zpomalení PC, občas problém s nastartováním Chromu
Napsal: 02 čer 2018 11:24
Dobrý den, posílám pro kontrolu RSIT log a FRST log
Logfile of random's system information tool 1.16 (written by random/random)
Run by Jiří at 2018-06-02 12:04:51
Microsoft Windows 10 Home
System drive C: has 150 GB (33%) free of 460 GB
Total RAM: 3978 MB (40% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:05:15, on 02.06.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0371)
Boot mode: Normal
Running processes:
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Program Files (x86)\GLPCCamera\monitorpad.exe
C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe
C:\Program Files\trend micro\Jiří_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Jiří\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 10171 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
C:\WINDOWS\system32\dwm.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservice -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s SEMgrSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 1662759954256
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\system32\dashost.exe
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
c:\windows\system32\taskhostw.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
C:\WINDOWS\system32\ctfmon.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
C:\WINDOWS\Explorer.EXE
C:\Windows\SysWOW64\UMonit64.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s upnphost
"C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\igfxTray.exe
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
C:\WINDOWS\system32\igfxext.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
"C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe" task
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe" task
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" -r "C:\Users\Jiří\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" -u S-1-5-21-2734594728-343395219-3823349460-1001 -c 732 -s 540 -g "C:\ProgramData\acer\CCD"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\GLPCCamera\monitorpad.exe"
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
"C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe"
"C:\Program Files (x86)\Stardock\ObjectDock Plus\Dock64.exe"
"C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDockTray.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s QWAVE
c:\windows\system32\taskhostw.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SensorService
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\system32\AUDIODG.EXE 0x524
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"C:\Users\Jiří\Desktop\RSITx64.exe"
====== Scheduled tasks folder ======
C:\WINDOWS\system32\tasks\abDocsDllLoader - C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe task
C:\WINDOWS\system32\tasks\ACCAgent - C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe
C:\WINDOWS\system32\tasks\BacKGroundAgent - C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe task
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\ESET Windows 10 upgrade – Refresh settings - C:\Program Files\Common Files\AV\ESET Smart Security 8.0\upgrade.exe
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA1d0b995bf082813 - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\Launch Manager - "C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe"
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task-S-1-5-21-2734594728-343395219-3823349460-1001 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Power Management - "C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe"
C:\WINDOWS\system32\tasks\Quick Access - "C:\Program Files\Acer\Acer Quick Access\QALauncher.exe"
C:\WINDOWS\system32\tasks\Quick Access Quick Launcher - "C:\Program Files\Acer\Acer Quick Access\QALauncher.exe" -noui -normsvc
C:\WINDOWS\system32\tasks\UbtFrameworkService - "C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe"
C:\WINDOWS\system32\tasks\UMonitor Task - C:\Windows\SysWOW64\UMonit64.exe
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{01FA28F9-C04B-4783-A9F8-762159759CC1} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Recovery-Check - %SystemRoot%\System32\dsregcmd.exe /checkrecovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\Windows\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe Scan -ScheduleJob -ScanTrigger 55
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WaaSMedic\PerformRemediation - %systemroot%\System32\WaaSMedic.exe None
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\AC Power Download - %systemroot%\system32\usoclient.exe StartDownload
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr - %windir%\System32\UNP\UpdateNotificationMgr.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ClientTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Client"
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ServerTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Server"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Setup\Notifier - %windir%\system32\Notifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\LoginCheck - %windir%\system32\sc.exe start pushtoinstall login
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\Registration - %windir%\system32\sc.exe start pushtoinstall registration
C:\WINDOWS\system32\tasks\Microsoft\Windows\Printing\EduPrintProv - %windir%\system32\eduprintprov.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Chkdsk\SyspartRepair - %windir%\system32\bcdboot.exe %windir% /sysrepair
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
=========Google Chrome=========
C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace 0.10
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aknpkdffaafgjchaibgeefbgmgeghloj
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty 0.10
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky 1.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension gffjhibehnempbkeheiccaincokdjbfe 0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.30.1
Extension iiekfaemafmplemocgimeccahephhdgf 1 VratnePenize.cz Připomínáček 2.0.11.0
Extension kdmmkfaghgcicheaimnpffeeekheafkb 0 EasyHome Homestyler 4.0.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.73
Extension knebimhcckndhiglamoabbnifdkijidd 0
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.7
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.4
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 6618.312.0.2
Extension pmeobdehlajlhbpcmodgllgfmblpjflc 1 Bubble Shooter
1.4
Extension pnjfmdhgadolaidlgcbdjbmjnkidlmdj 1 Dark Violet 1.5
Homepage: http://www.idnes.cz/
default_search_provider.search_url:
C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2015-01-28 5595848]
"GLSystray"=C:\Program Files (x86)\GLPCCamera\monitorpad.exe [2011-11-28 69632]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-06-29 53282944]
"OneDrive"=C:\Users\Jiří\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-05-01 1624224]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-04-11 9532120]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
C:\Users\Jiří\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Stardock ObjectDock.lnk - C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableFullTrustStartupTasks"=2
"EnableUIADesktopToggle"=0
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2018-06-02 07:42:51 ----HD---- C:\$WINDOWS.~BT
2018-05-19 21:52:53 ----A---- C:\WINDOWS\system32\Notifier.exe
2018-05-09 18:37:37 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2018-05-09 18:37:25 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2018-05-09 18:37:25 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2018-05-09 18:37:25 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2018-05-09 18:37:25 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\wldp.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\Wldap32.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\WinTypes.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\wincorlib.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\schannel.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\profsvc.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\oleaut32.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\crypt32.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\combase.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\ci.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\ByteCodeGenerator.exe
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\aepic.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\wups2.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\usocore.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\netlogon.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\dosvc.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\domgmt.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-05-09 18:37:22 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\ShareHost.dll
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\eShims.dll
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\cdp.dll
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\aadauthhelper.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\wlidprov.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\tquery.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\mssprxy.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\mssph.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\mssitlb.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\rdpcore.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\Geolocation.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\coredpus.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\DeviceUpdateAgent.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\twext.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\TSpkg.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\shlwapi.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\shell32.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\credssp.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\comdlg32.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\comctl32.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\themecpl.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\ntshrui.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\ninput.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\mstsc.exe
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\msctf.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\usercpl.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\twinui.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\mstscax.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\kernel32.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\authui.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\AppResolver.dll
2018-05-09 18:37:09 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-05-09 18:37:09 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\pcalua.exe
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\pcaevts.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\pcadm.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\invagent.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-05-09 18:37:07 ----A---- C:\WINDOWS\system32\wsecedit.dll
2018-05-09 18:37:07 ----A---- C:\WINDOWS\system32\devinv.dll
2018-05-09 18:37:07 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\zipfldr.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\catsrvut.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\winresume.exe
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\srpapi.dll
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\comsvcs.dll
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\appidsvc.dll
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\appidapi.dll
2018-05-09 18:37:04 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-05-09 18:37:04 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-05-09 18:37:04 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-05-09 18:37:04 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\winload.exe
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\LogonController.dll
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\credprovs.dll
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\credprovhost.dll
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\CredProv2faHelper.dll
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\atmfd.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\t2embed.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\itss.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\itircl.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\hgcpl.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\gameux.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\fontsub.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\HelpPane.exe
2018-05-09 18:37:00 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-05-09 18:37:00 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\LockHostingFramework.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\LockController.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2018-05-09 18:36:58 ----A---- C:\WINDOWS\system32\wininet.dll
2018-05-09 18:36:58 ----A---- C:\WINDOWS\system32\msxml3.dll
2018-05-09 18:36:58 ----A---- C:\WINDOWS\system32\msisip.dll
2018-05-09 18:36:58 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-05-09 18:36:57 ----A---- C:\WINDOWS\system32\WpcMon.exe
2018-05-09 18:36:57 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2018-05-09 18:36:56 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\Wpc.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\SettingSync.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\fontext.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\CloudNotifications.exe
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\explorer.exe
2018-05-09 18:36:54 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2018-05-09 18:36:54 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-05-09 18:36:54 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-05-09 18:36:54 ----A---- C:\WINDOWS\system32\stobject.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\aadauthhelper.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\CredProv2faHelper.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2018-05-09 18:36:50 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-05-09 18:36:50 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2018-05-09 18:36:50 ----A---- C:\WINDOWS\SYSWOW64\itircl.dll
2018-05-09 18:36:50 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-05-09 18:36:50 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\twext.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\shlwapi.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2018-05-09 18:36:41 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-05-09 18:36:41 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2018-05-09 18:36:40 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2018-05-09 18:36:40 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerUI.dll
2018-05-09 18:36:40 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2018-05-09 18:36:40 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2018-05-09 18:36:40 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2018-05-09 18:36:38 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2018-05-09 18:36:38 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2018-05-09 18:36:38 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2018-05-09 18:36:38 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe
2018-05-09 18:36:38 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2018-05-09 18:36:38 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-05-09 18:36:38 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2018-05-09 18:36:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-05-09 18:36:32 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-05-09 18:36:32 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-05-09 18:36:31 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-05-09 18:36:31 ----A---- C:\WINDOWS\system32\imgutil.dll
2018-05-09 18:36:31 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-05-09 18:36:30 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-05-09 18:36:30 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\mshtmled.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\ieproxy.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\dxtrans.dll
2018-05-09 18:36:28 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-05-09 18:36:28 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-05-09 18:36:28 ----A---- C:\WINDOWS\system32\jscript.dll
2018-05-09 18:36:27 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2018-05-09 18:36:27 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-05-09 18:36:27 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-05-09 18:36:27 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-05-09 18:36:27 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2018-05-09 18:36:26 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-05-09 18:36:26 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-05-09 18:36:26 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-05-09 18:36:26 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-05-09 18:36:25 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2018-05-09 18:36:25 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-05-09 18:36:25 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2018-05-09 18:36:24 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-05-09 18:36:19 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2018-05-09 18:36:08 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\wmp.dll
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-05-09 18:36:06 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2018-05-09 18:36:04 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-05-09 18:36:04 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\system32\mfplat.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2018-05-09 18:36:02 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2018-05-09 18:36:02 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
====== List of files/folders modified in the last 1 month ======
2018-06-02 12:05:08 ----D---- C:\Program Files\trend micro
2018-06-02 12:05:02 ----D---- C:\WINDOWS\Temp
2018-06-02 12:04:55 ----D---- C:\WINDOWS\Prefetch
2018-06-02 12:00:10 ----D---- C:\WINDOWS\INF
2018-06-02 12:00:09 ----D---- C:\WINDOWS\LiveKernelReports
2018-06-02 12:00:09 ----D---- C:\Windows
2018-06-02 11:43:51 ----D---- C:\WINDOWS\system32\sru
2018-06-02 11:43:25 ----D---- C:\WINDOWS\system32\SleepStudy
2018-06-02 10:02:14 ----HD---- C:\Program Files\WindowsApps
2018-06-02 09:59:07 ----D---- C:\WINDOWS\AppReadiness
2018-06-02 08:56:28 ----SHD---- C:\System Volume Information
2018-06-02 07:45:13 ----D---- C:\WINDOWS\DeliveryOptimization
2018-06-02 07:43:17 ----DC---- C:\WINDOWS\Panther
2018-06-02 07:31:41 ----D---- C:\WINDOWS\Logs
2018-06-01 15:40:43 ----RD---- C:\WINDOWS\Microsoft.NET
2018-05-31 13:58:22 ----D---- C:\WINDOWS\system32\drivers\wd
2018-05-29 21:41:02 ----D---- C:\WINDOWS\system32\LogFiles
2018-05-25 12:02:53 ----D---- C:\WINDOWS\system32\config
2018-05-25 11:34:35 ----D---- C:\WINDOWS\system32\catroot2
2018-05-23 17:09:22 ----D---- C:\AdwCleaner
2018-05-21 06:52:38 ----D---- C:\Program Files (x86)\Acer
2018-05-21 06:48:50 ----SHD---- C:\Config.Msi
2018-05-19 22:02:34 ----D---- C:\WINDOWS\CbsTemp
2018-05-19 22:02:32 ----D---- C:\WINDOWS\WinSxS
2018-05-19 22:02:27 ----D---- C:\WINDOWS\System32
2018-05-18 06:49:00 ----D---- C:\WINDOWS\system32\Tasks
2018-05-17 23:54:09 ----SHD---- C:\WINDOWS\Installer
2018-05-17 23:52:02 ----RD---- C:\Program Files (x86)
2018-05-15 21:31:36 ----HD---- C:\ProgramData
2018-05-15 07:35:46 ----RD---- C:\WINDOWS\assembly
2018-05-14 06:45:53 ----D---- C:\WINDOWS\rescache
2018-05-09 19:20:19 ----D---- C:\WINDOWS\debug
2018-05-09 19:19:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-05-09 19:12:24 ----D---- C:\WINDOWS\system32\DriverStore
2018-05-09 19:11:45 ----D---- C:\WINDOWS\system32\drivers
2018-05-09 19:08:37 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SYSWOW64\wbem
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SYSWOW64\Dism
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SysWOW64
2018-05-09 19:08:33 ----D---- C:\WINDOWS\system32\wbem
2018-05-09 19:08:32 ----D---- C:\WINDOWS\system32\oobe
2018-05-09 19:08:32 ----D---- C:\WINDOWS\system32\migration
2018-05-09 19:08:32 ----D---- C:\WINDOWS\system32\en-US
2018-05-09 19:08:32 ----D---- C:\WINDOWS\system32\Dism
2018-05-09 19:08:31 ----SD---- C:\WINDOWS\system32\DiagSvcs
2018-05-09 19:08:31 ----D---- C:\WINDOWS\system32\cs-CZ
2018-05-09 19:08:31 ----D---- C:\WINDOWS\system32\Boot
2018-05-09 19:08:21 ----D---- C:\WINDOWS\ShellExperiences
2018-05-09 19:08:21 ----D---- C:\WINDOWS\servicing
2018-05-09 19:08:20 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-05-09 19:08:19 ----D---- C:\WINDOWS\apppatch
2018-05-09 19:08:18 ----D---- C:\Program Files\Windows Media Player
2018-05-09 19:08:18 ----D---- C:\Program Files (x86)\Windows Media Player
2018-05-09 12:09:49 ----D---- C:\WINDOWS\system32\MRT
2018-05-09 12:01:27 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-05-09 12:01:14 ----AC---- C:\WINDOWS\system32\MRT.exe
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2015-03-10 241880]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-03-10 64208]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R0 MBI;@oem7.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\WINDOWS\System32\drivers\MBI.sys [2013-12-10 29464]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-03-30 59808]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-03-10 246000]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-03-10 169792]
R1 EpfwLWF;@oem22.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-03-10 44632]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-02-10 385536]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-03-10 222280]
R2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys [2013-12-09 11576]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2017-09-29 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
R3 ETDI2C;@oem23.inf,%ELANI2CDeviceDesc%;ELAN I2C Filter Driver; C:\WINDOWS\system32\DRIVERS\ETDI2C.sys [2014-04-08 173384]
R3 iaioi2c;@oem25.inf,%Driver_Service.Desc%;I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2ce.sys [2013-11-11 67584]
R3 iwdbus;@oem18.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 LMDriver;@oem28.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\WINDOWS\System32\drivers\LMDriver.sys [2013-07-18 21360]
R3 RadioShim;@oem28.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\WINDOWS\System32\drivers\RadioShim.sys [2013-07-18 14680]
R3 RtkBtFilter;@oem14.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2016-01-15 615728]
R3 RTL8168;@oem17.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\System32\drivers\Rt630x64.sys [2014-05-08 871640]
R3 RTWlanE;@oem11.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\System32\drivers\rtwlane.sys [2015-06-11 4175104]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-03-13 1015296]
S3 dg_ssudbus;@oem0.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 GeneStor;@oem21.inf,%GENESTOR.SvcDesc%;Genesys Logic Storage Driver; C:\WINDOWS\System32\drivers\GeneStor.sys [2014-04-28 111336]
S3 glavcam;GL USB2.0 UVC Camera Device; C:\WINDOWS\system32\DRIVERS\glavcam.sys [2015-12-14 3468032]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-09-29 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 HyperVideo;HyperVideo; C:\WINDOWS\System32\drivers\HyperVideo.sys [2018-03-30 28160]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 intaud_WaveExtensible;@oem16.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-12-01 50160]
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-03-30 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2017-11-26 252232]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 netvsc;netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [2018-03-30 192512]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2017-09-29 1849752]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-09-30 56216]
S3 ssudmdm;@oem1.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 Bonjour Service;Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-05-18 345376]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2017-09-26 2278688]
R2 CDPUserSvc_3662f;CDPUserSvc_3662f; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\dusmsvc.dll
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2015-01-28 1349576]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2016-01-03 349728]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-02 733696]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-12-30 455912]
R2 OneSyncSvc_3662f;OneSyncSvc_3662f; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-03-01 519152]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-07-22 2573032]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\InstallService.dll
R3 PimIndexMaintenanceSvc_3662f;PimIndexMaintenanceSvc_3662f; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-06-26 458984]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\system32\SEMgrSvc.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; %SystemRoot%\system32\svchost.exe -k appmodel -p;"ServiceDll" = %SystemRoot%\system32\CapabilityAccessManager.dll
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_3662f;DevicesFlowUserSvc_3662f; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll" =
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k diagnostics;"ServiceDll" = %systemroot%\system32\DiagSvc.dll
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-12-08 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2016-01-03 209952]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k GraphicsPerfSvcGroup;"ServiceDll" = %SystemRoot%\System32\GraphicsPerfSvc.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-25 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-02 822232]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-08-07 6058960]
S3 MessagingService_3662f;MessagingService_3662f; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\System32\NaturalAuth.dll
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; %SystemRoot%\system32\svchost.exe -k PrintWorkflow;"ServiceDll" = %SystemRoot%\System32\PrintWorkflowService.dll
S3 PrintWorkflowUserSvc_3662f;PrintWorkflowUserSvc_3662f; C:\WINDOWS\system32\svchost.exe -k PrintWorkflow;"ServiceDll" =
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\PushToInstall.dll
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\System32\SharedRealitySvc.dll
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2018-03-30 956416]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
Logfile of random's system information tool 1.16 (written by random/random)
Run by Jiří at 2018-06-02 12:04:51
Microsoft Windows 10 Home
System drive C: has 150 GB (33%) free of 460 GB
Total RAM: 3978 MB (40% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:05:15, on 02.06.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0371)
Boot mode: Normal
Running processes:
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Program Files (x86)\GLPCCamera\monitorpad.exe
C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe
C:\Program Files\trend micro\Jiří_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Jiří\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 10171 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
C:\WINDOWS\system32\dwm.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservice -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s SEMgrSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 1662759954256
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\system32\dashost.exe
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
c:\windows\system32\taskhostw.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
C:\WINDOWS\system32\ctfmon.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
C:\WINDOWS\Explorer.EXE
C:\Windows\SysWOW64\UMonit64.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s upnphost
"C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\igfxTray.exe
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
C:\WINDOWS\system32\igfxext.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
"C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe" task
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe" task
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" -r "C:\Users\Jiří\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" -u S-1-5-21-2734594728-343395219-3823349460-1001 -c 732 -s 540 -g "C:\ProgramData\acer\CCD"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\GLPCCamera\monitorpad.exe"
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
"C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe"
"C:\Program Files (x86)\Stardock\ObjectDock Plus\Dock64.exe"
"C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDockTray.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s QWAVE
c:\windows\system32\taskhostw.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SensorService
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\system32\AUDIODG.EXE 0x524
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"C:\Users\Jiří\Desktop\RSITx64.exe"
====== Scheduled tasks folder ======
C:\WINDOWS\system32\tasks\abDocsDllLoader - C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe task
C:\WINDOWS\system32\tasks\ACCAgent - C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe
C:\WINDOWS\system32\tasks\BacKGroundAgent - C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe task
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\ESET Windows 10 upgrade – Refresh settings - C:\Program Files\Common Files\AV\ESET Smart Security 8.0\upgrade.exe
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA1d0b995bf082813 - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\Launch Manager - "C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe"
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task-S-1-5-21-2734594728-343395219-3823349460-1001 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Power Management - "C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe"
C:\WINDOWS\system32\tasks\Quick Access - "C:\Program Files\Acer\Acer Quick Access\QALauncher.exe"
C:\WINDOWS\system32\tasks\Quick Access Quick Launcher - "C:\Program Files\Acer\Acer Quick Access\QALauncher.exe" -noui -normsvc
C:\WINDOWS\system32\tasks\UbtFrameworkService - "C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe"
C:\WINDOWS\system32\tasks\UMonitor Task - C:\Windows\SysWOW64\UMonit64.exe
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{01FA28F9-C04B-4783-A9F8-762159759CC1} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Recovery-Check - %SystemRoot%\System32\dsregcmd.exe /checkrecovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\Windows\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe Scan -ScheduleJob -ScanTrigger 55
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WaaSMedic\PerformRemediation - %systemroot%\System32\WaaSMedic.exe None
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\AC Power Download - %systemroot%\system32\usoclient.exe StartDownload
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr - %windir%\System32\UNP\UpdateNotificationMgr.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ClientTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Client"
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ServerTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Server"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Setup\Notifier - %windir%\system32\Notifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\LoginCheck - %windir%\system32\sc.exe start pushtoinstall login
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\Registration - %windir%\system32\sc.exe start pushtoinstall registration
C:\WINDOWS\system32\tasks\Microsoft\Windows\Printing\EduPrintProv - %windir%\system32\eduprintprov.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Chkdsk\SyspartRepair - %windir%\system32\bcdboot.exe %windir% /sysrepair
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
=========Google Chrome=========
C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace 0.10
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aknpkdffaafgjchaibgeefbgmgeghloj
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty 0.10
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky 1.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension gffjhibehnempbkeheiccaincokdjbfe 0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.30.1
Extension iiekfaemafmplemocgimeccahephhdgf 1 VratnePenize.cz Připomínáček 2.0.11.0
Extension kdmmkfaghgcicheaimnpffeeekheafkb 0 EasyHome Homestyler 4.0.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.73
Extension knebimhcckndhiglamoabbnifdkijidd 0
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.7
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.4
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 6618.312.0.2
Extension pmeobdehlajlhbpcmodgllgfmblpjflc 1 Bubble Shooter
1.4
Extension pnjfmdhgadolaidlgcbdjbmjnkidlmdj 1 Dark Violet 1.5
Homepage: http://www.idnes.cz/
default_search_provider.search_url:
C:\Users\Jiří\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2015-01-28 5595848]
"GLSystray"=C:\Program Files (x86)\GLPCCamera\monitorpad.exe [2011-11-28 69632]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-06-29 53282944]
"OneDrive"=C:\Users\Jiří\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-05-01 1624224]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-04-11 9532120]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
C:\Users\Jiří\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Stardock ObjectDock.lnk - C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableFullTrustStartupTasks"=2
"EnableUIADesktopToggle"=0
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2018-06-02 07:42:51 ----HD---- C:\$WINDOWS.~BT
2018-05-19 21:52:53 ----A---- C:\WINDOWS\system32\Notifier.exe
2018-05-09 18:37:37 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2018-05-09 18:37:25 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2018-05-09 18:37:25 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2018-05-09 18:37:25 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2018-05-09 18:37:25 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\wldp.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\Wldap32.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\WinTypes.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\wincorlib.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\schannel.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\profsvc.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\oleaut32.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\crypt32.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\combase.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\ci.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\ByteCodeGenerator.exe
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-05-09 18:37:24 ----A---- C:\WINDOWS\system32\aepic.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\wups2.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\usocore.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\netlogon.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\dosvc.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\domgmt.dll
2018-05-09 18:37:23 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-05-09 18:37:22 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\ShareHost.dll
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\eShims.dll
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\cdp.dll
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-05-09 18:37:21 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2018-05-09 18:37:20 ----A---- C:\WINDOWS\system32\aadauthhelper.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\wlidprov.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\tquery.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\mssprxy.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\mssph.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\mssitlb.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-05-09 18:37:19 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\rdpcore.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\Geolocation.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\coredpus.dll
2018-05-09 18:37:18 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2018-05-09 18:37:17 ----A---- C:\WINDOWS\system32\DeviceUpdateAgent.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2018-05-09 18:37:16 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\twext.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\TSpkg.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\shlwapi.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\shell32.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\credssp.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\comdlg32.dll
2018-05-09 18:37:15 ----A---- C:\WINDOWS\system32\comctl32.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\themecpl.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\ntshrui.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\ninput.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\mstsc.exe
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\msctf.dll
2018-05-09 18:37:14 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\usercpl.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\twinui.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\mstscax.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\kernel32.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2018-05-09 18:37:13 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\authui.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-05-09 18:37:12 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-05-09 18:37:11 ----A---- C:\WINDOWS\system32\AppResolver.dll
2018-05-09 18:37:09 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-05-09 18:37:09 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\pcalua.exe
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\pcaevts.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\pcadm.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\invagent.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-05-09 18:37:08 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-05-09 18:37:07 ----A---- C:\WINDOWS\system32\wsecedit.dll
2018-05-09 18:37:07 ----A---- C:\WINDOWS\system32\devinv.dll
2018-05-09 18:37:07 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\zipfldr.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\catsrvut.dll
2018-05-09 18:37:06 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\winresume.exe
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\srpapi.dll
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\comsvcs.dll
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\appidsvc.dll
2018-05-09 18:37:05 ----A---- C:\WINDOWS\system32\appidapi.dll
2018-05-09 18:37:04 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-05-09 18:37:04 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-05-09 18:37:04 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-05-09 18:37:04 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\winload.exe
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\LogonController.dll
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\credprovs.dll
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\credprovhost.dll
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\CredProv2faHelper.dll
2018-05-09 18:37:03 ----A---- C:\WINDOWS\system32\atmfd.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\t2embed.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\itss.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\itircl.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\hgcpl.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\gameux.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\fontsub.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2018-05-09 18:37:02 ----A---- C:\WINDOWS\HelpPane.exe
2018-05-09 18:37:00 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-05-09 18:37:00 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\LockHostingFramework.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\LockController.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2018-05-09 18:36:59 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2018-05-09 18:36:58 ----A---- C:\WINDOWS\system32\wininet.dll
2018-05-09 18:36:58 ----A---- C:\WINDOWS\system32\msxml3.dll
2018-05-09 18:36:58 ----A---- C:\WINDOWS\system32\msisip.dll
2018-05-09 18:36:58 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-05-09 18:36:57 ----A---- C:\WINDOWS\system32\WpcMon.exe
2018-05-09 18:36:57 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2018-05-09 18:36:56 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\Wpc.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\SettingSync.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\fontext.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\CloudNotifications.exe
2018-05-09 18:36:55 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2018-05-09 18:36:55 ----A---- C:\WINDOWS\explorer.exe
2018-05-09 18:36:54 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2018-05-09 18:36:54 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-05-09 18:36:54 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-05-09 18:36:54 ----A---- C:\WINDOWS\system32\stobject.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-05-09 18:36:53 ----A---- C:\WINDOWS\SYSWOW64\aadauthhelper.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe
2018-05-09 18:36:52 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\CredProv2faHelper.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2018-05-09 18:36:51 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2018-05-09 18:36:50 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-05-09 18:36:50 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2018-05-09 18:36:50 ----A---- C:\WINDOWS\SYSWOW64\itircl.dll
2018-05-09 18:36:50 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-05-09 18:36:50 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-05-09 18:36:49 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\twext.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\shlwapi.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2018-05-09 18:36:42 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2018-05-09 18:36:41 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-05-09 18:36:41 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2018-05-09 18:36:40 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2018-05-09 18:36:40 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerUI.dll
2018-05-09 18:36:40 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2018-05-09 18:36:40 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2018-05-09 18:36:40 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2018-05-09 18:36:39 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2018-05-09 18:36:38 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2018-05-09 18:36:38 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2018-05-09 18:36:38 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2018-05-09 18:36:38 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe
2018-05-09 18:36:38 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2018-05-09 18:36:38 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-05-09 18:36:38 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2018-05-09 18:36:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-05-09 18:36:32 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-05-09 18:36:32 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-05-09 18:36:31 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-05-09 18:36:31 ----A---- C:\WINDOWS\system32\imgutil.dll
2018-05-09 18:36:31 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-05-09 18:36:30 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-05-09 18:36:30 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\mshtmled.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\ieproxy.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-05-09 18:36:29 ----A---- C:\WINDOWS\system32\dxtrans.dll
2018-05-09 18:36:28 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-05-09 18:36:28 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-05-09 18:36:28 ----A---- C:\WINDOWS\system32\jscript.dll
2018-05-09 18:36:27 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2018-05-09 18:36:27 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-05-09 18:36:27 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-05-09 18:36:27 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-05-09 18:36:27 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2018-05-09 18:36:26 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-05-09 18:36:26 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-05-09 18:36:26 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-05-09 18:36:26 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-05-09 18:36:25 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2018-05-09 18:36:25 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-05-09 18:36:25 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2018-05-09 18:36:24 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-05-09 18:36:19 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2018-05-09 18:36:08 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\wmp.dll
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2018-05-09 18:36:07 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-05-09 18:36:06 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2018-05-09 18:36:04 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-05-09 18:36:04 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\system32\mfplat.dll
2018-05-09 18:36:03 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2018-05-09 18:36:02 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2018-05-09 18:36:02 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
====== List of files/folders modified in the last 1 month ======
2018-06-02 12:05:08 ----D---- C:\Program Files\trend micro
2018-06-02 12:05:02 ----D---- C:\WINDOWS\Temp
2018-06-02 12:04:55 ----D---- C:\WINDOWS\Prefetch
2018-06-02 12:00:10 ----D---- C:\WINDOWS\INF
2018-06-02 12:00:09 ----D---- C:\WINDOWS\LiveKernelReports
2018-06-02 12:00:09 ----D---- C:\Windows
2018-06-02 11:43:51 ----D---- C:\WINDOWS\system32\sru
2018-06-02 11:43:25 ----D---- C:\WINDOWS\system32\SleepStudy
2018-06-02 10:02:14 ----HD---- C:\Program Files\WindowsApps
2018-06-02 09:59:07 ----D---- C:\WINDOWS\AppReadiness
2018-06-02 08:56:28 ----SHD---- C:\System Volume Information
2018-06-02 07:45:13 ----D---- C:\WINDOWS\DeliveryOptimization
2018-06-02 07:43:17 ----DC---- C:\WINDOWS\Panther
2018-06-02 07:31:41 ----D---- C:\WINDOWS\Logs
2018-06-01 15:40:43 ----RD---- C:\WINDOWS\Microsoft.NET
2018-05-31 13:58:22 ----D---- C:\WINDOWS\system32\drivers\wd
2018-05-29 21:41:02 ----D---- C:\WINDOWS\system32\LogFiles
2018-05-25 12:02:53 ----D---- C:\WINDOWS\system32\config
2018-05-25 11:34:35 ----D---- C:\WINDOWS\system32\catroot2
2018-05-23 17:09:22 ----D---- C:\AdwCleaner
2018-05-21 06:52:38 ----D---- C:\Program Files (x86)\Acer
2018-05-21 06:48:50 ----SHD---- C:\Config.Msi
2018-05-19 22:02:34 ----D---- C:\WINDOWS\CbsTemp
2018-05-19 22:02:32 ----D---- C:\WINDOWS\WinSxS
2018-05-19 22:02:27 ----D---- C:\WINDOWS\System32
2018-05-18 06:49:00 ----D---- C:\WINDOWS\system32\Tasks
2018-05-17 23:54:09 ----SHD---- C:\WINDOWS\Installer
2018-05-17 23:52:02 ----RD---- C:\Program Files (x86)
2018-05-15 21:31:36 ----HD---- C:\ProgramData
2018-05-15 07:35:46 ----RD---- C:\WINDOWS\assembly
2018-05-14 06:45:53 ----D---- C:\WINDOWS\rescache
2018-05-09 19:20:19 ----D---- C:\WINDOWS\debug
2018-05-09 19:19:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-05-09 19:12:24 ----D---- C:\WINDOWS\system32\DriverStore
2018-05-09 19:11:45 ----D---- C:\WINDOWS\system32\drivers
2018-05-09 19:08:37 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SYSWOW64\wbem
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SYSWOW64\Dism
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-05-09 19:08:37 ----D---- C:\WINDOWS\SysWOW64
2018-05-09 19:08:33 ----D---- C:\WINDOWS\system32\wbem
2018-05-09 19:08:32 ----D---- C:\WINDOWS\system32\oobe
2018-05-09 19:08:32 ----D---- C:\WINDOWS\system32\migration
2018-05-09 19:08:32 ----D---- C:\WINDOWS\system32\en-US
2018-05-09 19:08:32 ----D---- C:\WINDOWS\system32\Dism
2018-05-09 19:08:31 ----SD---- C:\WINDOWS\system32\DiagSvcs
2018-05-09 19:08:31 ----D---- C:\WINDOWS\system32\cs-CZ
2018-05-09 19:08:31 ----D---- C:\WINDOWS\system32\Boot
2018-05-09 19:08:21 ----D---- C:\WINDOWS\ShellExperiences
2018-05-09 19:08:21 ----D---- C:\WINDOWS\servicing
2018-05-09 19:08:20 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-05-09 19:08:19 ----D---- C:\WINDOWS\apppatch
2018-05-09 19:08:18 ----D---- C:\Program Files\Windows Media Player
2018-05-09 19:08:18 ----D---- C:\Program Files (x86)\Windows Media Player
2018-05-09 12:09:49 ----D---- C:\WINDOWS\system32\MRT
2018-05-09 12:01:27 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-05-09 12:01:14 ----AC---- C:\WINDOWS\system32\MRT.exe
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2015-03-10 241880]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-03-10 64208]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R0 MBI;@oem7.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\WINDOWS\System32\drivers\MBI.sys [2013-12-10 29464]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-03-30 59808]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-03-10 246000]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-03-10 169792]
R1 EpfwLWF;@oem22.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-03-10 44632]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-02-10 385536]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-03-10 222280]
R2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys [2013-12-09 11576]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2017-09-29 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
R3 ETDI2C;@oem23.inf,%ELANI2CDeviceDesc%;ELAN I2C Filter Driver; C:\WINDOWS\system32\DRIVERS\ETDI2C.sys [2014-04-08 173384]
R3 iaioi2c;@oem25.inf,%Driver_Service.Desc%;I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2ce.sys [2013-11-11 67584]
R3 iwdbus;@oem18.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 LMDriver;@oem28.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\WINDOWS\System32\drivers\LMDriver.sys [2013-07-18 21360]
R3 RadioShim;@oem28.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\WINDOWS\System32\drivers\RadioShim.sys [2013-07-18 14680]
R3 RtkBtFilter;@oem14.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2016-01-15 615728]
R3 RTL8168;@oem17.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\System32\drivers\Rt630x64.sys [2014-05-08 871640]
R3 RTWlanE;@oem11.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\System32\drivers\rtwlane.sys [2015-06-11 4175104]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-03-13 1015296]
S3 dg_ssudbus;@oem0.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 GeneStor;@oem21.inf,%GENESTOR.SvcDesc%;Genesys Logic Storage Driver; C:\WINDOWS\System32\drivers\GeneStor.sys [2014-04-28 111336]
S3 glavcam;GL USB2.0 UVC Camera Device; C:\WINDOWS\system32\DRIVERS\glavcam.sys [2015-12-14 3468032]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-09-29 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 HyperVideo;HyperVideo; C:\WINDOWS\System32\drivers\HyperVideo.sys [2018-03-30 28160]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 intaud_WaveExtensible;@oem16.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-12-01 50160]
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-03-30 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2017-11-26 252232]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 netvsc;netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [2018-03-30 192512]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2017-09-29 1849752]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-09-30 56216]
S3 ssudmdm;@oem1.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 Bonjour Service;Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-05-18 345376]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2017-09-26 2278688]
R2 CDPUserSvc_3662f;CDPUserSvc_3662f; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\dusmsvc.dll
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2015-01-28 1349576]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2016-01-03 349728]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-02 733696]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-12-30 455912]
R2 OneSyncSvc_3662f;OneSyncSvc_3662f; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-03-01 519152]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-07-22 2573032]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\InstallService.dll
R3 PimIndexMaintenanceSvc_3662f;PimIndexMaintenanceSvc_3662f; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-06-26 458984]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\system32\SEMgrSvc.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; %SystemRoot%\system32\svchost.exe -k appmodel -p;"ServiceDll" = %SystemRoot%\system32\CapabilityAccessManager.dll
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_3662f;DevicesFlowUserSvc_3662f; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll" =
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k diagnostics;"ServiceDll" = %systemroot%\system32\DiagSvc.dll
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-12-08 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2016-01-03 209952]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k GraphicsPerfSvcGroup;"ServiceDll" = %SystemRoot%\System32\GraphicsPerfSvc.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-25 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-02 822232]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-08-07 6058960]
S3 MessagingService_3662f;MessagingService_3662f; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\System32\NaturalAuth.dll
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; %SystemRoot%\system32\svchost.exe -k PrintWorkflow;"ServiceDll" = %SystemRoot%\System32\PrintWorkflowService.dll
S3 PrintWorkflowUserSvc_3662f;PrintWorkflowUserSvc_3662f; C:\WINDOWS\system32\svchost.exe -k PrintWorkflow;"ServiceDll" =
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\PushToInstall.dll
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\System32\SharedRealitySvc.dll
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2018-03-30 956416]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře. 