Potíže s pc, prosím o kontrolu

[radar2004]

Avast mi vyhazuje hrozbu na soubor rlvknlg64.exe níže zasílám log, zasílám ve dvou částech, jelikož se nevejde do jednoho příspěvku.

Logfile of random's system information tool 1.10 (written by random/random)
Run by ja at 2019-08-02 18:19:29
Microsoft Windows 10 Pro
System drive C: has 33 GB (14%) free of 243 GB
Total RAM: 16314 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:19:30, on 02.08.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
C:\WINDOWS\SysWOW64\muachost.exe
C:\Users\ja\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\MSI\MSIRegister\MSIRegister.exe
C:\Program Files (x86)\MSI\Live Update\Live Update.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\WINDOWS\SysWOW64\DllHost.exe
C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\PROGRA~2\RELEVA~1\rlvknlg32.exe
C:\Program Files\trend micro\ja.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
O4 - HKLM\..\Run: [MSIRegister] "C:\MSI\MSIRegister\MSIRegister.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\ja\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\ja\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\ja\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - Startup: Free Audio Editor 2019 Update.lnk = C:\Program Files (x86)\Free Audio Editor 2019\Free Audio Editor 2019 Update.exe
O4 - Global Startup: SolidWorks 2014 Rychlé spuštění.lnk = ?
O4 - Global Startup: SolidWorks Nástroj pro stahování na pozadí.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://E:\PROGRA~1\office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://E:\PROGRA~1\office\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (file missing)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall Service (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: SW Distributed TS Coordinator Service (CoordinatorServiceHost) - Dassault Systemes SolidWorks Corp. - C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_32be6 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
O23 - Service: MSI Gaming Hotkey Service (GamingHotkey_Service) - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.142\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) TPM Provisioning Service - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee WebAdvisor - McAfee, Inc. - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MSIREGISTER_MR - Micro-Star INT'L CO., LTD. - C:\MSI\MSIRegister\MSIRegisterService.exe
O23 - Service: MSI_ActiveX_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
O23 - Service: MSI Live Update Service (MSI_LiveUpdate_Service) - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: MysticLight2_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: RelevantKnowledge - TMRG, Inc. - C:\Program Files (x86)\RelevantKnowledge\rlservice.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 14 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: Wisaroc - Remak - C:\WINDOWS\Wisaroc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14753 bytes

======Listing Processes======

[radar2004]

C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
winlogon.exe
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection

C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe"
"C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe"
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe"
"C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\MSI\MSIRegister\MSIRegisterService.exe
"C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe"
"C:\Program Files (x86)\RelevantKnowledge\rlservice.exe" /service
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
"C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe" --normal
"C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe"
C:\WINDOWS\SysWOW64\muachost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"ctfmon.exe"

C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
"C:\Program Files\McAfee\WebAdvisor\UIHost.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19062.451.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.50.38.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe"
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe"
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.50.38.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="588BEC57-2219-3114-DA42-9E66C6C04944" /binpath="C:\Program Files\AVAST Software\Avast"
C:\Windows\System32\RuntimeBroker.exe -Embedding

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"

"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
AvastUI.exe /nogui
"C:\Users\ja\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=cs_CZ" "-cachedir=C:\Users\ja\AppData\Local\Steam\htmlcache" "-steampid=9412" "-buildid=1563346602" "-steamid=0" "-steamuniverse=Dev" "-clientui=C:\Program Files (x86)\Steam\clientui" --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --enable-media-stream --enable-smooth-scrolling --num-raster-threads=4 --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\ja\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1563346602 --initial-client-data=0x2c8,0x2cc,0x2d0,0x2c4,0x2d4,0x7ffa1226f760,0x7ffa1226f770,0x7ffa1226f780
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --field-trial-handle=1364,15213919158354964780,12936186302236925805,131072 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --lang=cs-CZ --buildid=1563346602 --steamid=0 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=1067065110114388685 --mojo-platform-channel-handle=1404 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\SolidWorks Corp\SolidWorks\sldworks_fs.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
"C:\MSI\MSIRegister\MSIRegister.exe"
"C:\Program Files (x86)\MSI\Live Update\Live Update.exe" /MINI
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --field-trial-handle=1364,15213919158354964780,12936186302236925805,131072 --service-pipe-token=676912338556779682 --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1563346602 --steamid=0 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=676912338556779682 --renderer-client-id=3 --mojo-platform-channel-handle=2152 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --field-trial-handle=1364,15213919158354964780,12936186302236925805,131072 --service-pipe-token=301464328042291987 --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1563346602 --steamid=0 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=301464328042291987 --renderer-client-id=4 --mojo-platform-channel-handle=2396 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\ja\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\ja\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\ja\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=75.0.3770.142 --initial-client-data=0x1bc,0x1c0,0x1c4,0x1b8,0x1c8,0x7ff9ef293ef8,0x7ff9ef293f08,0x7ff9ef293f18
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=10876 --on-initialized-event-handle=672 --parent-handle=680 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --gpu-preferences=KAAAAAAAAADgAAAgAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=8666321565658313855 --mojo-platform-channel-handle=1660 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --service-sandbox-type=network --service-request-channel-token=14172453461881721237 --mojo-platform-channel-handle=2152 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=6976365211805331672 --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3312 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=10842340214952837280 --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3900 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=8291700512910115269 --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4204 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=15280924697740315730 --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2148 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=5137666198514386244 --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4560 /prefetch:1
C:\WINDOWS\system32\cmd.exe /d /c "C:\Program Files\McAfee\WebAdvisor\BrowserHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.4666b587b679eebc > \\.\pipe\chrome.nativeMessaging.out.4666b587b679eebc
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\McAfee\WebAdvisor\BrowserHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11906.1001.24.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=13277992608288580591 --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5688 /prefetch:1
C:\WINDOWS\system32\AUDIODG.EXE 0x694
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=9627652934822650784 --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6752 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=14781533378983667617 --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6212 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=15013686670153306981 --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6916 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=15657156155226197829 --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7380 /prefetch:1
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto
"C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=12284932559602162147 --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2832 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=15766153669230371538 --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6168 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=13654334780574163595 --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8908 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=10566272861967728323 --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7700 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=11860732123149323294 --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7532 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=5572143304080520363 --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5956 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=14845075885840418996 --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9904 /prefetch:1
C:\WINDOWS\SysWOW64\DllHost.exe /Processid:{AD3EDBCA-0901-415B-82E9-C16D3B65E38C}
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-878420505-1678758284-3414436251-10012_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-878420505-1678758284-3414436251-10012 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"

"C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe" -boot
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
/C C:\PROGRA~2\RELEVA~1\RLVKNL~2.EXE 12448
"C:\PROGRA~2\RELEVA~1\rlvknlg32.exe" 12448
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 784 788 796 8192 792

C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=9283255880662475275 --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9380 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1720,10049265960544550326,11743808414060576433,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=3 --enable-main-frame-before-activation --service-request-channel-token=14430493496959248207 --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9000 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Users\ja\Desktop\Programy\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\AutoKMS.job - C:\WINDOWS\AutoKMS.exe
C:\WINDOWS\tasks\MSILEDKeeper_Host.job - C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
C:\WINDOWS\tasks\MSISW_Host.job - C:\WINDOWS\SysWOW64\muachost.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - E:\PROGRA~1\office\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-07-19 1270624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - E:\PROGRA~1\office\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-04-20 480120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-07-19 974584]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-20 194424]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-03-19 84992]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2017-05-18 9229280]
"BCSSync"=E:\Program Files\office\Office14\BCSSync.exe [2012-11-05 108144]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2019-07-24 269192]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\ja\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2019-07-10 1589368]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2019-07-17 3210016]
"cz.seznam.software.autoupdate"=C:\Users\ja\AppData\Roaming\Seznam.cz\szninstall.exe [2018-03-27 1069296]
"cz.seznam.software.szndesktop"=C:\Users\ja\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2018-03-27 109808]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-03-28 1160408]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Live Update"=C:\Program Files (x86)\MSI\Live Update\Live Update.exe [2018-10-02 26037944]
"MSIRegister"=C:\MSI\MSIRegister\MSIRegister.exe [2018-09-25 1262776]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2019-04-01 645456]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
SolidWorks 2014 Rychlé spuštění.lnk - C:\WINDOWS\Installer\{4FFA60C4-9A8B-4C9E-8265-2241B266304C}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe
SolidWorks Nástroj pro stahování na pozadí.lnk - C:\Program Files (x86)\Common Files\Manažer instalací SolidWorks\BackgroundDownloading\sldBgDwld.exe

C:\Users\ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Free Audio Editor 2019 Update.lnk - C:\Program Files (x86)\Free Audio Editor 2019\Free Audio Editor 2019 Update.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=E:\PROGRA~1\office\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2019-08-02 18:16:55 ----D---- C:\rsit
2019-08-02 18:16:55 ----D---- C:\Program Files\trend micro
2019-08-02 17:59:59 ----A---- C:\WINDOWS\system32\aswBoot.exe
2019-08-02 17:59:58 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2019-08-02 17:59:58 ----A---- C:\WINDOWS\system32\drivers\aswNetSec.sys
2019-08-02 17:59:58 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2019-08-01 21:13:55 ----A---- C:\WINDOWS\SYSWOW64\rlls.dll
2019-08-01 21:13:55 ----A---- C:\WINDOWS\system32\rlls64.dll
2019-07-31 18:25:57 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-07-31 18:25:10 ----D---- C:\ProgramData\Microsoft OneDrive
2019-07-31 18:20:02 ----D---- C:\ProgramData\USOShared
2019-07-31 18:20:02 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2019-07-31 18:18:37 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2019-07-31 18:18:28 ----A---- C:\WINDOWS\system32\OpenCL.dll
2019-07-31 18:17:26 ----D---- C:\WINDOWS\system32\SleepStudy
2019-07-31 18:17:25 ----D---- C:\WINDOWS\Prefetch
2019-07-31 18:17:25 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2019-07-31 18:17:21 ----D---- C:\Windows.old
2019-07-31 18:16:42 ----A---- C:\WINDOWS\system32\drivers\WinSetupBoot.sys
2019-07-31 17:06:31 ----SD---- C:\Users\ja\AppData\Roaming\Microsoft
2019-07-31 17:06:21 ----AS---- C:\WINDOWS\bootstat.dat
2019-07-31 17:04:51 ----D---- C:\WINDOWS\system32\Microsoft
2019-07-31 17:04:51 ----D---- C:\WINDOWS\ServiceProfiles
2019-07-31 17:00:17 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2019-07-31 17:00:17 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2019-07-31 17:00:17 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2019-07-31 17:00:17 ----A---- C:\WINDOWS\system32\RDXService.dll
2019-07-31 17:00:17 ----A---- C:\WINDOWS\system32\fvewiz.dll
2019-07-31 17:00:17 ----A---- C:\WINDOWS\system32\fveui.dll
2019-07-31 17:00:17 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2019-07-31 17:00:17 ----A---- C:\WINDOWS\system32\fveapibase.dll
2019-07-31 17:00:17 ----A---- C:\WINDOWS\system32\fveapi.dll
2019-07-31 17:00:17 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2019-07-31 17:00:17 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2019-07-31 17:00:17 ----A---- C:\WINDOWS\system32\cdp.dll
2019-07-31 17:00:17 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2019-07-31 17:00:17 ----A---- C:\WINDOWS\system32\bdesvc.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2019-07-31 17:00:16 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2019-07-31 17:00:13 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2019-07-31 17:00:13 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2019-07-31 17:00:13 ----A---- C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2019-07-31 17:00:13 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2019-07-31 17:00:12 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2019-07-31 17:00:12 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2019-07-31 17:00:12 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2019-07-31 17:00:12 ----A---- C:\WINDOWS\system32\msvproc.dll
2019-07-31 17:00:12 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2019-07-31 17:00:12 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2019-07-31 17:00:12 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2019-07-31 17:00:12 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2019-07-31 17:00:12 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2019-07-31 17:00:12 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.Office2013CustomActions.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.Office2010CustomActions.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.AppAgent.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\SYSWOW64\cscobj.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\srmlib.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\rdpshell.exe
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\mfsvr.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\mfps.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\MFPlay.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\mfplat.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\mfcore.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\mf.dll
2019-07-31 17:00:11 ----A---- C:\WINDOWS\system32\cscobj.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\ScriptRunner.exe
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\drivers\AppvVfs.sys
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\drivers\AppvVemgr.sys
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\drivers\AppVStrm.sys
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVStreamMap.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVStreamingUX.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVNice.exe
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\appvetwstreamingux.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\appvetwclientres.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVDllSurrogate.exe
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVClient.exe
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-07-31 17:00:10 ----A---- C:\WINDOWS\system32\AgentService.exe
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\provplatformdesktop.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\opengl32.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\glu32.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2019-07-31 17:00:09 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2019-07-31 17:00:06 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2019-07-31 17:00:06 ----A---- C:\WINDOWS\SYSWOW64\mspbde40.dll
2019-07-31 17:00:06 ----A---- C:\WINDOWS\SYSWOW64\msltus40.dll
2019-07-31 17:00:06 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2019-07-31 17:00:06 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2019-07-31 17:00:06 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2019-07-31 17:00:06 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2019-07-31 17:00:06 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2019-07-31 17:00:05 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-07-31 17:00:04 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\SYSWOW64\dxdiagn.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\SYSWOW64\dxdiag.exe
2019-07-31 17:00:04 ----A---- C:\WINDOWS\SYSWOW64\curl.exe
2019-07-31 17:00:04 ----A---- C:\WINDOWS\SYSWOW64\ComputerDefaults.exe
2019-07-31 17:00:04 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\tsgqec.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\termsrv.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\sysmain.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\Spectrum.exe
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\SharedRealitySvc.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\rdbui.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\ProximityUxHost.exe
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\provplatformdesktop.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\inetpp.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\CPFilters.dll
2019-07-31 17:00:04 ----A---- C:\WINDOWS\system32\AcGenral.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\wsp_health.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\systemreset.exe
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\srms.dat
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\ResetEngine.exe
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\reseteng.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\rdpencom.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\rdpcore.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\rdpclip.exe
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\opengl32.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\offreg.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\nltest.exe
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\mstscax.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\msimsg.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\msi.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\glu32.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\FsIso.exe
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\FSClient.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\FrameServer.dll
2019-07-31 17:00:03 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2019-07-31 17:00:02 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2019-07-31 17:00:02 ----A---- C:\WINDOWS\system32\jscript9.dll
2019-07-31 17:00:02 ----A---- C:\WINDOWS\system32\ieproxy.dll
2019-07-31 17:00:02 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-07-31 17:00:02 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2019-07-31 17:00:02 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2019-07-31 17:00:02 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-07-31 16:59:59 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2019-07-31 16:59:59 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-07-31 16:59:59 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-07-31 16:59:59 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\werui.dll
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\StorSvc.dll
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\jscript.dll
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\edgehtml.dll
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\dxdiag.exe
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\DispBroker.Desktop.dll
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\curl.exe
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\ComputerDefaults.exe
2019-07-31 16:59:58 ----A---- C:\WINDOWS\system32\CompMgmtLauncher.exe
2019-07-31 16:59:58 ----A---- C:\WINDOWS\HelpPane.exe
2019-07-31 16:59:57 ----A---- C:\WINDOWS\system32\WinHvPlatform.dll
2019-07-31 16:59:57 ----A---- C:\WINDOWS\system32\resutils.dll
2019-07-31 16:59:57 ----A---- C:\WINDOWS\system32\computestorage.dll
2019-07-31 16:59:57 ----A---- C:\WINDOWS\system32\computecore.dll
2019-07-31 16:59:57 ----A---- C:\WINDOWS\system32\ClipUp.exe
2019-07-31 16:59:57 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\xpsservices.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\msxml3r.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\mcbuilder.exe
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\KBDJPN.DLL
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\wwanconn.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\tcbloader.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\skci.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\securekernel.exe
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\ResourceMapper.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\ResBParser.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\hvloader.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\clusapi.dll
2019-07-31 16:59:56 ----A---- C:\WINDOWS\system32\BioIso.exe
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\winnlsres.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\msimg32.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\efsext.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\cryptdll.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2019-07-31 16:59:51 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\ulib.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\tzautoupdate.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\profext.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\mmgaserver.exe
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\mmgaproxystub.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\mmgaclient.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\ifsutil.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\cmintegrator.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2019-07-31 16:59:50 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\webauthn.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\ttdwriter.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\ttdrecordcpu.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\TextInputMethodFormatter.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\icu.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\GraphicsCapture.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2019-07-31 16:59:49 ----A---- C:\WINDOWS\SYSWOW64\coloradapterclient.dll
2019-07-31 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2019-07-31 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2019-07-31 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\GameChatTranscription.dll
2019-07-31 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2019-07-31 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2019-07-31 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2019-07-31 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2019-07-31 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2019-07-31 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2019-07-31 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2019-07-31 16:59:46 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\winsta.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\WiFiDisplay.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\TpmCertResources.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\regapi.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\oleprn.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\mapistub.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\mapi32.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\fixmapi.exe
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\dot3msm.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\dot3api.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2019-07-31 16:59:45 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_9.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\vpnike.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\VideoHandlers.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\umpoext.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\rastls.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\rastapi.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\rasmans.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\rascustom.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\rasapi32.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\pnidui.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\pku2u.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\npmproxy.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\netprofm.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\mprddm.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\efswrt.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\comctl32.dll
2019-07-31 16:59:44 ----A---- C:\WINDOWS\system32\APMon.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\urlmon.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\msxml3r.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\msxml3.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\mspaint.exe
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\msIso.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\mcbuilder.exe
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\LockController.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\jsproxy.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\JpnServiceDS.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\iertutil.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\edgeIso.dll
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2019-07-31 16:59:39 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\wininet.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\t2embed.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\profsvcext.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\policymanager.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\LogonController.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\efsext.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\d3d9.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\system32\actxprxy.dll
2019-07-31 16:59:38 ----A---- C:\WINDOWS\fonts\StaticCache.dat
2019-07-31 16:59:32 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\wuuhext.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\wow64win.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\wow64.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\winlogon.exe
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\msimg32.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\mf3216.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\lpk.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\fontsub.dll
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2019-07-31 16:59:32 ----A---- C:\WINDOWS\system32\dciman32.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\wkssvc.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\winhttp.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\wersvc.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\weretw.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\wer.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\userenv.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\tzres.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\schannel.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\services.exe
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\sechost.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\pacjsworker.exe
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\oleaut32.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\ntdll.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\msv1_0.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\lsasrv.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\kdnet.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\hal.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\drivers\msfs.sys
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-07-31 16:59:31 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2019-07-31 16:59:30 ----A---- C:\WINDOWS\system32\winnlsres.dll
2019-07-31 16:59:30 ----A---- C:\WINDOWS\system32\samlib.dll
2019-07-31 16:59:30 ----A---- C:\WINDOWS\system32\offlinesam.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\WSReset.exe
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\wldp.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\WinTypes.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\winsta.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\winquic.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\wincorlib.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\wdigest.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\UpgradeResultsUI.exe
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\twinui.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\taskcomp.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\sxssrv.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\sppwinob.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\sppsvc.exe
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\sppcommdlg.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\sppcext.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\schtasks.exe
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\schedsvc.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\samsrv.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\rpcss.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\regapi.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\phoneactivate.exe
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\msctf.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\LicensingUI.exe
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\changepk.exe
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\drivers\winquic.sys
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\dnsapi.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\dcntel.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\cryptdll.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\combase.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\ci.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\bcrypt.dll
2019-07-31 16:59:27 ----A---- C:\WINDOWS\system32\aepic.dll
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\winresume.exe
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\winload.exe
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\uDWM.dll
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\shell32.dll
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\OpenWith.exe
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\ole32.dll
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\dwmredir.dll
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\dwmapi.dll
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\dwm.exe
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\dcomp.dll
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\browserexport.exe
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\browserbroker.dll
2019-07-31 16:59:26 ----A---- C:\WINDOWS\system32\browser_broker.exe
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\srpapi.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\SRH.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\pcalua.exe
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\pcaevts.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\pcadm.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\invagent.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\generaltel.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\drivers\applockerfltr.sys
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\devinv.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\appraiser.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\appidtel.exe
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\aitstatic.exe
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\aeinv.dll
2019-07-31 16:59:25 ----A---- C:\WINDOWS\system32\acmigration.dll
2019-07-31 16:59:21 ----A---- C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2019-07-31 16:59:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-07-31 16:59:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_ManagePhone.dll
2019-07-31 16:59:20 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2019-07-31 16:59:20 ----A---- C:\WINDOWS\system32\NotificationController.dll
2019-07-31 16:59:20 ----A---- C:\WINDOWS\system32\ConstraintIndex.Search.dll
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\usosvc.dll
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\usocoreps.dll
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\UsoClient.exe
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2019-07-31 16:59:19 ----A---- C:\WINDOWS\system32\AppResolver.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\wci.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\wc_storage.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\ulib.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\mmgaproxystub.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\mmgaclient.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\ifsutil.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\drvsetup.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\daxexec.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2019-07-31 16:59:18 ----A---- C:\WINDOWS\system32\bindflt.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\wpnprv.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\wpncore.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\wpnapps.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\win32u.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\win32k.sys
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\user32.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\rmclient.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\rdpbase.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\mmgaserver.exe
2019-07-31 16:59:15 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\wintrust.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\webauthn.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\Unistore.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\ttdwriter.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\ttdrecordcpu.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\rdpsharercom.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\propsys.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\profext.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\kerberos.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\InstallService.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\icu.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\esent.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\BFE.DLL
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2019-07-31 16:59:14 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\tquery.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\TextInputMethodFormatter.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\mssvp.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\mssprxy.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\mssph.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\mssitlb.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\mscms.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\ISM.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\InputService.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\icm32.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\GraphicsCapture.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\FntCache.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\dxgiadaptercache.exe
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\dxgi.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\DWrite.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\directxdatabaseupdater.exe
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2019-07-31 16:59:13 ----A---- C:\WINDOWS\system32\coloradapterclient.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\wups2.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\wuaueng.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\wuauclt.exe
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\wuapi.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\msxml6r.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\msxml6.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\cryptngc.dll
2019-07-31 16:59:07 ----A---- C:\WINDOWS\system32\cdd.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\tbauth.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\qmgr.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\GameChatTranscription.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\dssvc.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\directml.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\D3D12.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\cloudAP.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2019-07-31 16:59:06 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\vdsutil.dll
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\vdsldr.exe
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\vdsbas.dll
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\vds_ps.dll
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\vds.exe
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\mapistub.dll
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\mapi32.dll
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\kernel32.dll
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\fixmapi.exe
2019-07-31 16:59:05 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2019-07-31 16:59:04 ----A---- C:\WINDOWS\system32\Windows.UI.Storage.dll
2019-07-31 16:59:04 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-07-31 16:59:04 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2019-07-31 16:59:01 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2019-07-31 16:59:01 ----A---- C:\WINDOWS\system32\wfdprov.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\wpx.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\WpcTok.exe
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\WpcMon.exe
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\Wpc.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\wlansvc.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\wlansec.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\wlanapi.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\Windows.Internal.Signals.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\TpmCertResources.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\spoolsv.exe
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\oleprn.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\localspl.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\dsreg.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\dot3svc.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\dot3msm.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\dot3api.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-07-31 16:59:00 ----A---- C:\WINDOWS\splwow64.exe
2019-07-31 16:59:00 ----A---- C:\WINDOWS\explorer.exe
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\XAudio2_9.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\wwansvc.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\tssrvlic.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\lstelemetry.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\LSCSHostPolicy.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\fcon.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\drivers\mssecflt.sys
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\drivers\MbbCx.sys
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\drivers\KNetPwrDepBroker.sys
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\BTAGService.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\bcdedit.exe
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\autopilotdiag.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\autopilot.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\audiosrv.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\AudioSes.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\AudioEng.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\audiodg.exe
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2019-07-31 16:58:59 ----A---- C:\WINDOWS\system32\AarSvc.dll
2019-07-31 16:58:58 ----A---- C:\WINDOWS\system32\tellib.dll
2019-07-31 16:58:54 ----A---- C:\WINDOWS\system32\vmbuspipe.dll
2019-07-31 16:58:54 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys
2019-07-31 16:58:54 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2019-07-31 16:58:54 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2019-07-31 16:58:54 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2019-07-31 16:58:54 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2019-07-31 16:58:54 ----A---- C:\WINDOWS\system32\drivers\hidspi.sys
2019-07-31 16:58:54 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\msisadrv.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\monitor.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\intelpep.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2019-07-31 16:58:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2019-07-31 16:58:52 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2019-07-31 16:58:52 ----A---- C:\WINDOWS\system32\drivers\usbaudio2.sys
2019-07-31 16:58:52 ----A---- C:\WINDOWS\system32\drivers\devauthe.sys
2019-07-31 16:48:01 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2019-07-31 16:48:00 ----D---- C:\Program Files\Reference Assemblies
2019-07-31 16:48:00 ----D---- C:\Program Files\MSBuild
2019-07-31 16:48:00 ----D---- C:\Program Files (x86)\Reference Assemblies
2019-07-31 16:48:00 ----D---- C:\Program Files (x86)\MSBuild
2019-07-31 16:47:34 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2019-07-31 16:47:34 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2019-07-31 16:47:34 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-07-31 16:47:33 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2019-07-31 16:47:33 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-07-31 16:47:33 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-07-31 16:46:41 ----A---- C:\WINDOWS\SYSWOW64\XPSSHHDR.dll
2019-07-31 16:46:41 ----A---- C:\WINDOWS\SYSWOW64\XpsFilt.dll
2019-07-31 16:46:41 ----A---- C:\WINDOWS\system32\XPSSHHDR.dll
2019-07-31 16:46:41 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2019-07-31 16:46:41 ----A---- C:\WINDOWS\system32\XpsFilt.dll
2019-07-31 11:19:26 ----DC---- C:\WINDOWS\Panther

======List of files/folders modified in the last 1 month======

2019-08-02 18:18:30 ----D---- C:\Program Files (x86)\RelevantKnowledge
2019-08-02 18:16:55 ----RD---- C:\Program Files
2019-08-02 18:16:03 ----D---- C:\WINDOWS\Temp
2019-08-02 18:10:56 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-08-02 18:06:58 ----D---- C:\WINDOWS\System32
2019-08-02 18:06:58 ----D---- C:\WINDOWS\INF
2019-08-02 18:06:13 ----D---- C:\Users\ja\AppData\Roaming\Seznam.cz
2019-08-02 18:02:27 ----D---- C:\WINDOWS\system32\WDI
2019-08-02 18:01:16 ----D---- C:\Program Files (x86)\Steam
2019-08-02 18:01:15 ----D---- C:\WINDOWS\system32\Tasks
2019-08-02 18:01:04 ----D---- C:\Windows
2019-08-02 18:00:56 ----D---- C:\Program Files (x86)\TeamViewer
2019-08-02 18:00:54 ----D---- C:\ProgramData\NVIDIA
2019-08-02 18:00:52 ----D---- C:\WINDOWS\system32\drivers
2019-08-02 18:00:31 ----D---- C:\WINDOWS\system32\sru
2019-08-02 18:00:01 ----D---- C:\WINDOWS\system32\config
2019-08-02 17:59:59 ----HD---- C:\WINDOWS\ELAMBKUP
2019-08-02 16:12:27 ----D---- C:\WINDOWS\AppReadiness
2019-08-02 16:12:12 ----HD---- C:\Program Files\WindowsApps
2019-08-02 11:36:20 ----RD---- C:\WINDOWS\Microsoft.NET
2019-08-02 11:36:20 ----RD---- C:\WINDOWS\assembly
2019-08-02 11:07:38 ----D---- C:\WINDOWS\WinSxS
2019-08-02 11:07:16 ----D---- C:\WINDOWS\SysWOW64
2019-08-01 21:57:41 ----D---- C:\WINDOWS\system32\catroot2
2019-08-01 19:10:00 ----D---- C:\WINDOWS\Logs
2019-08-01 19:09:57 ----D---- C:\WINDOWS\system32\DriverStore
2019-08-01 19:09:12 ----D---- C:\WINDOWS\system32\LogFiles
2019-08-01 13:06:24 ----D---- C:\WINDOWS\CbsTemp
2019-08-01 13:06:07 ----SHD---- C:\System Volume Information
2019-08-01 13:06:03 ----D---- C:\WINDOWS\system32\restore
2019-08-01 13:05:21 ----D---- C:\ProgramData\Packages
2019-08-01 07:50:45 ----D---- C:\WINDOWS\appcompat
2019-07-31 18:39:46 ----D---- C:\WINDOWS\ServiceState
2019-07-31 18:31:15 ----D---- C:\Program Files\rempl
2019-07-31 18:25:10 ----HD---- C:\ProgramData
2019-07-31 18:24:09 ----D---- C:\ProgramData\USOPrivate
2019-07-31 18:23:20 ----D---- C:\WINDOWS\SoftwareDistribution
2019-07-31 18:23:15 ----D---- C:\WINDOWS\Registration
2019-07-31 18:23:14 ----D---- C:\Program Files\Windows NT
2019-07-31 18:23:12 ----D---- C:\WINDOWS\Tasks
2019-07-31 18:23:11 ----D---- C:\Program Files\Windows Defender
2019-07-31 18:22:55 ----SD---- C:\ProgramData\Microsoft
2019-07-31 18:21:48 ----D---- C:\WINDOWS\system32\wbem
2019-07-31 18:20:19 ----RSD---- C:\WINDOWS\Fonts
2019-07-31 18:20:19 ----HD---- C:\WINDOWS\Installer
2019-07-31 18:20:19 ----D---- C:\WINDOWS\SYSWOW64\drivers
2019-07-31 18:20:19 ----D---- C:\WINDOWS\system32\WinBioDatabase
2019-07-31 18:20:19 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2019-07-31 18:20:19 ----D---- C:\WINDOWS\ShellNew
2019-07-31 18:20:19 ----D---- C:\WINDOWS\LiveKernelReports
2019-07-31 18:20:18 ----D---- C:\WINDOWS\en
2019-07-31 18:19:13 ----RD---- C:\WINDOWS\PrintDialog
2019-07-31 18:18:54 ----D---- C:\temp
2019-07-31 18:18:37 ----D---- C:\Program Files (x86)\VulkanRT
2019-07-31 18:18:22 ----D---- C:\ProgramData\NVIDIA Corporation
2019-07-31 18:18:19 ----D---- C:\Program Files\NVIDIA Corporation
2019-07-31 18:18:16 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2019-07-31 18:18:16 ----D---- C:\WINDOWS\system32\RTCOM
2019-07-31 18:18:13 ----D---- C:\WINDOWS\system32\DAX3
2019-07-31 18:18:13 ----D---- C:\WINDOWS\system32\DAX2
2019-07-31 18:17:51 ----SHD---- C:\Recovery
2019-07-31 18:17:51 ----D---- C:\WINDOWS\system32\Recovery
2019-07-31 18:17:21 ----RD---- C:\Program Files (x86)
2019-07-31 18:17:21 ----D---- C:\WINDOWS\system32\spool
2019-07-31 18:17:21 ----D---- C:\WINDOWS\Help
2019-07-31 18:17:21 ----D---- C:\Program Files\UNP
2019-07-31 18:17:21 ----D---- C:\Program Files\Intel
2019-07-31 18:17:21 ----D---- C:\Program Files\Common Files\System
2019-07-31 18:17:21 ----D---- C:\Program Files\Common Files\microsoft shared
2019-07-31 18:17:21 ----D---- C:\Program Files\Common Files
2019-07-31 18:17:21 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2019-07-31 18:17:21 ----D---- C:\Program Files (x86)\Microsoft.NET
2019-07-31 18:17:21 ----D---- C:\Program Files (x86)\Common Files
2019-07-31 18:16:39 ----D---- C:\WINDOWS\Setup
2019-07-31 17:29:44 ----D---- C:\WINDOWS\InfusedApps
2019-07-31 17:29:36 ----D---- C:\WINDOWS\system32\drivers\etc
2019-07-31 17:08:33 ----D---- C:\WINDOWS\twain_32
2019-07-31 17:08:31 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2019-07-31 17:08:29 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2019-07-31 17:08:28 ----D---- C:\WINDOWS\system32\NDF
2019-07-31 17:08:27 ----D---- C:\WINDOWS\system32\drivers\NVIDIA Corporation
2019-07-31 17:08:16 ----D---- C:\WINDOWS\Resources
2019-07-31 17:08:07 ----D---- C:\Program Files\Windows Mail
2019-07-31 17:08:06 ----D---- C:\Program Files\Realtek
2019-07-31 17:07:53 ----D---- C:\WINDOWS\system32\MsDtc
2019-07-31 17:06:31 ----RD---- C:\Users
2019-07-31 17:02:49 ----D---- C:\WINDOWS\TextInput
2019-07-31 17:02:49 ----D---- C:\WINDOWS\SYSWOW64\wbem
2019-07-31 17:02:49 ----D---- C:\WINDOWS\SYSWOW64\migration
2019-07-31 17:02:49 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2019-07-31 17:02:48 ----SD---- C:\WINDOWS\system32\DiagSvcs
2019-07-31 17:02:48 ----SD---- C:\WINDOWS\system32\AppV
2019-07-31 17:02:48 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2019-07-31 17:02:48 ----D---- C:\WINDOWS\SystemResources
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\zh-TW
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\ru-RU
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\ro-RO
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\pt-PT
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\pl-PL
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\PerceptionSimulation
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\oobe
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\nl-NL
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\migwiz
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\migration
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\en-US
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\el-GR
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\cs-CZ
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\Boot
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\ar-SA
2019-07-31 17:02:48 ----D---- C:\WINDOWS\system32\appraiser
2019-07-31 17:02:48 ----D---- C:\WINDOWS\ShellExperiences
2019-07-31 17:02:48 ----D---- C:\WINDOWS\ShellComponents
2019-07-31 17:02:48 ----D---- C:\WINDOWS\PolicyDefinitions
2019-07-31 17:02:48 ----D---- C:\WINDOWS\bcastdvr
2019-07-31 17:02:48 ----D---- C:\WINDOWS\apppatch
2019-07-31 17:02:48 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2019-07-31 17:02:48 ----D---- C:\Program Files\Internet Explorer
2019-07-31 17:02:48 ----D---- C:\Program Files (x86)\Internet Explorer
2019-07-31 17:02:42 ----D---- C:\WINDOWS\system32\drivers\UMDF
2019-07-31 16:48:01 ----D---- C:\WINDOWS\SYSWOW64\MUI
2019-07-31 16:48:01 ----D---- C:\WINDOWS\system32\MUI
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\th-TH
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-RS
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\sl-SI
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\lv-LV
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\hr-HR
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\fr-CA
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\et-EE
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\es-MX
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\en-US
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\bg-BG
2019-07-31 16:46:45 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\zh-CN
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\uk-UA
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\tr-TR
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\th-TH
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\sv-SE
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\sl-SI
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\sk-SK
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\pt-BR
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\nb-NO
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\lv-LV
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\lt-LT
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\ko-KR
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\ja-jp
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\it-IT
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\hu-HU
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\hr-HR
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\he-IL
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\fr-FR
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\fr-CA
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\fi-FI
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\et-EE
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\es-MX
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\es-ES
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\en-GB
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\de-DE
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\da-DK
2019-07-31 16:46:45 ----D---- C:\WINDOWS\system32\bg-BG
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\zu-ZA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\yo-NG
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\xh-ZA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\wo-SN
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\tn-ZA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\rw-RW
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\nso-ZA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\ig-NG
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\chr-CHER-US
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2019-07-10 14:45:51 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2019-07-10 11:08:55 ----D---- C:\ProgramData\Microsoft Help
2019-07-10 11:03:29 ----D---- C:\WINDOWS\system32\MRT
2019-07-10 11:02:12 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-07-10 11:02:01 ----A---- C:\WINDOWS\win.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2019-07-24 206056]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2019-07-24 61688]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2019-01-08 15488]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2019-07-24 88160]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2019-07-25 387896]
R0 iaStorA;@oem19.inf,%iaStorA.DeviceDesc%;Intel(R) Chipset SATA/PCIe RST Premium Controller; C:\WINDOWS\System32\drivers\iaStorA.sys [2017-07-18 900608]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2019-07-31 283152]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2019-03-19 40960]
R1 AsIO;AsIO; C:\WINDOWS\SysWow64\drivers\AsIO.sys [2016-11-18 15232]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2019-07-24 209256]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2019-07-24 263224]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2019-07-24 42504]
R1 aswNetSec;aswNetSec; C:\WINDOWS\system32\drivers\aswNetSec.sys [2019-08-02 549416]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2019-07-24 112520]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2019-07-31 1030784]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2019-07-24 477288]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2019-07-31 168896]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2019-07-24 225816]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-07-31 456192]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 I2cHkBurn;I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [2015-07-27 41760]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2017-05-18 5766624]
R3 MEIx64;@oem10.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2018-05-06 228992]
R3 NTIOLib_MysticLight;NTIOLib_MysticLight; \??\C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [2017-07-10 14288]
R3 NVHDA;@oem27.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2018-09-25 236712]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_8e4f37220e99138f\nvlddmkm.sys [2018-09-25 17213824]
R3 rt640x64;@oem18.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2017-06-29 984032]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-03-19 151352]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-03-19 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-07-31 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2019-07-31 137528]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2019-07-31 174392]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2019-07-31 153912]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-07-31 117048]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-03-19 232448]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2019-07-31 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2019-07-31 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2019-07-31 1422848]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-07-31 98304]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_dbcdd1a51a139f61\genericusbfn.sys [2019-03-19 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-07-31 62976]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-07-31 84488]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-07-31 358912]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-03-19 987152]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-03-19 33592]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-03-28 82640]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [2015-05-08 936728]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [2014-04-24 1360016]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2019-07-24 414976]
R2 avast! Firewall;Avast Firewall Service; C:\Program Files\AVAST Software\Avast\afwServ.exe [2019-08-02 423288]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_32be6;CDPUserSvc_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 GamingApp_Service;GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [2018-04-11 48824]
R2 GamingHotkey_Service;MSI Gaming Hotkey Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2018-03-22 2027192]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2017-06-26 197264]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2017-06-26 419984]
R2 McAfee WebAdvisor;McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [2019-07-19 899264]
R2 MSI_ActiveX_Service;MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [2018-04-17 83616]
R2 MSI_LiveUpdate_Service;MSI Live Update Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2018-09-25 2190520]
R2 MSIREGISTER_MR;MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [2018-09-25 1925816]
R2 MysticLight2_Service;MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [2018-03-13 31928]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2018-09-06 767472]
R2 OneSyncSvc_32be6;OneSyncSvc_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 RelevantKnowledge;RelevantKnowledge; C:\Program Files (x86)\RelevantKnowledge\rlservice.exe [2019-03-05 169840]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2019-07-24 6797008]
R3 cbdhsvc_32be6;cbdhsvc_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 PimIndexMaintenanceSvc_32be6;PimIndexMaintenanceSvc_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2019-07-31 913168]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-06 153168]
S2 Intel(R) TPM Provisioning Service;Intel(R) TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [2017-02-24 548648]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_32be6;AarSvc_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2019-07-24 57504]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_32be6;BcastDVRUserService_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_32be6;BluetoothUserService_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_32be6;CaptureService_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_32be6;ConsentUxUserSvc_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CoordinatorServiceHost;SW Distributed TS Coordinator Service; C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe [2014-01-11 76328]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2019-03-19 380120]
S3 CredentialEnrollmentManagerUserSvc_32be6;CredentialEnrollmentManagerUserSvc_32be6; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2019-03-19 380120]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_32be6;DeviceAssociationBrokerSvc_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_32be6;DevicePickerUserSvc_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_32be6;DevicesFlowUserSvc_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-07-31 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2018-10-23 1431888]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2018-10-13 1044816]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-07-31 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.142\elevation_service.exe [2019-07-13 1098224]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-06 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2017-02-24 732448]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_32be6;MessagingService_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; E:\Program Files\office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-06-14 187072]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_32be6;PrintWorkflowUserSvc_32be6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2019-07-31 828216]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[radar2004]

Také zdravím, zasílám log:



# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-02.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-02-2019
# Duration: 00:00:01
# OS: Windows 10 Pro
# Cleaned: 49
# Failed: 0


***** [ Services ] *****

Deleted RelevantKnowledge

***** [ Folders ] *****

Deleted C:\Program Files (x86)\RelevantKnowledge
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Program Files\FileViewPro
Deleted C:\ProgramData\FileViewPro
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileViewPro
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
Deleted C:\Users\ja\AppData\Roaming\Seznam.cz

***** [ Files ] *****

Deleted C:\Windows\SysWOW64\rlls.dll
Deleted C:\Windows\System32\rlls64.dll

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
Deleted HKCU\Software\PRODUCTSETUP
Deleted HKCU\Software\Seznam.cz
Deleted HKCU\Software\csastats
Deleted HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{4180DAC1-F43C-4D8A-A0DF-FED3AE517DDA}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{D9A96F61-B754-4C35-9C4D-DCAF85ABECBA}
Deleted HKLM\Software\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Deleted HKLM\Software\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Deleted HKLM\Software\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Deleted HKLM\Software\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Deleted HKLM\Software\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Deleted HKLM\Software\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Deleted HKLM\Software\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
Deleted HKLM\Software\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|seznam-listicka-distribuce
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\FileViewPro_is1
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\NCTAudioCDGrabber2.DLL
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|seznam-listicka-distribuce
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{D08D9F98-1C78-4704-87E6-368B0023D831}

***** [ Chromium (and derivatives) ] *****

Deleted Seznam doplněk - Email
Deleted Seznam doplněk - Esko

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [6093 octets] - [02/08/2019 19:04:22]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Rudy]

OK. Teď dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .

[radar2004]

logy posílám v zazipované příloze

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {0DD86290-9216-4375-B015-BC5E6D3387EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-06] (Google Inc -> Google Inc.)
Task: {498CF8A2-51CA-4E38-A95A-970E3DF7A80B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-06] (Google Inc -> Google Inc.)
Task: {7A8FD27B-1BBB-4381-B1B8-D7D362941854} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS.exe [614400 2018-10-19] () [File not signed]
C:\WINDOWS\AutoKMS.exe
Task: C:\WINDOWS\Tasks\AutoKMS.job => C:\WINDOWS\AutoKMS.exe
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\AutoKMS
C:\WINDOWS\Tasks\AutoKMS.job
C:\Users\ja\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> No File
FirewallRules: [{24BAE4D5-7E9C-4163-B7AF-3D9AA55159E2}] => (Block) C:\windows\kmsemulator.exe No File
FirewallRules: [{C831ECF9-D9A5-44C3-A923-3FBE0F5B122D}] => (Block) C:\windows\kmsemulator.exe No File
FirewallRules: [{7312D1CE-AB3F-48CE-8FDF-F4E054D0DC18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe No File
FirewallRules: [{6367DB17-6ABE-43CF-A1B7-A5C60026D7CC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe No File
FirewallRules: [{3E9B53C8-51B5-4144-BBA2-42DCEAF37706}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File
FirewallRules: [{F511E6A6-1B2F-4B86-B26F-11D045A7F63F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe No File
FirewallRules: [{8383D09A-058A-4D1F-AE5D-38FB1E8A871B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe No File
FirewallRules: [{00396853-4C88-4B60-95FD-7E7883C5E147}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe No File
FirewallRules: [{B8E2414A-B9A6-4E8F-AE36-A12E4FD99E7F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe No File
FirewallRules: [{F124BFBA-26B1-4FD2-AC82-318E8C6EE6F7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{7EF1B2FD-FCEF-498C-ACD4-617E8C7F8E57}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File

EmptyTemp:
End

Uložte do C:\Users\ja\Desktop\Programy jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[radar2004]

Ran by ja (02-08-2019 20:09:32) Run:1
Running from C:\Users\ja\Desktop\Programy
Loaded Profiles: ja (Available Profiles: ja)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {0DD86290-9216-4375-B015-BC5E6D3387EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-06] (Google Inc -> Google Inc.)
Task: {498CF8A2-51CA-4E38-A95A-970E3DF7A80B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-06] (Google Inc -> Google Inc.)
Task: {7A8FD27B-1BBB-4381-B1B8-D7D362941854} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS.exe [614400 2018-10-19] () [File not signed]
C:\WINDOWS\AutoKMS.exe
Task: C:\WINDOWS\Tasks\AutoKMS.job => C:\WINDOWS\AutoKMS.exe
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\AutoKMS
C:\WINDOWS\Tasks\AutoKMS.job
C:\Users\ja\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> No File
FirewallRules: [{24BAE4D5-7E9C-4163-B7AF-3D9AA55159E2}] => (Block) C:\windows\kmsemulator.exe No File
FirewallRules: [{C831ECF9-D9A5-44C3-A923-3FBE0F5B122D}] => (Block) C:\windows\kmsemulator.exe No File
FirewallRules: [{7312D1CE-AB3F-48CE-8FDF-F4E054D0DC18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe No File
FirewallRules: [{6367DB17-6ABE-43CF-A1B7-A5C60026D7CC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe No File
FirewallRules: [{3E9B53C8-51B5-4144-BBA2-42DCEAF37706}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File
FirewallRules: [{F511E6A6-1B2F-4B86-B26F-11D045A7F63F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe No File
FirewallRules: [{8383D09A-058A-4D1F-AE5D-38FB1E8A871B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe No File
FirewallRules: [{00396853-4C88-4B60-95FD-7E7883C5E147}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe No File
FirewallRules: [{B8E2414A-B9A6-4E8F-AE36-A12E4FD99E7F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe No File
FirewallRules: [{F124BFBA-26B1-4FD2-AC82-318E8C6EE6F7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{7EF1B2FD-FCEF-498C-ACD4-617E8C7F8E57}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0DD86290-9216-4375-B015-BC5E6D3387EE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0DD86290-9216-4375-B015-BC5E6D3387EE}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{498CF8A2-51CA-4E38-A95A-970E3DF7A80B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{498CF8A2-51CA-4E38-A95A-970E3DF7A80B}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{7A8FD27B-1BBB-4381-B1B8-D7D362941854}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7A8FD27B-1BBB-4381-B1B8-D7D362941854}" => removed successfully
C:\WINDOWS\System32\Tasks\AutoKMS => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => removed successfully
C:\WINDOWS\AutoKMS.exe => moved successfully
C:\WINDOWS\Tasks\AutoKMS.job => moved successfully
HKLM\Software\Classes\PROTOCOLS\Handler\wlpg => removed successfully
HKLM\Software\Classes\CLSID\{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"C:\WINDOWS\System32\Tasks\AutoKMS" => not found
"C:\WINDOWS\Tasks\AutoKMS.job" => not found
C:\Users\ja\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxDTCM => removed successfully
HKLM\Software\Classes\CLSID\{9B5F5829-A529-4B12-814A-E81BCB8D93FC} => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{24BAE4D5-7E9C-4163-B7AF-3D9AA55159E2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C831ECF9-D9A5-44C3-A923-3FBE0F5B122D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7312D1CE-AB3F-48CE-8FDF-F4E054D0DC18}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6367DB17-6ABE-43CF-A1B7-A5C60026D7CC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3E9B53C8-51B5-4144-BBA2-42DCEAF37706}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F511E6A6-1B2F-4B86-B26F-11D045A7F63F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8383D09A-058A-4D1F-AE5D-38FB1E8A871B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{00396853-4C88-4B60-95FD-7E7883C5E147}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8E2414A-B9A6-4E8F-AE36-A12E4FD99E7F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F124BFBA-26B1-4FD2-AC82-318E8C6EE6F7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7EF1B2FD-FCEF-498C-ACD4-617E8C7F8E57}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 32721183 B
Java, Flash, Steam htmlcache => 46394147 B
Windows/system/drivers => 103215859 B
Edge => 6982562 B
Chrome => 541455858 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 20716 B
LocalService => 0 B
NetworkService => 1122 B
NetworkService => 0 B
ja => 16184549 B

RecycleBin => 5864862632 B
EmptyTemp: => 6.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:10:50 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[radar2004]

Od doby co jsem začal vytvářet logy tak už problém avast nenahlásil...předtím to bylo co 10sekund..

[radar2004]

Díky za další úspěšnou pomoc. Posílám příspěvek na provoz.

[Rudy]

Rádo se stalo. A za příspěvek děkujeme!