Prosím kontrolu
Napsal: 18 pro 2018 11:23
Dobrý den,nějakou dobu jsem nepoužíval svůj PC,střídalo se na něm více lidi.Přijde mi,že ted je nějak pomalejší,než se vše spustí atd.
Můžete prosím zkontrolovat popřípadě zkusit pročistit co jde? Přdem děkuji.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Ondra at 2018-12-18 11:17:13
Microsoft Windows 10 Home
System drive C: has 56 GB (55%) free of 103 GB
Total RAM: 8169 MB (75% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:17:17, on 18.12.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Windows\vsnpstd3.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\Ondra\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Windows\tsnpstd3.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\Ondra.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll
O4 - HKLM\..\Run: [tsnpstd3] C:\Windows\tsnpstd3.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Ondra\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - D:\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 10466 bytes
======Listing Processes======
winlogon.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s gpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k localservice -p -s bthserv
c:\windows\system32\svchost.exe -k localservice -p -s BthAvctpSvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s BTAGService
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
c:\windows\system32\svchost.exe -k iissvcs
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\Windows\system32\IProsetMonitor.exe
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\mqsvc.exe
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
"c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe" -netmsmqactivator
c:\windows\system32\svchost.exe -k netsvcs
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"ctfmon.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\Explorer.EXE
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXe9cvj1thv1hmcw0cs98xm3r97tyzy2xs.mca
"C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe" -ServerName:Microsoft.MicrosoftOfficeHub.AppX6an27ssxm1kq22j0wm54a996rsgjh8an.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --disable-features=AsyncWheelEvents,SurfaceSynchronization --no-sandbox --log-file="C:\Users\Ondra\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --log-file="C:\Users\Ondra\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --service-request-channel-token=BD828EC9FCC59333966ABC355169685F --mojo-platform-channel-handle=1640 /prefetch:2
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x260
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
"C:\Windows\vsnpstd3.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Users\Ondra\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s NgcCtnrSvc
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Windows\tsnpstd3.exe"
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
AvastUI.exe /nogui
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --disable-features=AsyncWheelEvents,SurfaceSynchronization --service-pipe-token=71457D1D89DAACA01B6A1B27413B6C99 --lang=en-US --log-file="C:\Users\Ondra\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=71457D1D89DAACA01B6A1B27413B6C99 --renderer-client-id=4 --mojo-platform-channel-handle=1200 /prefetch:1
c:\windows\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k netsvcs -p
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
"C:\Program Files\rempl\sedsvc.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3907576443-798730336-3158376024-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3907576443-798730336-3158376024-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 756 760 768 8192 764
wmiadap.exe /F /T /R
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Users\Ondra\Desktop\RSITx64.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\3ik8yj4h.default-1428859787136
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.144.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.144.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-09-01 473664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-01 187968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
"snpstd3"=C:\WINDOWS\vsnpstd3.exe [2006-09-18 843776]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-11-22 242392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Ondra\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-12-14 1543264]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2018-09-06 18630056]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"tsnpstd3"=C:\Windows\tsnpstd3.exe [2007-06-15 368640]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-12-14 07:23:13 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-12-14 07:23:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-12-14 07:23:11 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-12-14 07:23:10 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-12-14 07:23:01 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-12-14 07:23:01 ----A---- C:\WINDOWS\system32\shell32.dll
2018-12-14 07:23:00 ----A---- C:\WINDOWS\system32\wininet.dll
2018-12-14 07:22:59 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-12-14 07:22:59 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-12-14 07:22:58 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-12-14 07:22:58 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-12-14 07:22:58 ----A---- C:\WINDOWS\system32\ClipUp.exe
2018-12-14 07:22:57 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-12-14 07:22:56 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-12-14 07:22:56 ----A---- C:\WINDOWS\system32\sppobjs.dll
2018-12-14 07:22:56 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-12-14 07:22:54 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-12-14 07:22:54 ----A---- C:\WINDOWS\system32\cdp.dll
2018-12-14 07:22:54 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-14 07:22:53 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2018-12-14 07:22:53 ----A---- C:\WINDOWS\system32\wmp.dll
2018-12-14 07:22:53 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2018-12-14 07:22:53 ----A---- C:\WINDOWS\system32\mos.dll
2018-12-14 07:22:52 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-12-14 07:22:52 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-12-14 07:22:52 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-12-14 07:22:51 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-12-14 07:22:51 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2018-12-14 07:22:51 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-12-14 07:22:51 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-12-14 07:22:51 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-12-14 07:22:50 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-12-14 07:22:50 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-12-14 07:22:50 ----A---- C:\WINDOWS\system32\twinui.dll
2018-12-14 07:22:50 ----A---- C:\WINDOWS\system32\tquery.dll
2018-12-14 07:22:50 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-12-14 07:22:49 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-12-14 07:22:49 ----A---- C:\WINDOWS\system32\d2d1.dll
2018-12-14 07:22:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-12-14 07:22:48 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2018-12-14 07:22:48 ----A---- C:\WINDOWS\system32\OpcServices.dll
2018-12-14 07:22:48 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-12-14 07:22:48 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-12-14 07:22:47 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2018-12-14 07:22:47 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-14 07:22:46 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-12-14 07:22:46 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-12-14 07:22:46 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-12-14 07:22:46 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-12-14 07:22:46 ----A---- C:\WINDOWS\system32\dosvc.dll
2018-12-14 07:22:46 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-12-14 07:22:46 ----A---- C:\WINDOWS\system32\BingMaps.dll
2018-12-14 07:22:45 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-12-14 07:22:45 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-12-14 07:22:45 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2018-12-14 07:22:45 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-12-14 07:22:45 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-12-14 07:22:45 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\system32\mstscax.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\lpasvc.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2018-12-14 07:22:41 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2018-12-14 07:22:41 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-12-14 07:22:40 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-12-14 07:22:40 ----A---- C:\WINDOWS\system32\CPFilters.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\system32\MapRouter.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\winhttp.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\ShareHost.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\NMAA.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\msxml3.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\mf.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2018-12-14 07:22:36 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-12-14 07:22:35 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2018-12-14 07:22:35 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\WWAHost.exe
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\winload.exe
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\MapsStore.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\jscript.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\BthAvctpSvc.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\wpx.dll
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\winresume.exe
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\dnsapi.dll
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\ci.dll
2018-12-14 07:22:32 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-14 07:22:31 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2018-12-14 07:22:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-14 07:22:31 ----A---- C:\WINDOWS\system32\wer.dll
2018-12-14 07:22:31 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-12-14 07:22:31 ----A---- C:\WINDOWS\system32\defragsvc.dll
2018-12-14 07:22:31 ----A---- C:\WINDOWS\system32\BTAGService.dll
2018-12-14 07:22:30 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-12-14 07:22:30 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-12-14 07:22:29 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2018-12-14 07:22:29 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2018-12-14 07:22:29 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-12-14 07:22:29 ----A---- C:\WINDOWS\system32\ninput.dll
2018-12-14 07:22:28 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2018-12-14 07:22:28 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2018-12-14 07:22:28 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2018-12-14 07:22:28 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-12-14 07:22:28 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-12-14 07:22:27 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-12-14 07:22:27 ----A---- C:\WINDOWS\system32\eeprov.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\WinSCard.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\mfps.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\AppResolver.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\advapi32.dll
2018-12-14 07:22:25 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2018-12-14 07:22:25 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-12-14 07:22:24 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2018-12-14 07:22:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\wc_storage.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\wbengine.exe
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\vertdll.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\thumbcache.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\rmclient.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\webio.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\hal.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\bthserv.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\appsruprov.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\weretw.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\drivers\iorate.sys
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\xbgmengine.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\offreg.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\mssph.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\moshostcore.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\energyprov.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\drivers\ndiswan.sys
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\browser_broker.exe
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\bcdedit.exe
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\fdBth.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\wpnsruprov.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\t2embed.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\sppcext.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\fdBth.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\drivers\storqosflt.sys
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\drivers\mmcss.sys
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\winhttpcom.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\utcutil.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\tzres.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\RMapi.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\msscntrs.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\domgmt.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\DataUsageHandlers.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-12-07 06:14:39 ----SHD---- C:\Config.Msi
2018-11-22 18:53:29 ----A---- C:\WINDOWS\system32\aswBoot.exe
2018-11-20 17:50:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
======List of files/folders modified in the last 1 month======
2018-12-18 11:17:16 ----D---- C:\Program Files\trend micro
2018-12-18 11:16:20 ----D---- C:\WINDOWS\Temp
2018-12-18 11:16:20 ----D---- C:\Windows
2018-12-18 11:15:50 ----D---- C:\WINDOWS\SoftwareDistribution
2018-12-18 11:15:15 ----D---- C:\ProgramData\NVIDIA
2018-12-18 11:14:51 ----D---- C:\WINDOWS\system32\Tasks
2018-12-18 11:14:18 ----D---- C:\WINDOWS\Prefetch
2018-12-18 11:13:50 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-12-18 11:12:34 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-18 11:12:34 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2018-12-18 11:11:15 ----D---- C:\WINDOWS\system32\sru
2018-12-18 11:11:14 ----D---- C:\WINDOWS\system32\catroot2
2018-12-18 11:10:57 ----D---- C:\AdwCleaner
2018-12-18 11:08:46 ----D---- C:\rsit
2018-12-18 11:08:42 ----D---- C:\WINDOWS\system32\drivers\etc
2018-12-18 11:08:26 ----D---- C:\Users\Ondra\AppData\Roaming\Origin
2018-12-18 10:56:40 ----D---- C:\ProgramData\Origin
2018-12-18 10:17:55 ----HD---- C:\Program Files\WindowsApps
2018-12-18 10:17:55 ----D---- C:\WINDOWS\AppReadiness
2018-12-17 14:54:03 ----D---- C:\WINDOWS\LiveKernelReports
2018-12-17 14:54:03 ----D---- C:\WINDOWS\INF
2018-12-15 16:40:11 ----D---- C:\WINDOWS\system32\SleepStudy
2018-12-15 14:32:10 ----RD---- C:\WINDOWS\Microsoft.NET
2018-12-15 13:26:59 ----D---- C:\WINDOWS\system32\config
2018-12-15 13:23:49 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-12-14 14:18:30 ----D---- C:\WINDOWS\System32
2018-12-14 14:18:30 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-14 14:16:36 ----RD---- C:\WINDOWS\assembly
2018-12-14 14:09:25 ----D---- C:\WINDOWS\WinSxS
2018-12-14 14:09:08 ----D---- C:\WINDOWS\system32\DriverStore
2018-12-14 14:07:50 ----D---- C:\WINDOWS\system32\drivers
2018-12-14 08:01:41 ----D---- C:\WINDOWS\TextInput
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SysWOW64
2018-12-14 08:01:40 ----SD---- C:\WINDOWS\system32\DiagSvcs
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\zu-ZA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\yo-NG
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\xh-ZA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\wo-SN
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\tn-ZA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\ti-ET
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\rw-RW
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\nso-ZA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\migration
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\ig-NG
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\cs-CZ
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\Boot
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-12-14 08:01:39 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-12-14 08:01:39 ----D---- C:\WINDOWS\ShellComponents
2018-12-14 08:01:39 ----D---- C:\WINDOWS\bcastdvr
2018-12-14 08:01:39 ----D---- C:\WINDOWS\apppatch
2018-12-14 07:59:32 ----D---- C:\WINDOWS\debug
2018-12-14 07:33:04 ----D---- C:\WINDOWS\system32\MRT
2018-12-14 07:31:00 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-12-14 07:29:18 ----D---- C:\WINDOWS\CbsTemp
2018-12-14 07:12:15 ----D---- C:\WINDOWS\Logs
2018-12-14 07:08:55 ----D---- C:\WINDOWS\system32\LogFiles
2018-12-07 06:14:56 ----SHDC---- C:\WINDOWS\Installer
2018-12-07 06:14:53 ----D---- C:\Program Files\rempl
2018-12-07 06:09:33 ----D---- C:\WINDOWS\system32\Macromed
2018-12-07 06:09:32 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2018-12-01 05:01:07 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2018-11-22 18:53:29 ----HD---- C:\WINDOWS\ELAMBKUP
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2018-11-22 201768]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2018-11-22 346592]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2018-11-22 59496]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2018-06-22 15360]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-11-22 87432]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-11-22 380464]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-12-08 58168]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-04-12 63896]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-11-22 201240]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2018-11-22 230344]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2018-11-27 239840]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2018-11-22 42288]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2018-11-22 111800]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2018-11-22 1028680]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-11-22 469272]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-11-22 163208]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2018-11-22 208472]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-07-14 414720]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-12-08 43008]
R2 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2018-04-12 178688]
R3 athur;@oem0.inf,%ATHR.Service.DispName%;Wireless Network Adapter Service; C:\WINDOWS\System32\drivers\athurx.sys [2012-10-18 1930240]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-07-13 610336]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2018-12-08 106496]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-04-12 129536]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2018-04-12 85504]
R3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\System32\drivers\e1i63x64.sys [2018-04-12 524800]
R3 MEIx64;@oem43.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2010-10-19 56344]
R3 NVHDA;@oem39.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2018-11-03 227896]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_6992f55a2cc4b209\nvlddmkm.sys [2018-11-13 20371952]
R3 nvvad_WaveExtensible;@oem22.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2018-06-08 69544]
R3 nvvhci;@oem64.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2018-10-01 74576]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-04-12 193536]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-08-03 128920]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-11-22 46384]
S3 AthDfu;@oem47.inf,%AthDfu.SvcDesc%;Atheros Valkyrie USB BootROM; C:\WINDOWS\System32\Drivers\AthDfu.sys [2012-08-22 55336]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-12-08 92688]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-12-08 1097728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-12-08 76280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2018-08-21 30792]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-06-15 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2017-07-23 173472]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-11-22 324000]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_3e4c0;CDPUserSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2010-08-12 133800]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2018-04-12 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
R2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10 773160]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2018-11-13 767288]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2018-10-10 645160]
R2 OneSyncSvc_3e4c0;OneSyncSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-07-14 760888]
R2 sedsvc;Windows Remediation Service; C:\Program Files\rempl\sedsvc.exe [2018-12-02 326336]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2018-04-12 163336]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-11-22 8188768]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 PimIndexMaintenanceSvc_3e4c0;PimIndexMaintenanceSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-07 164984]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 Origin Web Helper Service;Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [2018-12-18 3131208]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-07 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-04-12 52832]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-07 164984]
S3 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2018-11-22 57504]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_3e4c0;BcastDVRUserService_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_3e4c0;BluetoothUserService_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_3e4c0;DevicePickerUserSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_3e4c0;DevicesFlowUserSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-08-03 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-05-19 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe [2018-12-12 443872]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_3e4c0;MessagingService_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-12-14 227792]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10 773160]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2018-12-18 2270528]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_3e4c0;PrintWorkflowUserSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
-----------------EOF-----------------
Můžete prosím zkontrolovat popřípadě zkusit pročistit co jde? Přdem děkuji.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Ondra at 2018-12-18 11:17:13
Microsoft Windows 10 Home
System drive C: has 56 GB (55%) free of 103 GB
Total RAM: 8169 MB (75% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:17:17, on 18.12.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Windows\vsnpstd3.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\Ondra\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Windows\tsnpstd3.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\Ondra.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll
O4 - HKLM\..\Run: [tsnpstd3] C:\Windows\tsnpstd3.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Ondra\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - D:\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 10466 bytes
======Listing Processes======
winlogon.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s gpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k localservice -p -s bthserv
c:\windows\system32\svchost.exe -k localservice -p -s BthAvctpSvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s BTAGService
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
c:\windows\system32\svchost.exe -k iissvcs
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\Windows\system32\IProsetMonitor.exe
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\mqsvc.exe
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
"c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe" -netmsmqactivator
c:\windows\system32\svchost.exe -k netsvcs
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"ctfmon.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\Explorer.EXE
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXe9cvj1thv1hmcw0cs98xm3r97tyzy2xs.mca
"C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe" -ServerName:Microsoft.MicrosoftOfficeHub.AppX6an27ssxm1kq22j0wm54a996rsgjh8an.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --disable-features=AsyncWheelEvents,SurfaceSynchronization --no-sandbox --log-file="C:\Users\Ondra\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --log-file="C:\Users\Ondra\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --service-request-channel-token=BD828EC9FCC59333966ABC355169685F --mojo-platform-channel-handle=1640 /prefetch:2
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x260
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
"C:\Windows\vsnpstd3.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Users\Ondra\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s NgcCtnrSvc
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Windows\tsnpstd3.exe"
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
AvastUI.exe /nogui
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --disable-features=AsyncWheelEvents,SurfaceSynchronization --service-pipe-token=71457D1D89DAACA01B6A1B27413B6C99 --lang=en-US --log-file="C:\Users\Ondra\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=71457D1D89DAACA01B6A1B27413B6C99 --renderer-client-id=4 --mojo-platform-channel-handle=1200 /prefetch:1
c:\windows\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k netsvcs -p
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
"C:\Program Files\rempl\sedsvc.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3907576443-798730336-3158376024-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3907576443-798730336-3158376024-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 756 760 768 8192 764
wmiadap.exe /F /T /R
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Users\Ondra\Desktop\RSITx64.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\3ik8yj4h.default-1428859787136
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.144.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.144.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-09-01 473664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-01 187968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
"snpstd3"=C:\WINDOWS\vsnpstd3.exe [2006-09-18 843776]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-11-22 242392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Ondra\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-12-14 1543264]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2018-09-06 18630056]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"tsnpstd3"=C:\Windows\tsnpstd3.exe [2007-06-15 368640]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-12-14 07:23:13 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-12-14 07:23:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-12-14 07:23:11 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-12-14 07:23:10 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-12-14 07:23:01 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-12-14 07:23:01 ----A---- C:\WINDOWS\system32\shell32.dll
2018-12-14 07:23:00 ----A---- C:\WINDOWS\system32\wininet.dll
2018-12-14 07:22:59 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-12-14 07:22:59 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-12-14 07:22:58 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-12-14 07:22:58 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-12-14 07:22:58 ----A---- C:\WINDOWS\system32\ClipUp.exe
2018-12-14 07:22:57 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-12-14 07:22:56 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-12-14 07:22:56 ----A---- C:\WINDOWS\system32\sppobjs.dll
2018-12-14 07:22:56 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-12-14 07:22:54 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-12-14 07:22:54 ----A---- C:\WINDOWS\system32\cdp.dll
2018-12-14 07:22:54 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-14 07:22:53 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2018-12-14 07:22:53 ----A---- C:\WINDOWS\system32\wmp.dll
2018-12-14 07:22:53 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2018-12-14 07:22:53 ----A---- C:\WINDOWS\system32\mos.dll
2018-12-14 07:22:52 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-12-14 07:22:52 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-12-14 07:22:52 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-12-14 07:22:51 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-12-14 07:22:51 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2018-12-14 07:22:51 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-12-14 07:22:51 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-12-14 07:22:51 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-12-14 07:22:50 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-12-14 07:22:50 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-12-14 07:22:50 ----A---- C:\WINDOWS\system32\twinui.dll
2018-12-14 07:22:50 ----A---- C:\WINDOWS\system32\tquery.dll
2018-12-14 07:22:50 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-12-14 07:22:49 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-12-14 07:22:49 ----A---- C:\WINDOWS\system32\d2d1.dll
2018-12-14 07:22:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-12-14 07:22:48 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2018-12-14 07:22:48 ----A---- C:\WINDOWS\system32\OpcServices.dll
2018-12-14 07:22:48 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-12-14 07:22:48 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-12-14 07:22:47 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2018-12-14 07:22:47 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-12-14 07:22:47 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-14 07:22:46 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-12-14 07:22:46 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-12-14 07:22:46 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-12-14 07:22:46 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-12-14 07:22:46 ----A---- C:\WINDOWS\system32\dosvc.dll
2018-12-14 07:22:46 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-12-14 07:22:46 ----A---- C:\WINDOWS\system32\BingMaps.dll
2018-12-14 07:22:45 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-12-14 07:22:45 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-12-14 07:22:45 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2018-12-14 07:22:45 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-12-14 07:22:45 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-12-14 07:22:45 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\system32\mstscax.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2018-12-14 07:22:44 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\lpasvc.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-12-14 07:22:43 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-12-14 07:22:42 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2018-12-14 07:22:41 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2018-12-14 07:22:41 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-12-14 07:22:40 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-12-14 07:22:40 ----A---- C:\WINDOWS\system32\CPFilters.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\system32\MapRouter.dll
2018-12-14 07:22:39 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\winhttp.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\ShareHost.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-12-14 07:22:38 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\NMAA.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\msxml3.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\mf.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2018-12-14 07:22:37 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2018-12-14 07:22:36 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-12-14 07:22:36 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-12-14 07:22:35 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2018-12-14 07:22:35 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\WWAHost.exe
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\winload.exe
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\MapsStore.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\jscript.dll
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-12-14 07:22:35 ----A---- C:\WINDOWS\system32\BthAvctpSvc.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-12-14 07:22:34 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\wpx.dll
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\winresume.exe
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\dnsapi.dll
2018-12-14 07:22:33 ----A---- C:\WINDOWS\system32\ci.dll
2018-12-14 07:22:32 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-14 07:22:31 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2018-12-14 07:22:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-14 07:22:31 ----A---- C:\WINDOWS\system32\wer.dll
2018-12-14 07:22:31 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-12-14 07:22:31 ----A---- C:\WINDOWS\system32\defragsvc.dll
2018-12-14 07:22:31 ----A---- C:\WINDOWS\system32\BTAGService.dll
2018-12-14 07:22:30 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-12-14 07:22:30 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-12-14 07:22:29 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2018-12-14 07:22:29 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2018-12-14 07:22:29 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-12-14 07:22:29 ----A---- C:\WINDOWS\system32\ninput.dll
2018-12-14 07:22:28 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2018-12-14 07:22:28 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2018-12-14 07:22:28 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2018-12-14 07:22:28 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-12-14 07:22:28 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-12-14 07:22:27 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-12-14 07:22:27 ----A---- C:\WINDOWS\system32\eeprov.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\WinSCard.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\mfps.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\AppResolver.dll
2018-12-14 07:22:26 ----A---- C:\WINDOWS\system32\advapi32.dll
2018-12-14 07:22:25 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2018-12-14 07:22:25 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-12-14 07:22:24 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2018-12-14 07:22:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\wc_storage.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\wbengine.exe
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\vertdll.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\thumbcache.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\rmclient.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2018-12-14 07:22:23 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\webio.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\hal.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\bthserv.dll
2018-12-14 07:22:22 ----A---- C:\WINDOWS\system32\appsruprov.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\weretw.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\drivers\iorate.sys
2018-12-14 07:22:21 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\xbgmengine.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\offreg.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\mssph.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\moshostcore.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\energyprov.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\drivers\ndiswan.sys
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\browser_broker.exe
2018-12-14 07:22:20 ----A---- C:\WINDOWS\system32\bcdedit.exe
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\SYSWOW64\fdBth.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\wpnsruprov.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\t2embed.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\sppcext.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\fdBth.dll
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\drivers\storqosflt.sys
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\drivers\mmcss.sys
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2018-12-14 07:22:19 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\winhttpcom.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\utcutil.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\tzres.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\RMapi.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\msscntrs.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\domgmt.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\DataUsageHandlers.dll
2018-12-14 07:22:18 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-12-07 06:14:39 ----SHD---- C:\Config.Msi
2018-11-22 18:53:29 ----A---- C:\WINDOWS\system32\aswBoot.exe
2018-11-20 17:50:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
======List of files/folders modified in the last 1 month======
2018-12-18 11:17:16 ----D---- C:\Program Files\trend micro
2018-12-18 11:16:20 ----D---- C:\WINDOWS\Temp
2018-12-18 11:16:20 ----D---- C:\Windows
2018-12-18 11:15:50 ----D---- C:\WINDOWS\SoftwareDistribution
2018-12-18 11:15:15 ----D---- C:\ProgramData\NVIDIA
2018-12-18 11:14:51 ----D---- C:\WINDOWS\system32\Tasks
2018-12-18 11:14:18 ----D---- C:\WINDOWS\Prefetch
2018-12-18 11:13:50 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-12-18 11:12:34 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-18 11:12:34 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2018-12-18 11:11:15 ----D---- C:\WINDOWS\system32\sru
2018-12-18 11:11:14 ----D---- C:\WINDOWS\system32\catroot2
2018-12-18 11:10:57 ----D---- C:\AdwCleaner
2018-12-18 11:08:46 ----D---- C:\rsit
2018-12-18 11:08:42 ----D---- C:\WINDOWS\system32\drivers\etc
2018-12-18 11:08:26 ----D---- C:\Users\Ondra\AppData\Roaming\Origin
2018-12-18 10:56:40 ----D---- C:\ProgramData\Origin
2018-12-18 10:17:55 ----HD---- C:\Program Files\WindowsApps
2018-12-18 10:17:55 ----D---- C:\WINDOWS\AppReadiness
2018-12-17 14:54:03 ----D---- C:\WINDOWS\LiveKernelReports
2018-12-17 14:54:03 ----D---- C:\WINDOWS\INF
2018-12-15 16:40:11 ----D---- C:\WINDOWS\system32\SleepStudy
2018-12-15 14:32:10 ----RD---- C:\WINDOWS\Microsoft.NET
2018-12-15 13:26:59 ----D---- C:\WINDOWS\system32\config
2018-12-15 13:23:49 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-12-14 14:18:30 ----D---- C:\WINDOWS\System32
2018-12-14 14:18:30 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-14 14:16:36 ----RD---- C:\WINDOWS\assembly
2018-12-14 14:09:25 ----D---- C:\WINDOWS\WinSxS
2018-12-14 14:09:08 ----D---- C:\WINDOWS\system32\DriverStore
2018-12-14 14:07:50 ----D---- C:\WINDOWS\system32\drivers
2018-12-14 08:01:41 ----D---- C:\WINDOWS\TextInput
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-12-14 08:01:41 ----D---- C:\WINDOWS\SysWOW64
2018-12-14 08:01:40 ----SD---- C:\WINDOWS\system32\DiagSvcs
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\zu-ZA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\yo-NG
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\xh-ZA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\wo-SN
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\tn-ZA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\ti-ET
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\rw-RW
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\nso-ZA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\migration
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\ig-NG
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\cs-CZ
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\Boot
2018-12-14 08:01:40 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-12-14 08:01:39 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-12-14 08:01:39 ----D---- C:\WINDOWS\ShellComponents
2018-12-14 08:01:39 ----D---- C:\WINDOWS\bcastdvr
2018-12-14 08:01:39 ----D---- C:\WINDOWS\apppatch
2018-12-14 07:59:32 ----D---- C:\WINDOWS\debug
2018-12-14 07:33:04 ----D---- C:\WINDOWS\system32\MRT
2018-12-14 07:31:00 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-12-14 07:29:18 ----D---- C:\WINDOWS\CbsTemp
2018-12-14 07:12:15 ----D---- C:\WINDOWS\Logs
2018-12-14 07:08:55 ----D---- C:\WINDOWS\system32\LogFiles
2018-12-07 06:14:56 ----SHDC---- C:\WINDOWS\Installer
2018-12-07 06:14:53 ----D---- C:\Program Files\rempl
2018-12-07 06:09:33 ----D---- C:\WINDOWS\system32\Macromed
2018-12-07 06:09:32 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2018-12-01 05:01:07 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2018-11-22 18:53:29 ----HD---- C:\WINDOWS\ELAMBKUP
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2018-11-22 201768]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2018-11-22 346592]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2018-11-22 59496]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2018-06-22 15360]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-11-22 87432]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-11-22 380464]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-12-08 58168]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-04-12 63896]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-11-22 201240]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2018-11-22 230344]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2018-11-27 239840]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2018-11-22 42288]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2018-11-22 111800]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2018-11-22 1028680]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-11-22 469272]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-11-22 163208]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2018-11-22 208472]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-07-14 414720]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-12-08 43008]
R2 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2018-04-12 178688]
R3 athur;@oem0.inf,%ATHR.Service.DispName%;Wireless Network Adapter Service; C:\WINDOWS\System32\drivers\athurx.sys [2012-10-18 1930240]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-07-13 610336]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2018-12-08 106496]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-04-12 129536]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2018-04-12 85504]
R3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\System32\drivers\e1i63x64.sys [2018-04-12 524800]
R3 MEIx64;@oem43.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2010-10-19 56344]
R3 NVHDA;@oem39.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2018-11-03 227896]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_6992f55a2cc4b209\nvlddmkm.sys [2018-11-13 20371952]
R3 nvvad_WaveExtensible;@oem22.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2018-06-08 69544]
R3 nvvhci;@oem64.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2018-10-01 74576]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-04-12 193536]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-08-03 128920]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-11-22 46384]
S3 AthDfu;@oem47.inf,%AthDfu.SvcDesc%;Atheros Valkyrie USB BootROM; C:\WINDOWS\System32\Drivers\AthDfu.sys [2012-08-22 55336]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-12-08 92688]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-12-08 1097728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-12-08 76280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2018-08-21 30792]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-06-15 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2017-07-23 173472]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-11-22 324000]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_3e4c0;CDPUserSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2010-08-12 133800]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2018-04-12 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
R2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10 773160]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2018-11-13 767288]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2018-10-10 645160]
R2 OneSyncSvc_3e4c0;OneSyncSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-07-14 760888]
R2 sedsvc;Windows Remediation Service; C:\Program Files\rempl\sedsvc.exe [2018-12-02 326336]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2018-04-12 163336]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-11-22 8188768]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 PimIndexMaintenanceSvc_3e4c0;PimIndexMaintenanceSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-07 164984]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 Origin Web Helper Service;Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [2018-12-18 3131208]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-07 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-04-12 52832]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-07 164984]
S3 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2018-11-22 57504]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_3e4c0;BcastDVRUserService_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_3e4c0;BluetoothUserService_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_3e4c0;DevicePickerUserSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_3e4c0;DevicesFlowUserSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-08-03 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-05-19 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe [2018-12-12 443872]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_3e4c0;MessagingService_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-12-14 227792]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10 773160]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2018-12-18 2270528]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_3e4c0;PrintWorkflowUserSvc_3e4c0; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
-----------------EOF-----------------