Blikanie ikon v prieskumníku a na ploche
Napsal: 06 lis 2018 21:15
Dobrý deň, chcel by som vás poprosiť o pomoc, či radu s mojim záhadným problémom.
Po zapnuti PC sa všetko javí normalne, no ako nahle otvorim prieskumník tak okamžite začnu ikony v stavovom riadku blikať a tiež na ploche a v samotnom prieskumníku.
Používam W10 64
Za odpoveď ďakujem
Pripájam LOG:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pe3k at 2018-11-06 21:11:10
Microsoft Windows 10 Education
System drive C: has 110 GB (65%) free of 170 GB
Total RAM: 8055 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:11:23, on 6. 11. 2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Users\barte\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\barte\AppData\Local\Viber\Viber.exe
C:\OBERON\SHARE\SYSTEM\OBERON Center.exe
C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\KbClient_FD2.exe
C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\MouClient_FD2.exe
C:\Program Files\trend micro\Pe3k.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office16\GROOVEEX.DLL
O3 - Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O4 - HKLM\..\Run: [OBERON Center] "C:\OBERON\Share\System\OBERON Center.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [Launch SilverCrest STMS 2017 A1-K] C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\KbClient_FD2.exe
O4 - HKLM\..\Run: [Launch SilverCrest STMS 2017 A1-M] C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\MouClient_FD2.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\barte\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [EPLTarget\P0000000000000002] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATISRE.EXE /EPT "EPLTarget\P0000000000000002" /M "L6170 Series"
O4 - HKCU\..\Run: [OpenVPN-GUI] C:\Program Files\OpenVPN\bin\openvpn-gui.exe
O4 - HKCU\..\Run: [Viber] "C:\Users\barte\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [EPLTarget\P0000000000000000] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATISRE.EXE /EPT "EPLTarget\P0000000000000000" /M "L6170 Series" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [EPLTarget\P0000000000000000] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATISRE.EXE /EPT "EPLTarget\P0000000000000000" /M "L6170 Series" (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~1\Office16\ONBttnIE.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: APLI Master AutoUpdater - Unknown owner - C:\Program Files (x86)\APLI Paper\APLI Master\ApliAutoUpdater.exe
O23 - Service: @oem5.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\WINDOWS\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @oem6.inf,%fpCSEvtService_SvcDesc%;fpCSEvtSvc (fpCsEvtSvc) - Unknown owner - C:\WINDOWS\system32\fpCSEvtSvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP CASL Framework Service (hpqcaslwmiex) - HP - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service: @oem14.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: OpenVPNService - - C:\Program Files\OpenVPN\bin\openvpnserv2.exe
O23 - Service: OpenVPN Interactive Service (OpenVPNServiceInteractive) - The OpenVPN Project - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: OpenVPN Legacy Service (OpenVPNServiceLegacy) - The OpenVPN Project - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: Corel License Validation Service V2, Powered by arvato (PSI_SVC_2) - arvato digital services llc - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 13 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: UsbClientService - Unknown owner - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
O23 - Service: @oem6.inf,%WBFService_SvcDesc%;Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\WINDOWS\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 12753 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-4b35059f-9302-473e-8ecb-3b72d9d833af -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-727f6e58-97a9-45bd-9552-0060fe328792 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-3887f465-52c1-414f-834a-ad128d93d8ad -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-cbb50c66-2bf2-40ec-99ba-4f3161804846 -LifetimeId:98b14ba9-da51-4dbd-b582-8327b181dd1f -DeviceGroupId:
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-2dd58261-5fad-4189-ad23-233166bb1542 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-8d44be51-927c-4a28-869d-3c20f0edb5eb -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-61f26315-e843-4a04-b798-45741c68d22e -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-5ceb207e-7d48-419e-956e-b5b867bba61a -LifetimeId:6c49ff39-2db8-434e-8aa2-f50f1709ef27 -DeviceGroupId:
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localservice -p -s bthserv
c:\windows\system32\svchost.exe -k localservice -p -s BthAvctpSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s BTAGService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SensorService
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SensrSvc
c:\windows\system32\svchost.exe -k localservice -p -s nsi
dashost.exe {d29a0cdb-36f2-4aca-b0fc0de78012cc47}
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
C:\WINDOWS\system32\BtwRSupportService.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
"C:\Program Files (x86)\APLI Paper\APLI Master\ApliAutoUpdater.exe" -runas_service
C:\WINDOWS\system32\EscSvc64.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\system32\valWBFPolicyService.exe
c:\windows\system32\svchost.exe -k localservice -s W32Time
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
c:\windows\system32\svchost.exe -k netsvcs -p
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-90474e7c-3e73-4da9-b7f6-72b379309e04 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-121573f5-fa66-4983-8429-4415a66e6d64 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-54a1d74d-cdca-4c38-a5c9-bafa8a79d286 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a275391b-3415-4ce1-8a7e-21b52363968d -LifetimeId:091694e7-a843-4845-ad2e-a6e2aa74ae81 -DeviceGroupId:WpdFsGroup
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe "
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"ctfmon.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer13_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer13_Logfile.log
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Users\barte\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\OpenVPN\bin\openvpn-gui.exe
"C:\Users\barte\AppData\Local\Viber\Viber.exe" StartMinimized
"C:\OBERON\SHARE\SYSTEM\OBERON Center.exe"
"C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe"
"C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\KbClient_FD2.exe"
"C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\MouClient_FD2.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\system32\OpenWith.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\barte\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\barte\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\barte\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=70.0.3538.77 --initial-client-data=0x1ec,0x1f0,0x1f4,0x1e8,0x1f8,0x7ffbda7354d0,0x7ffbda7354e0,0x7ffbda7354f0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=7480 --on-initialized-event-handle=664 --parent-handle=668 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --gpu-preferences=KAAAAAAAAACAAwBAAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=11418207320522972224 --mojo-platform-channel-handle=1560 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --service-pipe-token=8888137477262960657 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=8888137477262960657 --renderer-client-id=3 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2988 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --service-pipe-token=4465689353482170053 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4465689353482170053 --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4204 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --service-pipe-token=547605277080964079 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=547605277080964079 --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6656 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --service-pipe-token=14037843258019733961 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14037843258019733961 --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5548 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --service-pipe-token=6971483305762920713 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=6971483305762920713 --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6220 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe28_ Global\UsGthrCtrlFltPipeMssGthrPipe28 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 748 752 760 8192 756
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x638
"C:\Users\barte\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\EPSON L6170 Series Update {57ADFBCA-C47A-4116-8E4F-02711BD8CEBB}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSSRE.EXE /EXE:"{57ADFBCA-C47A-4116-8E4F-02711BD8CEBB}" /F:"Update"
C:\WINDOWS\tasks\EPSON L6170 Series Update {BA98BC21-3F11-4A12-8112-18230C58A2D2}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSSRE.EXE /EXE:"{BA98BC21-3F11-4A12-8112-18230C58A2D2}" /F:"Update"
C:\WINDOWS\tasks\HPCeeScheduleForPe3k.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPe3k (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31 226984]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31 471536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~1\MICROS~1\Office16\GROOVEEX.DLL [2015-07-31 2165976]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201CF130-E29C-4E5C-A73F-CD197DEFA6AE}]
E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31 161448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~2\MICROS~1\Office16\GROOVEEX.DLL [2015-07-31 1512152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31 471536]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\barte\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-10-17 1538656]
"EPLTarget\P0000000000000002"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATISRE.EXE [2016-07-14 418000]
"OpenVPN-GUI"=C:\Program Files\OpenVPN\bin\openvpn-gui.exe [2017-07-14 638592]
"Viber"=C:\Users\barte\AppData\Local\Viber\Viber.exe [2018-10-22 36762184]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"OBERON Center"=C:\OBERON\Share\System\OBERON Center.exe [2018-01-04 1701096]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2016-11-18 1151872]
"Launch SilverCrest STMS 2017 A1-K"=C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\KbClient_FD2.exe [2011-02-17 1424384]
"Launch SilverCrest STMS 2017 A1-M"=C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\MouClient_FD2.exe [2011-02-17 865280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-11-06 21:11:10 ----D---- C:\rsit
2018-11-06 21:11:10 ----D---- C:\Program Files\trend micro
2018-11-06 21:04:15 ----D---- C:\Users\barte\AppData\Roaming\Macromedia
2018-11-04 09:21:22 ----D---- C:\WINDOWS\Minidump
2018-11-03 21:13:10 ----HD---- C:\OneDriveTemp
2018-11-01 21:45:38 ----A---- C:\WINDOWS\system32\E_YLMBSRE.DLL
2018-11-01 17:17:45 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-11-01 17:14:24 ----D---- C:\WINDOWS\system32\appmgmt
2018-11-01 17:13:49 ----A---- C:\Program Files (x86)\CMS Uninstall Log.txt
2018-11-01 17:12:30 ----HD---- C:\$SysReset
2018-11-01 16:49:52 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\IntelCpHeciSvc.exe
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\Intel_OpenCL_ICD32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\iglhsip32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\iglhcp32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\ig7icd32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\iglhsip64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\iglhcp64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxOSP.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxLHMLib.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxLHM.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxHK.exe
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxext.exe
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxexps.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxEMLibv2_0.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxEMLib.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxEM.exe
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDTCM.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDILibv2_0.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDILib.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDI.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDHLibv2_0.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDHLib.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDH.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxCUIServicePS.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igdde64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\ig7icd64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\drivers\IntcDAud.sys
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\difx64.exe
2018-11-01 16:03:37 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2018-10-26 21:09:11 ----D---- C:\ProgramData\Garmin
2018-10-26 21:08:45 ----D---- C:\Program Files\DIFX
2018-10-26 21:08:29 ----D---- C:\Users\barte\AppData\Roaming\Garmin
2018-10-26 21:08:29 ----D---- C:\Program Files (x86)\Garmin
2018-10-10 17:14:24 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-10-10 17:14:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-10-10 17:14:22 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-10-10 17:14:21 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-10-10 17:14:17 ----A---- C:\WINDOWS\system32\shell32.dll
2018-10-10 17:14:16 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-10-10 17:14:16 ----A---- C:\WINDOWS\system32\wininet.dll
2018-10-10 17:14:15 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-10-10 17:14:15 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-10-10 17:14:15 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-10-10 17:14:15 ----A---- C:\WINDOWS\system32\InputService.dll
2018-10-10 17:14:14 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-10-10 17:14:14 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2018-10-10 17:14:14 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2018-10-10 17:14:14 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-10-10 17:14:14 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-10-10 17:14:13 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-10-10 17:14:13 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\system32\twinui.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\system32\msftedit.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\wmp.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\dosvc.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\system32\winmsipc.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\system32\msctf.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\aepic.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\winmsipc.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\wsp_health.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\devinv.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-10-10 17:14:07 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-10-10 17:14:07 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\WWAHost.exe
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\rpcss.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\kerberos.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\invagent.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\wpnapps.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\winlogon.exe
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\win32spl.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\usocore.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\ubpm.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\schannel.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\fveapi.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\clusapi.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\resutils.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\msxml3.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\ieproxy.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\dafBth.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\cryptui.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.XamlHost.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\winresume.exe
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\winload.exe
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\sechost.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\psmsrv.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\evr.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\drivers\exfat.sys
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\bthserv.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\winipcsecproc.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\winipcsecproc.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\winipcfile.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\user32.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\scksp.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\mfps.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\das.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\basecsp.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\advapi32.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\winipcfile.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\mcbuilder.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\fdBth.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\thumbcache.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\themeui.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\mcbuilder.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVStreamMap.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVStreamingUX.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVNice.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVDllSurrogate.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\aclui.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\wmpshell.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Proximity.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Bluetooth.Proxy.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\INETRES.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\wmpshell.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\Windows.Networking.Proximity.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\utcutil.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\SCardBi.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\runexehelper.exe
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\rdpshell.exe
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\rdpinit.exe
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\ProximityService.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Proxy.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\itss.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\INETRES.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\inetcomm.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\fdBth.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\drivers\Dumpstorport.sys
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\certprop.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\bthci.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\bdesvc.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
======List of files/folders modified in the last 1 month======
2018-11-06 21:11:17 ----D---- C:\WINDOWS\Temp
2018-11-06 21:11:17 ----D---- C:\WINDOWS\Prefetch
2018-11-06 21:11:10 ----RD---- C:\Program Files
2018-11-06 21:04:17 ----D---- C:\Users\barte\AppData\Roaming\vlc
2018-11-06 20:55:25 ----HD---- C:\Program Files\WindowsApps
2018-11-06 20:54:54 ----D---- C:\WINDOWS\AppReadiness
2018-11-06 20:50:28 ----D---- C:\WINDOWS\system32\sru
2018-11-06 20:49:47 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-11-06 20:49:28 ----D---- C:\WINDOWS\LiveKernelReports
2018-11-04 19:07:13 ----SHD---- C:\WINDOWS\Installer
2018-11-04 19:06:51 ----D---- C:\WINDOWS\SysWOW64
2018-11-04 19:06:35 ----D---- C:\WINDOWS\system32\Tasks
2018-11-04 18:04:00 ----D---- C:\WINDOWS\system32\SleepStudy
2018-11-04 12:00:02 ----D---- C:\WINDOWS\system32\LogFiles
2018-11-04 10:44:26 ----D---- C:\WINDOWS\Logs
2018-11-04 10:44:24 ----D---- C:\Windows
2018-11-04 10:44:09 ----SHD---- C:\System Volume Information
2018-11-04 10:44:05 ----RD---- C:\WINDOWS\Microsoft.NET
2018-11-04 10:43:56 ----D---- C:\WINDOWS\CbsTemp
2018-11-04 09:28:42 ----D---- C:\WINDOWS\System32
2018-11-04 09:28:42 ----D---- C:\WINDOWS\INF
2018-11-04 09:28:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-11-04 09:21:25 ----D---- C:\Program Files (x86)\TeamViewer
2018-11-04 09:21:22 ----D---- C:\ProgramData\Synaptics
2018-11-03 09:18:00 ----D---- C:\WINDOWS\system32\catroot2
2018-11-03 08:34:10 ----D---- C:\WINDOWS\system32\config
2018-11-01 21:47:13 ----D---- C:\WINDOWS\Tasks
2018-11-01 21:45:50 ----D---- C:\WINDOWS\system32\DriverStore
2018-11-01 21:45:50 ----D---- C:\WINDOWS\system32\CatRoot
2018-11-01 21:44:42 ----HD---- C:\ProgramData
2018-11-01 17:46:58 ----RSD---- C:\WINDOWS\assembly
2018-11-01 17:46:31 ----D---- C:\WINDOWS\WinSxS
2018-11-01 17:17:37 ----D---- C:\Program Files (x86)\WinCDEmu
2018-11-01 17:16:00 ----D---- C:\ProgramData\Ashampoo
2018-11-01 17:14:01 ----D---- C:\Program Files (x86)\CMS
2018-11-01 17:13:49 ----RD---- C:\Program Files (x86)
2018-11-01 16:49:35 ----D---- C:\WINDOWS\system32\drivers
2018-11-01 16:39:15 ----D---- C:\Swsetup
2018-11-01 16:39:08 ----A---- C:\WINDOWS\SYSWOW64\opencl.dll
2018-11-01 16:39:08 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2018-11-01 16:39:07 ----A---- C:\WINDOWS\system32\igfxTray.exe
2018-11-01 16:39:02 ----A---- C:\WINDOWS\system32\IccLibDll_x64.dll
2018-11-01 15:58:10 ----D---- C:\WINDOWS\system32\drivers\wd
2018-11-01 15:48:52 ----D---- C:\Users\barte\AppData\Roaming\ViberPC
2018-10-26 21:12:29 ----D---- C:\ProgramData\Packages
2018-10-26 21:12:03 ----D---- C:\ProgramData\Epson
2018-10-17 19:32:12 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2018-10-10 20:37:46 ----D---- C:\Users\barte\AppData\Roaming\GHISLER
2018-10-10 17:36:55 ----D---- C:\WINDOWS\system32\MRT
2018-10-10 17:31:08 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-10-10 17:22:05 ----D---- C:\WINDOWS\TextInput
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\zu-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\yo-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\xh-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\wo-SN
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\wbem
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\tn-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ti-ET
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ShellExperiences
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\rw-RW
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\nso-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\migration
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ig-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\en-US
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\Boot
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\PolicyDefinitions
2018-10-10 17:22:04 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-10-10 17:22:04 ----RD---- C:\Program Files\Windows Defender
2018-10-10 17:22:04 ----D---- C:\WINDOWS\bcastdvr
2018-10-10 17:22:04 ----D---- C:\WINDOWS\apppatch
2018-10-10 17:22:04 ----D---- C:\Program Files\Windows Media Player
2018-10-10 17:22:04 ----D---- C:\Program Files\internet explorer
2018-10-10 17:22:04 ----D---- C:\Program Files (x86)\Windows Media Player
2018-10-10 17:22:04 ----D---- C:\Program Files (x86)\Windows Defender
2018-10-10 17:22:04 ----D---- C:\Program Files (x86)\Internet Explorer
2018-10-10 16:48:15 ----D---- C:\WINDOWS\system32\NDF
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;@oem14.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-09-07 31040]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-04-12 58272]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2018-04-12 304032]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-04-12 63896]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2018-07-11 27552]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-07-14 414720]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-04-12 43520]
R3 Accelerometer;@oem14.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-09-07 43328]
R3 AgereSoftModem;@mdmags64.inf,%FullProductName%;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\agrsm64.sys [2018-04-12 1146880]
R3 bcbtums;@oem18.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2018-07-11 186152]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2018-04-12 106496]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2018-04-12 86528]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-04-12 129536]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2018-04-12 85504]
R3 busenum;@oem31.inf,%busenum.SVCDESC%;Synology Virtual USB Hub; C:\WINDOWS\System32\drivers\busenum.sys [2012-08-03 57824]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
R3 e1cexpress;@oem19.inf,%e1cExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\WINDOWS\system32\DRIVERS\e1c65x64.sys [2018-07-11 472016]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2018-11-01 3802600]
R3 InputFilter_Hid_FlexDef2b;@oem27.inf,%HIDUASServiceDesc%;Siliten HID Devices(FlexDef2b) Driver Service; C:\WINDOWS\System32\drivers\InputFilter_FlexDef2b.sys [2010-06-19 17920]
R3 IntcDAud;@oem33.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2018-11-01 463112]
R3 iwdbus;@oem8.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 MEIx64;@oem4.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-02-20 194320]
R3 MouFilter_Mou_FlexDef4;@oem28.inf,%HIDUASServiceDesc%;HID Mouse(FlexDef4) Driver Service; C:\WINDOWS\System32\drivers\MouFilter_FlexDef4.sys [2010-10-20 15360]
R3 NETwNe64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\System32\drivers\NETwew01.sys [2018-04-12 3343872]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-04-12 193536]
R3 SNP2UVCW10;@oem20.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvcW10.sys [2018-07-11 2530360]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-08-03 128920]
S2 npf;npf; C:\WINDOWS\System32\drivers\npf.sys []
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2018-04-12 127384]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2018-04-12 162712]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2018-04-12 143768]
S3 BazisVirtualCDBus;@oem30.inf,%dev.SVCDESC%;WinCDEmu Virtual Bus Driver; C:\WINDOWS\System32\drivers\BazisVirtualCDBus.sys [2015-09-28 172376]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-04-12 92056]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2018-09-08 1096704]
S3 btwampfl;@oem18.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2018-07-11 213312]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\System32\drivers\e1i63x64.sys [2018-04-12 524800]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-09-20 76088]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 intaud_WaveExtensible;@oem7.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-12-01 50160]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\WINDOWS\System32\drivers\ptun0901.sys [2016-06-15 27136]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-07-11 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S3 smbdirect;smbdirect; C:\WINDOWS\System32\DRIVERS\smbdirect.sys [2018-04-12 152064]
S3 SNP2UVC;@oem2.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2015-06-30 2599624]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2018-04-12 57752]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-08-13 83984]
R2 APLI Master AutoUpdater;APLI Master AutoUpdater; C:\Program Files (x86)\APLI Paper\APLI Master\ApliAutoUpdater.exe [2011-10-24 167936]
R2 BcmBtRSupport;@oem5.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-10-01 2286848]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_61f87367;Connected Devices Platform User Service_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 EpsonScanSvc;Epson Scanner Service; C:\WINDOWS\system32\EscSvc64.exe [2017-03-10 145224]
R2 hpsrv;@oem14.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-09-07 33600]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2018-06-13 333688]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-07-12 319096]
R2 OneSyncSvc_61f87367;Sync Host_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 osrss;@%systemroot%\system32\osrss.dll,-500; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 PSI_SVC_2;Corel License Validation Service V2, Powered by arvato; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2014-04-30 277360]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-07-14 760888]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2018-04-12 163336]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-07-11 43648]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 PimIndexMaintenanceSvc_61f87367;Kontaktné údaje_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 fpCsEvtSvc;@oem6.inf,%fpCSEvtService_SvcDesc%;fpCSEvtSvc; C:\WINDOWS\system32\fpCSEvtSvc.exe [2018-07-11 22528]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-11 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 OpenVPNServiceInteractive;OpenVPN Interactive Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2017-07-14 72832]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_61f87367;GameDVR and Broadcast User Service_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_61f87367;Služba podpory používateľov rozhrania Bluetooth_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 CaptureService_61f87367;CaptureService_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2018-11-01 280696]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_61f87367;DevicePicker_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_61f87367;DevicesFlow_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-08-03 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-11 153168]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2015-02-13 136120]
S3 hpqcaslwmiex;HP CASL Framework Service; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [2016-06-03 1031704]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_61f87367;MessagingService_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 OpenVPNService;OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [2016-11-25 15872]
S3 OpenVPNServiceLegacy;OpenVPN Legacy Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2017-07-14 72832]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-31 242864]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_61f87367;PrintWorkflow_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2018-07-15 4737448]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2018-07-11 826776]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
-----------------EOF-----------------
Po zapnuti PC sa všetko javí normalne, no ako nahle otvorim prieskumník tak okamžite začnu ikony v stavovom riadku blikať a tiež na ploche a v samotnom prieskumníku.
Používam W10 64
Za odpoveď ďakujem
Pripájam LOG:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pe3k at 2018-11-06 21:11:10
Microsoft Windows 10 Education
System drive C: has 110 GB (65%) free of 170 GB
Total RAM: 8055 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:11:23, on 6. 11. 2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Users\barte\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\barte\AppData\Local\Viber\Viber.exe
C:\OBERON\SHARE\SYSTEM\OBERON Center.exe
C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\KbClient_FD2.exe
C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\MouClient_FD2.exe
C:\Program Files\trend micro\Pe3k.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office16\GROOVEEX.DLL
O3 - Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O4 - HKLM\..\Run: [OBERON Center] "C:\OBERON\Share\System\OBERON Center.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [Launch SilverCrest STMS 2017 A1-K] C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\KbClient_FD2.exe
O4 - HKLM\..\Run: [Launch SilverCrest STMS 2017 A1-M] C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\MouClient_FD2.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\barte\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [EPLTarget\P0000000000000002] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATISRE.EXE /EPT "EPLTarget\P0000000000000002" /M "L6170 Series"
O4 - HKCU\..\Run: [OpenVPN-GUI] C:\Program Files\OpenVPN\bin\openvpn-gui.exe
O4 - HKCU\..\Run: [Viber] "C:\Users\barte\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [EPLTarget\P0000000000000000] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATISRE.EXE /EPT "EPLTarget\P0000000000000000" /M "L6170 Series" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [EPLTarget\P0000000000000000] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATISRE.EXE /EPT "EPLTarget\P0000000000000000" /M "L6170 Series" (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~1\Office16\ONBttnIE.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: APLI Master AutoUpdater - Unknown owner - C:\Program Files (x86)\APLI Paper\APLI Master\ApliAutoUpdater.exe
O23 - Service: @oem5.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\WINDOWS\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @oem6.inf,%fpCSEvtService_SvcDesc%;fpCSEvtSvc (fpCsEvtSvc) - Unknown owner - C:\WINDOWS\system32\fpCSEvtSvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP CASL Framework Service (hpqcaslwmiex) - HP - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service: @oem14.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: OpenVPNService - - C:\Program Files\OpenVPN\bin\openvpnserv2.exe
O23 - Service: OpenVPN Interactive Service (OpenVPNServiceInteractive) - The OpenVPN Project - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: OpenVPN Legacy Service (OpenVPNServiceLegacy) - The OpenVPN Project - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: Corel License Validation Service V2, Powered by arvato (PSI_SVC_2) - arvato digital services llc - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 13 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: UsbClientService - Unknown owner - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
O23 - Service: @oem6.inf,%WBFService_SvcDesc%;Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\WINDOWS\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 12753 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-4b35059f-9302-473e-8ecb-3b72d9d833af -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-727f6e58-97a9-45bd-9552-0060fe328792 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-3887f465-52c1-414f-834a-ad128d93d8ad -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-cbb50c66-2bf2-40ec-99ba-4f3161804846 -LifetimeId:98b14ba9-da51-4dbd-b582-8327b181dd1f -DeviceGroupId:
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-2dd58261-5fad-4189-ad23-233166bb1542 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-8d44be51-927c-4a28-869d-3c20f0edb5eb -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-61f26315-e843-4a04-b798-45741c68d22e -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-5ceb207e-7d48-419e-956e-b5b867bba61a -LifetimeId:6c49ff39-2db8-434e-8aa2-f50f1709ef27 -DeviceGroupId:
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localservice -p -s bthserv
c:\windows\system32\svchost.exe -k localservice -p -s BthAvctpSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s BTAGService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SensorService
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SensrSvc
c:\windows\system32\svchost.exe -k localservice -p -s nsi
dashost.exe {d29a0cdb-36f2-4aca-b0fc0de78012cc47}
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
C:\WINDOWS\system32\BtwRSupportService.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
"C:\Program Files (x86)\APLI Paper\APLI Master\ApliAutoUpdater.exe" -runas_service
C:\WINDOWS\system32\EscSvc64.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\system32\valWBFPolicyService.exe
c:\windows\system32\svchost.exe -k localservice -s W32Time
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
c:\windows\system32\svchost.exe -k netsvcs -p
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-90474e7c-3e73-4da9-b7f6-72b379309e04 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-121573f5-fa66-4983-8429-4415a66e6d64 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-54a1d74d-cdca-4c38-a5c9-bafa8a79d286 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a275391b-3415-4ce1-8a7e-21b52363968d -LifetimeId:091694e7-a843-4845-ad2e-a6e2aa74ae81 -DeviceGroupId:WpdFsGroup
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe "
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"ctfmon.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer13_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer13_Logfile.log
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Users\barte\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\OpenVPN\bin\openvpn-gui.exe
"C:\Users\barte\AppData\Local\Viber\Viber.exe" StartMinimized
"C:\OBERON\SHARE\SYSTEM\OBERON Center.exe"
"C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe"
"C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\KbClient_FD2.exe"
"C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\MouClient_FD2.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\system32\OpenWith.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\barte\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\barte\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\barte\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=70.0.3538.77 --initial-client-data=0x1ec,0x1f0,0x1f4,0x1e8,0x1f8,0x7ffbda7354d0,0x7ffbda7354e0,0x7ffbda7354f0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=7480 --on-initialized-event-handle=664 --parent-handle=668 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --gpu-preferences=KAAAAAAAAACAAwBAAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=11418207320522972224 --mojo-platform-channel-handle=1560 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --service-pipe-token=8888137477262960657 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=8888137477262960657 --renderer-client-id=3 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2988 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --service-pipe-token=4465689353482170053 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4465689353482170053 --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4204 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --service-pipe-token=547605277080964079 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=547605277080964079 --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6656 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --service-pipe-token=14037843258019733961 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14037843258019733961 --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5548 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,9785452987461799663,10567074572829304275,131072 --service-pipe-token=6971483305762920713 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=6971483305762920713 --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6220 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe28_ Global\UsGthrCtrlFltPipeMssGthrPipe28 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 748 752 760 8192 756
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x638
"C:\Users\barte\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\EPSON L6170 Series Update {57ADFBCA-C47A-4116-8E4F-02711BD8CEBB}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSSRE.EXE /EXE:"{57ADFBCA-C47A-4116-8E4F-02711BD8CEBB}" /F:"Update"
C:\WINDOWS\tasks\EPSON L6170 Series Update {BA98BC21-3F11-4A12-8112-18230C58A2D2}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSSRE.EXE /EXE:"{BA98BC21-3F11-4A12-8112-18230C58A2D2}" /F:"Update"
C:\WINDOWS\tasks\HPCeeScheduleForPe3k.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPe3k (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31 226984]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31 471536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~1\MICROS~1\Office16\GROOVEEX.DLL [2015-07-31 2165976]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201CF130-E29C-4E5C-A73F-CD197DEFA6AE}]
E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31 161448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~2\MICROS~1\Office16\GROOVEEX.DLL [2015-07-31 1512152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31 471536]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\barte\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-10-17 1538656]
"EPLTarget\P0000000000000002"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATISRE.EXE [2016-07-14 418000]
"OpenVPN-GUI"=C:\Program Files\OpenVPN\bin\openvpn-gui.exe [2017-07-14 638592]
"Viber"=C:\Users\barte\AppData\Local\Viber\Viber.exe [2018-10-22 36762184]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"OBERON Center"=C:\OBERON\Share\System\OBERON Center.exe [2018-01-04 1701096]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2016-11-18 1151872]
"Launch SilverCrest STMS 2017 A1-K"=C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\KbClient_FD2.exe [2011-02-17 1424384]
"Launch SilverCrest STMS 2017 A1-M"=C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\MouClient_FD2.exe [2011-02-17 865280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-11-06 21:11:10 ----D---- C:\rsit
2018-11-06 21:11:10 ----D---- C:\Program Files\trend micro
2018-11-06 21:04:15 ----D---- C:\Users\barte\AppData\Roaming\Macromedia
2018-11-04 09:21:22 ----D---- C:\WINDOWS\Minidump
2018-11-03 21:13:10 ----HD---- C:\OneDriveTemp
2018-11-01 21:45:38 ----A---- C:\WINDOWS\system32\E_YLMBSRE.DLL
2018-11-01 17:17:45 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-11-01 17:14:24 ----D---- C:\WINDOWS\system32\appmgmt
2018-11-01 17:13:49 ----A---- C:\Program Files (x86)\CMS Uninstall Log.txt
2018-11-01 17:12:30 ----HD---- C:\$SysReset
2018-11-01 16:49:52 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\IntelCpHeciSvc.exe
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\Intel_OpenCL_ICD32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\iglhsip32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\iglhcp32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\ig7icd32.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\iglhsip64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\iglhcp64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxOSP.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxLHMLib.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxLHM.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxHK.exe
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxext.exe
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxexps.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxEMLibv2_0.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxEMLib.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxEM.exe
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDTCM.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDILibv2_0.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDILib.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDI.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDHLibv2_0.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDHLib.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxDH.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxCUIServicePS.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igdde64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\ig7icd64.dll
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\drivers\IntcDAud.sys
2018-11-01 16:39:15 ----A---- C:\WINDOWS\system32\difx64.exe
2018-11-01 16:03:37 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2018-10-26 21:09:11 ----D---- C:\ProgramData\Garmin
2018-10-26 21:08:45 ----D---- C:\Program Files\DIFX
2018-10-26 21:08:29 ----D---- C:\Users\barte\AppData\Roaming\Garmin
2018-10-26 21:08:29 ----D---- C:\Program Files (x86)\Garmin
2018-10-10 17:14:24 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-10-10 17:14:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-10-10 17:14:22 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-10-10 17:14:21 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-10-10 17:14:17 ----A---- C:\WINDOWS\system32\shell32.dll
2018-10-10 17:14:16 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-10-10 17:14:16 ----A---- C:\WINDOWS\system32\wininet.dll
2018-10-10 17:14:15 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-10-10 17:14:15 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-10-10 17:14:15 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-10-10 17:14:15 ----A---- C:\WINDOWS\system32\InputService.dll
2018-10-10 17:14:14 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-10-10 17:14:14 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2018-10-10 17:14:14 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2018-10-10 17:14:14 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-10-10 17:14:14 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-10-10 17:14:13 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-10-10 17:14:13 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\system32\twinui.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\system32\msftedit.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-10-10 17:14:12 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\wmp.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\dosvc.dll
2018-10-10 17:14:11 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\system32\winmsipc.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\system32\msctf.dll
2018-10-10 17:14:10 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\aepic.dll
2018-10-10 17:14:09 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\winmsipc.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\wsp_health.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\devinv.dll
2018-10-10 17:14:08 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-10-10 17:14:07 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-10-10 17:14:07 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\WWAHost.exe
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\rpcss.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\kerberos.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\invagent.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-10-10 17:14:07 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\wpnapps.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\winlogon.exe
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\win32spl.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\usocore.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\ubpm.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\schannel.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\fveapi.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\clusapi.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-10-10 17:14:06 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\resutils.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\msxml3.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\ieproxy.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\dafBth.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\cryptui.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2018-10-10 17:14:05 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.XamlHost.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\winresume.exe
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\winload.exe
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\sechost.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\psmsrv.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\evr.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\drivers\exfat.sys
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\bthserv.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2018-10-10 17:14:04 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\winipcsecproc.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\winipcsecproc.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\winipcfile.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\user32.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\scksp.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\mfps.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\das.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\basecsp.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2018-10-10 17:14:03 ----A---- C:\WINDOWS\system32\advapi32.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\winipcfile.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\mcbuilder.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\fdBth.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\thumbcache.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\themeui.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\mcbuilder.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVStreamMap.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVStreamingUX.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVNice.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\AppVDllSurrogate.exe
2018-10-10 17:14:02 ----A---- C:\WINDOWS\system32\aclui.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\wmpshell.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Proximity.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Bluetooth.Proxy.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\INETRES.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\wmpshell.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\Windows.Networking.Proximity.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\utcutil.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\SCardBi.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\runexehelper.exe
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\rdpshell.exe
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\rdpinit.exe
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\ProximityService.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Proxy.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\itss.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\INETRES.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\inetcomm.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\fdBth.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\drivers\Dumpstorport.sys
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\certprop.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\bthci.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\bdesvc.dll
2018-10-10 17:14:01 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
======List of files/folders modified in the last 1 month======
2018-11-06 21:11:17 ----D---- C:\WINDOWS\Temp
2018-11-06 21:11:17 ----D---- C:\WINDOWS\Prefetch
2018-11-06 21:11:10 ----RD---- C:\Program Files
2018-11-06 21:04:17 ----D---- C:\Users\barte\AppData\Roaming\vlc
2018-11-06 20:55:25 ----HD---- C:\Program Files\WindowsApps
2018-11-06 20:54:54 ----D---- C:\WINDOWS\AppReadiness
2018-11-06 20:50:28 ----D---- C:\WINDOWS\system32\sru
2018-11-06 20:49:47 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-11-06 20:49:28 ----D---- C:\WINDOWS\LiveKernelReports
2018-11-04 19:07:13 ----SHD---- C:\WINDOWS\Installer
2018-11-04 19:06:51 ----D---- C:\WINDOWS\SysWOW64
2018-11-04 19:06:35 ----D---- C:\WINDOWS\system32\Tasks
2018-11-04 18:04:00 ----D---- C:\WINDOWS\system32\SleepStudy
2018-11-04 12:00:02 ----D---- C:\WINDOWS\system32\LogFiles
2018-11-04 10:44:26 ----D---- C:\WINDOWS\Logs
2018-11-04 10:44:24 ----D---- C:\Windows
2018-11-04 10:44:09 ----SHD---- C:\System Volume Information
2018-11-04 10:44:05 ----RD---- C:\WINDOWS\Microsoft.NET
2018-11-04 10:43:56 ----D---- C:\WINDOWS\CbsTemp
2018-11-04 09:28:42 ----D---- C:\WINDOWS\System32
2018-11-04 09:28:42 ----D---- C:\WINDOWS\INF
2018-11-04 09:28:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-11-04 09:21:25 ----D---- C:\Program Files (x86)\TeamViewer
2018-11-04 09:21:22 ----D---- C:\ProgramData\Synaptics
2018-11-03 09:18:00 ----D---- C:\WINDOWS\system32\catroot2
2018-11-03 08:34:10 ----D---- C:\WINDOWS\system32\config
2018-11-01 21:47:13 ----D---- C:\WINDOWS\Tasks
2018-11-01 21:45:50 ----D---- C:\WINDOWS\system32\DriverStore
2018-11-01 21:45:50 ----D---- C:\WINDOWS\system32\CatRoot
2018-11-01 21:44:42 ----HD---- C:\ProgramData
2018-11-01 17:46:58 ----RSD---- C:\WINDOWS\assembly
2018-11-01 17:46:31 ----D---- C:\WINDOWS\WinSxS
2018-11-01 17:17:37 ----D---- C:\Program Files (x86)\WinCDEmu
2018-11-01 17:16:00 ----D---- C:\ProgramData\Ashampoo
2018-11-01 17:14:01 ----D---- C:\Program Files (x86)\CMS
2018-11-01 17:13:49 ----RD---- C:\Program Files (x86)
2018-11-01 16:49:35 ----D---- C:\WINDOWS\system32\drivers
2018-11-01 16:39:15 ----D---- C:\Swsetup
2018-11-01 16:39:08 ----A---- C:\WINDOWS\SYSWOW64\opencl.dll
2018-11-01 16:39:08 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2018-11-01 16:39:07 ----A---- C:\WINDOWS\system32\igfxTray.exe
2018-11-01 16:39:02 ----A---- C:\WINDOWS\system32\IccLibDll_x64.dll
2018-11-01 15:58:10 ----D---- C:\WINDOWS\system32\drivers\wd
2018-11-01 15:48:52 ----D---- C:\Users\barte\AppData\Roaming\ViberPC
2018-10-26 21:12:29 ----D---- C:\ProgramData\Packages
2018-10-26 21:12:03 ----D---- C:\ProgramData\Epson
2018-10-17 19:32:12 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2018-10-10 20:37:46 ----D---- C:\Users\barte\AppData\Roaming\GHISLER
2018-10-10 17:36:55 ----D---- C:\WINDOWS\system32\MRT
2018-10-10 17:31:08 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-10-10 17:22:05 ----D---- C:\WINDOWS\TextInput
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\zu-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\yo-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\xh-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\wo-SN
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\wbem
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\tn-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ti-ET
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ShellExperiences
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\rw-RW
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\nso-ZA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\migration
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ig-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\en-US
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\Boot
2018-10-10 17:22:05 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-10-10 17:22:05 ----D---- C:\WINDOWS\PolicyDefinitions
2018-10-10 17:22:04 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-10-10 17:22:04 ----RD---- C:\Program Files\Windows Defender
2018-10-10 17:22:04 ----D---- C:\WINDOWS\bcastdvr
2018-10-10 17:22:04 ----D---- C:\WINDOWS\apppatch
2018-10-10 17:22:04 ----D---- C:\Program Files\Windows Media Player
2018-10-10 17:22:04 ----D---- C:\Program Files\internet explorer
2018-10-10 17:22:04 ----D---- C:\Program Files (x86)\Windows Media Player
2018-10-10 17:22:04 ----D---- C:\Program Files (x86)\Windows Defender
2018-10-10 17:22:04 ----D---- C:\Program Files (x86)\Internet Explorer
2018-10-10 16:48:15 ----D---- C:\WINDOWS\system32\NDF
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;@oem14.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-09-07 31040]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-04-12 58272]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2018-04-12 304032]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-04-12 63896]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2018-07-11 27552]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-07-14 414720]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-04-12 43520]
R3 Accelerometer;@oem14.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-09-07 43328]
R3 AgereSoftModem;@mdmags64.inf,%FullProductName%;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\agrsm64.sys [2018-04-12 1146880]
R3 bcbtums;@oem18.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2018-07-11 186152]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2018-04-12 106496]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2018-04-12 86528]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-04-12 129536]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2018-04-12 85504]
R3 busenum;@oem31.inf,%busenum.SVCDESC%;Synology Virtual USB Hub; C:\WINDOWS\System32\drivers\busenum.sys [2012-08-03 57824]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
R3 e1cexpress;@oem19.inf,%e1cExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\WINDOWS\system32\DRIVERS\e1c65x64.sys [2018-07-11 472016]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2018-11-01 3802600]
R3 InputFilter_Hid_FlexDef2b;@oem27.inf,%HIDUASServiceDesc%;Siliten HID Devices(FlexDef2b) Driver Service; C:\WINDOWS\System32\drivers\InputFilter_FlexDef2b.sys [2010-06-19 17920]
R3 IntcDAud;@oem33.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2018-11-01 463112]
R3 iwdbus;@oem8.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 MEIx64;@oem4.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-02-20 194320]
R3 MouFilter_Mou_FlexDef4;@oem28.inf,%HIDUASServiceDesc%;HID Mouse(FlexDef4) Driver Service; C:\WINDOWS\System32\drivers\MouFilter_FlexDef4.sys [2010-10-20 15360]
R3 NETwNe64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\System32\drivers\NETwew01.sys [2018-04-12 3343872]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-04-12 193536]
R3 SNP2UVCW10;@oem20.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvcW10.sys [2018-07-11 2530360]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-08-03 128920]
S2 npf;npf; C:\WINDOWS\System32\drivers\npf.sys []
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2018-04-12 127384]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2018-04-12 162712]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2018-04-12 143768]
S3 BazisVirtualCDBus;@oem30.inf,%dev.SVCDESC%;WinCDEmu Virtual Bus Driver; C:\WINDOWS\System32\drivers\BazisVirtualCDBus.sys [2015-09-28 172376]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-04-12 92056]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2018-09-08 1096704]
S3 btwampfl;@oem18.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2018-07-11 213312]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\System32\drivers\e1i63x64.sys [2018-04-12 524800]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-09-20 76088]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 intaud_WaveExtensible;@oem7.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-12-01 50160]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\WINDOWS\System32\drivers\ptun0901.sys [2016-06-15 27136]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-07-11 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S3 smbdirect;smbdirect; C:\WINDOWS\System32\DRIVERS\smbdirect.sys [2018-04-12 152064]
S3 SNP2UVC;@oem2.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2015-06-30 2599624]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2018-04-12 57752]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-08-13 83984]
R2 APLI Master AutoUpdater;APLI Master AutoUpdater; C:\Program Files (x86)\APLI Paper\APLI Master\ApliAutoUpdater.exe [2011-10-24 167936]
R2 BcmBtRSupport;@oem5.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-10-01 2286848]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_61f87367;Connected Devices Platform User Service_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 EpsonScanSvc;Epson Scanner Service; C:\WINDOWS\system32\EscSvc64.exe [2017-03-10 145224]
R2 hpsrv;@oem14.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-09-07 33600]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2018-06-13 333688]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-07-12 319096]
R2 OneSyncSvc_61f87367;Sync Host_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 osrss;@%systemroot%\system32\osrss.dll,-500; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 PSI_SVC_2;Corel License Validation Service V2, Powered by arvato; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2014-04-30 277360]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-07-14 760888]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2018-04-12 163336]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-07-11 43648]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 PimIndexMaintenanceSvc_61f87367;Kontaktné údaje_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 fpCsEvtSvc;@oem6.inf,%fpCSEvtService_SvcDesc%;fpCSEvtSvc; C:\WINDOWS\system32\fpCSEvtSvc.exe [2018-07-11 22528]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-11 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 OpenVPNServiceInteractive;OpenVPN Interactive Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2017-07-14 72832]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_61f87367;GameDVR and Broadcast User Service_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_61f87367;Služba podpory používateľov rozhrania Bluetooth_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 CaptureService_61f87367;CaptureService_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2018-11-01 280696]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_61f87367;DevicePicker_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_61f87367;DevicesFlow_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-08-03 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-11 153168]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2015-02-13 136120]
S3 hpqcaslwmiex;HP CASL Framework Service; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [2016-06-03 1031704]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_61f87367;MessagingService_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 OpenVPNService;OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [2016-11-25 15872]
S3 OpenVPNServiceLegacy;OpenVPN Legacy Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2017-07-14 72832]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-31 242864]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_61f87367;PrintWorkflow_61f87367; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2018-07-15 4737448]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2018-07-11 826776]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
-----------------EOF-----------------
