-19 15872]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-08-03 128920]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2018-04-12 127384]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2018-04-12 162712]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2018-04-12 143768]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-12-08 92688]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-12-20 108800]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-12-14 76088]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\WINDOWS\system32\drivers\nusb3hub.sys [2010-09-30 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\WINDOWS\system32\drivers\nusb3xhc.sys [2010-09-30 180736]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-07-28 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2015-05-27 13536]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atiesrxx.exe [2018-10-25 508000]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_4f796;CDPUserSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-12-13 2302160]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-04-11 16232]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2017-10-20 365040]
R2 isaHelperSvc;Intel(R) Security Assist Helper; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [2015-05-19 7680]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-07-06 223008]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2015-07-06 415520]
R2 LogiRegistryService;Logitech Gaming Registry Service; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [2017-10-20 225400]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2018-04-12 26112]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-09-13 937776]
R2 OneSyncSvc_4f796;OneSyncSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 osrss;@%systemroot%\system32\osrss.dll,-500; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2017-06-03 75064]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\syswow64\PnkBstrB.exe [2017-06-03 189248]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-07-28 760888]
R2 sedsvc;Windows Remediation Service; C:\Program Files\rempl\sedsvc.exe [2018-12-02 326336]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-07-28 43648]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe []
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
S2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-03-17 464440]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2018-11-20 3130184]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-06 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_4f796;BcastDVRUserService_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2018-12-19 8348064]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_4f796;BluetoothUserService_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 CaptureService_4f796;CaptureService_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2017-10-20 494056]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_4f796;DevicePickerUserSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_4f796;DevicesFlowUserSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-08-03 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-10-27 802432]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152]
S3 Intel(R) Security Assist;Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-05-19 335872]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-09-19 6347056]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_4f796;MessagingService_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-12-14 227792]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2018-11-20 2269504]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc_4f796;PimIndexMaintenanceSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_4f796;PrintWorkflowUserSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2018-07-28 4737448]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2018-07-28 826776]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-04-12 52832]
S4 Prime95 Service;Prime95 Service; C:\Program Files (x86)\Prime95\prime95.exe [2005-08-09 4333568]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Stanislav at 2018-12-26 22:20:51
Microsoft Windows 10 Pro
System drive C: has 41 GB (28%) free of 149 GB
Total RAM: 8084 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:20:52, on 26.12.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Program Files\trend micro\Stanislav.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://go.microsoft.com/fwlink/p/?Link ... id=UE01DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Discord] C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
O4 - HKCU\..\Run: [EpicGamesLauncher] "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Stanislav\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Stanislav\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atiesrxx.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Logitech Gaming Registry Service (LogiRegistryService) - Logitech Inc. - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 13 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 10934 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s gpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
c:\windows\system32\svchost.exe -k appmodel -p -s camsvc
"C:\WINDOWS\system32\nvvsvc.exe"
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s CscService
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
atieclxx
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
c:\windows\system32\svchost.exe -k netsvcs -p
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
dashost.exe {0ef26b80-f7dc-4ed0-bb50798eb8686bd4}
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
"C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe"
C:\WINDOWS\SysWOW64\PnkBstrB.exe
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
C:\WINDOWS\system32\mqsvc.exe
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
sihost.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"ctfmon.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
igfxEM.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s NgcCtnrSvc
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\WINDOWS\system32\AUDIODG.EXE 0x578
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe" -ServerName:Microsoft.MicrosoftOfficeHub.AppX6an27ssxm1kq22j0wm54a996rsgjh8an.mca
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
"C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized
"C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe"
"C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
"C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
"C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe"
"C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe" --type=gpu-process --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,19,20,23,26,40,71 --gpu-vendor-id=0x1002 --gpu-device-id=0x67df --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=25.20.14007.1000 --gpu-driver-date=10-19-2018 --gpu-secondary-vendor-ids=0x8086 --gpu-secondary-device-ids=0x0412 --service-request-channel-token=6A3017589EBE3D037E378575EB2C768E --mojo-platform-channel-handle=1568 /prefetch:2
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\AMD\CNext\CNext\amddvr.exe"
"C:\Program Files\AMD\CNext\CNext\amddvr.exe"
"C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe" --type=renderer --no-sandbox --primordial-pipe-token=BDAAD7A755FCB809AA9460E6644E9EFE --lang=cs --app-user-model-id=com.squirrel.Discord.Discord --app-path="C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\resources\app.asar" --node-integration=false --preload="C:\Users\Stanislav\AppData\Roaming\discord\0.0.301\modules\discord_desktop_core\core.asar\app\mainScreenPreload.js" --background-color=#2f3136 --enable-blink-features=EnumerateDevices,AudioOutputDevices --hidden-page --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=BDAAD7A755FCB809AA9460E6644E9EFE --renderer-client-id=6 --mojo-platform-channel-handle=2580 /prefetch:1
"C:\Program Files\AMD\CNext\CNext\amdow.exe" 4960
"C:\Program Files\AMD\CNext\CNext\amdow.exe" 6880
"C:/Program Files (x86)/Epic Games/Launcher/Engine/Binaries/Win64/UnrealCEFSubProcess.exe" --type=renderer --disable-gpu-compositing --no-sandbox --disable-databases --primordial-pipe-token=0E72EBA54662F46C4ECA287A161C87AC --lang=en-US --lang=en --locales-dir-path="C:/Program Files (x86)/Epic Games/Launcher/Engine/Binaries/ThirdParty/CEF3/Win64/Resources/locales" --log-file=C:/Users/Stanislav/AppData/Local/EpicGamesLauncher/Saved/Logs/cef3.log --log-severity=warning --product-version="EpicGamesLauncher/9.4.0-4657245+++Portal+Release-Next UnrealEngine/4.21.0-4657245+++Portal+Release-Next" --resources-dir-path="C:/Program Files (x86)/Epic Games/Launcher/Engine/Binaries/ThirdParty/CEF3/Win64/Resources" --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --disable-accelerated-video-decode --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=0E72EBA54662F46C4ECA287A161C87AC --renderer-client-id=2 --mojo-platform-channel-handle=2540 /prefetch:1
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe --overlay-host
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\rempl\sedsvc.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s XblAuthManager
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 752 756 764 8192 760
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Stanislav\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\update-S-1-5-21-3391450833-3303722570-559582778-1000.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
C:\WINDOWS\tasks\update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
=========Mozilla firefox=========
ProfilePath - C:\Users\Stanislav\AppData\Roaming\Mozilla\Firefox\Profiles\rel0zp6h.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.181.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Users\Stanislav\AppData\Roaming\Mozilla\Firefox\Profiles\rel0zp6h.default\extensions\
sko-extension@firma.seznam.cz
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-09-20 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-09-20 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
"egui"=C:\Program Files\ESET\ESET Security\ecmdS.exe [2018-12-13 177928]
"Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2017-10-20 17987704]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-01-27 16418560]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2018-11-26 3131680]
"Discord"=C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe [2018-04-30 57816920]
"EpicGamesLauncher"=C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [2018-12-14 35149712]
"cz.seznam.software.autoupdate"=C:\Users\Stanislav\AppData\Roaming\Seznam.cz\szninstall.exe -c []
"cz.seznam.software.szndesktop"=C:\Users\Stanislav\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-04-11 36352]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend]
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShadowPlay]
C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2018-11-26 3131680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB3MON]
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Lightshot"=C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [2017-04-11 225944]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"VIDC.FPS1"=frapsv64.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-12-26 21:39:33 ----A---- C:\WINDOWS\system32\drivers\MbamChameleon.sys
2018-12-26 21:39:18 ----A---- C:\WINDOWS\system32\drivers\mbae64.sys
2018-12-26 21:10:27 ----D---- C:\Users\Stanislav\AppData\Roaming\Nero
2018-12-26 21:09:17 ----D---- C:\ProgramData\Nero
2018-12-26 21:07:25 ----D---- C:\Program Files (x86)\Nero Free
2018-12-20 16:04:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-12-20 16:04:32 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-12-20 16:04:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-12-20 16:04:29 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-12-20 16:04:29 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-12-20 16:04:29 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-20 16:04:28 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2018-12-20 16:04:28 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-12-20 16:04:28 ----A---- C:\WINDOWS\system32\d2d1.dll
2018-12-20 16:04:28 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-20 16:04:27 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2018-12-20 16:04:27 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-12-20 16:04:27 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-12-20 16:04:27 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-20 16:04:26 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-12-20 16:04:26 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-12-20 16:04:26 ----A---- C:\WINDOWS\system32\winresume.exe
2018-12-20 16:04:26 ----A---- C:\WINDOWS\system32\winload.exe
2018-12-20 16:04:26 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-12-20 16:04:26 ----A---- C:\WINDOWS\system32\jscript.dll
2018-12-20 16:04:26 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-20 16:04:25 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2018-12-20 16:04:25 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-12-20 16:04:25 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2018-12-20 16:04:25 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-12-20 16:04:25 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2018-12-20 16:04:24 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-12-20 16:04:24 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-12-16 22:47:16 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2018-12-16 17:26:47 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-12-16 17:26:46 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-12-16 17:26:46 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2018-12-16 17:26:45 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-12-16 17:26:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2018-12-16 17:26:41 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2018-12-16 17:26:40 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-12-16 17:26:39 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-12-16 17:26:39 ----A---- C:\WINDOWS\system32\shell32.dll
2018-12-16 17:26:38 ----A---- C:\WINDOWS\system32\wininet.dll
2018-12-16 17:26:37 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-12-16 17:26:37 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-12-16 17:26:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-12-16 17:26:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-12-16 17:26:35 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-12-16 17:26:35 ----A---- C:\WINDOWS\system32\ClipUp.exe
2018-12-16 17:26:34 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2018-12-16 17:26:34 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-12-16 17:26:34 ----A---- C:\WINDOWS\system32\combase.dll
2018-12-16 17:26:33 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-12-16 17:26:33 ----A---- C:\WINDOWS\system32\sppobjs.dll
2018-12-16 17:26:32 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2018-12-16 17:26:32 ----A---- C:\WINDOWS\system32\cdp.dll
2018-12-16 17:26:31 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2018-12-16 17:26:31 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-12-16 17:26:31 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-12-16 17:26:31 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2018-12-16 17:26:30 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2018-12-16 17:26:30 ----A---- C:\WINDOWS\system32\wmp.dll
2018-12-16 17:26:30 ----A---- C:\WINDOWS\system32\mos.dll
2018-12-16 17:26:30 ----A---- C:\WINDOWS\system32\DWrite.dll
2018-12-16 17:26:30 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-12-16 17:26:29 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-12-16 17:26:29 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-12-16 17:26:29 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2018-12-16 17:26:29 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-12-16 17:26:28 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\SYSWOW64\xpsservices.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\twinui.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\tquery.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\rpcss.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-12-16 17:26:27 ----A---- C:\WINDOWS\system32\cdprt.dll
2018-12-16 17:26:26 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-12-16 17:26:26 ----A---- C:\WINDOWS\system32\msctf.dll
2018-12-16 17:26:26 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-12-16 17:26:26 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\system32\usocore.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\system32\OpcServices.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-12-16 17:26:25 ----A---- C:\WINDOWS\system32\localspl.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-12-16 17:26:24 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2018-12-16 17:26:23 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\ole32.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\dosvc.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\bisrv.dll
2018-12-16 17:26:23 ----A---- C:\WINDOWS\system32\BingMaps.dll
2018-12-16 17:26:22 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-12-16 17:26:22 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-12-16 17:26:22 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2018-12-16 17:26:22 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2018-12-16 17:26:22 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-12-16 17:26:22 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-12-16 17:26:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\system32\FntCache.dll
2018-12-16 17:26:21 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2018-12-16 17:26:20 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-12-16 17:26:19 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\system32\lpasvc.dll
2018-12-16 17:26:19 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\schedsvc.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\schannel.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\nettrace.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2018-12-16 17:26:18 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2018-12-16 17:26:17 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\CPFilters.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\coml2.dll
2018-12-16 17:26:17 ----A---- C:\WINDOWS\system32\AcGenral.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\SYSWOW64\coml2.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\xpsservices.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\user32.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\ubpm.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\tdh.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\ShareHost.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\MapRouter.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\BthAvrcp.dll
2018-12-16 17:26:16 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\WinTypes.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\winhttp.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\Windows.Data.Activities.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\msxml3.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\dafBth.dll
2018-12-16 17:26:15 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\wlansec.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\nshwfp.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\NMAA.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\mf.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-12-16 17:26:14 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\nltest.exe
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2018-12-16 17:26:13 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-12-16 17:26:12 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2018-12-16 17:26:12 ----A---- C:\WINDOWS\system32\WWAHost.exe
2018-12-16 17:26:11 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-12-16 17:26:11 ----A---- C:\WINDOWS\system32\MapsStore.dll
2018-12-16 17:26:11 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-12-16 17:26:11 ----A---- C:\WINDOWS\system32\BthAvctpSvc.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\system32\wwansvc.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2018-12-16 17:26:10 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-12-16 17:26:09 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2018-12-16 17:26:09 ----A---- C:\WINDOWS\system32\wpx.dll
2018-12-16 17:26:09 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2018-12-16 17:26:09 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-12-16 17:26:09 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\psmsrv.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\officecsp.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\dnsapi.dll
2018-12-16 17:26:08 ----A---- C:\WINDOWS\system32\ci.dll
2018-12-16 17:26:07 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-12-16 17:26:07 ----A---- C:\WINDOWS\system32\sspicli.dll
2018-12-16 17:26:07 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2018-12-16 17:26:07 ----A---- C:\WINDOWS\system32\defragsvc.dll
2018-12-16 17:26:07 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\WinSCard.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\wer.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\osk.exe
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\ofdeploy.exe
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\ninput.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\eeprov.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\BTAGService.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2018-12-16 17:26:06 ----A---- C:\WINDOWS\system32\AppResolver.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\rmclient.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\mfps.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2018-12-16 17:26:05 ----A---- C:\WINDOWS\system32\advapi32.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\spacebridge.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\webio.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\wc_storage.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\wbengine.exe
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\vertdll.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\thumbcache.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\spacebridge.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\scrrun.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\rdpshell.exe
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\hal.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\dssvc.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\vhf.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2018-12-16 17:26:04 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\wisp.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\weretw.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\seclogon.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\rdpinit.exe
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\fontsub.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\drivers\mssecflt.sys
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\drivers\iorate.sys
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\dab.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\bthserv.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\atmfd.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2018-12-16 17:26:03 ----A---- C:\WINDOWS\system32\appsruprov.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\SYSWOW64\scecli.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeManagerObj.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\xbgmengine.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\offreg.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\msisip.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\moshostcore.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\lsass.exe
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\browser_broker.exe
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\bcdedit.exe
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVStreamMap.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVStreamingUX.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVNice.exe
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-12-16 17:26:02 ----A---- C:\WINDOWS\system32\AppVDllSurrogate.exe
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\SYSWOW64\fdBth.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\wpnsruprov.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\t2embed.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\sspisrv.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\sppcext.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\scecli.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\prnntfy.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\mssprxy.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\mssph.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\fdBth.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\energyprov.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\drivers\ndiswan.sys
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\drivers\mmcss.sys
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2018-12-16 17:26:01 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2018-12-16 17:26:00 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2018-12-16 17:26:00 ----A---- C:\WINDOWS\system32\PhoneService.dll
2018-12-16 17:26:00 ----A---- C:\WINDOWS\system32\drivers\storqosflt.sys
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\winhttpcom.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\INETRES.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2018-12-16 17:25:59 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.SecureAssessment.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\utcutil.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\tzres.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\RMapi.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\msscntrs.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\INETRES.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\dusmtask.exe
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\dusmapi.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\domgmt.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\DataUsageHandlers.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\BthAvrcpAppSvc.dll
2018-12-16 17:25:59 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2018-12-14 17:24:29 ----D---- C:\Users\Stanislav\AppData\Roaming\Warner Bros. Interactive Entertainment
2018-12-08 20:33:59 ----D---- C:\Program Files (x86)\Epic Games
2018-12-06 14:00:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
2018-12-01 21:30:15 ----ASH---- C:\pagefile.sys
2018-12-01 18:20:16 ----D---- C:\Users\Stanislav\AppData\Roaming\Tencent
======List of files/folders modified in the last 1 month======
2018-12-26 22:20:51 ----D---- C:\Program Files\trend micro
2018-12-26 22:20:40 ----D---- C:\WINDOWS\System32
2018-12-26 22:20:40 ----D---- C:\WINDOWS\INF
2018-12-26 22:20:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-26 22:20:21 ----AD---- C:\WINDOWS\Temp
2018-12-26 22:16:28 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-12-26 22:16:06 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-12-26 22:15:17 ----D---- C:\ProgramData\NVIDIA
2018-12-26 22:14:34 ----D---- C:\WINDOWS\system32\sru
2018-12-26 22:11:29 ----D---- C:\Program Files (x86)\Steam
2018-12-26 22:09:44 ----RD---- C:\Program Files (x86)
2018-12-26 21:53:20 ----D---- C:\WINDOWS\system32\LogFiles
2018-12-26 21:52:43 ----SHD---- C:\Config.Msi
2018-12-26 21:51:58 ----D---- C:\WINDOWS\system32\catroot2
2018-12-26 21:40:39 ----D---- C:\WINDOWS\system32\drivers
2018-12-26 21:39:22 ----HD---- C:\ProgramData
2018-12-26 21:12:53 ----SHDC---- C:\WINDOWS\Installer
2018-12-26 21:12:06 ----SHD---- C:\System Volume Information
2018-12-26 21:11:14 ----D---- C:\WINDOWS\system32\config
2018-12-26 21:09:17 ----D---- C:\Program Files (x86)\Common Files
2018-12-26 21:09:12 ----D---- C:\WINDOWS\WinSxS
2018-12-26 21:09:05 ----D---- C:\WINDOWS\SysWOW64
2018-12-26 10:41:45 ----RD---- C:\WINDOWS\Microsoft.NET
2018-12-25 09:43:07 ----D---- C:\WINDOWS\system32\SleepStudy
2018-12-24 19:03:06 ----D---- C:\WINDOWS\Logs
2018-12-20 22:24:39 ----D---- C:\WINDOWS\TextInput
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-12-20 22:24:39 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-12-20 22:24:38 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\zu-ZA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\yo-NG
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\xh-ZA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\wo-SN
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\tn-ZA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\ti-ET
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\rw-RW
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\nso-ZA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\migration
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\ig-NG
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-12-20 22:24:36 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-12-20 22:24:34 ----D---- C:\WINDOWS\system32\Boot
2018-12-20 22:24:34 ----D---- C:\WINDOWS\bcastdvr
2018-12-20 22:24:32 ----D---- C:\WINDOWS\system32\DriverStore
2018-12-20 16:10:04 ----D---- C:\WINDOWS\CbsTemp
2018-12-19 11:54:25 ----D---- C:\WINDOWS\AppReadiness
2018-12-18 22:54:15 ----RD---- C:\WINDOWS\assembly
2018-12-18 15:22:27 ----HD---- C:\Program Files\WindowsApps
2018-12-16 22:57:32 ----D---- C:\WINDOWS\LiveKernelReports
2018-12-16 22:41:27 ----SD---- C:\WINDOWS\SYSWOW64\F12
2018-12-16 22:41:27 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-12-16 22:41:27 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-12-16 22:41:17 ----SD---- C:\WINDOWS\system32\F12
2018-12-16 22:41:17 ----SD---- C:\WINDOWS\system32\DiagSvcs
2018-12-16 22:41:17 ----D---- C:\WINDOWS\system32\ShellExperiences
2018-12-16 22:41:17 ----D---- C:\WINDOWS\system32\en-US
2018-12-16 22:41:17 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-12-16 22:41:17 ----D---- C:\WINDOWS\system32\cs-CZ
2018-12-16 22:41:07 ----D---- C:\WINDOWS\ShellExperiences
2018-12-16 22:41:07 ----D---- C:\WINDOWS\ShellComponents
2018-12-16 22:40:59 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-12-16 22:40:59 ----D---- C:\WINDOWS\apppatch
2018-12-16 17:35:42 ----D---- C:\WINDOWS\system32\MRT
2018-12-16 17:33:59 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-12-16 17:17:29 ----D---- C:\Program Files\rempl
2018-12-16 11:44:13 ----AD---- C:\Program Files (x86)\Battle.net
2018-12-14 19:12:04 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-14 19:12:04 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2018-12-14 16:26:04 ----D---- C:\Program Files (x86)\TopCD
2018-12-09 15:24:38 ----D---- C:\Users\Stanislav\AppData\Roaming\discord
2018-12-08 20:35:39 ----D---- C:\ProgramData\Epic
2018-12-06 14:00:27 ----D---- C:\WINDOWS\system32\Macromed
2018-12-06 14:00:23 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2018-12-01 18:20:24 ----RSD---- C:\WINDOWS\Fonts
2018-12-01 18:20:24 ----D---- C:\WINDOWS\twain_32
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2018-11-03 107896]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-04-11 645480]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-12-08 58168]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2018-12-08 304144]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2018-11-03 143448]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2018-11-03 188832]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2018-11-03 82304]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2018-11-03 109864]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-07-28 414720]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2018-11-03 50144]
R2 LGCoreTemp;Logitech CPU Core Tempurature; \??\C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [2015-06-21 14184]
R2 MBAMChameleon;MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [2018-12-26 200232]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-12-08 43008]
R2 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2018-04-12 178688]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atikmdag.sys [2018-10-25 47503976]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atikmpag.sys [2018-10-25 589920]
R3 AtiHDAudioService;@oem17.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2018-07-17 107496]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-10-20 7963632]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-01-27 4779776]
R3 IntcDAud;@oem54.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-05-12 481768]
R3 ladfGSS;@oem48.inf,%ladfGSS.SvcDesc%;Logitech USB Surround Filter Driver (LGS); C:\WINDOWS\system32\drivers\ladfGSS.sys [2017-10-20 45192]
R3 LGBusEnum;@oem15.inf,%LGBusEnum.SVCDESC%;Logitech Gaming Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\LGBusEnum.sys [2017-10-20 36496]
R3 LGJoyXlCore;@oem15.inf,%LGJoyXlCore.SVCDESC%;Logitech Translation Layer Driver (LGS); C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [2017-10-20 67736]
R3 LGVirHid;@oem50.inf,%LGVirHid.SVCDESC%;Logitech Gamepanel Virtual HID Device Driver; C:\WINDOWS\system32\drivers\LGVirHid.sys [2017-10-20 26008]
R3 MEIx64;@oem30.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-07-27 206496]
R3 rt640x64;@oem51.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-08-08 895256]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2018-02-19 15872]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-08-03 128920]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2018-04-12 127384]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2018-04-12 162712]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2018-04-12 143768]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-12-08 92688]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-12-20 108800]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-12-14 76088]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\WINDOWS\system32\drivers\nusb3hub.sys [2010-09-30 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\WINDOWS\system32\drivers\nusb3xhc.sys [2010-09-30 180736]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-07-28 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2015-05-27 13536]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atiesrxx.exe [2018-10-25 508000]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_4f796;CDPUserSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-12-13 2302160]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-04-11 16232]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2017-10-20 365040]
R2 isaHelperSvc;Intel(R) Security Assist Helper; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [2015-05-19 7680]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-07-06 223008]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2015-07-06 415520]
R2 LogiRegistryService;Logitech Gaming Registry Service; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [2017-10-20 225400]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2018-04-12 26112]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-09-13 937776]
R2 OneSyncSvc_4f796;OneSyncSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 osrss;@%systemroot%\system32\osrss.dll,-500; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2017-06-03 75064]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\syswow64\PnkBstrB.exe [2017-06-03 189248]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-07-28 760888]
R2 sedsvc;Windows Remediation Service; C:\Program Files\rempl\sedsvc.exe [2018-12-02 326336]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-07-28 43648]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe []
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
S2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-03-17 464440]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2018-11-20 3130184]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-06 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_4f796;BcastDVRUserService_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2018-12-19 8348064]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_4f796;BluetoothUserService_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 CaptureService_4f796;CaptureService_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2017-10-20 494056]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_4f796;DevicePickerUserSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_4f796;DevicesFlowUserSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-08-03 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-10-27 802432]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152]
S3 Intel(R) Security Assist;Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-05-19 335872]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-09-19 6347056]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_4f796;MessagingService_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-12-14 227792]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2018-11-20 2269504]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc_4f796;PimIndexMaintenanceSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_4f796;PrintWorkflowUserSvc_4f796; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2018-07-28 4737448]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2018-07-28 826776]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-04-12 52832]
S4 Prime95 Service;Prime95 Service; C:\Program Files (x86)\Prime95\prime95.exe [2005-08-09 4333568]
-----------------EOF-----------------