Keylogger?
Napsal: 23 pro 2017 15:23
Můžete mi prosím pomoct? Mám pocit, že můj ex mi dal do pc keylogger nebo něco. Můžete se na to podívat?
Logfile of random's system information tool 1.10 (written by random/random)
Run by El at 2017-12-23 15:16:44
Microsoft Windows 10 Pro
System drive C: has 183 GB (77%) free of 238 GB
Total RAM: 8139 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:16:49, on 23.12.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0098)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\El\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\trend micro\El.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\El\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{0CA312D0-E6CC-46AD-B1F2-E56FD185F8C7}: NameServer = 10.0.0.254 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{0CA312D0-E6CC-46AD-B1F2-E56FD185F8C7}: NameServer = 10.0.0.254 8.8.8.8
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Alcohol Virtual AHCI Controller Management Service (AxVirtualAHCISrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe
O23 - Service: @oem8.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - D:\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 11466 bytes
======Listing Processes======
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservice -p -s bthserv
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservice -p -s nsi
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-faa01f82-6ace-47ce-b884-b57eee03218a -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-72d327fd-9fc4-47e9-a1a8-ff8a4f1532b3 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a6a20c1b-0997-4629-9545-ae9610544923 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-32fd8f13-086d-4c93-bc0d-66aba5805a9c -LifetimeId:b1b6955d-6550-4d6a-b156-244fdf6d8aff -DeviceGroupId:WpdFsGroup
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s BthHFSrv
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
dashost.exe {cb6856d3-52e4-4623-aa824a91b07008b2}
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k localservicenonetwork -p
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\WINDOWS\system32\BtwRSupportService.exe
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
"D:\Origin\OriginWebHelperService.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
c:\windows\system32\svchost.exe -k localservice -p -s PhoneSvc
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
c:\windows\system32\svchost.exe -k localservice -s W32Time
C:\WINDOWS\system32\AUDIODG.EXE 0x688
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
ClassicStartMenu.exe -startup
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"ctfmon.exe"
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\Windows Defender\MSASCuiL.exe"
AvastUI.exe /nogui
"C:\Users\El\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\El\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\El\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\El\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=63.0.3239.84 --initial-client-data=0x1d8,0x1dc,0x1e0,0x1d4,0x1e4,0x7ffbdc935720,0x7ffbdc935760,0x7ffbdc935738
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=868 --on-initialized-event-handle=708 --parent-handle=716 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1452,6323650718593993004,14434825583179016786,131072 --gpu-vendor-id=0x10de --gpu-device-id=0x1c03 --gpu-driver-vendor=NVIDIA --gpu-driver-version=23.21.13.8813 --gpu-driver-date=10-27-2017 --service-request-channel-token=D3CDDF3F6077901B450124F14A107E44 --mojo-platform-channel-handle=1468 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" /logon
C:\WINDOWS\splwow64.exe 8192
"C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1452,6323650718593993004,14434825583179016786,131072 --service-pipe-token=0F62FD8EE14B82BF35F521FCA86CBC5F --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=0F62FD8EE14B82BF35F521FCA86CBC5F --renderer-client-id=7 --mojo-platform-channel-handle=5668 /prefetch:1
"C:\WINDOWS\system32\mstsc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1712.3351.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11711.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1452,6323650718593993004,14434825583179016786,131072 --service-pipe-token=1DC183D98BF0CEFB48CCBBB1F0171265 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=1DC183D98BF0CEFB48CCBBB1F0171265 --renderer-client-id=12 --mojo-platform-channel-handle=3732 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe32_ Global\UsGthrCtrlFltPipeMssGthrPipe32 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 716 720 728 8192 724
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"D:\Stažené soubory\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30 883160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-11-11 571968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-11 235584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2016-07-30 550360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30 759768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\MICROS~1\Office12\GR469A~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-21 1233288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2016-07-30 505816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30 883160]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30 759768]
{D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-21 1233288]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2016-07-30 163800]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-11-17 253344]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-08-18 1923008]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\El\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-11-30 1551048]
"AlcoholAutomount"=C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2015-03-12 39376]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2017-08-14 4836032]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2016-03-11 1314432]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-09-05 587288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\MICROS~1\Office12\GR469A~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-12-23 15:16:44 ----D---- C:\rsit
2017-12-23 15:16:44 ----D---- C:\Program Files\trend micro
2017-12-21 22:59:24 ----A---- C:\WINDOWS\system32\drivers\aswHdsKe.sys
2017-12-21 22:59:23 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-12-20 20:22:24 ----D---- C:\ProgramData\SWCUTemp
2017-12-20 20:22:20 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\audiodg.exe
2017-12-19 19:09:58 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\jscript.dll
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\wininet.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\mispace.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\AcGenral.dll
2017-12-19 19:09:55 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-12-19 19:09:55 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-12-19 19:09:55 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-12-19 19:09:55 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2017-12-19 19:09:54 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-12-19 19:09:54 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\ISM.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-12-19 19:09:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-12-19 19:09:52 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-12-19 19:09:52 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2017-12-19 19:09:51 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2017-12-19 19:09:51 ----A---- C:\WINDOWS\system32\AudioEng.dll
2017-12-19 19:09:50 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2017-12-19 19:09:50 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2017-12-19 19:09:50 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2017-12-19 19:09:50 ----A---- C:\WINDOWS\system32\StartTileData.dll
2017-12-19 19:09:50 ----A---- C:\WINDOWS\system32\AcLayers.dll
2017-12-19 19:09:49 ----A---- C:\WINDOWS\system32\sspicli.dll
2017-12-19 19:09:49 ----A---- C:\WINDOWS\system32\shell32.dll
2017-12-19 19:09:48 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-12-19 19:09:48 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-12-19 19:09:48 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-12-19 19:09:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-12-19 19:09:47 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-12-19 19:09:47 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2017-12-19 19:09:47 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-12-19 19:09:47 ----A---- C:\WINDOWS\system32\user32.dll
2017-12-19 19:09:46 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\vac.exe
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\twinui.dll
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\ci.dll
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2017-12-19 19:09:45 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-12-19 19:09:45 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-12-19 19:09:45 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-12-19 19:09:45 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2017-12-19 19:09:45 ----A---- C:\WINDOWS\explorer.exe
2017-12-19 19:09:44 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\SRH.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\d3d11.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\usocore.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\t2embed.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\sppwinob.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\winmde.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\mfplat.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\d3d9on12.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\d3d9.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\wow64.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\winload.exe
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\samsrv.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\pnidui.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\evr.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\dxgi.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\AppVClient.exe
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\KeyboardFilterShim.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\gamingtcui.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\winresume.exe
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\services.exe
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\msvproc.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\gamingtcui.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\edgeIso.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\DictationManager.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\comdlg32.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\d3d9on12.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\wuauclt.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\wimserv.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\wimgapi.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\sppsvc.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\SpatializerApo.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\schedsvc.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\reseteng.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\provtool.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\provhandlers.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\provengine.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\msIso.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\hal.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\bam.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\cscript.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\apphelp.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\aadjcsp.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\wscript.exe
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\SpatializerApo.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\slcext.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\msvcrt.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\DictationManager.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\batmeter.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\wscript.exe
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\usoapi.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\umpo.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\sppcext.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\slcext.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\scrobj.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\PushToInstall.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\msvcrt.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\itss.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\hascsp.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\FSClient.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\DeviceUpdateAgent.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\bcrypt.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\acppage.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\system32\tzres.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\system32\batmeter.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\system32\actxprxy.dll
2017-12-17 20:50:20 ----SHD---- C:\Config.Msi
2017-12-17 20:01:47 ----D---- C:\Program Files (x86)\Origin Games
2017-12-17 15:14:44 ----D---- C:\Program Files\Common Files\Avast Software
2017-12-17 15:10:27 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2017-12-17 15:10:27 ----A---- C:\WINDOWS\system32\InstallService.dll
======List of files/folders modified in the last 1 month======
2017-12-23 15:16:45 ----D---- C:\WINDOWS\Prefetch
2017-12-23 15:16:44 ----RD---- C:\Program Files
2017-12-23 15:15:20 ----D---- C:\WINDOWS\Temp
2017-12-23 15:07:00 ----D---- C:\WINDOWS\system32\sru
2017-12-23 13:36:34 ----D---- C:\WINDOWS\system32\config
2017-12-23 13:16:59 ----D---- C:\WINDOWS\system32\DriverStore
2017-12-23 13:16:57 ----D---- C:\WINDOWS\WinSxS
2017-12-23 13:08:59 ----D---- C:\ProgramData\NVIDIA
2017-12-22 00:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2017-12-21 23:59:27 ----D---- C:\WINDOWS\system32\SleepStudy
2017-12-21 23:33:01 ----D---- C:\WINDOWS\rescache
2017-12-21 23:32:59 ----D---- C:\WINDOWS\Logs
2017-12-21 23:32:51 ----RD---- C:\WINDOWS\Microsoft.NET
2017-12-21 22:59:28 ----D---- C:\WINDOWS\system32\drivers
2017-12-21 22:59:26 ----D---- C:\WINDOWS\system32\Tasks
2017-12-21 22:59:23 ----D---- C:\WINDOWS\System32
2017-12-21 19:01:36 ----HD---- C:\Program Files\WindowsApps
2017-12-20 20:28:15 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-20 20:27:40 ----D---- C:\WINDOWS\INF
2017-12-20 20:24:04 ----D---- C:\WINDOWS\AppReadiness
2017-12-20 20:23:29 ----D---- C:\WINDOWS\system32\WDI
2017-12-20 20:22:24 ----HD---- C:\ProgramData
2017-12-20 20:22:20 ----D---- C:\WINDOWS\SysWOW64
2017-12-19 20:43:54 ----D---- C:\WINDOWS\system32\catroot2
2017-12-19 20:43:38 ----D---- C:\WINDOWS\TextInput
2017-12-19 20:43:38 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2017-12-19 20:43:38 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-12-19 20:43:38 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\WinMetadata
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\wbem
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\oobe
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\migration
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\Dism
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\cs-CZ
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\Boot
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\appraiser
2017-12-19 20:43:37 ----D---- C:\WINDOWS\ShellExperiences
2017-12-19 20:43:37 ----D---- C:\WINDOWS\Provisioning
2017-12-19 20:43:37 ----D---- C:\WINDOWS\apppatch
2017-12-19 20:43:37 ----D---- C:\Windows
2017-12-19 20:43:37 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2017-12-19 20:43:37 ----D---- C:\Program Files\Windows Defender
2017-12-19 20:43:37 ----D---- C:\Program Files\internet explorer
2017-12-19 20:43:37 ----D---- C:\Program Files (x86)\Internet Explorer
2017-12-19 20:43:37 ----D---- C:\PerfLogs
2017-12-19 19:10:59 ----D---- C:\WINDOWS\CbsTemp
2017-12-19 19:10:36 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-12-19 19:10:35 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-12-19 19:10:35 ----A---- C:\WINDOWS\system32\sspisrv.dll
2017-12-18 17:55:02 ----SHD---- C:\System Volume Information
2017-12-17 20:50:55 ----SHD---- C:\WINDOWS\Installer
2017-12-17 20:12:57 ----D---- C:\Users\El\AppData\Roaming\Origin
2017-12-17 20:12:36 ----D---- C:\ProgramData\Origin
2017-12-17 20:01:57 ----SD---- C:\ProgramData\Microsoft
2017-12-17 20:01:47 ----RD---- C:\Program Files (x86)
2017-12-17 15:14:44 ----D---- C:\Program Files\Common Files
2017-12-17 15:14:31 ----AD---- C:\Program Files\KMSpico
2017-12-17 15:10:09 ----D---- C:\WINDOWS\DeliveryOptimization
2017-12-14 13:12:20 ----D---- C:\WINDOWS\system32\MRT
2017-12-14 13:11:21 ----D---- C:\WINDOWS\debug
2017-12-14 13:11:19 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-14 13:11:16 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-12-04 14:05:35 ----D---- C:\Windows.old
2017-12-03 23:38:40 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-12-03 21:46:00 ----D---- C:\Users\El\AppData\Roaming\vlc
2017-11-25 12:42:02 ----RD---- C:\WINDOWS\assembly
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2017-12-21 199448]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2017-12-21 343768]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2017-12-21 57696]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-12-21 84384]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-12-21 358672]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2017-09-30 293272]
R0 sptd2;sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [2017-11-12 203296]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2017-12-21 185096]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2017-12-21 321512]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2017-12-21 149344]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-12-21 110336]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-12-21 1025176]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-12-21 457400]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2017-12-08 59800]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-09-29 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-09-29 8192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-12-21 146664]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-12-21 204456]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-09-29 384000]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-09-29 43520]
R3 bcbtums;@oem8.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-03-27 173312]
R3 BthA2DP;@wdma_bt.inf,%BthA2DP.SvcDesc%;Bluetooth stereo; C:\WINDOWS\system32\drivers\BthA2DP.sys [2017-09-29 191488]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2017-09-29 105472]
R3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2017-09-29 46592]
R3 bthl2cap;@bthl2cap.inf,%bthl2cap_desc%;Ovladač podpory protokolu Microsoft Bluetooth; C:\WINDOWS\system32\DRIVERS\bthl2cap.sys [2017-09-29 83968]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2017-09-29 78848]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-09-29 129536]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2017-09-29 85504]
R3 dtlitescsibus;@oem5.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2017-11-12 30264]
R3 dtliteusbbus;@oem2.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2017-11-12 47672]
R3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
R3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-09-29 171520]
R3 MEIx64;@oem20.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-01-19 204032]
R3 NVHDA;@oem19.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-11-09 233904]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [2017-11-09 16936048]
R3 nvvad_WaveExtensible;@oem13.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-08-18 48064]
R3 nvvhci;@oem9.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-08-18 57792]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2017-09-29 189440]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2017-09-29 604160]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-09-29 123800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-09-29 103320]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-09-29 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-09-29 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S1 lpsport;lpsport; C:\WINDOWS\system32\drivers\lpsport.sys [2017-11-17 61304]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2017-09-30 126872]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2017-09-30 158616]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2017-09-30 143768]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-12-21 46976]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2017-11-22 1015296]
S3 btwampfl;@oem8.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-03-27 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-29 39424]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-09-29 122368]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-09-29 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-09-29 50584]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-09-29 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-09-29 91648]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-09-29 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-09-29 119808]
S3 kvnet;Kerio Virtual Network Adapter; C:\WINDOWS\System32\drivers\kvnet.sys [2015-02-03 30208]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-09-29 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-09-29 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-08-18 30144]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-09-29 936856]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-09-30 56216]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-09-27 83984]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-11-17 281416]
R2 AxVirtualAHCISrv;Alcohol Virtual AHCI Controller Management Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe [2015-12-04 99712]
R2 BcmBtRSupport;@oem8.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-03-27 2251992]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CDPUserSvc_15b2431;Uživatelská služba platformy připojených zařízení_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-08-18 512960]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-10-27 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-08-18 449984]
R2 OneSyncSvc_15b2431;Hostitel synchronizace_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 Origin Web Helper Service;Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [2017-11-22 3014472]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-11-26 519152]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-11-17 7549928]
R3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2017-08-14 2291904]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 PimIndexMaintenanceSvc_15b2431;Data kontaktů_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2015-03-12 39376]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-09 153752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc_15b2431;Tok zařízení_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-09-29 85504]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-11-22 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-09 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService_15b2431;Služba zasílání zpráv_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-08-18 512960]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2017-11-22 2134848]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc_15b2431;PrintWorkflow_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-11-26 4329952]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-09-29 1288704]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-11-22 956416]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2017-11-26 819096]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
Logfile of random's system information tool 1.10 (written by random/random)
Run by El at 2017-12-23 15:16:44
Microsoft Windows 10 Pro
System drive C: has 183 GB (77%) free of 238 GB
Total RAM: 8139 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:16:49, on 23.12.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0098)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\El\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\trend micro\El.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\El\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{0CA312D0-E6CC-46AD-B1F2-E56FD185F8C7}: NameServer = 10.0.0.254 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{0CA312D0-E6CC-46AD-B1F2-E56FD185F8C7}: NameServer = 10.0.0.254 8.8.8.8
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Alcohol Virtual AHCI Controller Management Service (AxVirtualAHCISrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe
O23 - Service: @oem8.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - D:\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 11466 bytes
======Listing Processes======
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservice -p -s bthserv
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservice -p -s nsi
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-faa01f82-6ace-47ce-b884-b57eee03218a -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-72d327fd-9fc4-47e9-a1a8-ff8a4f1532b3 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a6a20c1b-0997-4629-9545-ae9610544923 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-32fd8f13-086d-4c93-bc0d-66aba5805a9c -LifetimeId:b1b6955d-6550-4d6a-b156-244fdf6d8aff -DeviceGroupId:WpdFsGroup
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s BthHFSrv
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
dashost.exe {cb6856d3-52e4-4623-aa824a91b07008b2}
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k localservicenonetwork -p
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\WINDOWS\system32\BtwRSupportService.exe
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
"D:\Origin\OriginWebHelperService.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
c:\windows\system32\svchost.exe -k localservice -p -s PhoneSvc
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
c:\windows\system32\svchost.exe -k localservice -s W32Time
C:\WINDOWS\system32\AUDIODG.EXE 0x688
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
ClassicStartMenu.exe -startup
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"ctfmon.exe"
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\Windows Defender\MSASCuiL.exe"
AvastUI.exe /nogui
"C:\Users\El\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\El\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\El\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\El\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=63.0.3239.84 --initial-client-data=0x1d8,0x1dc,0x1e0,0x1d4,0x1e4,0x7ffbdc935720,0x7ffbdc935760,0x7ffbdc935738
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=868 --on-initialized-event-handle=708 --parent-handle=716 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1452,6323650718593993004,14434825583179016786,131072 --gpu-vendor-id=0x10de --gpu-device-id=0x1c03 --gpu-driver-vendor=NVIDIA --gpu-driver-version=23.21.13.8813 --gpu-driver-date=10-27-2017 --service-request-channel-token=D3CDDF3F6077901B450124F14A107E44 --mojo-platform-channel-handle=1468 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" /logon
C:\WINDOWS\splwow64.exe 8192
"C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1452,6323650718593993004,14434825583179016786,131072 --service-pipe-token=0F62FD8EE14B82BF35F521FCA86CBC5F --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=0F62FD8EE14B82BF35F521FCA86CBC5F --renderer-client-id=7 --mojo-platform-channel-handle=5668 /prefetch:1
"C:\WINDOWS\system32\mstsc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1712.3351.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11711.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1452,6323650718593993004,14434825583179016786,131072 --service-pipe-token=1DC183D98BF0CEFB48CCBBB1F0171265 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=1DC183D98BF0CEFB48CCBBB1F0171265 --renderer-client-id=12 --mojo-platform-channel-handle=3732 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe32_ Global\UsGthrCtrlFltPipeMssGthrPipe32 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 716 720 728 8192 724
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"D:\Stažené soubory\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30 883160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-11-11 571968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-11 235584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2016-07-30 550360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30 759768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\MICROS~1\Office12\GR469A~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-21 1233288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2016-07-30 505816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30 883160]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30 759768]
{D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-21 1233288]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2016-07-30 163800]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-11-17 253344]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-08-18 1923008]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\El\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-11-30 1551048]
"AlcoholAutomount"=C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2015-03-12 39376]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2017-08-14 4836032]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2016-03-11 1314432]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-09-05 587288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\MICROS~1\Office12\GR469A~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-12-23 15:16:44 ----D---- C:\rsit
2017-12-23 15:16:44 ----D---- C:\Program Files\trend micro
2017-12-21 22:59:24 ----A---- C:\WINDOWS\system32\drivers\aswHdsKe.sys
2017-12-21 22:59:23 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-12-20 20:22:24 ----D---- C:\ProgramData\SWCUTemp
2017-12-20 20:22:20 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-12-19 19:09:59 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-12-19 19:09:59 ----A---- C:\WINDOWS\system32\audiodg.exe
2017-12-19 19:09:58 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-12-19 19:09:58 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\jscript.dll
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-12-19 19:09:57 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\wininet.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\mispace.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-12-19 19:09:56 ----A---- C:\WINDOWS\system32\AcGenral.dll
2017-12-19 19:09:55 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-12-19 19:09:55 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-12-19 19:09:55 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-12-19 19:09:55 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2017-12-19 19:09:54 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-12-19 19:09:54 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\ISM.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2017-12-19 19:09:53 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-12-19 19:09:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-12-19 19:09:52 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-12-19 19:09:52 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2017-12-19 19:09:51 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2017-12-19 19:09:51 ----A---- C:\WINDOWS\system32\AudioEng.dll
2017-12-19 19:09:50 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2017-12-19 19:09:50 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2017-12-19 19:09:50 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2017-12-19 19:09:50 ----A---- C:\WINDOWS\system32\StartTileData.dll
2017-12-19 19:09:50 ----A---- C:\WINDOWS\system32\AcLayers.dll
2017-12-19 19:09:49 ----A---- C:\WINDOWS\system32\sspicli.dll
2017-12-19 19:09:49 ----A---- C:\WINDOWS\system32\shell32.dll
2017-12-19 19:09:48 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-12-19 19:09:48 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-12-19 19:09:48 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-12-19 19:09:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-12-19 19:09:47 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-12-19 19:09:47 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2017-12-19 19:09:47 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-12-19 19:09:47 ----A---- C:\WINDOWS\system32\user32.dll
2017-12-19 19:09:46 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\vac.exe
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\twinui.dll
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\ci.dll
2017-12-19 19:09:46 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2017-12-19 19:09:45 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-12-19 19:09:45 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-12-19 19:09:45 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-12-19 19:09:45 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2017-12-19 19:09:45 ----A---- C:\WINDOWS\explorer.exe
2017-12-19 19:09:44 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\SRH.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\d3d11.dll
2017-12-19 19:09:44 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\usocore.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\t2embed.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\sppwinob.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2017-12-19 19:09:43 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\winmde.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\mfplat.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\d3d9on12.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\d3d9.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-12-19 19:09:42 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\wow64.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\winload.exe
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\samsrv.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\pnidui.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\evr.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\dxgi.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\AppVClient.exe
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-12-19 19:09:41 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\KeyboardFilterShim.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\gamingtcui.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\winresume.exe
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\services.exe
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\msvproc.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\gamingtcui.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\edgeIso.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\DictationManager.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\comdlg32.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2017-12-19 19:09:40 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\d3d9on12.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\wuauclt.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\wimserv.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\wimgapi.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\sppsvc.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\SpatializerApo.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\schedsvc.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\reseteng.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\provtool.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\provhandlers.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\provengine.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\msIso.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\hal.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\drivers\bam.sys
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\cscript.exe
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\apphelp.dll
2017-12-19 19:09:39 ----A---- C:\WINDOWS\system32\aadjcsp.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\wscript.exe
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\SpatializerApo.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\slcext.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\msvcrt.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\DictationManager.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\batmeter.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\wscript.exe
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\usoapi.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\umpo.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\sppcext.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\slcext.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\scrobj.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\PushToInstall.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\msvcrt.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\itss.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\hascsp.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\FSClient.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\DeviceUpdateAgent.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\bcrypt.dll
2017-12-19 19:09:38 ----A---- C:\WINDOWS\system32\acppage.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\system32\tzres.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\system32\batmeter.dll
2017-12-19 19:09:37 ----A---- C:\WINDOWS\system32\actxprxy.dll
2017-12-17 20:50:20 ----SHD---- C:\Config.Msi
2017-12-17 20:01:47 ----D---- C:\Program Files (x86)\Origin Games
2017-12-17 15:14:44 ----D---- C:\Program Files\Common Files\Avast Software
2017-12-17 15:10:27 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2017-12-17 15:10:27 ----A---- C:\WINDOWS\system32\InstallService.dll
======List of files/folders modified in the last 1 month======
2017-12-23 15:16:45 ----D---- C:\WINDOWS\Prefetch
2017-12-23 15:16:44 ----RD---- C:\Program Files
2017-12-23 15:15:20 ----D---- C:\WINDOWS\Temp
2017-12-23 15:07:00 ----D---- C:\WINDOWS\system32\sru
2017-12-23 13:36:34 ----D---- C:\WINDOWS\system32\config
2017-12-23 13:16:59 ----D---- C:\WINDOWS\system32\DriverStore
2017-12-23 13:16:57 ----D---- C:\WINDOWS\WinSxS
2017-12-23 13:08:59 ----D---- C:\ProgramData\NVIDIA
2017-12-22 00:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2017-12-21 23:59:27 ----D---- C:\WINDOWS\system32\SleepStudy
2017-12-21 23:33:01 ----D---- C:\WINDOWS\rescache
2017-12-21 23:32:59 ----D---- C:\WINDOWS\Logs
2017-12-21 23:32:51 ----RD---- C:\WINDOWS\Microsoft.NET
2017-12-21 22:59:28 ----D---- C:\WINDOWS\system32\drivers
2017-12-21 22:59:26 ----D---- C:\WINDOWS\system32\Tasks
2017-12-21 22:59:23 ----D---- C:\WINDOWS\System32
2017-12-21 19:01:36 ----HD---- C:\Program Files\WindowsApps
2017-12-20 20:28:15 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-20 20:27:40 ----D---- C:\WINDOWS\INF
2017-12-20 20:24:04 ----D---- C:\WINDOWS\AppReadiness
2017-12-20 20:23:29 ----D---- C:\WINDOWS\system32\WDI
2017-12-20 20:22:24 ----HD---- C:\ProgramData
2017-12-20 20:22:20 ----D---- C:\WINDOWS\SysWOW64
2017-12-19 20:43:54 ----D---- C:\WINDOWS\system32\catroot2
2017-12-19 20:43:38 ----D---- C:\WINDOWS\TextInput
2017-12-19 20:43:38 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2017-12-19 20:43:38 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-12-19 20:43:38 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\WinMetadata
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\wbem
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\oobe
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\migration
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\Dism
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\cs-CZ
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\Boot
2017-12-19 20:43:38 ----D---- C:\WINDOWS\system32\appraiser
2017-12-19 20:43:37 ----D---- C:\WINDOWS\ShellExperiences
2017-12-19 20:43:37 ----D---- C:\WINDOWS\Provisioning
2017-12-19 20:43:37 ----D---- C:\WINDOWS\apppatch
2017-12-19 20:43:37 ----D---- C:\Windows
2017-12-19 20:43:37 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2017-12-19 20:43:37 ----D---- C:\Program Files\Windows Defender
2017-12-19 20:43:37 ----D---- C:\Program Files\internet explorer
2017-12-19 20:43:37 ----D---- C:\Program Files (x86)\Internet Explorer
2017-12-19 20:43:37 ----D---- C:\PerfLogs
2017-12-19 19:10:59 ----D---- C:\WINDOWS\CbsTemp
2017-12-19 19:10:36 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-12-19 19:10:35 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-12-19 19:10:35 ----A---- C:\WINDOWS\system32\sspisrv.dll
2017-12-18 17:55:02 ----SHD---- C:\System Volume Information
2017-12-17 20:50:55 ----SHD---- C:\WINDOWS\Installer
2017-12-17 20:12:57 ----D---- C:\Users\El\AppData\Roaming\Origin
2017-12-17 20:12:36 ----D---- C:\ProgramData\Origin
2017-12-17 20:01:57 ----SD---- C:\ProgramData\Microsoft
2017-12-17 20:01:47 ----RD---- C:\Program Files (x86)
2017-12-17 15:14:44 ----D---- C:\Program Files\Common Files
2017-12-17 15:14:31 ----AD---- C:\Program Files\KMSpico
2017-12-17 15:10:09 ----D---- C:\WINDOWS\DeliveryOptimization
2017-12-14 13:12:20 ----D---- C:\WINDOWS\system32\MRT
2017-12-14 13:11:21 ----D---- C:\WINDOWS\debug
2017-12-14 13:11:19 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-14 13:11:16 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-12-04 14:05:35 ----D---- C:\Windows.old
2017-12-03 23:38:40 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-12-03 21:46:00 ----D---- C:\Users\El\AppData\Roaming\vlc
2017-11-25 12:42:02 ----RD---- C:\WINDOWS\assembly
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2017-12-21 199448]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2017-12-21 343768]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2017-12-21 57696]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-12-21 84384]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-12-21 358672]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2017-09-30 293272]
R0 sptd2;sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [2017-11-12 203296]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2017-12-21 185096]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2017-12-21 321512]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2017-12-21 149344]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-12-21 110336]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-12-21 1025176]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-12-21 457400]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2017-12-08 59800]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-09-29 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-09-29 8192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-12-21 146664]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-12-21 204456]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-09-29 384000]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-09-29 43520]
R3 bcbtums;@oem8.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-03-27 173312]
R3 BthA2DP;@wdma_bt.inf,%BthA2DP.SvcDesc%;Bluetooth stereo; C:\WINDOWS\system32\drivers\BthA2DP.sys [2017-09-29 191488]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2017-09-29 105472]
R3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2017-09-29 46592]
R3 bthl2cap;@bthl2cap.inf,%bthl2cap_desc%;Ovladač podpory protokolu Microsoft Bluetooth; C:\WINDOWS\system32\DRIVERS\bthl2cap.sys [2017-09-29 83968]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2017-09-29 78848]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-09-29 129536]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2017-09-29 85504]
R3 dtlitescsibus;@oem5.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2017-11-12 30264]
R3 dtliteusbbus;@oem2.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2017-11-12 47672]
R3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
R3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-09-29 171520]
R3 MEIx64;@oem20.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-01-19 204032]
R3 NVHDA;@oem19.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-11-09 233904]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [2017-11-09 16936048]
R3 nvvad_WaveExtensible;@oem13.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-08-18 48064]
R3 nvvhci;@oem9.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-08-18 57792]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2017-09-29 189440]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2017-09-29 604160]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-09-29 123800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-09-29 103320]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-09-29 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-09-29 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S1 lpsport;lpsport; C:\WINDOWS\system32\drivers\lpsport.sys [2017-11-17 61304]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2017-09-30 126872]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2017-09-30 158616]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2017-09-30 143768]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-12-21 46976]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2017-11-22 1015296]
S3 btwampfl;@oem8.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-03-27 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-29 39424]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-09-29 122368]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-09-29 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-09-29 50584]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-09-29 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-09-29 91648]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-09-29 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-09-29 119808]
S3 kvnet;Kerio Virtual Network Adapter; C:\WINDOWS\System32\drivers\kvnet.sys [2015-02-03 30208]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-09-29 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-09-29 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-08-18 30144]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-09-29 936856]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-09-30 56216]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-09-27 83984]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-11-17 281416]
R2 AxVirtualAHCISrv;Alcohol Virtual AHCI Controller Management Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe [2015-12-04 99712]
R2 BcmBtRSupport;@oem8.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-03-27 2251992]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CDPUserSvc_15b2431;Uživatelská služba platformy připojených zařízení_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-08-18 512960]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-10-27 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-08-18 449984]
R2 OneSyncSvc_15b2431;Hostitel synchronizace_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 Origin Web Helper Service;Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [2017-11-22 3014472]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-11-26 519152]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-11-17 7549928]
R3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2017-08-14 2291904]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 PimIndexMaintenanceSvc_15b2431;Data kontaktů_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2015-03-12 39376]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-09 153752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc_15b2431;Tok zařízení_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-09-29 85504]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-11-22 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-09 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService_15b2431;Služba zasílání zpráv_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-08-18 512960]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2017-11-22 2134848]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc_15b2431;PrintWorkflow_15b2431; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-11-26 4329952]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-09-29 1288704]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-11-22 956416]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2017-11-26 819096]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]