Preventivka
Napsal: 18 zář 2019 19:06
Dobry den,
prosim o preventivnu kontrolu.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Radovan Hatala at 2019-09-18 20:06:15
Microsoft Windows 10 Home
System drive C: has 626 GB (66%) free of 945 GB
Total RAM: 8106 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:06:22, on 18.9.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17763.0592)
Boot mode: Normal
Running processes:
C:\Program Files\TrueColor\TrueColorUI.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files\trend micro\Radovan Hatala.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://dell13.msn.com/?pc=DCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [DropboxOEM] "C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe" auto
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Radovan Hatala\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Radovan Hatala\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Windscribe] "C:\Program Files (x86)\Windscribe\Windscribe.exe" -os_restart
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_Plugin.exe -update plugin
O4 - HKCU\..\RunOnce: [Delete Cached Update Binary] C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
O4 - HKCU\..\RunOnce: [Delete Cached Standalone Update Binary] C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
O4 - HKCU\..\RunOnce: [Uninstall 19.152.0801.0007\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\19.152.0801.0007\amd64"
O4 - HKCU\..\RunOnce: [Uninstall 19.152.0801.0007] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\19.152.0801.0007"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{334c278c-0684-4e4a-98ad-9f417d191ebc}: NameServer = 156.154.70.22,156.154.71.22
O17 - HKLM\System\CCS\Services\Tcpip\..\{e2686e41-3b47-4d65-9805-452e4edc1314}: NameServer = 156.154.70.22,156.154.71.22
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Protected Service (AntivirProtectedService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: COMODO Chromodo Update Service (ChromodoUpdater) - Comodo - C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dell Data Vault Service API (DDVCollectorSvcApi) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
O23 - Service: Dell Data Vault Collector (DDVDataCollector) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
O23 - Service: Dell Data Vault Processor (DDVRulesProcessor) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
O23 - Service: Dell Customer Connect - Dell Inc. - C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
O23 - Service: Dell Foundation Services - Dell - C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
O23 - Service: Dell Hardware Support - PC-Doctor, Inc. - C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\DSAPI.exe
O23 - Service: Dell Client Management Service (DellClientManagementService) - Unknown owner - C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
O23 - Service: Dell Product Registration Manager (DellProdRegManager) - Aviata, Inc. - C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem70.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel® ME Service (Intel(R) ME Service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: IntelUSBoverIP - Intel - C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rivet Dynamic Bandwidth Management (RNDBWM) - CloudBees, Inc. - C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: ##ID_STRING86## (SmartByte Network Service x64) - Rivet Networks - C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Dell SupportAssist (SupportAssistAgent) - Dell Inc. - C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TrueColorALS - Unknown owner - C:\Program Files\TrueColor\TrueColorALS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: WindscribeService - Windscribe Limited - C:\Program Files (x86)\Windscribe\WindscribeService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14529 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\ibtsiva
C:\WINDOWS\System32\svchost.exe -k NetworkService -s TermService
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s Netman
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe"
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\TrueColor\TrueColorALS.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
"C:\Program Files (x86)\Windscribe\WindscribeService.exe"
"C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe"
"C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
"RNDBWM.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\svchost.exe -k netsvcs
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\COMODO\COMODO Internet Security\cistray.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX5
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files\TrueColor\TrueColorUI.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe atlogon
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe"
"C:\Program Files (x86)\Dell Customer Connect\DCCService.exe"
"C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe"
"C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\DSAPI.exe"
"C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe"
"C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\pcdrwi.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\msdtc.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files (x86)\Garmin\Express SelfUpdater\esu.exe" --copy
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
"C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe"
"C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe"
"C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe"
"C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\Dell\DellDataVault\atiw.exe" -p 1 -continuous
"C:\Program Files (x86)\Avira\Antivirus\avscan.exe" /CFG="process.avp" /GUIMODE=9 /EXITMODE=3 /JOBNAME="Quick process scan" /SCHEDULED
"C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
/updateInstalled /background
"C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE" C:\Users\Radovan Hatala
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRSync.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min /NOSPLASH /SETUPSTART
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_00002bac
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19061.18920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\srtasks.exe ExecuteScopeRestorePoint /WaitForRestorePoint:9
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe" /InvokerPRAID: App
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\vssvc.exe
C:\WINDOWS\System32\svchost.exe -k swprv
VSSX64.exe /start
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\WINDOWS\system32\AUDIODG.EXE 0x3a4
"C:\Users\Radovan Hatala\Downloads\RSITx64.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\Radovan Hatala\AppData\Roaming\Mozilla\Firefox\Profiles\6gxnf70f.default
prefs.js - "browser.search.useDBForOrder" - true
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.238 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_238.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.238 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_238.dll
C:\Users\Radovan Hatala\AppData\Roaming\Mozilla\Firefox\Profiles\6gxnf70f.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2018-09-15 83968]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-03-19 8721656]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-03-19 1416440]
"QuickSet"=c:\Program Files\Dell\QuickSet\QuickSet.exe [2014-10-09 5793048]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-10-09 36352]
"TrueColor UI"=C:\Program Files\TrueColor\TrueColorUI.exe [2014-12-25 19491792]
"COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2016-10-01 1610936]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2019-09-18 1592440]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-03-01 50670720]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2017-04-02 1421736]
"cz.seznam.software.autoupdate"=C:\Users\Radovan Hatala\AppData\Roaming\Seznam.cz\szninstall.exe [2016-10-06 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Radovan Hatala\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2016-10-06 103080]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-02-15 9363672]
"Windscribe"=C:\Program Files (x86)\Windscribe\Windscribe.exe [2019-07-03 10106544]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_Plugin.exe [2019-09-06 1457208]
"Delete Cached Update Binary"=C:\WINDOWS\system32\cmd.exe [2019-07-09 278528]
"Delete Cached Standalone Update Binary"=C:\WINDOWS\system32\cmd.exe [2019-07-09 278528]
"Uninstall 19.152.0801.0007\amd64"=C:\WINDOWS\system32\cmd.exe [2019-07-09 278528]
"Uninstall 19.152.0801.0007"=C:\WINDOWS\system32\cmd.exe [2019-07-09 278528]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"DropboxOEM"=C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2014-09-02 462160]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2016-10-06 1062472]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2019-09-06 227648]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2019-09-18 18:49:25 ----HD---- C:\OneDriveTemp
2019-09-18 18:45:04 ----A---- C:\WINDOWS\invcol.tmp
2019-09-06 22:02:19 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2019-09-06 22:02:18 ----A---- C:\WINDOWS\system32\wmp.dll
2019-09-06 22:02:17 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2019-09-06 22:02:17 ----A---- C:\WINDOWS\system32\SyncController.dll
2019-09-06 22:02:16 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2019-09-06 22:02:16 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2019-09-06 22:02:11 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2019-09-06 22:01:56 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2019-09-06 22:01:55 ----A---- C:\WINDOWS\SYSWOW64\p2pnetsh.dll
2019-09-06 22:01:55 ----A---- C:\WINDOWS\SYSWOW64\P2PGraph.dll
2019-09-06 22:01:55 ----A---- C:\WINDOWS\SYSWOW64\P2P.dll
2019-09-06 22:01:54 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2019-09-06 22:01:54 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2019-09-06 22:01:54 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2019-09-06 22:01:53 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2019-09-06 22:01:53 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-09-06 22:01:53 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2019-09-06 22:01:52 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-09-06 22:01:49 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2019-09-06 22:01:47 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-09-06 22:01:44 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2019-09-06 22:01:44 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-09-06 22:01:43 ----A---- C:\WINDOWS\SYSWOW64\msrd2x40.dll
2019-09-06 22:01:42 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-09-06 22:01:42 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2019-09-06 22:01:42 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2019-09-06 22:01:36 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2019-09-06 22:01:36 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-09-06 22:01:35 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2019-09-06 22:01:34 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2019-09-06 22:01:34 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2019-09-06 22:01:33 ----A---- C:\WINDOWS\system32\p2psvc.dll
2019-09-06 22:01:33 ----A---- C:\WINDOWS\system32\P2PGraph.dll
2019-09-06 22:01:33 ----A---- C:\WINDOWS\system32\P2P.dll
2019-09-06 22:01:33 ----A---- C:\WINDOWS\system32\Groupinghc.dll
2019-09-06 22:01:31 ----A---- C:\WINDOWS\system32\offreg.dll
2019-09-06 22:01:31 ----A---- C:\WINDOWS\system32\mstscax.dll
2019-09-06 22:01:31 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2019-09-06 22:01:30 ----A---- C:\WINDOWS\system32\systemreset.exe
2019-09-06 22:01:30 ----A---- C:\WINDOWS\system32\srms.dat
2019-09-06 22:01:30 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2019-09-06 22:01:30 ----A---- C:\WINDOWS\system32\reseteng.dll
2019-09-06 22:01:29 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-09-06 22:01:29 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-09-06 22:01:29 ----A---- C:\WINDOWS\system32\nltest.exe
2019-09-06 22:01:29 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-09-06 22:01:28 ----A---- C:\WINDOWS\system32\msfeeds.dll
2019-09-06 22:01:28 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2019-09-06 22:01:27 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-09-06 22:01:23 ----A---- C:\WINDOWS\system32\edgehtml.dll
2019-09-06 22:01:20 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-09-06 22:01:20 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2019-09-06 22:01:18 ----A---- C:\WINDOWS\system32\werui.dll
2019-09-06 22:01:18 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2019-09-06 22:01:18 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-09-06 22:01:17 ----A---- C:\WINDOWS\system32\jscript.dll
2019-09-06 22:01:17 ----A---- C:\WINDOWS\system32\ClipUp.exe
2019-09-06 22:01:13 ----A---- C:\WINDOWS\system32\mispace.dll
2019-09-06 22:01:13 ----A---- C:\WINDOWS\system32\fsutil.exe
2019-09-06 22:01:12 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2019-09-06 22:01:12 ----A---- C:\WINDOWS\system32\RDXService.dll
2019-09-06 22:01:12 ----A---- C:\WINDOWS\system32\BioIso.exe
2019-09-06 22:01:11 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-09-06 22:01:10 ----A---- C:\WINDOWS\SYSWOW64\shunimpl.dll
2019-09-06 22:01:10 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2019-09-06 22:01:10 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2019-09-06 22:01:10 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2019-09-06 22:01:10 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2019-09-06 22:01:09 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-09-06 22:01:09 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2019-09-06 22:01:09 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2019-09-06 22:01:08 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2019-09-06 22:01:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2019-09-06 22:01:07 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2019-09-06 22:01:07 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-09-06 22:01:07 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2019-09-06 22:01:06 ----A---- C:\WINDOWS\SYSWOW64\xmllite.dll
2019-09-06 22:01:06 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2019-09-06 22:01:06 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2019-09-06 22:01:06 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2019-09-06 22:01:05 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2019-09-06 22:01:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-09-06 22:01:03 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2019-09-06 22:01:03 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2019-09-06 22:01:03 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2019-09-06 22:01:02 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2019-09-06 22:01:02 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2019-09-06 22:01:02 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2019-09-06 22:01:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2019-09-06 22:01:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2019-09-06 22:01:00 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-09-06 22:01:00 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-09-06 22:01:00 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-09-06 22:00:59 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-09-06 22:00:54 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-09-06 22:00:54 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-09-06 22:00:53 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-09-06 22:00:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2019-09-06 22:00:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-09-06 22:00:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2019-09-06 22:00:52 ----A---- C:\WINDOWS\SYSWOW64\ComposableShellProxyStub.dll
2019-09-06 22:00:51 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-09-06 22:00:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2019-09-06 22:00:50 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2019-09-06 22:00:50 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2019-09-06 22:00:50 ----A---- C:\WINDOWS\SYSWOW64\LicensingDiagSpp.dll
2019-09-06 22:00:49 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-09-06 22:00:49 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-09-06 22:00:48 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2019-09-06 22:00:48 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2019-09-06 22:00:48 ----A---- C:\WINDOWS\system32\t2embed.dll
2019-09-06 22:00:48 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2019-09-06 22:00:48 ----A---- C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2019-09-06 22:00:47 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-09-06 22:00:47 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-09-06 22:00:46 ----A---- C:\WINDOWS\system32\wininet.dll
2019-09-06 22:00:45 ----A---- C:\WINDOWS\system32\iertutil.dll
2019-09-06 22:00:45 ----A---- C:\WINDOWS\system32\gpsvc.dll
2019-09-06 22:00:38 ----A---- C:\WINDOWS\system32\fontsub.dll
2019-09-06 22:00:38 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2019-09-06 22:00:37 ----A---- C:\WINDOWS\system32\kdnet.dll
2019-09-06 22:00:37 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-09-06 22:00:37 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2019-09-06 22:00:26 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-09-06 22:00:26 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-09-06 22:00:25 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2019-09-06 22:00:25 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-09-06 22:00:24 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-09-06 22:00:24 ----A---- C:\WINDOWS\system32\CoreShell.dll
2019-09-06 22:00:24 ----A---- C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-09-06 22:00:23 ----A---- C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-09-06 22:00:22 ----A---- C:\WINDOWS\system32\twinui.dll
2019-09-06 22:00:22 ----A---- C:\WINDOWS\system32\sppc.dll
2019-09-06 22:00:22 ----A---- C:\WINDOWS\system32\msctf.dll
2019-09-06 22:00:22 ----A---- C:\WINDOWS\system32\bootux.dll
2019-09-06 22:00:21 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-09-06 22:00:21 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-09-06 22:00:21 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-09-06 22:00:20 ----A---- C:\WINDOWS\system32\winresume.exe
2019-09-06 22:00:20 ----A---- C:\WINDOWS\system32\winload.exe
2019-09-06 22:00:19 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-09-06 22:00:18 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2019-09-06 22:00:13 ----A---- C:\WINDOWS\system32\shell32.dll
2019-09-06 22:00:11 ----A---- C:\WINDOWS\system32\shunimpl.dll
2019-09-06 22:00:11 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2019-09-06 22:00:11 ----A---- C:\WINDOWS\system32\comdlg32.dll
2019-09-06 22:00:10 ----A---- C:\WINDOWS\system32\sppsvc.exe
2019-09-06 22:00:10 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-09-06 22:00:10 ----A---- C:\WINDOWS\system32\sppcext.dll
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\sppwinob.dll
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\services.exe
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\rastapi.dll
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\rasmans.dll
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\LicensingDiagSpp.dll
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2019-09-06 22:00:08 ----A---- C:\WINDOWS\system32\vpnike.dll
2019-09-06 22:00:08 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-09-06 22:00:08 ----A---- C:\WINDOWS\system32\mprddm.dll
2019-09-06 22:00:07 ----A---- C:\WINDOWS\system32\nlasvc.dll
2019-09-06 22:00:07 ----A---- C:\WINDOWS\system32\newdev.dll
2019-09-06 22:00:07 ----A---- C:\WINDOWS\system32\drvinst.exe
2019-09-06 22:00:07 ----A---- C:\WINDOWS\system32\APMon.dll
2019-09-06 22:00:06 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-09-06 22:00:06 ----A---- C:\WINDOWS\system32\hal.dll
2019-09-06 22:00:06 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2019-09-06 22:00:04 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-09-06 22:00:04 ----A---- C:\WINDOWS\system32\daxexec.dll
2019-09-06 22:00:03 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-09-06 22:00:03 ----A---- C:\WINDOWS\system32\rmclient.dll
2019-09-06 22:00:03 ----A---- C:\WINDOWS\system32\psmsrv.dll
2019-09-06 22:00:03 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-09-06 22:00:03 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-09-06 22:00:02 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-09-06 22:00:02 ----A---- C:\WINDOWS\system32\Unistore.dll
2019-09-06 22:00:02 ----A---- C:\WINDOWS\system32\rdpbase.dll
2019-09-06 22:00:02 ----A---- C:\WINDOWS\system32\ISM.dll
2019-09-06 22:00:01 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-09-06 22:00:01 ----A---- C:\WINDOWS\system32\msxml6.dll
2019-09-06 22:00:00 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-09-06 22:00:00 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2019-09-06 22:00:00 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-09-06 21:59:59 ----A---- C:\WINDOWS\system32\tquery.dll
2019-09-06 21:59:59 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-09-06 21:59:59 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-09-06 21:59:59 ----A---- C:\WINDOWS\system32\mssph.dll
2019-09-06 21:59:59 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-09-06 21:59:58 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-09-06 21:59:58 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-09-06 21:59:58 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-09-06 21:59:57 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-09-06 21:59:56 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2019-09-06 21:59:56 ----A---- C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-09-06 21:59:56 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-09-06 21:59:56 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2019-09-06 21:59:56 ----A---- C:\WINDOWS\system32\appsruprov.dll
2019-09-06 21:59:55 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-09-06 21:59:55 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2019-09-06 21:59:54 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-09-06 21:59:53 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-09-06 21:59:53 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2019-09-06 21:59:52 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-09-06 21:59:52 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-09-06 21:59:51 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-09-06 21:59:51 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-09-06 21:59:50 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-09-06 21:59:49 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-09-06 21:59:48 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2019-09-06 21:59:48 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2019-09-06 21:59:48 ----A---- C:\WINDOWS\system32\hmkd.dll
2019-09-06 21:59:48 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2019-09-06 21:59:48 ----A---- C:\WINDOWS\explorer.exe
2019-09-06 21:59:47 ----A---- C:\WINDOWS\system32\wpx.dll
2019-09-06 21:59:47 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2019-09-06 21:59:46 ----A---- C:\WINDOWS\system32\WpcTok.exe
2019-09-06 21:59:46 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2019-09-06 21:59:46 ----A---- C:\WINDOWS\system32\WpcMon.exe
2019-09-06 21:59:46 ----A---- C:\WINDOWS\system32\kdcpw.dll
2019-09-06 21:59:46 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2019-09-06 21:59:29 ----A---- C:\WINDOWS\system32\drivers\http.sys
2019-09-06 21:59:27 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-09-06 21:59:27 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-09-06 21:59:26 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-09-06 21:59:26 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-09-06 21:59:26 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-09-06 21:59:25 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-09-06 21:59:25 ----A---- C:\WINDOWS\system32\wer.dll
2019-09-06 21:59:25 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-09-06 21:59:24 ----A---- C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-09-06 21:59:24 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-09-06 21:59:24 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2019-09-06 21:59:24 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-09-06 21:59:24 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2019-09-06 21:59:23 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-09-06 21:59:23 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-09-06 21:59:22 ----A---- C:\WINDOWS\system32\usoapi.dll
2019-09-06 21:59:22 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2019-09-06 21:59:22 ----A---- C:\WINDOWS\system32\updatecsp.dll
2019-09-06 21:59:21 ----A---- C:\WINDOWS\system32\usocore.dll
2019-09-06 21:59:21 ----A---- C:\WINDOWS\system32\UsoClient.exe
2019-09-06 21:59:21 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2019-09-06 21:59:20 ----A---- C:\WINDOWS\system32\wuuhext.dll
2019-09-06 21:59:20 ----A---- C:\WINDOWS\system32\wuapi.dll
2019-09-06 21:59:20 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2019-09-06 21:59:19 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2019-09-06 21:59:19 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2019-09-06 21:59:19 ----A---- C:\WINDOWS\system32\wuaueng.dll
2019-09-06 21:59:18 ----A---- C:\WINDOWS\system32\drvsetup.dll
2019-09-06 21:59:18 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2019-09-06 21:59:18 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-09-06 21:59:17 ----A---- C:\WINDOWS\system32\skci.dll
2019-09-06 21:59:17 ----A---- C:\WINDOWS\system32\lsasrv.dll
2019-09-06 21:59:17 ----A---- C:\WINDOWS\system32\LsaIso.exe
2019-09-06 21:59:15 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-09-06 21:59:15 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2019-09-06 21:59:15 ----A---- C:\WINDOWS\system32\tcbloader.dll
2019-09-06 21:59:15 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2019-09-06 21:59:14 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2019-09-06 21:59:14 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-09-06 21:59:14 ----A---- C:\WINDOWS\system32\kerberos.dll
2019-09-06 21:59:14 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2019-09-06 21:59:14 ----A---- C:\WINDOWS\system32\DiskSnapshot.exe
2019-09-06 21:59:13 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-09-06 21:59:13 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2019-09-06 21:59:13 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2019-09-06 21:59:13 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2019-09-06 21:59:12 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2019-09-06 21:59:12 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2019-09-06 21:59:12 ----A---- C:\WINDOWS\system32\wldp.dll
2019-09-06 21:59:12 ----A---- C:\WINDOWS\system32\ci.dll
2019-09-06 21:59:11 ----A---- C:\WINDOWS\system32\tzres.dll
2019-09-06 21:59:11 ----A---- C:\WINDOWS\system32\rpcss.dll
2019-09-06 21:59:11 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2019-09-06 21:59:11 ----A---- C:\WINDOWS\system32\combase.dll
2019-09-06 21:59:10 ----A---- C:\WINDOWS\system32\logoncli.dll
2019-09-06 21:59:10 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2019-09-06 21:59:10 ----A---- C:\WINDOWS\system32\dnsapi.dll
2019-09-06 21:59:09 ----A---- C:\WINDOWS\system32\xmllite.dll
2019-09-06 21:59:09 ----A---- C:\WINDOWS\system32\wc_storage.dll
2019-09-06 21:59:09 ----A---- C:\WINDOWS\system32\oleaut32.dll
2019-09-06 21:59:09 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2019-09-06 21:59:08 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-09-06 21:59:08 ----A---- C:\WINDOWS\system32\bcdedit.exe
2019-09-06 21:59:07 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2019-09-06 21:59:05 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-09-06 21:59:04 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2019-09-06 21:59:03 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2019-09-06 21:59:03 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2019-09-06 21:59:02 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2019-09-06 21:59:01 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2019-09-06 21:59:01 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2019-09-06 21:58:55 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-09-06 21:58:55 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-09-06 21:58:55 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-09-06 21:58:54 ----A---- C:\WINDOWS\system32\drivers\winhv.sys
2019-09-06 21:58:50 ----A---- C:\WINDOWS\system32\rdpnano.dll
2019-09-06 21:58:50 ----A---- C:\WINDOWS\system32\computestorage.dll
2019-09-06 21:58:49 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2019-09-06 21:58:49 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2019-09-06 21:58:48 ----A---- C:\WINDOWS\system32\drivers\pmem.sys
2019-09-06 21:58:48 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2019-09-06 21:58:47 ----A---- C:\WINDOWS\system32\drivers\uefi.sys
2019-09-06 21:58:47 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2019-09-06 21:58:46 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
======List of files/folders modified in the last 1 month======
2019-09-18 20:06:19 ----D---- C:\WINDOWS\Prefetch
2019-09-18 20:06:19 ----D---- C:\Program Files\trend micro
2019-09-18 20:06:16 ----D---- C:\WINDOWS\Temp
2019-09-18 19:57:36 ----HD---- C:\Program Files\WindowsApps
2019-09-18 19:53:46 ----D---- C:\WINDOWS\system32\config
2019-09-18 19:53:39 ----D---- C:\WINDOWS\AppReadiness
2019-09-18 19:53:38 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-09-18 19:51:46 ----D---- C:\WINDOWS\CbsTemp
2019-09-18 19:51:11 ----D---- C:\WINDOWS\WinSxS
2019-09-18 19:50:13 ----D---- C:\WINDOWS\system32\catroot2
2019-09-18 19:48:46 ----SHD---- C:\System Volume Information
2019-09-18 19:48:04 ----AD---- C:\Program Files (x86)\Dell Backup and Recovery
2019-09-18 19:40:20 ----D---- C:\WINDOWS\system32\sru
2019-09-18 18:49:12 ----D---- C:\WINDOWS\system32\Tasks
2019-09-18 18:45:25 ----D---- C:\DELL
2019-09-18 18:45:04 ----D---- C:\Windows
2019-09-18 18:44:14 ----D---- C:\WINDOWS\System32
2019-09-18 18:44:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-09-18 18:44:13 ----D---- C:\WINDOWS\INF
2019-09-18 18:43:27 ----D---- C:\WINDOWS\Registration
2019-09-18 18:39:46 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-09-18 18:38:07 ----D---- C:\WINDOWS\system32\DriverStore
2019-09-18 18:36:14 ----SHD---- C:\Config.Msi
2019-09-18 18:36:14 ----D---- C:\WINDOWS\system32\drivers
2019-09-07 01:06:35 ----D---- C:\WINDOWS\SYSWOW64\oobe
2019-09-07 01:06:35 ----D---- C:\WINDOWS\SysWOW64
2019-09-07 01:06:29 ----SD---- C:\WINDOWS\system32\UNP
2019-09-07 01:06:29 ----D---- C:\WINDOWS\system32\wbem
2019-09-07 01:06:29 ----D---- C:\WINDOWS\system32\oobe
2019-09-07 01:06:29 ----D---- C:\WINDOWS\system32\en-US
2019-09-07 01:06:28 ----D---- C:\WINDOWS\system32\en-GB
2019-09-07 01:06:28 ----D---- C:\WINDOWS\system32\drivers\en-GB
2019-09-07 01:06:28 ----D---- C:\WINDOWS\system32\Boot
2019-09-07 01:06:15 ----D---- C:\WINDOWS\Provisioning
2019-09-07 01:06:14 ----D---- C:\WINDOWS\bcastdvr
2019-09-07 01:06:14 ----D---- C:\Program Files\internet explorer
2019-09-07 01:06:14 ----D---- C:\Program Files (x86)\Internet Explorer
2019-09-07 00:06:43 ----RD---- C:\WINDOWS\Microsoft.NET
2019-09-06 23:16:14 ----SHDC---- C:\WINDOWS\Installer
2019-09-06 22:08:05 ----D---- C:\WINDOWS\system32\MRT
2019-09-06 22:07:54 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-09-06 21:58:25 ----D---- C:\Program Files (x86)\Comodo
2019-09-06 21:16:17 ----AD---- C:\Program Files (x86)\Opera
2019-09-06 21:07:46 ----D---- C:\ProgramData\PCDr
2019-09-06 21:04:03 ----D---- C:\WINDOWS\system32\CatRoot
2019-09-06 21:00:54 ----D---- C:\ProgramData\SupportAssist
2019-09-06 21:00:46 ----D---- C:\ProgramData\Dell
2019-09-06 21:00:24 ----D---- C:\Program Files (x86)\Dell
2019-09-06 20:54:05 ----D---- C:\ProgramData\Package Cache
2019-09-06 20:53:04 ----D---- C:\WINDOWS\system32\Macromed
2019-09-06 20:52:59 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2019-09-06 20:52:56 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avdevprot;avdevprot; C:\WINDOWS\system32\DRIVERS\avdevprot.sys [2019-06-16 78936]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2019-04-06 1398936]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-04-06 55608]
R0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-09-06 134968]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-09-15 40960]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2019-09-18 195648]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2019-03-03 46704]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-09-15 63288]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\WINDOWS\System32\DRIVERS\cmderd.sys [2016-09-08 40960]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\system32\DRIVERS\cmdguard.sys [2016-09-08 862648]
R1 cmdhlp;COMODO Internet Security Helper Driver; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [2016-09-08 54336]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-09-15 60416]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-09-15 8704]
R1 inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\system32\DRIVERS\inspect.sys [2015-08-05 127232]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2019-09-18 203440]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2019-03-03 89736]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-04-06 452096]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-04-06 51712]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0318486.inf_amd64_11ba0b4b7cc81d52\atikmdag.sys [2017-10-13 38774688]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0318486.inf_amd64_11ba0b4b7cc81d52\atikmpag.sys [2018-02-04 549792]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2019-04-06 111104]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-07-09 91136]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-09-15 133120]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-09-06 92672]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-09-15 63288]
R3 DDDriver;DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [2019-09-06 36728]
R3 DellRbtn;@oem41.inf,%DellRbtn%;Airplane Mode Switch; C:\WINDOWS\System32\drivers\DellRbtn.sys [2013-01-25 10752]
R3 ibtusb;@oem70.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2017-02-03 230656]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-02-25 7974896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-03-19 4622584]
R3 IntcDAud;@oem99.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-10-01 481768]
R3 MEIx64;@oem63.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2018-12-13 228992]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2018-09-15 53760]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2016-09-25 3524360]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-09-15 202240]
R3 RSUSBVSTOR;@oem66.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2014-05-29 332504]
R3 rt640x64;@oem19.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-08-13 896744]
R4 DBUtil_2_3;DBUtil_2_3; \??\C:\WINDOWS\TEMP\DBUtil_2_3.Sys [2019-09-18 14840]
S0 avelam;avelam; C:\WINDOWS\system32\drivers\avelam.sys [2019-03-03 22336]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-09-15 42504]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-09-15 319488]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-09-15 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-09-15 148480]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-09-15 124416]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-09-15 128512]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-09-15 75264]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-09-15 79872]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-09-15 58880]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-09-15 68608]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-09-15 41784]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-09-15 19968]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-09-15 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-09-06 104248]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2018-09-15 34816]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2019-09-06 1232384]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-09-15 40960]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-09-15 125952]
S3 DellProf;DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [2018-10-05 41208]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-09-15 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-09-15 51512]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2018-09-15 60928]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-06-23 80400]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-09-15 27648]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-09-15 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-09-15 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-09-15 91136]
S3 iaLPSS_SPI;Intel(R) Serial IO SPI Driver; C:\WINDOWS\System32\drivers\iaLPSS_SPI.sys [2014-06-11 100856]
S3 iaLPSS_UART2;Intel(R) Serial IO UART Driver v2; C:\WINDOWS\System32\drivers\iaLPSS_UART2.sys [2014-06-11 143864]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-09-15 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-09-15 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2018-09-15 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2018-09-15 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-09-15 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-09-15 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2018-09-15 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2018-09-15 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-09-15 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-09-15 45568]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-10-17 42288]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-09-15 42496]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-09-15 124928]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-09-15 515384]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-09-15 58680]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-07-09 290304]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-09-15 1150496]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-09-15 153616]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-09-15 184320]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-09-15 148480]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2018-09-15 85504]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-09-06 117248]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-09-15 17408]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-04-06 981816]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-09-15 108032]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-09-15 33080]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-09-15 33280]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2019-09-06 88136]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2018-02-04 560544]
R2 AntivirProtectedService;Avira Protected Service; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [2019-09-18 535360]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2019-09-18 484144]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2019-09-18 484144]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2019-09-06 582016]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CDPUserSvc_a09ac;Connected Devices Platform User Service_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2016-10-01 5817256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 DDVCollectorSvcApi;Dell Data Vault Service API; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [2019-09-06 209448]
R2 DDVDataCollector;Dell Data Vault Collector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [2019-09-06 3373600]
R2 DDVRulesProcessor;Dell Data Vault Processor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [2019-09-06 218144]
R2 Dell Customer Connect;Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [2016-12-21 130936]
R2 Dell Foundation Services;Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [2017-01-11 97616]
R2 Dell Hardware Support;Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\DSAPI.exe [2019-09-06 1050952]
R2 DellClientManagementService;Dell Client Management Service; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [2019-09-06 35976]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2019-09-06 2972144]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 ChromodoUpdater;COMODO Chromodo Update Service; C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe [2016-10-05 2273424]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-10-09 18584]
R2 ibtsiva;@oem70.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2017-02-25 382448]
R2 Intel(R) ME Service;Intel® ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-10-10 132896]
R2 IntelUSBoverIP;IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [2014-10-15 394184]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 OneSyncSvc_a09ac;Sync Host_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 osrss;@%systemroot%\system32\osrss.dll,-500; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 RNDBWM;Rivet Dynamic Bandwidth Management; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [2018-07-17 64184]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-03-19 316152]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 cbdhsvc_a09ac;Používateľská služba schránky_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-04-06 43632]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 PimIndexMaintenanceSvc_a09ac;Kontaktné údaje_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2019-09-06 864568]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2019-09-18 1207624]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2019-09-18 501600]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 Garmin Device Interaction Service;Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [2017-04-02 1099280]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-25 107848]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-09-06 335416]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService_a09ac;GameDVR and Broadcast User Service_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService_a09ac;Služba podpory používateľov rozhrania Bluetooth_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService_a09ac;CaptureService_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2016-10-01 2271928]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc_a09ac;ConsentUX_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2017-02-25 310256]
S3 DellProdRegManager;Dell Product Registration Manager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [2016-11-19 278568]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicePickerUserSvc_a09ac;DevicePicker_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc_a09ac;DevicesFlow_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-06-23 92672]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe [2019-09-06 1096176]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-25 107848]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-10-15 177376]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService_a09ac;MessagingService_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2019-06-23 238624]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2018-09-15 78848]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc_a09ac;PrintWorkflow_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
-----------------EOF-----------------
prosim o preventivnu kontrolu.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Radovan Hatala at 2019-09-18 20:06:15
Microsoft Windows 10 Home
System drive C: has 626 GB (66%) free of 945 GB
Total RAM: 8106 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:06:22, on 18.9.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17763.0592)
Boot mode: Normal
Running processes:
C:\Program Files\TrueColor\TrueColorUI.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files\trend micro\Radovan Hatala.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://dell13.msn.com/?pc=DCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [DropboxOEM] "C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe" auto
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Radovan Hatala\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Radovan Hatala\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Windscribe] "C:\Program Files (x86)\Windscribe\Windscribe.exe" -os_restart
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_Plugin.exe -update plugin
O4 - HKCU\..\RunOnce: [Delete Cached Update Binary] C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
O4 - HKCU\..\RunOnce: [Delete Cached Standalone Update Binary] C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
O4 - HKCU\..\RunOnce: [Uninstall 19.152.0801.0007\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\19.152.0801.0007\amd64"
O4 - HKCU\..\RunOnce: [Uninstall 19.152.0801.0007] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\19.152.0801.0007"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{334c278c-0684-4e4a-98ad-9f417d191ebc}: NameServer = 156.154.70.22,156.154.71.22
O17 - HKLM\System\CCS\Services\Tcpip\..\{e2686e41-3b47-4d65-9805-452e4edc1314}: NameServer = 156.154.70.22,156.154.71.22
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Protected Service (AntivirProtectedService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: COMODO Chromodo Update Service (ChromodoUpdater) - Comodo - C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dell Data Vault Service API (DDVCollectorSvcApi) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
O23 - Service: Dell Data Vault Collector (DDVDataCollector) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
O23 - Service: Dell Data Vault Processor (DDVRulesProcessor) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
O23 - Service: Dell Customer Connect - Dell Inc. - C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
O23 - Service: Dell Foundation Services - Dell - C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
O23 - Service: Dell Hardware Support - PC-Doctor, Inc. - C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\DSAPI.exe
O23 - Service: Dell Client Management Service (DellClientManagementService) - Unknown owner - C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
O23 - Service: Dell Product Registration Manager (DellProdRegManager) - Aviata, Inc. - C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem70.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel® ME Service (Intel(R) ME Service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: IntelUSBoverIP - Intel - C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rivet Dynamic Bandwidth Management (RNDBWM) - CloudBees, Inc. - C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: ##ID_STRING86## (SmartByte Network Service x64) - Rivet Networks - C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Dell SupportAssist (SupportAssistAgent) - Dell Inc. - C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TrueColorALS - Unknown owner - C:\Program Files\TrueColor\TrueColorALS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: WindscribeService - Windscribe Limited - C:\Program Files (x86)\Windscribe\WindscribeService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14529 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\ibtsiva
C:\WINDOWS\System32\svchost.exe -k NetworkService -s TermService
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s Netman
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe"
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\TrueColor\TrueColorALS.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
"C:\Program Files (x86)\Windscribe\WindscribeService.exe"
"C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe"
"C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
"RNDBWM.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\svchost.exe -k netsvcs
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\COMODO\COMODO Internet Security\cistray.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX5
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files\TrueColor\TrueColorUI.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe atlogon
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe"
"C:\Program Files (x86)\Dell Customer Connect\DCCService.exe"
"C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe"
"C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\DSAPI.exe"
"C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe"
"C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\pcdrwi.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\msdtc.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files (x86)\Garmin\Express SelfUpdater\esu.exe" --copy
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
"C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe"
"C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe"
"C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe"
"C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\Dell\DellDataVault\atiw.exe" -p 1 -continuous
"C:\Program Files (x86)\Avira\Antivirus\avscan.exe" /CFG="process.avp" /GUIMODE=9 /EXITMODE=3 /JOBNAME="Quick process scan" /SCHEDULED
"C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
/updateInstalled /background
"C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE" C:\Users\Radovan Hatala
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRSync.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min /NOSPLASH /SETUPSTART
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_00002bac
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19061.18920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\srtasks.exe ExecuteScopeRestorePoint /WaitForRestorePoint:9
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe" /InvokerPRAID: App
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\vssvc.exe
C:\WINDOWS\System32\svchost.exe -k swprv
VSSX64.exe /start
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\WINDOWS\system32\AUDIODG.EXE 0x3a4
"C:\Users\Radovan Hatala\Downloads\RSITx64.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\Radovan Hatala\AppData\Roaming\Mozilla\Firefox\Profiles\6gxnf70f.default
prefs.js - "browser.search.useDBForOrder" - true
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.238 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_238.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.238 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_238.dll
C:\Users\Radovan Hatala\AppData\Roaming\Mozilla\Firefox\Profiles\6gxnf70f.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2018-09-15 83968]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-03-19 8721656]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-03-19 1416440]
"QuickSet"=c:\Program Files\Dell\QuickSet\QuickSet.exe [2014-10-09 5793048]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-10-09 36352]
"TrueColor UI"=C:\Program Files\TrueColor\TrueColorUI.exe [2014-12-25 19491792]
"COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2016-10-01 1610936]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Radovan Hatala\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2019-09-18 1592440]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-03-01 50670720]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2017-04-02 1421736]
"cz.seznam.software.autoupdate"=C:\Users\Radovan Hatala\AppData\Roaming\Seznam.cz\szninstall.exe [2016-10-06 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Radovan Hatala\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2016-10-06 103080]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-02-15 9363672]
"Windscribe"=C:\Program Files (x86)\Windscribe\Windscribe.exe [2019-07-03 10106544]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_Plugin.exe [2019-09-06 1457208]
"Delete Cached Update Binary"=C:\WINDOWS\system32\cmd.exe [2019-07-09 278528]
"Delete Cached Standalone Update Binary"=C:\WINDOWS\system32\cmd.exe [2019-07-09 278528]
"Uninstall 19.152.0801.0007\amd64"=C:\WINDOWS\system32\cmd.exe [2019-07-09 278528]
"Uninstall 19.152.0801.0007"=C:\WINDOWS\system32\cmd.exe [2019-07-09 278528]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"DropboxOEM"=C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2014-09-02 462160]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2016-10-06 1062472]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2019-09-06 227648]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2019-09-18 18:49:25 ----HD---- C:\OneDriveTemp
2019-09-18 18:45:04 ----A---- C:\WINDOWS\invcol.tmp
2019-09-06 22:02:19 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2019-09-06 22:02:18 ----A---- C:\WINDOWS\system32\wmp.dll
2019-09-06 22:02:17 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2019-09-06 22:02:17 ----A---- C:\WINDOWS\system32\SyncController.dll
2019-09-06 22:02:16 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2019-09-06 22:02:16 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2019-09-06 22:02:11 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2019-09-06 22:01:56 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2019-09-06 22:01:55 ----A---- C:\WINDOWS\SYSWOW64\p2pnetsh.dll
2019-09-06 22:01:55 ----A---- C:\WINDOWS\SYSWOW64\P2PGraph.dll
2019-09-06 22:01:55 ----A---- C:\WINDOWS\SYSWOW64\P2P.dll
2019-09-06 22:01:54 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2019-09-06 22:01:54 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2019-09-06 22:01:54 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2019-09-06 22:01:53 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2019-09-06 22:01:53 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-09-06 22:01:53 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2019-09-06 22:01:52 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-09-06 22:01:49 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2019-09-06 22:01:47 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-09-06 22:01:44 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2019-09-06 22:01:44 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-09-06 22:01:43 ----A---- C:\WINDOWS\SYSWOW64\msrd2x40.dll
2019-09-06 22:01:42 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-09-06 22:01:42 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2019-09-06 22:01:42 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2019-09-06 22:01:36 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2019-09-06 22:01:36 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-09-06 22:01:35 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2019-09-06 22:01:34 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2019-09-06 22:01:34 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2019-09-06 22:01:33 ----A---- C:\WINDOWS\system32\p2psvc.dll
2019-09-06 22:01:33 ----A---- C:\WINDOWS\system32\P2PGraph.dll
2019-09-06 22:01:33 ----A---- C:\WINDOWS\system32\P2P.dll
2019-09-06 22:01:33 ----A---- C:\WINDOWS\system32\Groupinghc.dll
2019-09-06 22:01:31 ----A---- C:\WINDOWS\system32\offreg.dll
2019-09-06 22:01:31 ----A---- C:\WINDOWS\system32\mstscax.dll
2019-09-06 22:01:31 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2019-09-06 22:01:30 ----A---- C:\WINDOWS\system32\systemreset.exe
2019-09-06 22:01:30 ----A---- C:\WINDOWS\system32\srms.dat
2019-09-06 22:01:30 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2019-09-06 22:01:30 ----A---- C:\WINDOWS\system32\reseteng.dll
2019-09-06 22:01:29 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-09-06 22:01:29 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-09-06 22:01:29 ----A---- C:\WINDOWS\system32\nltest.exe
2019-09-06 22:01:29 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-09-06 22:01:28 ----A---- C:\WINDOWS\system32\msfeeds.dll
2019-09-06 22:01:28 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2019-09-06 22:01:27 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-09-06 22:01:23 ----A---- C:\WINDOWS\system32\edgehtml.dll
2019-09-06 22:01:20 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-09-06 22:01:20 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2019-09-06 22:01:18 ----A---- C:\WINDOWS\system32\werui.dll
2019-09-06 22:01:18 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2019-09-06 22:01:18 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-09-06 22:01:17 ----A---- C:\WINDOWS\system32\jscript.dll
2019-09-06 22:01:17 ----A---- C:\WINDOWS\system32\ClipUp.exe
2019-09-06 22:01:13 ----A---- C:\WINDOWS\system32\mispace.dll
2019-09-06 22:01:13 ----A---- C:\WINDOWS\system32\fsutil.exe
2019-09-06 22:01:12 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2019-09-06 22:01:12 ----A---- C:\WINDOWS\system32\RDXService.dll
2019-09-06 22:01:12 ----A---- C:\WINDOWS\system32\BioIso.exe
2019-09-06 22:01:11 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-09-06 22:01:10 ----A---- C:\WINDOWS\SYSWOW64\shunimpl.dll
2019-09-06 22:01:10 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2019-09-06 22:01:10 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2019-09-06 22:01:10 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2019-09-06 22:01:10 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2019-09-06 22:01:09 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-09-06 22:01:09 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2019-09-06 22:01:09 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2019-09-06 22:01:08 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2019-09-06 22:01:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2019-09-06 22:01:07 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2019-09-06 22:01:07 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-09-06 22:01:07 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2019-09-06 22:01:06 ----A---- C:\WINDOWS\SYSWOW64\xmllite.dll
2019-09-06 22:01:06 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2019-09-06 22:01:06 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2019-09-06 22:01:06 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2019-09-06 22:01:05 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2019-09-06 22:01:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-09-06 22:01:03 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2019-09-06 22:01:03 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2019-09-06 22:01:03 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2019-09-06 22:01:02 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2019-09-06 22:01:02 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2019-09-06 22:01:02 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2019-09-06 22:01:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2019-09-06 22:01:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2019-09-06 22:01:00 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-09-06 22:01:00 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-09-06 22:01:00 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-09-06 22:00:59 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-09-06 22:00:54 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-09-06 22:00:54 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-09-06 22:00:53 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-09-06 22:00:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2019-09-06 22:00:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-09-06 22:00:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2019-09-06 22:00:52 ----A---- C:\WINDOWS\SYSWOW64\ComposableShellProxyStub.dll
2019-09-06 22:00:51 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-09-06 22:00:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2019-09-06 22:00:50 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2019-09-06 22:00:50 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2019-09-06 22:00:50 ----A---- C:\WINDOWS\SYSWOW64\LicensingDiagSpp.dll
2019-09-06 22:00:49 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-09-06 22:00:49 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-09-06 22:00:48 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2019-09-06 22:00:48 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2019-09-06 22:00:48 ----A---- C:\WINDOWS\system32\t2embed.dll
2019-09-06 22:00:48 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2019-09-06 22:00:48 ----A---- C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2019-09-06 22:00:47 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-09-06 22:00:47 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-09-06 22:00:46 ----A---- C:\WINDOWS\system32\wininet.dll
2019-09-06 22:00:45 ----A---- C:\WINDOWS\system32\iertutil.dll
2019-09-06 22:00:45 ----A---- C:\WINDOWS\system32\gpsvc.dll
2019-09-06 22:00:38 ----A---- C:\WINDOWS\system32\fontsub.dll
2019-09-06 22:00:38 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2019-09-06 22:00:37 ----A---- C:\WINDOWS\system32\kdnet.dll
2019-09-06 22:00:37 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-09-06 22:00:37 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2019-09-06 22:00:26 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-09-06 22:00:26 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-09-06 22:00:25 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2019-09-06 22:00:25 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-09-06 22:00:24 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-09-06 22:00:24 ----A---- C:\WINDOWS\system32\CoreShell.dll
2019-09-06 22:00:24 ----A---- C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-09-06 22:00:23 ----A---- C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-09-06 22:00:22 ----A---- C:\WINDOWS\system32\twinui.dll
2019-09-06 22:00:22 ----A---- C:\WINDOWS\system32\sppc.dll
2019-09-06 22:00:22 ----A---- C:\WINDOWS\system32\msctf.dll
2019-09-06 22:00:22 ----A---- C:\WINDOWS\system32\bootux.dll
2019-09-06 22:00:21 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-09-06 22:00:21 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-09-06 22:00:21 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-09-06 22:00:20 ----A---- C:\WINDOWS\system32\winresume.exe
2019-09-06 22:00:20 ----A---- C:\WINDOWS\system32\winload.exe
2019-09-06 22:00:19 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-09-06 22:00:18 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2019-09-06 22:00:13 ----A---- C:\WINDOWS\system32\shell32.dll
2019-09-06 22:00:11 ----A---- C:\WINDOWS\system32\shunimpl.dll
2019-09-06 22:00:11 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2019-09-06 22:00:11 ----A---- C:\WINDOWS\system32\comdlg32.dll
2019-09-06 22:00:10 ----A---- C:\WINDOWS\system32\sppsvc.exe
2019-09-06 22:00:10 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-09-06 22:00:10 ----A---- C:\WINDOWS\system32\sppcext.dll
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\sppwinob.dll
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\services.exe
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\rastapi.dll
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\rasmans.dll
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\LicensingDiagSpp.dll
2019-09-06 22:00:09 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2019-09-06 22:00:08 ----A---- C:\WINDOWS\system32\vpnike.dll
2019-09-06 22:00:08 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-09-06 22:00:08 ----A---- C:\WINDOWS\system32\mprddm.dll
2019-09-06 22:00:07 ----A---- C:\WINDOWS\system32\nlasvc.dll
2019-09-06 22:00:07 ----A---- C:\WINDOWS\system32\newdev.dll
2019-09-06 22:00:07 ----A---- C:\WINDOWS\system32\drvinst.exe
2019-09-06 22:00:07 ----A---- C:\WINDOWS\system32\APMon.dll
2019-09-06 22:00:06 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-09-06 22:00:06 ----A---- C:\WINDOWS\system32\hal.dll
2019-09-06 22:00:06 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2019-09-06 22:00:04 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-09-06 22:00:04 ----A---- C:\WINDOWS\system32\daxexec.dll
2019-09-06 22:00:03 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-09-06 22:00:03 ----A---- C:\WINDOWS\system32\rmclient.dll
2019-09-06 22:00:03 ----A---- C:\WINDOWS\system32\psmsrv.dll
2019-09-06 22:00:03 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-09-06 22:00:03 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-09-06 22:00:02 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-09-06 22:00:02 ----A---- C:\WINDOWS\system32\Unistore.dll
2019-09-06 22:00:02 ----A---- C:\WINDOWS\system32\rdpbase.dll
2019-09-06 22:00:02 ----A---- C:\WINDOWS\system32\ISM.dll
2019-09-06 22:00:01 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-09-06 22:00:01 ----A---- C:\WINDOWS\system32\msxml6.dll
2019-09-06 22:00:00 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-09-06 22:00:00 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2019-09-06 22:00:00 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-09-06 21:59:59 ----A---- C:\WINDOWS\system32\tquery.dll
2019-09-06 21:59:59 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-09-06 21:59:59 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-09-06 21:59:59 ----A---- C:\WINDOWS\system32\mssph.dll
2019-09-06 21:59:59 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-09-06 21:59:58 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-09-06 21:59:58 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-09-06 21:59:58 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-09-06 21:59:57 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-09-06 21:59:56 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2019-09-06 21:59:56 ----A---- C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-09-06 21:59:56 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-09-06 21:59:56 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2019-09-06 21:59:56 ----A---- C:\WINDOWS\system32\appsruprov.dll
2019-09-06 21:59:55 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-09-06 21:59:55 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2019-09-06 21:59:54 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-09-06 21:59:53 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-09-06 21:59:53 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2019-09-06 21:59:52 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-09-06 21:59:52 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-09-06 21:59:51 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-09-06 21:59:51 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-09-06 21:59:50 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-09-06 21:59:49 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-09-06 21:59:48 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2019-09-06 21:59:48 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2019-09-06 21:59:48 ----A---- C:\WINDOWS\system32\hmkd.dll
2019-09-06 21:59:48 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2019-09-06 21:59:48 ----A---- C:\WINDOWS\explorer.exe
2019-09-06 21:59:47 ----A---- C:\WINDOWS\system32\wpx.dll
2019-09-06 21:59:47 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2019-09-06 21:59:46 ----A---- C:\WINDOWS\system32\WpcTok.exe
2019-09-06 21:59:46 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2019-09-06 21:59:46 ----A---- C:\WINDOWS\system32\WpcMon.exe
2019-09-06 21:59:46 ----A---- C:\WINDOWS\system32\kdcpw.dll
2019-09-06 21:59:46 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2019-09-06 21:59:29 ----A---- C:\WINDOWS\system32\drivers\http.sys
2019-09-06 21:59:27 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-09-06 21:59:27 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-09-06 21:59:26 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-09-06 21:59:26 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-09-06 21:59:26 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-09-06 21:59:25 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-09-06 21:59:25 ----A---- C:\WINDOWS\system32\wer.dll
2019-09-06 21:59:25 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-09-06 21:59:24 ----A---- C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-09-06 21:59:24 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-09-06 21:59:24 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2019-09-06 21:59:24 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-09-06 21:59:24 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2019-09-06 21:59:23 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-09-06 21:59:23 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-09-06 21:59:22 ----A---- C:\WINDOWS\system32\usoapi.dll
2019-09-06 21:59:22 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2019-09-06 21:59:22 ----A---- C:\WINDOWS\system32\updatecsp.dll
2019-09-06 21:59:21 ----A---- C:\WINDOWS\system32\usocore.dll
2019-09-06 21:59:21 ----A---- C:\WINDOWS\system32\UsoClient.exe
2019-09-06 21:59:21 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2019-09-06 21:59:20 ----A---- C:\WINDOWS\system32\wuuhext.dll
2019-09-06 21:59:20 ----A---- C:\WINDOWS\system32\wuapi.dll
2019-09-06 21:59:20 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2019-09-06 21:59:19 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2019-09-06 21:59:19 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2019-09-06 21:59:19 ----A---- C:\WINDOWS\system32\wuaueng.dll
2019-09-06 21:59:18 ----A---- C:\WINDOWS\system32\drvsetup.dll
2019-09-06 21:59:18 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2019-09-06 21:59:18 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-09-06 21:59:17 ----A---- C:\WINDOWS\system32\skci.dll
2019-09-06 21:59:17 ----A---- C:\WINDOWS\system32\lsasrv.dll
2019-09-06 21:59:17 ----A---- C:\WINDOWS\system32\LsaIso.exe
2019-09-06 21:59:15 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-09-06 21:59:15 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2019-09-06 21:59:15 ----A---- C:\WINDOWS\system32\tcbloader.dll
2019-09-06 21:59:15 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2019-09-06 21:59:14 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2019-09-06 21:59:14 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-09-06 21:59:14 ----A---- C:\WINDOWS\system32\kerberos.dll
2019-09-06 21:59:14 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2019-09-06 21:59:14 ----A---- C:\WINDOWS\system32\DiskSnapshot.exe
2019-09-06 21:59:13 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-09-06 21:59:13 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2019-09-06 21:59:13 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2019-09-06 21:59:13 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2019-09-06 21:59:12 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2019-09-06 21:59:12 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2019-09-06 21:59:12 ----A---- C:\WINDOWS\system32\wldp.dll
2019-09-06 21:59:12 ----A---- C:\WINDOWS\system32\ci.dll
2019-09-06 21:59:11 ----A---- C:\WINDOWS\system32\tzres.dll
2019-09-06 21:59:11 ----A---- C:\WINDOWS\system32\rpcss.dll
2019-09-06 21:59:11 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2019-09-06 21:59:11 ----A---- C:\WINDOWS\system32\combase.dll
2019-09-06 21:59:10 ----A---- C:\WINDOWS\system32\logoncli.dll
2019-09-06 21:59:10 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2019-09-06 21:59:10 ----A---- C:\WINDOWS\system32\dnsapi.dll
2019-09-06 21:59:09 ----A---- C:\WINDOWS\system32\xmllite.dll
2019-09-06 21:59:09 ----A---- C:\WINDOWS\system32\wc_storage.dll
2019-09-06 21:59:09 ----A---- C:\WINDOWS\system32\oleaut32.dll
2019-09-06 21:59:09 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2019-09-06 21:59:08 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-09-06 21:59:08 ----A---- C:\WINDOWS\system32\bcdedit.exe
2019-09-06 21:59:07 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2019-09-06 21:59:05 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-09-06 21:59:04 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2019-09-06 21:59:03 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2019-09-06 21:59:03 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2019-09-06 21:59:02 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2019-09-06 21:59:01 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2019-09-06 21:59:01 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2019-09-06 21:58:55 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-09-06 21:58:55 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-09-06 21:58:55 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-09-06 21:58:54 ----A---- C:\WINDOWS\system32\drivers\winhv.sys
2019-09-06 21:58:50 ----A---- C:\WINDOWS\system32\rdpnano.dll
2019-09-06 21:58:50 ----A---- C:\WINDOWS\system32\computestorage.dll
2019-09-06 21:58:49 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2019-09-06 21:58:49 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2019-09-06 21:58:48 ----A---- C:\WINDOWS\system32\drivers\pmem.sys
2019-09-06 21:58:48 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2019-09-06 21:58:47 ----A---- C:\WINDOWS\system32\drivers\uefi.sys
2019-09-06 21:58:47 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2019-09-06 21:58:46 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
======List of files/folders modified in the last 1 month======
2019-09-18 20:06:19 ----D---- C:\WINDOWS\Prefetch
2019-09-18 20:06:19 ----D---- C:\Program Files\trend micro
2019-09-18 20:06:16 ----D---- C:\WINDOWS\Temp
2019-09-18 19:57:36 ----HD---- C:\Program Files\WindowsApps
2019-09-18 19:53:46 ----D---- C:\WINDOWS\system32\config
2019-09-18 19:53:39 ----D---- C:\WINDOWS\AppReadiness
2019-09-18 19:53:38 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-09-18 19:51:46 ----D---- C:\WINDOWS\CbsTemp
2019-09-18 19:51:11 ----D---- C:\WINDOWS\WinSxS
2019-09-18 19:50:13 ----D---- C:\WINDOWS\system32\catroot2
2019-09-18 19:48:46 ----SHD---- C:\System Volume Information
2019-09-18 19:48:04 ----AD---- C:\Program Files (x86)\Dell Backup and Recovery
2019-09-18 19:40:20 ----D---- C:\WINDOWS\system32\sru
2019-09-18 18:49:12 ----D---- C:\WINDOWS\system32\Tasks
2019-09-18 18:45:25 ----D---- C:\DELL
2019-09-18 18:45:04 ----D---- C:\Windows
2019-09-18 18:44:14 ----D---- C:\WINDOWS\System32
2019-09-18 18:44:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-09-18 18:44:13 ----D---- C:\WINDOWS\INF
2019-09-18 18:43:27 ----D---- C:\WINDOWS\Registration
2019-09-18 18:39:46 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-09-18 18:38:07 ----D---- C:\WINDOWS\system32\DriverStore
2019-09-18 18:36:14 ----SHD---- C:\Config.Msi
2019-09-18 18:36:14 ----D---- C:\WINDOWS\system32\drivers
2019-09-07 01:06:35 ----D---- C:\WINDOWS\SYSWOW64\oobe
2019-09-07 01:06:35 ----D---- C:\WINDOWS\SysWOW64
2019-09-07 01:06:29 ----SD---- C:\WINDOWS\system32\UNP
2019-09-07 01:06:29 ----D---- C:\WINDOWS\system32\wbem
2019-09-07 01:06:29 ----D---- C:\WINDOWS\system32\oobe
2019-09-07 01:06:29 ----D---- C:\WINDOWS\system32\en-US
2019-09-07 01:06:28 ----D---- C:\WINDOWS\system32\en-GB
2019-09-07 01:06:28 ----D---- C:\WINDOWS\system32\drivers\en-GB
2019-09-07 01:06:28 ----D---- C:\WINDOWS\system32\Boot
2019-09-07 01:06:15 ----D---- C:\WINDOWS\Provisioning
2019-09-07 01:06:14 ----D---- C:\WINDOWS\bcastdvr
2019-09-07 01:06:14 ----D---- C:\Program Files\internet explorer
2019-09-07 01:06:14 ----D---- C:\Program Files (x86)\Internet Explorer
2019-09-07 00:06:43 ----RD---- C:\WINDOWS\Microsoft.NET
2019-09-06 23:16:14 ----SHDC---- C:\WINDOWS\Installer
2019-09-06 22:08:05 ----D---- C:\WINDOWS\system32\MRT
2019-09-06 22:07:54 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-09-06 21:58:25 ----D---- C:\Program Files (x86)\Comodo
2019-09-06 21:16:17 ----AD---- C:\Program Files (x86)\Opera
2019-09-06 21:07:46 ----D---- C:\ProgramData\PCDr
2019-09-06 21:04:03 ----D---- C:\WINDOWS\system32\CatRoot
2019-09-06 21:00:54 ----D---- C:\ProgramData\SupportAssist
2019-09-06 21:00:46 ----D---- C:\ProgramData\Dell
2019-09-06 21:00:24 ----D---- C:\Program Files (x86)\Dell
2019-09-06 20:54:05 ----D---- C:\ProgramData\Package Cache
2019-09-06 20:53:04 ----D---- C:\WINDOWS\system32\Macromed
2019-09-06 20:52:59 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2019-09-06 20:52:56 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avdevprot;avdevprot; C:\WINDOWS\system32\DRIVERS\avdevprot.sys [2019-06-16 78936]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2019-04-06 1398936]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-04-06 55608]
R0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-09-06 134968]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-09-15 40960]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2019-09-18 195648]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2019-03-03 46704]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-09-15 63288]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\WINDOWS\System32\DRIVERS\cmderd.sys [2016-09-08 40960]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\system32\DRIVERS\cmdguard.sys [2016-09-08 862648]
R1 cmdhlp;COMODO Internet Security Helper Driver; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [2016-09-08 54336]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-09-15 60416]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-09-15 8704]
R1 inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\system32\DRIVERS\inspect.sys [2015-08-05 127232]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2019-09-18 203440]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2019-03-03 89736]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-04-06 452096]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-04-06 51712]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0318486.inf_amd64_11ba0b4b7cc81d52\atikmdag.sys [2017-10-13 38774688]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0318486.inf_amd64_11ba0b4b7cc81d52\atikmpag.sys [2018-02-04 549792]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2019-04-06 111104]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-07-09 91136]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-09-15 133120]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-09-06 92672]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-09-15 63288]
R3 DDDriver;DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [2019-09-06 36728]
R3 DellRbtn;@oem41.inf,%DellRbtn%;Airplane Mode Switch; C:\WINDOWS\System32\drivers\DellRbtn.sys [2013-01-25 10752]
R3 ibtusb;@oem70.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2017-02-03 230656]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-02-25 7974896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-03-19 4622584]
R3 IntcDAud;@oem99.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-10-01 481768]
R3 MEIx64;@oem63.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2018-12-13 228992]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2018-09-15 53760]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2016-09-25 3524360]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-09-15 202240]
R3 RSUSBVSTOR;@oem66.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2014-05-29 332504]
R3 rt640x64;@oem19.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-08-13 896744]
R4 DBUtil_2_3;DBUtil_2_3; \??\C:\WINDOWS\TEMP\DBUtil_2_3.Sys [2019-09-18 14840]
S0 avelam;avelam; C:\WINDOWS\system32\drivers\avelam.sys [2019-03-03 22336]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-09-15 42504]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-09-15 319488]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-09-15 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-09-15 148480]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-09-15 124416]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-09-15 128512]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-09-15 75264]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-09-15 79872]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-09-15 58880]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-09-15 68608]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-09-15 41784]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-09-15 19968]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-09-15 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-09-06 104248]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2018-09-15 34816]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2019-09-06 1232384]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-09-15 40960]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-09-15 125952]
S3 DellProf;DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [2018-10-05 41208]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-09-15 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-09-15 51512]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2018-09-15 60928]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-06-23 80400]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-09-15 27648]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-09-15 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-09-15 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-09-15 91136]
S3 iaLPSS_SPI;Intel(R) Serial IO SPI Driver; C:\WINDOWS\System32\drivers\iaLPSS_SPI.sys [2014-06-11 100856]
S3 iaLPSS_UART2;Intel(R) Serial IO UART Driver v2; C:\WINDOWS\System32\drivers\iaLPSS_UART2.sys [2014-06-11 143864]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-09-15 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-09-15 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2018-09-15 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2018-09-15 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-09-15 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-09-15 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2018-09-15 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2018-09-15 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-09-15 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-09-15 45568]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-10-17 42288]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-09-15 42496]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-09-15 124928]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-09-15 515384]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-09-15 58680]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-07-09 290304]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-09-15 1150496]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-09-15 153616]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-09-15 184320]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-09-15 148480]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2018-09-15 85504]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-09-06 117248]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-09-15 17408]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-04-06 981816]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-09-15 108032]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-09-15 33080]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-09-15 33280]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2019-09-06 88136]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2018-02-04 560544]
R2 AntivirProtectedService;Avira Protected Service; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [2019-09-18 535360]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2019-09-18 484144]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2019-09-18 484144]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2019-09-06 582016]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CDPUserSvc_a09ac;Connected Devices Platform User Service_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2016-10-01 5817256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 DDVCollectorSvcApi;Dell Data Vault Service API; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [2019-09-06 209448]
R2 DDVDataCollector;Dell Data Vault Collector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [2019-09-06 3373600]
R2 DDVRulesProcessor;Dell Data Vault Processor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [2019-09-06 218144]
R2 Dell Customer Connect;Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [2016-12-21 130936]
R2 Dell Foundation Services;Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [2017-01-11 97616]
R2 Dell Hardware Support;Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\DSAPI.exe [2019-09-06 1050952]
R2 DellClientManagementService;Dell Client Management Service; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [2019-09-06 35976]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2019-09-06 2972144]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 ChromodoUpdater;COMODO Chromodo Update Service; C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe [2016-10-05 2273424]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-10-09 18584]
R2 ibtsiva;@oem70.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2017-02-25 382448]
R2 Intel(R) ME Service;Intel® ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-10-10 132896]
R2 IntelUSBoverIP;IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [2014-10-15 394184]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 OneSyncSvc_a09ac;Sync Host_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 osrss;@%systemroot%\system32\osrss.dll,-500; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 RNDBWM;Rivet Dynamic Bandwidth Management; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [2018-07-17 64184]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-03-19 316152]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 cbdhsvc_a09ac;Používateľská služba schránky_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-04-06 43632]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 PimIndexMaintenanceSvc_a09ac;Kontaktné údaje_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2019-09-06 864568]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2019-09-18 1207624]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2019-09-18 501600]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 Garmin Device Interaction Service;Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [2017-04-02 1099280]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-25 107848]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-09-06 335416]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService_a09ac;GameDVR and Broadcast User Service_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService_a09ac;Služba podpory používateľov rozhrania Bluetooth_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService_a09ac;CaptureService_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2016-10-01 2271928]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc_a09ac;ConsentUX_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2017-02-25 310256]
S3 DellProdRegManager;Dell Product Registration Manager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [2016-11-19 278568]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicePickerUserSvc_a09ac;DevicePicker_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc_a09ac;DevicesFlow_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-06-23 92672]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe [2019-09-06 1096176]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-25 107848]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-10-15 177376]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService_a09ac;MessagingService_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2019-06-23 238624]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2018-09-15 78848]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc_a09ac;PrintWorkflow_a09ac; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
-----------------EOF-----------------
Stiahni AdwCleaner: