Ako zistím či mám v PC Keyloggera?
Napsal: 25 kvě 2018 15:10
Zdravím, potreboval by som zistiť či náhodou nemám Keyloggera v PC. Niekto sa mi nabúral do gmail účtu a do ešte do iného herného konta. Je nejaký 100% spôsob? Dá sa to aj nejak bez nutnosti preinštalovania PC?
Prikladám RSIT scan:
Prikladám RSIT scan:
Vopred ďakujem za pomoc.Logfile of random's system information tool 1.10 (written by random/random)
Run by Patrik at 2018-05-25 16:05:56
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 101 GB (42%) free of 238 GB
Total RAM: 8071 MB (37% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:06:07, on 25. 5. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19003)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Fraps\fraps.exe
C:\Windows\vVX1000.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Blizzard App\Battle.net.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\ProgramData\Battle.net\Agent\Agent.6160\Agent.exe
C:\Program Files (x86)\Blizzard App\Battle.net.10134\Battle.net Helper.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Blizzard App\Battle.net.10134\Battle.net Helper.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files\trend micro\Patrik.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: 127.0.0.3 www.anchorfree.net
O1 - Hosts: 127.0.0.2 www.mefeedia.com
O1 - Hosts: 127.0.0.3 anchorfree.net
O1 - Hosts: 127.0.0.3 techbrowsing.com/away.php
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Battle.net] "C:\Program Files (x86)\Blizzard App\Battle.net.exe" --autostarted
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O17 - HKLM\System\CCS\Services\Tcpip\..\{65545FB6-79F0-49FB-8065-32AFB92ED025}: NameServer = 8.8.8.8,8.8.4.4
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Chrome Remote Desktop Service (chromoting) - Spoločnosť Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\66.0.3359.12\remoting_host.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\Windows\system32\DbxSvc.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FreemakeVideoCapture - Ellora Assets Corp. - C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - D:\Program Files\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10766 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe"
winlogon.exe
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Google\Chrome Remote Desktop\66.0.3359.12\remoting_host.exe" --type=daemon --host-config="C:\ProgramData\Google\Chrome Remote Desktop\host.json"
C:\Windows\system32\DbxSvc.exe
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Google\Chrome Remote Desktop\66.0.3359.12\remoting_host.exe" --type=host --mojo-pipe-token=00A57DD0EFEF54E550F8D20B677B0D23 --mojo-platform-channel-handle=524
"C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe"
"C:\Program Files\Microsoft LifeCam\MSCamS64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
C:\Windows\system32\PnkBstrA.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
taskeng.exe {3BA84AB7-5033-4EFC-84D4-F98DD0C0D72C}
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Fraps\fraps.exe"
igfxEM.exe
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\vVX1000.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"C:\Program Files (x86)\Blizzard App\Battle.net.exe" --autostarted
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:crashpad-handler --capture-python --no-upload-gzip --no-rate-limit --database=C:\Users\Patrik\AppData\Local\Dropbox\Crashpad --metrics-dir=0 --url=https://d.dropbox.com/report_crashpad_minidump --https-pin=0x23,0xf2,0xed,0xff,0x3e,0xde,0x90,0x25,0x9a,0x9e,0x30,0xf4,0xa,0xf8,0xf9,0x12,0xa5,0xe5,0xb3,0x69,0x4e,0x69,0x38,0x44,0x3,0x41,0xf6,0x6,0xe,0x1,0x4f,0xfa --https-pin=0xaf,0xf9,0x88,0x90,0x6d,0xde,0x12,0x95,0x5d,0x9b,0xeb,0xbf,0x92,0x8f,0xdc,0xc3,0x1c,0xce,0x32,0x8d,0x5b,0x93,0x84,0xf2,0x1c,0x89,0x41,0xca,0x26,0xe2,0x3,0x91 --https-pin=0x5a,0x88,0x96,0x47,0x22,0xe,0x54,0xd6,0xbd,0x8a,0x16,0x81,0x72,0x24,0x52,0xb,0xb5,0xc7,0x8e,0x58,0x98,0x4b,0xd5,0x70,0x50,0x63,0x88,0xb9,0xde,0xf,0x7,0x5f --https-pin=0xfe,0xa2,0xb7,0xd6,0x45,0xfb,0xa7,0x3d,0x75,0x3c,0x1e,0xc9,0xa7,0x87,0xc,0x40,0xe1,0xf7,0xb0,0xc5,0x61,0xe9,0x27,0xb9,0x85,0xbf,0x71,0x18,0x66,0xe3,0x6f,0x22 --https-pin=0x76,0xee,0x85,0x90,0x37,0x4c,0x71,0x54,0x37,0xbb,0xca,0x6b,0xba,0x60,0x28,0xea,0xdd,0xe2,0xdc,0x6d,0xbb,0xb8,0xc3,0xf6,0x10,0xe8,0x51,0xf1,0x1d,0x1a,0xb7,0xf5 --https-pin=0x6d,0xbf,0xae,0x0,0xd3,0x7b,0x9c,0xd7,0x3f,0x8f,0xb4,0x7d,0xe6,0x59,0x17,0xaf,0x0,0xe0,0xdd,0xdf,0x42,0xdb,0xce,0xac,0x20,0xc1,0x7c,0x2,0x75,0xee,0x20,0x95 --https-pin=0x1e,0xa3,0xc5,0xe4,0x3e,0xd6,0x6c,0x2d,0xa2,0x98,0x3a,0x42,0xa4,0xa7,0x9b,0x1e,0x90,0x67,0x86,0xce,0x9f,0x1b,0x58,0x62,0x14,0x19,0xa0,0x4,0x63,0xa8,0x7d,0x38 --https-pin=0x87,0xaf,0x34,0xd6,0x6f,0xb3,0xf2,0xfd,0xf3,0x6e,0x9,0x11,0x1e,0x9a,0xba,0x2f,0x6f,0x44,0xb2,0x7,0xf3,0x86,0x3f,0x3d,0xb,0x54,0xb2,0x50,0x23,0x90,0x9a,0xa5 --https-pin=0xbc,0xfb,0x44,0xaa,0xb9,0xad,0x2,0x10,0x15,0x70,0x6b,0x41,0x21,0xea,0x76,0x1c,0x81,0xc9,0xe8,0x89,0x67,0x59,0xf,0x6f,0x94,0xae,0x74,0x4d,0xc8,0x8b,0x78,0xfb --https-pin=0xab,0x98,0x49,0x52,0x76,0xad,0xf1,0xec,0xaf,0xf2,0x8f,0x35,0xc5,0x30,0x48,0x78,0x1e,0x5c,0x17,0x18,0xda,0xb9,0xc8,0xe6,0x7a,0x50,0x4f,0x4f,0x6a,0x51,0x32,0x8f --https-pin=0x49,0x5,0x46,0x66,0x23,0xab,0x41,0x78,0xbe,0x92,0xac,0x5c,0xbd,0x65,0x84,0xf7,0xa1,0xe1,0x7f,0x27,0x65,0x2d,0x5a,0x85,0xaf,0x89,0x50,0x4e,0xa2,0x39,0xaa,0xaa --https-pin=0x56,0x32,0xd9,0x7b,0xfa,0x77,0x5b,0xf3,0xc9,0x9d,0xde,0xa5,0x2f,0xc2,0x55,0x34,0x10,0x86,0x40,0x16,0x72,0x9c,0x52,0xdd,0x65,0x24,0xc8,0xa9,0xc3,0xb4,0x48,0x9f --https-pin=0x2a,0x8f,0x2d,0x8a,0xf0,0xeb,0x12,0x38,0x98,0xf7,0x4c,0x86,0x6a,0xc3,0xfa,0x66,0x90,0x54,0xe2,0x3c,0x17,0xbc,0x7a,0x95,0xbd,0x2,0x34,0x19,0x2d,0xc6,0x35,0xd0 --https-pin=0x32,0xb6,0x4b,0x66,0x72,0x7a,0x20,0x63,0xe4,0x6,0x6f,0x3b,0x95,0x8c,0xb0,0xaa,0xee,0x57,0x6a,0x5e,0xce,0xfd,0x95,0x33,0x99,0xbb,0x88,0x74,0x73,0x1d,0x95,0x87 --https-pin=0xf5,0x3c,0x22,0x5,0x98,0x17,0xdd,0x96,0xf4,0x0,0x65,0x16,0x39,0xd2,0xf8,0x57,0xe2,0x10,0x70,0xa5,0x9a,0xbe,0xd9,0x7,0x94,0x0,0xd9,0xf6,0x95,0x50,0x69,0x0 --https-pin=0x67,0xdc,0x4f,0x32,0xfa,0x10,0xe7,0xd0,0x1a,0x79,0xa0,0x73,0xaa,0xc,0x9e,0x2,0x12,0xec,0x2f,0xfc,0x3d,0x77,0x9e,0xa,0xa7,0xf9,0xc0,0xf0,0xe1,0xc2,0xc8,0x93 --https-pin=0x19,0x6,0xc6,0x12,0x4d,0xbb,0x43,0x85,0x78,0xd0,0xe,0x6,0x6d,0x50,0x54,0xc6,0xc3,0x7f,0xf,0xa6,0x2,0x8c,0x5,0x54,0x5e,0x9,0x94,0xed,0xda,0xec,0x86,0x29 --https-pin=0x1d,0x75,0xd0,0x83,0x1b,0x9e,0x8,0x85,0x39,0x4d,0x32,0xc7,0xa1,0xbf,0xdb,0x3d,0xbc,0x1c,0x28,0xe2,0xb0,0xe8,0x39,0x1f,0xb1,0x35,0x98,0x1d,0xbc,0x5b,0xa9,0x36 --annotation=buildno=Dropbox-win-50.4.71 --annotation=client_session_id=e75f61b7-c4f5-48fa-b0c7-936eb5f10f66 --annotation=host_int_account1_boot=4031336184 --annotation=machine_id=b10e0be3-32ce-492c-9fb5-19a4f94d9ece --annotation=platform=win --annotation=platform_version=7 --initial-client-data=0xd8,0xdc,0xe0,0xd4,0xe4,0x6bae8db8,0x6bae8dc8,0x6bae8dd8
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:exit-monitor -session-token:e75f61b7-c4f5-48fa-b0c7-936eb5f10f66 -target-handle:212 -target-shutdown-event:228 "-target-command-line:\"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe\" /systemstartup" -python-version:2.7.11 -method:collectupload -handler-pipe:\\.\pipe\crashpad_3420_TAHKGKEQJADJGSUQ
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" "-lang=en_US" "-cachedir=C:\Users\Patrik\AppData\Local\Steam\htmlcache" "-steampid=3784" "-buildid=1526683293" "-steamid=0" "-clientui=C:\Program Files (x86)\Steam\clientui" --disable-spell-checking --disable-out-of-process-pac --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --disable-features=TouchpadAndWheelScrollLatching,AsyncWheelEvents --enable-media-stream --disable-smooth-scrolling --disable-gpu-compositing --disable-gpu --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Patrik\AppData\Local\CEF\User Data\Crashpad" "--metrics-dir=C:\Users\Patrik\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win32 --annotation=product=cefwebhelper --annotation=version=1.0 --initial-client-data=0x188,0x18c,0x190,0x184,0x194,0x5fea86f0,0x5fea8700,0x5fea870c
"C:\ProgramData\Battle.net\Agent\Agent.6160\Agent.exe" --session=5238202070866972755
\??\C:\Windows\system32\conhost.exe "-12779217647636109101140677884-2050810073342675553-2426235-2069958672-931936458
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"Battle.net Helper.exe" --type=gpu-process --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --no-sandbox --log-file="C:\Users\Patrik\AppData\Local\Battle.net\Logs\libcef-20180525T134317.487367.log" --log-severity=error --product-version="Battle.net/1.12.0.10134 Chrome/65.0.3325.181" --lang=en-US --watch-browser-pid=1184 --gpu-preferences=KAAAAAAAAAAABwAAAQAAAAAAAAAAAGAAAQAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --gpu-vendor-id=0x10de --gpu-device-id=0x13c2 --gpu-driver-vendor=NVIDIA --gpu-driver-version=23.21.13.8813 --gpu-driver-date=10-27-2017 --gpu-secondary-vendor-ids=0x8086 --gpu-secondary-device-ids=0x0412 --log-file="C:\Users\Patrik\AppData\Local\Battle.net\Logs\libcef-20180525T134317.487367.log" --log-severity=error --product-version="Battle.net/1.12.0.10134 Chrome/65.0.3325.181" --lang=en-US --watch-browser-pid=1184 --service-request-channel-token=1EB76FE50B56668E39A473E83AA125C7 --mojo-platform-channel-handle=2264 /prefetch:2
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=renderer --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --disable-gpu-compositing --service-pipe-token=2279141D44BF1BAD68853788D183C026 --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=en-US --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --disable-spell-checking --buildid=1526683293 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2279141D44BF1BAD68853788D183C026 --renderer-client-id=2 --mojo-platform-channel-handle=1440 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=gpu-process --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --lang=sk-SK --buildid=1526683293 --steamid=0 --gpu-preferences=KAAAAAAAAAAABwAAAQAAAAAAAAAAAGAAAQAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x10de --gpu-device-id=0x13c2 --gpu-driver-vendor=NVIDIA --gpu-driver-version=23.21.13.8813 --gpu-driver-date=10-27-2017 --gpu-secondary-vendor-ids=0x8086 --gpu-secondary-device-ids=0x0412 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --lang=sk-SK --buildid=1526683293 --steamid=0 --service-request-channel-token=16B3F13A1B36EAF72C7AD86904410B3D --mojo-platform-channel-handle=1452 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Fraps\fraps64.dat"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Patrik\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Patrik\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Patrik\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=66.0.3359.181 --initial-client-data=0x80,0x84,0x88,0x7c,0x8c,0x7fede7f3218,0x7fede7f3228,0x7fede7f3238
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=6440 --on-initialized-event-handle=320 --parent-handle=324 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --use-gl=swiftshader-webgl --service-request-channel-token=222F261FDF582F202DFF82B660C3A26E --mojo-platform-channel-handle=1072 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --service-pipe-token=C34FABC631E64016C51F80EDCBC4FAB3 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=C34FABC631E64016C51F80EDCBC4FAB3 --renderer-client-id=3 --mojo-platform-channel-handle=2472 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --disable-gpu-compositing --service-pipe-token=C975A3AC4D83D3745EDFCEF7EA54198A --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=C975A3AC4D83D3745EDFCEF7EA54198A --renderer-client-id=4 --mojo-platform-channel-handle=2728 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --disable-gpu-compositing --service-pipe-token=0989F4A063C7496AD7CAE58A5ED0A689 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=0989F4A063C7496AD7CAE58A5ED0A689 --renderer-client-id=5 --mojo-platform-channel-handle=2832 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --disable-gpu-compositing --service-pipe-token=B565EADB85786C898C1E87C150148B7A --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=B565EADB85786C898C1E87C150148B7A --renderer-client-id=6 --mojo-platform-channel-handle=2784 /prefetch:1
"Battle.net Helper.exe" --type=renderer --no-sandbox --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --service-pipe-token=2725A372F8835029E291C7C267DD74E1 --lang=en-US --log-file="C:\Users\Patrik\AppData\Local\Battle.net\Logs\libcef-20180525T134317.487367.log" --log-severity=error --product-version="Battle.net/1.12.0.10134 Chrome/65.0.3325.181" --disable-spell-checking --enable-system-flash --watch-browser-pid=1184 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2725A372F8835029E291C7C267DD74E1 --renderer-client-id=4 --mojo-platform-channel-handle=3520 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --disable-gpu-compositing --service-pipe-token=4DF025430BC9D644194F99496D5E4E72 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=4DF025430BC9D644194F99496D5E4E72 --renderer-client-id=10 --mojo-platform-channel-handle=4712 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --disable-gpu-compositing --service-pipe-token=79B41175A659B5D4A89A45D6D17DAFD8 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=79B41175A659B5D4A89A45D6D17DAFD8 --renderer-client-id=16 --mojo-platform-channel-handle=4352 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --lang=sk --service-sandbox-type=utility --service-request-channel-token=A499B787A808A855D82CD97D848178D6 --mojo-platform-channel-handle=5040 --ignored=" --type=renderer " /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --disable-gpu-compositing --service-pipe-token=D0D21E434C573DC075854C8A75826C5F --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=D0D21E434C573DC075854C8A75826C5F --renderer-client-id=40 --mojo-platform-channel-handle=5640 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --disable-gpu-compositing --service-pipe-token=876214A8EC8B7A6B4DFC5B56359BF23D --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=876214A8EC8B7A6B4DFC5B56359BF23D --renderer-client-id=44 --mojo-platform-channel-handle=6632 /prefetch:1
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --disable-gpu-compositing --service-pipe-token=22C48273C6E12E7421BAAF4C72B2C2D4 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=22C48273C6E12E7421BAAF4C72B2C2D4 --renderer-client-id=60 --mojo-platform-channel-handle=6260 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --disable-gpu-compositing --service-pipe-token=DD478DC58AC44D2054F6DDEE1561ADB4 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=DD478DC58AC44D2054F6DDEE1561ADB4 --renderer-client-id=61 --mojo-platform-channel-handle=6456 /prefetch:1
taskeng.exe {9CDC71C1-4EAF-4115-AA23-90ECEEAFDEE1}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1060,2790687985758724927,7397506793873562160,131072 --disable-gpu-compositing --service-pipe-token=07360C8180073A999593D46822648879 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=07360C8180073A999593D46822648879 --renderer-client-id=63 --mojo-platform-channel-handle=6024 /prefetch:1
"D:\Plocha\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\Windows\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineUA1d08dd350af27db.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\4wmeprz0.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.192 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1229199.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.4]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=2.3.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.171.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.171.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.192 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-05-21 480200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-05-21 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-10-24 13662936]
"VX1000"=C:\Windows\vVX1000.exe [2010-05-20 762736]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\ecmds.exe [2018-04-29 178496]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-05 1305408]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-08-20 8455960]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
"Battle.net"=C:\Program Files (x86)\Blizzard App\Battle.net.exe [2018-05-24 1054184]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2018-05-19 3200800]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"LifeCam"=C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [2010-05-20 119152]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-09-05 958576]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2018-05-21 3643712]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-03-28 588704]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave9"=wdmaud.drv
"mixer9"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"midi9"=wdmaud.drv
"aux7"=wdmaud.drv
"aux8"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux9"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-05-25 16:05:56 ----D---- C:\rsit
2018-05-25 16:05:56 ----D---- C:\Program Files\trend micro
2018-05-21 19:06:58 ----A---- C:\Windows\system32\drivers\dbx-stable.sys
2018-05-21 19:06:58 ----A---- C:\Windows\system32\drivers\dbx-dev.sys
2018-05-21 19:06:58 ----A---- C:\Windows\system32\drivers\dbx-canary.sys
2018-05-21 19:06:58 ----A---- C:\Windows\system32\DbxSvc.exe
2018-05-13 11:03:53 ----SHD---- C:\82ace7d6-0197-474d-bf4b-a2043e72329b
2018-05-09 11:14:06 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-05-09 11:14:06 ----A---- C:\Windows\system32\mshtml.dll
2018-05-09 11:14:05 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-05-09 11:14:05 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-05-09 11:14:05 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-05-09 11:14:05 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-05-09 11:14:05 ----A---- C:\Windows\system32\jscript9.dll
2018-05-09 11:14:05 ----A---- C:\Windows\system32\ieframe.dll
2018-05-09 11:14:04 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2018-05-09 11:14:04 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-05-09 11:14:04 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-05-09 11:14:04 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2018-05-09 11:14:04 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-05-09 11:14:04 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-05-09 11:14:04 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-05-09 11:14:04 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\wucltux.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\wuaueng.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\winload.exe
2018-05-09 11:14:04 ----A---- C:\Windows\system32\wininet.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\win32k.sys
2018-05-09 11:14:04 ----A---- C:\Windows\system32\vbscript.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\urlmon.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\TSpkg.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\srvsvc.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\rpcss.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\oleaut32.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-05-09 11:14:04 ----A---- C:\Windows\system32\msfeeds.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\jscript.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\iertutil.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-05-09 11:14:04 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-05-09 11:14:04 ----A---- C:\Windows\system32\drivers\srv.sys
2018-05-09 11:14:04 ----A---- C:\Windows\system32\comsvcs.dll
2018-05-09 11:14:04 ----A---- C:\Windows\system32\clfs.sys
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\hhsetup.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\hh.exe
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-05-09 11:14:03 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\wups2.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\wups.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\wudriver.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\webcheck.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\sscore.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\ole32.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\occache.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\ntdll.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-05-09 11:14:03 ----A---- C:\Windows\system32\msrating.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\mshtmled.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\jscript9diag.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\itss.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\itircl.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\ieui.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\iesetup.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\iedkcs32.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\ie4uinit.exe
2018-05-09 11:14:03 ----A---- C:\Windows\system32\hhsetup.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\hal.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\dxtrans.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\dxtmsft.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-05-09 11:14:03 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-05-09 11:14:03 ----A---- C:\Windows\system32\certcli.dll
2018-05-09 11:14:03 ----A---- C:\Windows\system32\catsrvut.dll
2018-05-09 11:14:03 ----A---- C:\Windows\hh.exe
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 11:14:02 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\wups.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\user.exe
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\sscore.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-05-09 11:14:02 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\wuwebv.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\wuauclt.exe
2018-05-09 11:14:02 ----A---- C:\Windows\system32\wuapp.exe
2018-05-09 11:14:02 ----A---- C:\Windows\system32\wuapi.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\wow64win.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\wow64cpu.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\wow64.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\winsrv.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\WinSetupUI.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\wdigest.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\tzres.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\sspisrv.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\sspicli.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\srcore.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\srclient.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\smss.exe
2018-05-09 11:14:02 ----A---- C:\Windows\system32\schannel.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\secur32.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\rstrui.exe
2018-05-09 11:14:02 ----A---- C:\Windows\system32\rpchttp.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\rpcrt4.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\oleres.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\ntvdm64.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\ncrypt.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\msv1_0.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\lsass.exe
2018-05-09 11:14:02 ----A---- C:\Windows\system32\lsasrv.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\KernelBase.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\kernel32.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\kerberos.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\jsproxy.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\inseng.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\ieUnatt.exe
2018-05-09 11:14:02 ----A---- C:\Windows\system32\iernonce.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-05-09 11:14:02 ----A---- C:\Windows\system32\ieapfltr.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-05-09 11:14:02 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-05-09 11:14:02 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-05-09 11:14:02 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-05-09 11:14:02 ----A---- C:\Windows\system32\drivers\appid.sys
2018-05-09 11:14:02 ----A---- C:\Windows\system32\csrsrv.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\cryptbase.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\credssp.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\conhost.exe
2018-05-09 11:14:02 ----A---- C:\Windows\system32\comcat.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\bcrypt.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\auditpol.exe
2018-05-09 11:14:02 ----A---- C:\Windows\system32\appidsvc.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-05-09 11:14:02 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-05-09 11:14:02 ----A---- C:\Windows\system32\appidapi.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\apisetschema.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\advapi32.dll
2018-05-09 11:14:02 ----A---- C:\Windows\system32\adtschema.dll
2018-05-09 11:14:01 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-05-09 11:14:01 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-05-09 11:14:01 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-05-09 11:14:01 ----A---- C:\Windows\system32\msobjs.dll
2018-05-09 11:14:01 ----A---- C:\Windows\system32\msaudite.dll
======List of files/folders modified in the last 1 month======
2018-05-25 16:05:57 ----D---- C:\Windows\Temp
2018-05-25 16:05:56 ----RD---- C:\Program Files
2018-05-25 16:01:43 ----D---- C:\Users\Patrik\AppData\Roaming\TS3Client
2018-05-25 16:01:43 ----D---- C:\Program Files (x86)\Steam
2018-05-25 16:01:38 ----D---- C:\Windows\inf
2018-05-25 16:01:38 ----D---- C:\Windows\debug
2018-05-25 16:01:38 ----D---- C:\Windows
2018-05-25 15:48:16 ----D---- C:\Windows\system32\config
2018-05-25 15:43:26 ----D---- C:\Windows\system32\Tasks
2018-05-25 15:43:26 ----D---- C:\Program Files (x86)\Fraps
2018-05-25 15:43:18 ----D---- C:\Program Files (x86)\Blizzard App
2018-05-25 15:37:37 ----SHD---- C:\System Volume Information
2018-05-25 15:36:59 ----D---- C:\Windows\System32
2018-05-25 15:36:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-05-25 15:32:22 ----D---- C:\ProgramData\NVIDIA
2018-05-24 22:01:07 ----D---- C:\Users\Patrik\AppData\Roaming\uTorrent
2018-05-24 15:14:10 ----D---- C:\Program Files (x86)\Dropbox
2018-05-24 15:14:09 ----D---- C:\Windows\system32\drivers
2018-05-22 17:04:10 ----D---- C:\Users\Patrik\AppData\Roaming\vlc
2018-05-22 12:51:18 ----RD---- C:\Users
2018-05-21 12:31:45 ----SHD---- C:\Windows\Installer
2018-05-21 12:31:44 ----D---- C:\Windows\SysWOW64
2018-05-21 12:31:44 ----D---- C:\Program Files (x86)\Java
2018-05-21 12:31:25 ----D---- C:\Program Files (x86)\Common Files
2018-05-21 12:31:09 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2018-05-20 11:59:48 ----RD---- C:\Program Files (x86)
2018-05-13 10:46:35 ----D---- C:\ProgramData\Epic
2018-05-10 12:54:43 ----D---- C:\Windows\rescache
2018-05-10 12:40:55 ----D---- C:\Windows\Microsoft.NET
2018-05-10 12:37:40 ----RSD---- C:\Windows\assembly
2018-05-10 10:07:47 ----D---- C:\Windows\winsxs
2018-05-10 10:06:33 ----D---- C:\Windows\SYSWOW64\sk-SK
2018-05-10 10:06:33 ----D---- C:\Windows\SYSWOW64\en-US
2018-05-10 10:06:33 ----D---- C:\Program Files\Internet Explorer
2018-05-10 10:06:33 ----D---- C:\Program Files (x86)\Internet Explorer
2018-05-10 10:06:32 ----D---- C:\Windows\system32\sk-SK
2018-05-10 10:06:32 ----D---- C:\Windows\system32\en-US
2018-05-10 10:06:32 ----D---- C:\Windows\system32\drivers\en-US
2018-05-10 10:06:32 ----D---- C:\Windows\system32\Boot
2018-05-10 10:06:32 ----D---- C:\Windows\AppPatch
2018-05-09 21:55:55 ----D---- C:\Windows\system32\MRT
2018-05-09 21:54:28 ----AC---- C:\Windows\system32\MRT-KB890830.exe
2018-05-09 21:54:24 ----AC---- C:\Windows\system32\MRT.exe
2018-05-09 21:54:17 ----D---- C:\Windows\system32\catroot2
2018-05-09 21:52:15 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-05-03 20:33:16 ----D---- C:\Program Files (x86)\Overwatch
2018-04-29 15:37:15 ----D---- C:\Windows\system32\DriverStore
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2015-05-14 254528]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2018-04-29 137928]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2018-04-29 196112]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2018-04-29 108320]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-02-11 35344]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-03-19 4888368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-10-29 3698904]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 368112]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 786416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-01-11 64624]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2017-11-09 233904]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-10-25 769168]
R3 taphss6;Anchorfree HSS VPN Adapter; C:\Windows\system32\DRIVERS\taphss6.sys [2015-10-12 42088]
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2012-07-03 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2012-07-03 36352]
S3 andnetndis;LGE AndroidNet NDIS Ethernet Adapter; C:\Windows\system32\DRIVERS\lgandnetndis64.sys [2012-07-04 93184]
S3 dbx;dbx; C:\Windows\system32\DRIVERS\dbx.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2014-08-03 14448]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2014-08-03 27760]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2016-11-11 34720]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [2013-05-30 64280]
S3 LGSUsbFilt;Logitech Gaming KMDF USB Filter Driver; C:\Windows\system32\DRIVERS\LGSUsbFilt.Sys [2013-05-30 41752]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2009-11-24 16008]
S3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-06-28 57792]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2017-08-13 20992]
S3 RtlWlanu;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\rtwlanu.sys [2016-01-04 4620040]
S3 rzendpt;rzendpt; C:\Windows\system32\DRIVERS\rzendpt.sys [2014-12-30 39592]
S3 rzudd;Razer Keyboard Driver; C:\Windows\system32\DRIVERS\rzudd.sys [2014-12-30 177832]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 tap-tb-0901;TunnelBear Adapter V9; C:\Windows\system32\DRIVERS\tap-tb-0901.sys [2016-10-17 38656]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-21 34816]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 VX1000;VX-1000; C:\Windows\system32\DRIVERS\VX1000.sys [2010-05-20 2060144]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2015-04-30 23200]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S4 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-05 65640]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DbxSvc;DbxSvc; C:\Windows\system32\DbxSvc.exe [2018-05-21 51024]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2018-04-29 2240264]
R2 FreemakeVideoCapture;FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [2016-05-11 9216]
R2 chromoting;Chrome Remote Desktop Service; C:\Program Files (x86)\Google\Chrome Remote Desktop\66.0.3359.12\remoting_host.exe [2018-03-06 71000]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2015-03-19 345864]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS64.exe [2010-05-20 199536]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-10-27 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-07-19 449984]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2016-04-02 76152]
R2 TeamViewer;TeamViewer 12; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-08-29 10803440]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2018-05-19 1672992]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-03-06 143144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-14 107848]
S2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2017-11-02 3002728]
S2 SkypeUpdate;Skype Updater; D:\Program Files\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2018-05-13 5745672]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-03-19 280840]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-03-06 143144]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-03-10 774272]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-14 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-04-22 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-10-06 175568]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2017-11-02 2123104]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-05-14 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------